Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 16-02-2014
Ran by admin (administrator) on PC on 20-02-2014 19:19:33
Running from C:\Documents and Settings\admin\Pulpit
Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\Ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Cherished Technololgy LIMITED) C:\Documents and Settings\All Users\Dane aplikacji\WPM\wprotectmanager.exe
() C:\Documents and Settings\All Users\Dane aplikacji\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
() C:\Documents and Settings\All Users\Dane aplikacji\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe
(Apple Computer, Inc.) C:\Program Files\Bonjour\mDNSResponder.exe
(Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\avastUI.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
(Adobe Systems Incorporated) C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe
(ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe
(Ralink Technology, Corp.) C:\Program Files\RALINK\Common\RaUI.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jucheck.exe
(Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [61440 2010-02-10] (Advanced Micro Devices, Inc.)
HKLM\...\Run: [avast] - C:\Program Files\AVAST Software\Avast\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [Cmaudio] - RunDll32 cmicnfg.cpl,CMICtrlWnd
HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [254336 2013-07-02] (Oracle Corporation)
HKLM\...\Run: [Adobe Reader Speed Launcher] - D:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [37296 2012-01-03] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [958576 2013-04-04] (Adobe Systems Incorporated)
Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-484763869-1004336348-839522115-1003\...\Run: [DAEMON Tools Lite] - D:\Program Files\DAEMON Tools Lite\DTLite.exe [3674320 2013-01-08] (DT Soft Ltd)
HKU\S-1-5-21-484763869-1004336348-839522115-1003\...\MountPoints2: {7ad7976e-26ba-11e3-8070-00138fe41679} - F:\LGAutoRun.exe
AppInit_DLLs: c:\docume~1\alluse~1\daneap~1\bitguard\271832~1.68\{c16c1~1\bitguard.dll => File Not Found
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk
ShortcutTarget: Ralink Wireless Utility.lnk -> C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=SAMSUNGXSP0802N_S00JJ30WC27357&ts=1380448772
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=ds&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=SAMSUNGXSP0802N_S00JJ30WC27357&ts=1380448772
HKCU\Software\Microsoft\Internet Explorer\Main,bProtector Start Page = http://www.searchgol.com/?babsrc=HP_ss&mntrId=F40000138FE41679&affID=119357&tt=240913_91215&tsp=5019
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=SAMSUNGXSP0802N_S00JJ30WC27357&ts=1380448772
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=ds&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=newgdp&utm_campaign=eXQ&utm_content=hp&from=newgdp&uid=SAMSUNGXSP0802N_S00JJ30WC27357&ts=1380448772
HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?type=sc&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357
SearchScopes: HKLM - DefaultScope value is missing.
SearchScopes: HKCU - bProtectorDefaultScope {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.searchgol.com/?q={searchTerms}&babsrc=SP_ss&mntrId=F40000138FE41679&affID=119357&tt=240913_91215&tsp=5019
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
BHO: BonanzaDeals - {fe063412-bea4-4d76-8ed3-183be6220d17} - C:\Program Files\BonanzaDeals\BonanzaDealsIE.dll (BonanzaDeals)
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [94208] (Apple Computer, Inc.)
Tcpip\Parameters: [DhcpNameServer] 192.168.88.1 192.168.1.1

Chrome: 
=======
CHR HomePage: hxxp://www.delta-homes.com/?type=hp&ts=1388679151&from=wpm0102&uid=SAMSUNGXSP0802N_S00JJ30WC27357
CHR Plugin: (Shockwave Flash) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\PepperFlash\pepflashplayer.dll ()
CHR Plugin: (Chrome Remote Desktop Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Program Files\Google\Chrome\Application\32.0.1700.107\pdf.dll ()
CHR Plugin: (Microsoft DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll No File
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll No File
CHR Plugin: (Microsoft DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll No File
CHR Plugin: (BonanzaDealsLive Update) - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
CHR Plugin: (Google Update) - C:\Program Files\Google\Update\1.3.21.153\npGoogleUpdate3.dll No File
CHR Plugin: (Java(TM) Platform SE 7 U40) - C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
CHR Plugin: (VLC Web Plugin) - C:\Program Files\VideoLAN\VLC\npvlc.dll (VideoLAN)
CHR Plugin: (Java Deployment Toolkit 7.0.400.43) - C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation)
CHR Extension: (Extended Protection) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cekcjpgehmohobmdiikfnopibipmgnml [2014-01-02]
CHR Extension: (Adblock Plus) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2013-10-09]
CHR Extension: (SecretSauce) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dbpebffoameokfhnaaedmefjncfboino [2013-12-08]
CHR Extension: (Proxy SwitchySharp) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dpplabbmogkhghncfbfdeeokoefdjegm [2013-11-09]
CHR Extension: (BonanzaDeals) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ieadcoanfjloocmfafkebdnfefmohngj [2013-12-29]
CHR Extension: (Google Wallet) - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-09-15]
CHR HKLM\...\Chrome\Extension: [dbpebffoameokfhnaaedmefjncfboino] - C:\Program Files\SecretSauce\dbpebffoameokfhnaaedmefjncfboino.crx [2013-12-07]
CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\newtab.crx [2013-09-16]

