Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-07-2014 01
Ran by User (administrator) on USER-90DF78D203 on 23-07-2014 15:03:53
Running from C:\Documents and Settings\User\Moje dokumenty
Platform: Microsoft Windows XP Professional Dodatek Service Pack 2 (X86) OS Language: Polski
Internet Explorer Version 6
Boot Mode: Normal

The only official download link for FRST:
Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ 
Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ 
Download link from any site other than Bleeping Computer is unpermitted or outdated.
See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe
(Atheros) C:\WINDOWS\system32\acs.exe
(BonanzaDeals) C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe
(Sun Microsystems, Inc.) C:\Program Files\Java\jre6\bin\jqs.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
(Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe
(AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe
(Ray Adams) C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe
() C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe
() C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WJATH\AthServer.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe
() C:\Program Files\Opera\23.0.1522.60\opera_crashreporter.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe
(Opera Software) C:\Program Files\Opera\23.0.1522.60\opera.exe


==================== Registry (Whitelisted) ==================

Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.)
HKU\S-1-5-21-1220945662-1482476501-839522115-1003\...\Run: [AtiTrayTools] => C:\Program Files\Ray Adams\ATI Tray Tools\atitray.exe [890880 2011-08-15] (Ray Adams)
HKU\S-1-5-21-1220945662-1482476501-839522115-1003\...\Run: [uTorrent] => C:\Program Files\uTorrent\uTorrent.exe [399736 2013-11-15] (BitTorrent, Inc.)
HKU\S-1-5-21-1220945662-1482476501-839522115-1003\...\Run: [ChomikBox] => C:\Program Files\ChomikBox\ChomikBox.exe [5979648 2012-11-15] ( )
HKU\S-1-5-21-1220945662-1482476501-839522115-1003\...\MountPoints2: {9c5db6aa-46a7-11e2-ab98-00e04ce7e9fd} - F:\urDrive.exe
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\TP-LINK Wireless Configuration Utility.lnk
ShortcutTarget: TP-LINK Wireless Configuration Utility.lnk -> C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\TWCU.exe ()
ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software)
ShellIconOverlayIdentifiers: GDriveSharedOverlay -> {81539FE6-33C7-4CE7-90C7-1C7B8F2F2D44} =>  No File

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH
HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L160M0_L3DE22RH&ts=1393434361&type=default&q={searchTerms}
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH
HKCU\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L160M0_L3DE22RH&ts=1393434361&type=default&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?type=hp&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?type=ds&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?type=hp&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH
StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=sc&from=wpm0226&uid=MaxtorX6L160M0_L3DE22RH&ts=1393434361
SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?type=ds&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH&q={searchTerms}
SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?type=ds&ts=1388677090&from=wpm0102&uid=MaxtorX6L160M0_L3DE22RH&q={searchTerms}
SearchScopes: HKLM - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1Qzu0FzztC0AyCyBtC0CtCzyyDyDtAtAyByCtN0D0Tzu0CyCyCtAtN1L2XzutBtFtBtFyDtFtCtDyBtDtN1L1Czu1L1C1H1B1QtCtDtA&cr=313826854&ir=
SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L160M0_L3DE22RH&ts=1393434361&type=default&q={searchTerms}
SearchScopes: HKCU - {0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9} URL = http://www.delta-search.com/?q={searchTerms}&affID=119357&tt=gc_&babsrc=SP_ss&mntrId=A0FC00E04CE7E9FD
SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=MaxtorX6L160M0_L3DE22RH&ts=1393434361&type=default&q={searchTerms}
SearchScopes: HKCU - {77AA745B-F4F8-45DA-9B14-61D2D95054C8} URL = http://start.mysearchdial.com/results.php?f=4&q={searchTerms}&a=irmsd103&cd=2XzuyEtN2Y1L1Qzu0FzztC0AyCyBtC0CtCzyyDyDtAtAyByCtN0D0Tzu0CyCyCtAtN1L2XzutBtFtBtFyDtFtCtDyBtDtN1L1Czu1L1C1H1B1QtCtDtA&cr=313826854&ir=
BHO: AcroIEHlprObj Class -> {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} -> C:\Program Files\Adobe\Acrobat 7.0\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
BHO: JQSIEStartDetectorImpl Class -> {E7E6F031-17CE-4C07-BC86-EABFE594F69C} -> C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation)
DPF: {33564D57-0000-0010-8000-00AA00389B71} http://download.microsoft.com/download/B/0/6/B06D48C0-917B-44E2-92E0-6B3E159624A6/wmv9vcm.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-0016-0000-0045-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_45-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.254

FireFox:
========
FF ProfilePath: C:\Documents and Settings\User\Dane aplikacji\Mozilla\Firefox\Profiles\ca2m3z7q.default
FF Plugin: @adobe.com/FlashPlayer - C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_145.dll ()
FF Plugin: @adobe.com/ShockwavePlayer - C:\WINDOWS\system32\Adobe\Director\np32dsw_1202122.dll (Adobe Systems, Inc.)
FF Plugin: @java.com/DTPlugin,version=1.6.0_45 - C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF Plugin: @java.com/JavaPlugin - C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 - C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll No File
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=3 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin: @tools.bdupdater.com/BonanzaDealsLive Update;version=9 - C:\Program Files\BonanzaDealsLive\Update\1.3.23.0\npGoogleUpdate3.dll (BonanzaDeals)
FF Plugin: @tools.google.com/Google Update;version=3 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF Plugin: @tools.google.com/Google Update;version=9 - C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll (Google Inc.)
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\delta-homes.xml
FF SearchPlugin: C:\Program Files\mozilla firefox\searchplugins\qvo6.xml
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-02-23]
FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff
FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2013-11-01]

Chrome: 
=======
CHR Extension: (Dokumenty Google) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2014-03-05]
CHR Extension: (Dysk Google) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2014-03-05]
CHR Extension: (MEGA) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\bigefpfhnfcobdlfbedofhhaibnlghod [2014-06-26]
CHR Extension: (YouTube) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2014-03-05]
CHR Extension: (Szukaj w Google) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2014-03-05]
CHR Extension: (Google Wallet) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-10-23]
CHR Extension: (Gmail) - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2014-03-05]
CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-03-31]
CHR HKLM\...\Chrome\Extension: [ifohbjbgfchkkfhphahclmkpgejiplfo] - C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\newtab.crx [2014-01-02]
CHR HKLM\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\DOCUME~1\User\USTAWI~1\DANEAP~1\mysearchdial-speeddial.crx [2013-10-24]
CHR HKCU\...\Chrome\Extension: [pflphaooapbgpeakohlggbpidpppgdff] - C:\DOCUME~1\User\USTAWI~1\DANEAP~1\mysearchdial-speeddial.crx [2013-10-24]

========================== Services (Whitelisted) =================

R2 ACS; C:\WINDOWS\system32\acs.exe [499796 2011-03-31] (Atheros) [File not signed]
S2 appdrvrem01; C:\WINDOWS\System32\appdrvrem01.exe [316816 2012-10-12] (Protection Technology)
R2 Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [602112 2010-02-11] (ATI Technologies Inc.) [File not signed]
S2 ATI Smart; C:\WINDOWS\system32\ati2sgag.exe [593920 2010-02-10] () [File not signed]
R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-03-31] (AVAST Software)
S2 bonanzadealslive; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-10-24] (BonanzaDeals)
S3 bonanzadealslivem; C:\Program Files\BonanzaDealsLive\Update\BonanzaDealsLive.exe [148976 2013-10-24] (BonanzaDeals)
R2 JavaQuickStarterService; C:\Program Files\Java\jre6\bin\jqs.exe [158128 2013-11-01] (Sun Microsystems, Inc.)
S3 jswpsapi; C:\Program Files\TP-LINK\TP-LINK Wireless Configuration Utility\WPS\jswpsapi.exe [360529 2011-03-31] (wireless) [File not signed]