========================== Services (Whitelisted) =================

S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2010-02-10] ()
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
R2 BitGuard; C:\Documents and Settings\All Users\Dane aplikacji\BitGuard\2.7.1832.68\{c16c1ccb-1111-4e5c-a2f3-533ad2fec8e8}\BitGuard.exe [3780064 2013-11-18] ()
S2 bonanzadealslive; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-12-29] (BonanzaDeals)
S3 bonanzadealslivem; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-12-29] (BonanzaDeals)
R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-09-21] (Oracle Corporation)
R2 Wpm; C:\Documents and Settings\All Users\Dane aplikacji\WPM\wprotectmanager.exe [499856 2014-01-02] (Cherished Technololgy LIMITED)

==================== Drivers (Whitelisted) ====================

R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [20747 2014-02-20] (Meetinghouse Data Communications)
S3 AndNetDiag; C:\WINDOWS\System32\DRIVERS\lgandnetdiag.sys [23040 2012-07-03] (LG Electronics Inc.)
S3 ANDNetModem; C:\WINDOWS\System32\DRIVERS\lgandnetmodem.sys [27776 2012-07-03] (LG Electronics Inc.)
R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 AswRdr; C:\WINDOWS\system32\Drivers\AswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770344 2013-08-30] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [177864 2013-08-30] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 cmuda; C:\WINDOWS\System32\drivers\cmuda.sys [1332544 2013-09-15] (C-Media Inc)
R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2013-09-21] (DT Soft Ltd)
S3 ManyCam; C:\WINDOWS\System32\DRIVERS\mcvidrv.sys [34432 2012-10-11] (ManyCam LLC)
S3 mcaudrv_simple; C:\WINDOWS\System32\drivers\mcaudrv.sys [22656 2013-01-31] (ManyCam LLC)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R3 RT73; C:\WINDOWS\System32\DRIVERS\rt73.sys [255232 2006-03-08] (Ralink Technology, Corp.)
R3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2006-09-13] (Realtek Semiconductor Corporation)
S3 cpuz136; \??\C:\DOCUME~1\admin\USTAWI~1\Temp\cpuz136\cpuz136_x32.sys [X]
U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-13] (Microsoft Corporation)
U1 WS2IFSL; 