==================== Drivers (Whitelisted) ====================

R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [3964736 2006-05-10] (Realtek Semiconductor Corp.)
R1 appdrv01; C:\WINDOWS\System32\Drivers\appdrv01.sys [3110512 2012-10-12] (Protection Technology)
R3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1763584 2011-07-28] (Atheros Communications, Inc.) [File not signed]
R0 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-05-09] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-03-31] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [54832 2014-03-31] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-03-31] ()
R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [776976 2014-03-31] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [411552 2014-03-31] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57672 2014-03-31] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [180760 2014-03-31] ()
R3 ati2mtag; C:\WINDOWS\System32\DRIVERS\ati2mtag.sys [3565056 2010-02-11] (ATI Technologies Inc.) [File not signed]
R1 atitray; C:\Program Files\Ray Adams\ATI Tray Tools\atitray.sys [20512 2011-08-15] () [File not signed]
S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) [File not signed]
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-04] (Microsoft Corporation)
R3 JSWSCIMD; C:\WINDOWS\System32\DRIVERS\jswscimd.sys [57440 2011-03-31] (Atheros Communications, Inc.)
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-04] (Microsoft Corporation)
R1 prodrv06; C:\WINDOWS\System32\drivers\prodrv06.sys [53920 2004-08-09] (Protection Technology) [File not signed]
R0 prohlp02; C:\WINDOWS\System32\drivers\prohlp02.sys [114016 2004-08-09] (Protection Technology) [File not signed]
R0 prosync1; C:\WINDOWS\System32\drivers\prosync1.sys [7040 2004-07-19] (Protection Technology) [File not signed]
S3 rtl8139; C:\WINDOWS\System32\DRIVERS\RTL8139.SYS [20992 2004-08-04] (Realtek Semiconductor Corporation)
S3 Secdrv; C:\WINDOWS\System32\DRIVERS\secdrv.sys [28624 2014-06-09] () [File not signed]
R0 sfhlp01; C:\WINDOWS\System32\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]
R1 SLEE_17_DRIVER; C:\WINDOWS\system32\drivers\Sleen17.sys [94560 2011-09-12] (Softwareentwicklung Remus - ArchiCrypt - )
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [691696 2013-08-26] () [File not signed]
R3 WSIMD; C:\WINDOWS\System32\DRIVERS\wsimd.sys [58208 2011-03-31] (Atheros Communications, Inc.) [File not signed]
U3 ahjve2ko; C:\WINDOWS\system32\Drivers\ahjve2ko.sys [0 ] (Microsoft Corporation)
S3 anvsnddrv; system32\drivers\anvsnddrv.sys [X]
S4 IntelIde; No ImagePath
S3 massfilter_lte; \??\C:\WINDOWS\system32\drivers\massfilter_lte.sys [X]
U1 WS2IFSL; 
S3 zgdcat; system32\DRIVERS\zgdcat.sys [X]
S3 zgdcdiag; system32\DRIVERS\zgdcdiag.sys [X]
S3 zgdcmdm; system32\DRIVERS\zgdcmdm.sys [X]
S3 zgdcnet; system32\DRIVERS\zgdcnet.sys [X]
S3 zgdcnmea; system32\DRIVERS\zgdcnmea.sys [X]