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-02-20 19:19 - 2014-02-20 19:19 - 00039132 _____ () C:\Documents and Settings\admin\Pulpit\Extras.Txt
2014-02-20 19:19 - 2014-02-20 19:19 - 00013756 _____ () C:\Documents and Settings\admin\Pulpit\FRST.txt
2014-02-20 19:19 - 2014-02-20 19:19 - 00000000 ____D () C:\FRST
2014-02-20 19:18 - 2014-02-20 19:18 - 00146302 _____ () C:\Documents and Settings\admin\Pulpit\OTL.Txt
2014-02-20 19:06 - 2014-02-20 19:07 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\admin\Pulpit\OTL.exe
2014-02-20 19:04 - 2014-02-20 19:05 - 01141248 _____ (Farbar) C:\Documents and Settings\admin\Pulpit\FRST.exe
2014-02-20 19:00 - 2014-02-20 19:00 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-20 19:00 - 2014-02-20 19:00 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\RaLink Wireless
2014-02-20 19:00 - 2006-03-08 17:28 - 00255232 _____ (Ralink Technology, Corp.) C:\WINDOWS\system32\Drivers\rt73.sys
2014-02-20 19:00 - 2006-01-18 13:55 - 00290918 _____ () C:\WINDOWS\system32\Install7x.dll
2014-02-20 19:00 - 2005-11-30 11:33 - 00002048 _____ () C:\WINDOWS\system32\Drivers\rt73.bin
2014-02-20 19:00 - 2005-10-17 19:50 - 00245376 _____ (Ralink Technology Inc.) C:\WINDOWS\system32\Drivers\rt2500usb.SYS
2014-02-20 19:00 - 2005-08-19 15:51 - 00000138 _____ () C:\WINDOWS\filespec7x
2014-02-20 19:00 - 2005-05-17 15:24 - 00311296 _____ () C:\WINDOWS\system32\AegisI5.exe
2014-02-20 18:59 - 2014-02-20 18:59 - 00020747 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2014-02-20 17:29 - 2014-02-20 17:29 - 00013587 _____ () C:\Documents and Settings\admin\Pulpit\HWMonitor temp.txt
2014-02-20 17:29 - 2014-02-20 17:29 - 00003177 _____ () C:\Documents and Settings\admin\Pulpit\hwm_smbus.txt
2014-02-20 17:18 - 2014-02-20 17:18 - 00000778 _____ () C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk
2014-02-20 17:18 - 2014-02-20 17:18 - 00000000 ____D () C:\Program Files\CPUID
2014-02-20 17:18 - 2014-02-20 17:18 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\CPUID
2014-02-15 19:12 - 2014-02-15 19:12 - 00000000 __SHD () C:\found.008
2014-02-15 14:50 - 2014-02-15 14:50 - 00076162 _____ () C:\Documents and Settings\admin\Pulpit\23.flp
2014-02-15 14:42 - 2013-12-28 22:11 - 00000268 _____ () C:\Documents and Settings\admin\Pulpit\akordy hana hana.mid
2014-02-15 14:42 - 2013-12-28 22:09 - 00000131 _____ () C:\Documents and Settings\admin\Pulpit\bassline hana hana.mid
2014-02-14 14:32 - 2014-02-14 15:16 - 05209882 _____ () C:\Documents and Settings\admin\Pulpit\soleo.flp
2014-02-14 14:26 - 2013-10-09 17:35 - 00018544 _____ () C:\Documents and Settings\admin\Pulpit\Soleo - Ania i Hania (MIDI).mid
2014-02-14 12:51 - 2014-02-15 23:53 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\sety i tl
2014-02-14 11:42 - 2014-02-14 12:17 - 05731799 _____ () C:\Documents and Settings\admin\Pulpit\mo malida.flp
2014-02-14 11:26 - 2014-02-14 11:23 - 00068789 _____ () C:\Documents and Settings\admin\Pulpit\Masters - Serce do koperty ( Full Midi ) .MID
2014-02-13 22:11 - 2013-10-08 19:09 - 00020868 _____ () C:\Documents and Settings\admin\Pulpit\Mig - Miód Malina MIDI.mid
2014-02-11 22:12 - 2010-03-06 17:04 - 00019340 _____ () C:\Documents and Settings\admin\Pulpit\VEH3 Percussion 138.wav
2014-02-11 22:12 - 2010-03-06 17:04 - 00014140 _____ () C:\Documents and Settings\admin\Pulpit\VEH3 Percussion 095.wav
2014-02-07 17:03 - 2014-02-07 17:03 - 00000000 __SHD () C:\found.007
2014-02-06 17:24 - 2014-02-06 17:24 - 00000442 _____ () C:\Documents and Settings\admin\Pulpit\ghf.txt
2014-02-06 11:51 - 2014-02-06 11:51 - 00094208 _____ () C:\WINDOWS\Minidump\Mini020614-01.dmp
2014-02-06 11:51 - 2014-02-06 11:51 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-06 11:33 - 2014-02-06 11:33 - 00001591 _____ () C:\Documents and Settings\All Users\Pulpit\FIFA 09.lnk
2014-02-06 11:33 - 2014-02-06 11:33 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\EA Sports
2014-02-05 21:47 - 2014-02-05 21:47 - 00001689 _____ () C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
2014-02-05 21:43 - 2014-02-05 21:43 - 00000000 __RHD () C:\Documents and Settings\admin\Dane aplikacji\SecuROM
2014-02-05 09:38 - 2014-02-06 14:14 - 00000000 ____D () C:\Documents and Settings\admin\Moje dokumenty\FIFA 09
2014-02-05 09:18 - 2014-02-05 10:03 - 00000285 _____ () C:\Documents and Settings\admin\Pulpit\fifa09cdkeye.txt
2014-02-05 00:33 - 2014-02-06 11:22 - 00370946 _____ () C:\WINDOWS\DirectX.log
2014-02-04 23:32 - 2014-02-04 23:32 - 16283775 _____ () C:\Documents and Settings\admin\Pulpit\DJ Wildcut & MAKJ - I Love Rock 'N' Roll (Matt Out  Mash-UP).flp
2014-02-04 19:36 - 2014-02-04 19:37 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\Fifa