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2014-07-23 15:03 - 2014-07-23 15:04 - 00016657 _____ () C:\Documents and Settings\User\Moje dokumenty\FRST.txt
2014-07-23 15:01 - 2014-07-23 15:04 - 00000000 ____D () C:\FRST
2014-07-23 14:56 - 2014-07-23 14:56 - 01082368 _____ (Farbar) C:\Documents and Settings\User\Moje dokumenty\FRST.exe
2014-07-23 14:52 - 2014-07-23 14:52 - 00084896 _____ () C:\Documents and Settings\User\Pulpit\OTL.Txt
2014-07-23 14:52 - 2014-07-23 14:52 - 00033510 _____ () C:\Documents and Settings\User\Pulpit\Extras.Txt
2014-07-23 14:36 - 2014-07-23 14:36 - 00066344 _____ () C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-07-23 14:26 - 2014-07-23 14:26 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\User\Moje dokumenty\OTL.exe
2014-07-23 13:37 - 2014-07-23 13:41 - 59836012 _____ () C:\Documents and Settings\User\Moje dokumenty\featuring_deftones_2.zip
2014-07-23 13:10 - 2014-07-23 13:11 - 00004844 _____ () C:\WINDOWS\setupapi.log
2014-07-23 13:10 - 2014-07-23 13:10 - 00255864 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-23 13:10 - 2014-07-23 13:10 - 00102400 _____ () C:\WINDOWS\Minidump\Mini072314-01.dmp
2014-07-23 12:27 - 2014-07-23 12:27 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-07-23 12:27 - 2014-07-23 12:27 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-07-23 12:27 - 2014-07-23 12:27 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-07-23 12:24 - 2014-07-23 12:25 - 32949392 _____ () C:\Documents and Settings\User\Moje dokumenty\Firefox Setup 31.0.exe
2014-07-20 11:59 - 2014-07-20 12:02 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\transmission
2014-07-20 11:57 - 2014-07-20 11:57 - 15849032 _____ (Transmission) C:\Documents and Settings\User\Moje dokumenty\Transmission-Qt-2.84-x86_32-installer.exe
2014-07-20 11:55 - 2014-07-20 11:55 - 00776656 _____ ( ) C:\Documents and Settings\User\Moje dokumenty\Transmission(31167).exe
2014-07-19 11:28 - 2014-07-19 11:28 - 00013615 _____ () C:\Documents and Settings\User\Moje dokumenty\Deftones 2003-11-03 (1).torrent
2014-07-19 11:26 - 2014-07-19 11:26 - 00013561 _____ () C:\Documents and Settings\User\Moje dokumenty\Deftones 2003-11-03.torrent
2014-07-18 15:36 - 2014-07-18 15:37 - 00001493 _____ () C:\Documents and Settings\User\Pulpit\boeing 777 malezja katastrofa lipiec 14.txt
2014-07-16 16:25 - 2014-07-16 16:34 - 55276527 _____ () C:\Documents and Settings\User\Moje dokumenty\ITJM.rar
2014-07-16 14:06 - 2014-07-16 14:06 - 00000000 ____D () C:\Documents and Settings\User\Menu Start\Programy\Mafia
2014-07-16 13:58 - 2014-07-16 14:08 - 00000000 ____D () C:\Program Files\Mafia
2014-07-16 13:58 - 2002-08-08 06:11 - 00319488 ____R () C:\WINDOWS\system32\MafiaSetup.exe
2014-07-16 13:14 - 2014-07-16 13:15 - 00011384 _____ () C:\Documents and Settings\User\Moje dokumenty\df.txt
2014-07-14 13:55 - 2014-07-14 14:04 - 105590504 _____ () C:\Documents and Settings\User\Moje dokumenty\720P_1000K_11302411.mp4
2014-07-11 13:50 - 2014-07-11 13:50 - 00014971 _____ () C:\Documents and Settings\User\Moje dokumenty\[rutracker.org].t4773154.torrent
2014-07-11 13:14 - 2014-07-11 13:15 - 00031912 _____ () C:\Documents and Settings\User\Moje dokumenty\Crosses_2014_03_18_CC_TX.torrent
2014-07-01 17:57 - 2014-07-01 17:57 - 02155149 _____ () C:\Documents and Settings\User\Moje dokumenty\outro_reklam_ident_i_studio_-_leonardo_da_vinci_2002.mp4
2014-07-01 17:55 - 2014-07-01 17:55 - 00940916 _____ () C:\Documents and Settings\User\Moje dokumenty\intro_reklam_-_leonardo_da_vinci_2002.mp4
2014-07-01 17:40 - 2014-07-01 17:40 - 12350372 _____ () C:\Documents and Settings\User\Moje dokumenty\10.01.1994-11.00.mp4
2014-06-30 17:09 - 2014-06-30 17:11 - 183729066 _____ () C:\Documents and Settings\User\Moje dokumenty\Mariusz Max Kolonko - Odkrywanie Ameryki.rar
2014-06-29 11:25 - 2014-06-29 14:30 - 00000000 ____D () C:\rm mix - materiały
2014-06-28 14:37 - 2014-06-29 15:19 - 00005598 _____ () C:\rm mix.aup
2014-06-28 14:37 - 2014-06-28 14:37 - 00000000 ____D () C:\rm mix_data

==================== One Month Modified Files and Folders =======

2014-07-23 15:04 - 2014-07-23 15:03 - 00016657 _____ () C:\Documents and Settings\User\Moje dokumenty\FRST.txt
2014-07-23 15:04 - 2014-07-23 15:01 - 00000000 ____D () C:\FRST
2014-07-23 15:04 - 2012-02-23 12:48 - 00000000 ____D () C:\Documents and Settings\User\Ustawienia lokalne\Temp
2014-07-23 15:03 - 2012-02-23 12:48 - 00000000 ___RD () C:\Documents and Settings\User\Moje dokumenty
2014-07-23 14:56 - 2014-07-23 14:56 - 01082368 _____ (Farbar) C:\Documents and Settings\User\Moje dokumenty\FRST.exe
2014-07-23 14:54 - 2012-02-23 12:48 - 00000000 ____D () C:\Documents and Settings\User\Pulpit
2014-07-23 14:52 - 2014-07-23 14:52 - 00084896 _____ () C:\Documents and Settings\User\Pulpit\OTL.Txt
2014-07-23 14:52 - 2014-07-23 14:52 - 00033510 _____ () C:\Documents and Settings\User\Pulpit\Extras.Txt
2014-07-23 14:36 - 2014-07-23 14:36 - 00066344 _____ () C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
2014-07-23 14:36 - 2012-02-23 12:48 - 00000000 ___HD () C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji
2014-07-23 14:26 - 2014-07-23 14:26 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\User\Moje dokumenty\OTL.exe
2014-07-23 14:24 - 2014-02-20 21:54 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2014-07-23 14:11 - 2014-01-21 13:36 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2014-07-23 14:00 - 2013-11-11 17:14 - 00000000 ____D () C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ChomikBox
2014-07-23 14:00 - 2012-02-23 19:22 - 00000000 ____D () C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Temp
2014-07-23 13:41 - 2014-07-23 13:37 - 59836012 _____ () C:\Documents and Settings\User\Moje dokumenty\featuring_deftones_2.zip
2014-07-23 13:16 - 2012-02-23 12:43 - 00434503 _____ () C:\WINDOWS\WindowsUpdate.log
2014-07-23 13:13 - 2013-11-15 21:26 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\uTorrent
2014-07-23 13:12 - 2013-11-11 17:14 - 00000000 ____D () C:\Documents and Settings\User\.gstreamer-0.10
2014-07-23 13:11 - 2014-07-23 13:10 - 00004844 _____ () C:\WINDOWS\setupapi.log
2014-07-23 13:11 - 2014-06-03 13:24 - 00000458 _____ () C:\WINDOWS\Tasks\Opera scheduled Autoupdate 1391530620.job
2014-07-23 13:11 - 2014-03-31 20:39 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2014-07-23 13:11 - 2014-02-20 21:54 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2014-07-23 13:10 - 2014-07-23 13:10 - 00255864 _____ () C:\WINDOWS\system32\FNTCACHE.DAT
2014-07-23 13:10 - 2014-07-23 13:10 - 00102400 _____ () C:\WINDOWS\Minidump\Mini072314-01.dmp
2014-07-23 13:10 - 2013-11-01 13:23 - 00000000 ____D () C:\WINDOWS\Minidump
2014-07-23 13:10 - 2012-02-23 13:34 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2014-07-23 13:10 - 2012-02-23 13:34 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2014-07-23 13:10 - 2012-02-23 12:48 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2014-07-23 12:27 - 2014-07-23 12:27 - 00000730 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