2014-02-04 18:52 - 2014-02-04 18:52 - 00000000 ____D () C:\Documents and Settings\admin\Moje dokumenty\FIFA 11
2014-02-04 18:47 - 2014-02-05 22:36 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-04 18:34 - 2014-02-04 18:34 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\Leadertech
2014-02-04 17:38 - 2009-03-16 14:18 - 00517448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_4.dll
2014-02-04 17:38 - 2009-03-16 14:18 - 00235352 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_4.dll
2014-02-04 17:38 - 2009-03-16 14:18 - 00069448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_3.dll
2014-02-04 17:38 - 2009-03-16 14:18 - 00022360 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_6.dll
2014-02-04 17:38 - 2009-03-09 15:27 - 04178264 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_41.dll
2014-02-04 17:38 - 2009-03-09 15:27 - 01846632 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_41.dll
2014-02-04 17:38 - 2009-03-09 15:27 - 00453456 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_41.dll
2014-02-04 17:38 - 2008-10-15 07:03 - 00514384 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_3.dll
2014-02-04 17:38 - 2008-10-15 07:03 - 00235856 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_3.dll
2014-02-04 17:38 - 2008-10-15 07:03 - 00070992 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_2.dll
2014-02-04 17:38 - 2008-10-15 07:03 - 00023376 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_5.dll
2014-02-04 17:38 - 2008-10-15 06:22 - 04379984 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_40.dll
2014-02-04 17:38 - 2008-10-15 06:22 - 02036576 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_40.dll
2014-02-04 17:38 - 2008-10-15 06:22 - 00452440 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_40.dll
2014-02-04 17:38 - 2008-07-30 06:20 - 00509448 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_2.dll
2014-02-04 17:38 - 2008-07-30 06:20 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_2.dll
2014-02-04 17:38 - 2008-07-30 06:20 - 00068616 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_1.dll
2014-02-04 17:38 - 2008-07-10 11:01 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_39.dll
2014-02-04 17:38 - 2008-07-10 11:00 - 03851784 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_39.dll
2014-02-04 17:38 - 2008-07-10 11:00 - 01493528 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_39.dll
2014-02-04 17:38 - 2008-05-30 14:19 - 00507400 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_1.dll
2014-02-04 17:38 - 2008-05-30 14:18 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_1.dll
2014-02-04 17:38 - 2008-05-30 14:17 - 00065032 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAPOFX1_0.dll
2014-02-04 17:38 - 2008-05-30 14:17 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_4.dll
2014-02-04 17:38 - 2008-05-30 14:11 - 03850760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_38.dll
2014-02-04 17:38 - 2008-05-30 14:11 - 01491992 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_38.dll
2014-02-04 17:38 - 2008-05-30 14:11 - 00467984 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_38.dll
2014-02-04 17:38 - 2008-03-05 16:03 - 00479752 _____ (Microsoft Corporation) C:\WINDOWS\system32\XAudio2_0.dll
2014-02-04 17:38 - 2008-03-05 16:03 - 00238088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine3_0.dll
2014-02-04 17:38 - 2008-03-05 16:00 - 00025608 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_3.dll
2014-02-04 17:38 - 2008-03-05 15:56 - 03786760 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DX9_37.dll
2014-02-04 17:38 - 2008-03-05 15:56 - 01420824 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_37.dll
2014-02-04 17:38 - 2008-02-05 23:07 - 00462864 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_37.dll
2014-02-04 17:38 - 2007-10-22 03:39 - 00267272 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_10.dll
2014-02-04 17:38 - 2007-10-12 15:14 - 03734536 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_36.dll
2014-02-04 17:38 - 2007-10-12 15:14 - 01374232 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_36.dll
2014-02-04 17:38 - 2007-10-02 09:56 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_36.dll
2014-02-04 17:38 - 2007-07-20 00:57 - 00267112 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_9.dll
2014-02-04 17:38 - 2007-07-19 18:14 - 03727720 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_35.dll
2014-02-04 17:38 - 2007-07-19 18:14 - 01358192 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_35.dll
2014-02-04 17:38 - 2007-07-19 18:14 - 00444776 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_35.dll