2014-07-23 12:27 - 2014-07-23 12:27 - 00000724 _____ () C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
2014-07-23 12:27 - 2014-07-23 12:27 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2014-07-23 12:27 - 2013-08-18 14:25 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2014-07-23 12:27 - 2012-02-23 13:31 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy
2014-07-23 12:27 - 2012-02-23 13:31 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2014-07-23 12:25 - 2014-07-23 12:24 - 32949392 _____ () C:\Documents and Settings\User\Moje dokumenty\Firefox Setup 31.0.exe
2014-07-23 12:13 - 2013-06-11 20:29 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\eDownload
2014-07-23 11:03 - 2013-08-27 22:58 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\Media Player Classic
2014-07-23 11:03 - 2013-08-26 02:20 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\DAEMON Tools Lite
2014-07-23 11:02 - 2013-08-27 16:54 - 00000000 ___RD () C:\Documents and Settings\User\Pulpit\Gry
2014-07-23 11:02 - 2012-02-23 13:34 - 00000000 ___SD () C:\Documents and Settings\User\UserData
2014-07-22 22:01 - 2013-10-23 18:47 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt
2014-07-22 22:01 - 2012-02-23 12:48 - 00032382 ____N () C:\WINDOWS\SchedLgU.Txt
2014-07-22 22:01 - 2012-02-23 12:48 - 00000292 ___SH () C:\Documents and Settings\User\ntuser.ini
2014-07-22 16:46 - 2012-02-29 15:13 - 00000000 ___RD () C:\Documents and Settings\User\Moje dokumenty\Moje obrazy
2014-07-22 11:09 - 2013-10-23 19:07 - 00000000 ____D () C:\Program Files\Opera
2014-07-22 11:05 - 2001-07-22 01:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl
2014-07-21 22:07 - 2014-03-19 16:16 - 00433152 ___SH () C:\Documents and Settings\User\Moje dokumenty\Thumbs.db
2014-07-21 14:37 - 2013-08-26 23:35 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\foobar2000
2014-07-21 11:44 - 2013-10-31 00:33 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\Mp3tag
2014-07-21 11:37 - 2013-10-31 00:03 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\Audacity
2014-07-21 11:01 - 2013-09-24 19:20 - 00000000 ___RD () C:\Documents and Settings\User\Pulpit\PDF-y
2014-07-20 12:02 - 2014-07-20 11:59 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\transmission
2014-07-20 11:59 - 2012-02-23 12:48 - 00000000 __RHD () C:\Documents and Settings\User\Dane aplikacji
2014-07-20 11:57 - 2014-07-20 11:57 - 15849032 _____ (Transmission) C:\Documents and Settings\User\Moje dokumenty\Transmission-Qt-2.84-x86_32-installer.exe
2014-07-20 11:55 - 2014-07-20 11:55 - 00776656 _____ ( ) C:\Documents and Settings\User\Moje dokumenty\Transmission(31167).exe
2014-07-19 11:28 - 2014-07-19 11:28 - 00013615 _____ () C:\Documents and Settings\User\Moje dokumenty\Deftones 2003-11-03 (1).torrent
2014-07-19 11:26 - 2014-07-19 11:26 - 00013561 _____ () C:\Documents and Settings\User\Moje dokumenty\Deftones 2003-11-03.torrent
2014-07-18 15:37 - 2014-07-18 15:36 - 00001493 _____ () C:\Documents and Settings\User\Pulpit\boeing 777 malezja katastrofa lipiec 14.txt
2014-07-17 17:26 - 2014-03-05 18:03 - 00001819 _____ () C:\Documents and Settings\All Users\Pulpit\Google Chrome.lnk
2014-07-16 16:34 - 2014-07-16 16:25 - 55276527 _____ () C:\Documents and Settings\User\Moje dokumenty\ITJM.rar
2014-07-16 15:00 - 2012-03-16 09:06 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini
2014-07-16 14:08 - 2014-07-16 13:58 - 00000000 ____D () C:\Program Files\Mafia
2014-07-16 14:06 - 2014-07-16 14:06 - 00000000 ____D () C:\Documents and Settings\User\Menu Start\Programy\Mafia
2014-07-16 14:06 - 2012-02-23 12:48 - 00000000 ___RD () C:\Documents and Settings\User\Menu Start\Programy
2014-07-16 13:25 - 2013-12-23 22:28 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\EA Sports
2014-07-16 13:15 - 2014-07-16 13:14 - 00011384 _____ () C:\Documents and Settings\User\Moje dokumenty\df.txt
2014-07-14 14:04 - 2014-07-14 13:55 - 105590504 _____ () C:\Documents and Settings\User\Moje dokumenty\720P_1000K_11302411.mp4
2014-07-12 15:28 - 2001-07-22 01:16 - 00000594 _____ () C:\WINDOWS\win.ini
2014-07-12 14:46 - 2013-12-09 16:42 - 00000000 ____D () C:\Documents and Settings\User\Dane aplikacji\Steganos
2014-07-11 13:50 - 2014-07-11 13:50 - 00014971 _____ () C:\Documents and Settings\User\Moje dokumenty\[rutracker.org].t4773154.torrent
2014-07-11 13:15 - 2014-07-11 13:14 - 00031912 _____ () C:\Documents and Settings\User\Moje dokumenty\Crosses_2014_03_18_CC_TX.torrent
2014-07-09 20:12 - 2013-03-19 20:20 - 00699056 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2014-07-09 20:12 - 2012-02-23 13:34 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2014-07-03 20:06 - 2012-12-15 13:55 - 00000000 ___RD () C:\Documents and Settings\User\Pulpit\pioseneczki Danieleczki
2014-07-01 17:57 - 2014-07-01 17:57 - 02155149 _____ () C:\Documents and Settings\User\Moje dokumenty\outro_reklam_ident_i_studio_-_leonardo_da_vinci_2002.mp4
2014-07-01 17:55 - 2014-07-01 17:55 - 00940916 _____ () C:\Documents and Settings\User\Moje dokumenty\intro_reklam_-_leonardo_da_vinci_2002.mp4
2014-07-01 17:40 - 2014-07-01 17:40 - 12350372 _____ () C:\Documents and Settings\User\Moje dokumenty\10.01.1994-11.00.mp4
2014-06-30 17:11 - 2014-06-30 17:09 - 183729066 _____ () C:\Documents and Settings\User\Moje dokumenty\Mariusz Max Kolonko - Odkrywanie Ameryki.rar
2014-06-29 15:19 - 2014-06-28 14:37 - 00005598 _____ () C:\rm mix.aup
2014-06-29 14:30 - 2014-06-29 11:25 - 00000000 ____D () C:\rm mix - materiały
2014-06-28 14:37 - 2014-06-28 14:37 - 00000000 ____D () C:\rm mix_data
2014-06-26 11:24 - 2013-09-17 19:12 - 00000000 ___RD () C:\Documents and Settings\User\Pulpit\Kiepscy

==================== Bamital & volsnap Check =================

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================