2014-02-04 17:37 - 2007-10-22 03:37 - 00017928 _____ (Microsoft Corporation) C:\WINDOWS\system32\X3DAudio1_2.dll
2014-02-04 17:37 - 2007-06-20 20:46 - 00266088 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_8.dll
2014-02-04 17:37 - 2007-05-16 16:45 - 03497832 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_34.dll
2014-02-04 17:37 - 2007-05-16 16:45 - 01124720 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_34.dll
2014-02-04 17:37 - 2007-05-16 16:45 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_34.dll
2014-02-04 17:37 - 2007-04-04 18:55 - 00261480 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_7.dll
2014-02-04 17:37 - 2007-03-15 16:57 - 00443752 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx10_33.dll
2014-02-04 17:37 - 2007-03-12 16:42 - 03495784 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_33.dll
2014-02-04 17:37 - 2007-03-12 16:42 - 01123696 _____ (Microsoft Corporation) C:\WINDOWS\system32\D3DCompiler_33.dll
2014-02-04 17:37 - 2007-03-05 12:42 - 00015128 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_1.dll
2014-02-04 17:37 - 2007-01-24 15:27 - 00255848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_6.dll
2014-02-04 17:37 - 2006-12-08 12:02 - 00251672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_5.dll
2014-02-04 17:37 - 2006-11-29 13:06 - 03426072 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_32.dll
2014-02-04 17:37 - 2006-09-28 16:05 - 02414360 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_31.dll
2014-02-04 17:37 - 2006-09-28 16:05 - 00237848 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_4.dll
2014-02-04 17:37 - 2006-07-28 09:30 - 00236824 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_3.dll
2014-02-04 17:37 - 2006-07-28 09:30 - 00062744 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_2.dll
2014-02-04 17:37 - 2006-05-31 07:24 - 00230168 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_2.dll
2014-02-04 17:37 - 2006-03-31 12:40 - 02388176 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_30.dll
2014-02-04 17:37 - 2006-03-31 12:39 - 00229584 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_1.dll
2014-02-04 17:37 - 2006-03-31 12:39 - 00062672 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput1_1.dll
2014-02-04 17:37 - 2006-02-03 08:43 - 02332368 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_29.dll
2014-02-04 17:37 - 2006-02-03 08:42 - 00230096 _____ (Microsoft Corporation) C:\WINDOWS\system32\xactengine2_0.dll
2014-02-04 17:37 - 2006-02-03 08:41 - 00014032 _____ (Microsoft Corporation) C:\WINDOWS\system32\x3daudio1_0.dll
2014-02-04 17:37 - 2005-12-05 18:09 - 02323664 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_28.dll
2014-02-04 17:37 - 2005-12-05 18:07 - 00061136 _____ (Microsoft Corporation) C:\WINDOWS\system32\xinput9_1_0.dll
2014-02-04 17:37 - 2005-07-22 19:59 - 02319568 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_27.dll
2014-02-04 17:37 - 2005-05-26 15:34 - 02297552 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_26.dll
2014-02-04 17:37 - 2005-03-18 17:19 - 02337488 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_25.dll
2014-02-04 17:37 - 2005-02-05 19:45 - 02222800 _____ (Microsoft Corporation) C:\WINDOWS\system32\d3dx9_24.dll
2014-02-02 10:45 - 2014-02-05 21:43 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\uTorrent
2014-02-02 10:45 - 2014-02-02 10:45 - 00000836 _____ () C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
2014-02-02 10:45 - 2014-02-02 10:45 - 00000836 _____ () C:\Documents and Settings\All Users\Menu Start\µTorrent.lnk
2014-02-01 15:15 - 2014-02-01 15:15 - 00000668 _____ () C:\Documents and Settings\admin\Pulpit\Counter-Strike 1.6.lnk
2014-02-01 15:15 - 2014-02-01 15:15 - 00000000 ____D () C:\Documents and Settings\admin\Menu Start\Programy\Counter-Strike 1.6
2014-01-31 22:14 - 2014-01-31 22:13 - 00027836 _____ () C:\Documents and Settings\admin\Pulpit\VEE3 Kick 05.wav
2014-01-27 18:09 - 2014-01-27 18:09 - 00000108 _____ () C:\Documents and Settings\admin\Pulpit\MOL_Properties.properties
2014-01-27 18:08 - 2014-01-27 18:48 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\MinecraftMC
2014-01-27 17:59 - 2014-01-27 17:59 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\.minecraft
2014-01-26 21:02 - 2014-01-26 21:02 - 02296364 _____ () C:\sto lat.wav
2014-01-26 12:36 - 2014-02-02 21:59 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\bday party
2014-01-25 17:39 - 2014-02-04 23:04 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\W&W & Blasterjaxx - Flute
2014-01-25 14:52 - 2014-02-14 12:52 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\intro
2014-01-25 14:49 - 2014-01-25 09:59 - 00030609 _____ () C:\Documents and Settings\admin\Pulpit\Głos00100.3gp

==================== One Month Modified Files and Folders =======

2014-02-20 19:19 - 2014-02-20 19:19 - 00039132 _____ () C:\Documents and Settings\admin\Pulpit\Extras.Txt
2014-02-20 19:19 - 2014-02-20 19:19 - 00013756 _____ () C:\Documents and Settings\admin\Pulpit\FRST.txt
2014-02-20 19:19 - 2014-02-20 19:19 - 00000000 ____D () C:\FRST
2014-02-20 19:19 - 2013-09-14 20:17 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit
2014-02-20 19:18 - 2014-02-20 19:18 - 00146302 _____ () C:\Documents and Settings\admin\Pulpit\OTL.Txt
2014-02-20 19:14 - 2013-12-29 23:09 - 00000912 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineUA.job
2014-02-20 19:07 - 2014-02-20 19:06 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\admin\Pulpit\OTL.exe
2014-02-20 19:05 - 2014-02-20 19:04 - 01141248 _____ (Farbar) C:\Documents and Settings\admin\Pulpit\FRST.exe
2014-02-20 19:02 - 2013-09-14 20:06 - 00444126 _____ () C:\WINDOWS\WindowsUpdate.log
2014-02-20 19:01 - 2013-09-14 21:58 - 00564706 _____ () C:\WINDOWS\system32\PerfStringBackup.INI
2014-02-20 19:01 - 2001-10-26 18:15 - 00075122 _____ () C:\WINDOWS\system32\perfc015.dat
2014-02-20 19:01 - 2001-10-26 18:15 - 00027704 _____ () C:\WINDOWS\system32\perfh015.dat
2014-02-20 19:00 - 2014-02-20 19:00 - 00000000 ____D () C:\WINDOWS\LastGood
2014-02-20 19:00 - 2014-02-20 19:00 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\RaLink Wireless
2014-02-20 19:00 - 2013-09-15 09:42 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups
2014-02-20 19:00 - 2013-09-14 21:57 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
2014-02-20 19:00 - 2013-09-14 21:57 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-02-20 19:00 - 2013-09-14 21:55 - 00880287 _____ () C:\WINDOWS\setupapi.log
2014-02-20 18:59 - 2014-02-20 18:59 - 00020747 _____ (Meetinghouse Data Communications) C:\WINDOWS\system32\Drivers\AegisP.sys
2014-02-20 18:59 - 2013-09-15 09:35 - 00000000 ____D () C:\Program Files\RALINK
2014-02-20 18:57 - 2013-09-15 10:03 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-02-20 18:56 - 2013-12-29 23:09 - 00000908 _____ () C:\WINDOWS\Tasks\BonanzaDealsLiveUpdateTaskMachineCore.job
2014-02-20 18:56 - 2013-09-15 09:20 - 00001030 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-02-20 18:56 - 2013-09-14 22:01 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-02-20 18:56 - 2013-09-14 22:01 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-02-20 18:56 - 2013-09-14 20:16 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-02-20 18:51 - 2013-09-15 09:52 - 00131072 _____ () C:\WINDOWS\system32\config\ACEEvent.evt
2014-02-20 18:51 - 2013-09-14 20:17 - 00000188 ___SH () C:\Documents and Settings\admin\ntuser.ini
2014-02-20 18:51 - 2013-09-14 20:16 - 00032560 _____ () C:\WINDOWS\SchedLgU.Txt
2014-02-20 18:46 - 2013-09-15 09:20 - 00001034 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-02-20 18:30 - 2013-11-09 14:30 - 00000422 _____ () C:\WINDOWS\Tasks\At1.job
2014-02-20 17:29 - 2014-02-20 17:29 - 00013587 _____ () C:\Documents and Settings\admin\Pulpit\HWMonitor temp.txt
2014-02-20 17:29 - 2014-02-20 17:29 - 00003177 _____ () C:\Documents and Settings\admin\Pulpit\hwm_smbus.txt
2014-02-20 17:18 - 2014-02-20 17:18 - 00000778 _____ () C:\Documents and Settings\All Users\Pulpit\CPUID HWMonitor.lnk
2014-02-20 17:18 - 2014-02-20 17:18 - 00000000 ____D () C:\Program Files\CPUID
2014-02-20 17:18 - 2014-02-20 17:18 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\CPUID
2014-02-20 17:18 - 2013-09-14 21:57 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-02-19 18:44 - 2001-07-22 00:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-02-18 16:49 - 2013-09-14 21:54 - 00194046 _____ () C:\WINDOWS\setupact.log
2014-02-15 23:53 - 2014-02-14 12:51 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\sety i tl
2014-02-15 23:52 - 2014-01-18 18:25 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\presty sample
2014-02-15 23:14 - 2013-09-14 20:17 - 00000000 ___HD () C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji
2014-02-15 19:12 - 2014-02-15 19:12 - 00000000 __SHD () C:\found.008
2014-02-15 14:50 - 2014-02-15 14:50 - 00076162 _____ () C:\Documents and Settings\admin\Pulpit\23.flp
2014-02-14 16:48 - 2013-09-21 15:46 - 00022016 _____ () C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2014-02-14 15:16 - 2014-02-14 14:32 - 05209882 _____ () C:\Documents and Settings\admin\Pulpit\soleo.flp
2014-02-14 12:52 - 2014-01-25 14:52 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\intro
2014-02-14 12:17 - 2014-02-14 11:42 - 05731799 _____ () C:\Documents and Settings\admin\Pulpit\mo malida.flp
2014-02-14 11:23 - 2014-02-14 11:26 - 00068789 _____ () C:\Documents and Settings\admin\Pulpit\Masters - Serce do koperty ( Full Midi ) .MID
2014-02-13 15:05 - 2013-09-28 16:44 - 00000000 ____D () C:\Documents and Settings\admin\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files
2014-02-13 14:40 - 2013-09-14 20:17 - 00000000 ___RD () C:\Documents and Settings\admin\Moje dokumenty
2014-02-12 22:01 - 2013-09-30 17:29 - 00035840 ____H () C:\Documents and Settings\admin\Pulpit\photothumb.db
2014-02-12 11:22 - 2013-09-16 19:12 - 00000000 ____D () C:\Documents and Settings\admin\Moje dokumenty\VirtualDJ
2014-02-11 22:07 - 2013-11-03 13:07 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\Projektz FLP
2014-02-11 11:56 - 2013-10-19 22:41 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\Audacity
2014-02-10 18:22 - 2013-09-21 22:04 - 00598676 ___SH () C:\Documents and Settings\admin\Pulpit\Thumbs.db
2014-02-09 14:54 - 2013-09-14 20:04 - 00098059 _____ () C:\WINDOWS\wmsetup.log
2014-02-07 17:03 - 2014-02-07 17:03 - 00000000 __SHD () C:\found.007
2014-02-06 17:24 - 2014-02-06 17:24 - 00000442 _____ () C:\Documents and Settings\admin\Pulpit\ghf.txt
2014-02-06 14:14 - 2014-02-05 09:38 - 00000000 ____D () C:\Documents and Settings\admin\Moje dokumenty\FIFA 09
2014-02-06 11:51 - 2014-02-06 11:51 - 00094208 _____ () C:\WINDOWS\Minidump\Mini020614-01.dmp
2014-02-06 11:51 - 2014-02-06 11:51 - 00000000 ____D () C:\WINDOWS\Minidump
2014-02-06 11:33 - 2014-02-06 11:33 - 00001591 _____ () C:\Documents and Settings\All Users\Pulpit\FIFA 09.lnk
2014-02-06 11:33 - 2014-02-06 11:33 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\EA Sports
2014-02-06 11:22 - 2014-02-05 00:33 - 00370946 _____ () C:\WINDOWS\DirectX.log
2014-02-06 11:22 - 2013-09-14 20:06 - 00000000 ____D () C:\WINDOWS\system32\DirectX
2014-02-05 22:36 - 2014-02-04 18:47 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2014-02-05 21:47 - 2014-02-05 21:47 - 00001689 _____ () C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk
2014-02-05 21:47 - 2013-09-14 20:08 - 00002596 _____ () C:\WINDOWS\system32\CONFIG.NT
2014-02-05 21:44 - 2013-09-14 20:17 - 00000000 ____D () C:\Documents and Settings\admin
2014-02-05 21:44 - 2013-09-14 20:16 - 00000000 __SHD () C:\Documents and Settings\NetworkService
2014-02-05 21:44 - 2013-09-14 20:16 - 00000000 __SHD () C:\Documents and Settings\LocalService
2014-02-05 21:44 - 2013-09-14 20:04 - 00000000 ____D () C:\WINDOWS\Registration
2014-02-05 21:43 - 2014-02-05 21:43 - 00000000 __RHD () C:\Documents and Settings\admin\Dane aplikacji\SecuROM
2014-02-05 21:43 - 2014-02-02 10:45 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\uTorrent
2014-02-05 21:43 - 2013-09-14 20:17 - 00000000 __RHD () C:\Documents and Settings\admin\Dane aplikacji
2014-02-05 21:42 - 2013-09-14 20:05 - 00000000 ____D () C:\WINDOWS\system32\Restore
2014-02-05 10:03 - 2014-02-05 09:18 - 00000285 _____ () C:\Documents and Settings\admin\Pulpit\fifa09cdkeye.txt
2014-02-05 09:34 - 2013-09-14 20:17 - 00000000 ___RD () C:\Documents and Settings\admin\Menu Start\Programy\Autostart
2014-02-04 23:32 - 2014-02-04 23:32 - 16283775 _____ () C:\Documents and Settings\admin\Pulpit\DJ Wildcut & MAKJ - I Love Rock 'N' Roll (Matt Out  Mash-UP).flp
2014-02-04 23:04 - 2014-01-25 17:39 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\W&W & Blasterjaxx - Flute
2014-02-04 19:37 - 2014-02-04 19:36 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\Fifa
2014-02-04 18:52 - 2014-02-04 18:52 - 00000000 ____D () C:\Documents and Settings\admin\Moje dokumenty\FIFA 11
2014-02-04 18:48 - 2013-09-14 21:50 - 00000000 ____D () C:\WINDOWS\system32\mui
2014-02-04 18:34 - 2014-02-04 18:34 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\Leadertech
2014-02-04 15:56 - 2013-09-15 09:22 - 00002097 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2014-02-02 21:59 - 2014-01-26 12:36 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\bday party
2014-02-02 10:48 - 2013-09-15 09:35 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information
2014-02-02 10:45 - 2014-02-02 10:45 - 00000836 _____ () C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
2014-02-02 10:45 - 2014-02-02 10:45 - 00000836 _____ () C:\Documents and Settings\All Users\Menu Start\µTorrent.lnk
2014-02-02 10:45 - 2013-09-14 21:57 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start
2014-02-01 15:15 - 2014-02-01 15:15 - 00000668 _____ () C:\Documents and Settings\admin\Pulpit\Counter-Strike 1.6.lnk
2014-02-01 15:15 - 2014-02-01 15:15 - 00000000 ____D () C:\Documents and Settings\admin\Menu Start\Programy\Counter-Strike 1.6
2014-02-01 15:15 - 2013-09-14 20:17 - 00000000 ___RD () C:\Documents and Settings\admin\Menu Start\Programy
2014-01-31 22:13 - 2014-01-31 22:14 - 00027836 _____ () C:\Documents and Settings\admin\Pulpit\VEE3 Kick 05.wav
2014-01-30 17:58 - 2013-09-20 21:21 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\vlc
2014-01-27 18:48 - 2014-01-27 18:08 - 00000000 ____D () C:\Documents and Settings\admin\Pulpit\MinecraftMC
2014-01-27 18:09 - 2014-01-27 18:09 - 00000108 _____ () C:\Documents and Settings\admin\Pulpit\MOL_Properties.properties
2014-01-27 17:59 - 2014-01-27 17:59 - 00000000 ____D () C:\Documents and Settings\admin\Dane aplikacji\.minecraft
2014-01-26 21:02 - 2014-01-26 21:02 - 02296364 _____ () C:\sto lat.wav
2014-01-25 09:59 - 2014-01-25 14:49 - 00030609 _____ () C:\Documents and Settings\admin\Pulpit\Głos00100.3gp
2014-01-24 22:24 - 2013-10-17 14:21 - 00000000 ____D () C:\output

Files to move or delete:
====================
C:\Windows\Tasks\At1.job


Some content of TEMP:
====================
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\3604uninstall.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\AtiCimUn.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\Bit186.tmp.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\bitool.dll
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\drm_dyndata_7370012.dll
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\ICReinstall_audacity-win_Downloader.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\setupA9_.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\setup_wm.exe
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\Sqlite3.dll
C:\Documents and Settings\admin\Ustawienia lokalne\Temp\uninst1.exe


==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe
[2007-03-10 02:31] - [2008-04-14 21:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a 

C:\WINDOWS\system32\winlogon.exe
[2004-08-04 00:44] - [2008-04-14 21:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 

C:\WINDOWS\system32\svchost.exe
[2004-08-04 00:44] - [2008-04-14 21:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce 

C:\WINDOWS\system32\services.exe
[2004-08-04 00:44] - [2008-04-14 21:51] - 0109056 ____A (Microsoft Corporation) 3e3ae424e27c4cefe4cab368c7b570ea 

C:\WINDOWS\system32\User32.dll
[2007-03-10 02:32] - [2008-04-14 21:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 

C:\WINDOWS\system32\userinit.exe
[2004-08-04 00:44] - [2008-04-14 21:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 

C:\WINDOWS\system32\rpcss.dll
[2006-09-13 16:30] - [2008-04-14 21:50] - 0399360 ____A (Microsoft Corporation) 02396dab9dd407b06539981f477f3fec 

 ATTENTION ======> If the system is having audio adware rpcss.dll is patched. Google the MD5, if the MD5 is unique the file is infected.
C:\WINDOWS\system32\Drivers\volsnap.sys
[2004-08-04 00:36] - [2008-04-14 20:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 


==================== End Of Log ============================