Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:16-08-2014 03 Ran by Marcin (administrator) on DOM-D69AD2F462C on 17-08-2014 11:02:43 Running from C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 8 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe () C:\Documents and Settings\All Users\Dane aplikacji\DataCardService\HWDeviceService.exe (Oracle Corporation) C:\Program Files\Java\jre7\bin\jqs.exe (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (VIA Technologies, Inc.) C:\Program Files\VIA\VIAudioi\HDADeck\HDeck.exe () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_21\upt4pc_pl_21.exe (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCtrlCntr.exe () C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe () C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE\OnlineUpdate\ouc.exe (Brother Industries, Ltd.) C:\Program Files\ControlCenter4\BrCcUxSys.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\plugin-container.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKU\S-1-5-21-1801674531-813497703-725345543-1004\...\Run: [Mobile Partner] => C:\Program Files\PLAY ONLINE\PLAY ONLINE.exe [514048 2014-07-07] () ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Search Bar = http://ie.search.msn.com/{SUB_RFC1766}/srchasst/srchasst.htm SearchScopes: HKLM - DefaultScope value is missing. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) Toolbar: HKCU - &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 89.108.195.20 89.108.202.20 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default FF NewTab: hxxp://www.delta-homes.com/newtab/?type=nt&ts=1402660712&from=wpm0612&uid=SAMSUNGXHD160JJ_S08HJ1OL825041 FF DefaultSearchEngine: delta-homes FF SearchEngineOrder.3: Bing FF SelectedSearchEngine: delta-homes FF Homepage: https://www.google.com/ FF Keyword.URL: hxxp://trovi.com/ResultsExt.aspx?ctid=CT2247187&SearchSource=2&CUI=UN36866271420535095&UM=1&q= FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_7_700_224.dll () FF Plugin: @java.com/DTPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.55.2 -> C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin2.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin3.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin4.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npqtplugin5.dll (Apple Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\npwachk.dll (Nullsoft, Inc.) FF SearchPlugin: C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\searchplugins\ask-search.xml FF SearchPlugin: C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\searchplugins\bingp.xml FF SearchPlugin: C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\searchplugins\conduit-search.xml FF SearchPlugin: C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\searchplugins\mario-forever-customized-web-search.xml FF Extension: Fast Start - C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\Extensions\faststartff@gmail.com [2014-06-13] FF Extension: shortcut - C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\Extensions\shortcutff@gmail.com [2014-06-13] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - c:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-10-17] FF HKLM\...\Firefox\Extensions: [faststartff@gmail.com] - C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\extensions\faststartff@gmail.com FF HKLM\...\Firefox\Extensions: [shortcutff@gmail.com] - C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Mozilla\Firefox\Profiles\73fl36jl.default\extensions\shortcutff@gmail.com FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-07-27] Chrome: ======= CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-07-27] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S2 ATKKeyboardService; C:\WINDOWS\ATKKBService.exe [257024 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed] R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-07-27] (AVAST Software) S3 BrYNSvc; C:\Program Files\Browny02\BrYNSvc.exe [245760 2010-01-25] (Brother Industries, Ltd.) [File not signed] R2 HWDeviceService.exe; C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe [271712 2011-03-14] () S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-04] (Macrovision Corporation) [File not signed] R2 JavaQuickStarterService; C:\Program Files\Java\jre7\bin\jqs.exe [182696 2014-04-14] (Oracle Corporation) S2 PLAY ONLINE. RunOuc; C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe [246112 2014-07-07] () ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AMBFilt; C:\WINDOWS\System32\drivers\AMBFilt.sys [1656960 2009-06-26] (Creative) R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-07-01] (Advanced Micro Devices) R3 asusgsb; C:\WINDOWS\System32\drivers\asusgsb.sys [12416 2007-07-12] (ASUSTeK Computer Inc.) [File not signed] R1 asuskbnt; C:\WINDOWS\System32\drivers\atkkbnt.sys [11136 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed] R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-07-27] () R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-07-27] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-07-27] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-07-27] () R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-07-27] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-07-27] (AVAST Software) R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-07-27] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-07-27] () S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2013-04-13] (DT Soft Ltd) R1 EIO; C:\WINDOWS\system32\drivers\EIO.sys [12288 2007-07-12] (ASUSTeK Computer Inc.) [File not signed] R3 huawei_cdcacm; C:\WINDOWS\System32\DRIVERS\ew_jucdcacm.sys [95616 2014-07-07] (Huawei Technologies Co., Ltd.) R3 huawei_cdcecm; C:\WINDOWS\System32\DRIVERS\ew_jucdcecm.sys [67584 2014-07-07] (Huawei Technologies Co., Ltd.) R3 huawei_ext_ctrl; C:\WINDOWS\System32\DRIVERS\ew_juextctrl.sys [27520 2014-07-07] (Huawei Technologies Co., Ltd.) S3 MonFilt; C:\WINDOWS\System32\drivers\MonFilt.sys [1389056 2008-12-02] (Creative Technology Ltd.) S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) S3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [54400 2008-03-25] (NVIDIA Corporation) R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [22016 2008-03-25] (NVIDIA Corporation) R3 V0260VID; C:\WINDOWS\System32\DRIVERS\V0260Vid.sys [178913 2006-11-04] (Creative Technology Ltd.) R3 VIAHdAudAddService; C:\WINDOWS\System32\drivers\viahduaa.sys [1617408 2009-11-25] (VIA Technologies, Inc.) R3 Video3D; C:\WINDOWS\System32\Drivers\Video3D32.sys [10752 2007-07-12] (ASUSTeK COMPUTER INC.) [File not signed] S3 catchme; \??\C:\DOCUME~1\MARCIN~1.DOM\USTAWI~1\Temp\catchme.sys [X] U5 ewusbnet; C:\Windows\System32\Drivers\ewusbnet.sys [245376 2014-07-07] (Huawei Technologies Co., Ltd.) S4 IntelIde; No ImagePath U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) U3 TlntSvr; ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-17 11:02 - 2014-08-17 11:03 - 00012621 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\FRST.txt 2014-08-17 11:02 - 2014-08-17 11:02 - 01093632 _____ (Farbar) C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\FRST.exe 2014-08-17 11:02 - 2014-08-17 11:02 - 00000000 ____D () C:\FRST 2014-08-16 14:50 - 2014-08-16 14:50 - 00030252 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Extras.Txt 2014-08-16 14:49 - 2014-08-16 14:49 - 00096082 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\OTL.Txt 2014-08-16 14:30 - 2014-08-16 14:30 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\OTL.exe 2014-08-16 14:26 - 2014-08-16 14:27 - 00000000 ____D () C:\WINDOWS\pss 2014-08-16 14:09 - 2014-08-16 14:22 - 00000000 ____D () C:\Program Files\jv16 PowerTools 2014 2014-08-16 14:09 - 2014-08-16 14:09 - 00001564 _____ () C:\Documents and Settings\All Users\Pulpit\jv16 PowerTools 2014.lnk 2014-08-16 14:09 - 2014-08-16 14:09 - 00000024 ___SH () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\System5908ConfigCollection.dat 2014-08-16 14:09 - 2014-08-16 14:09 - 00000024 ___SH () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\1D959CA221C7573.sys 2014-08-16 14:09 - 2014-08-16 14:09 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Menu Start\Programy\jv16 PowerTools 2014 2014-08-16 14:09 - 2014-08-16 14:09 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\jv16 PowerTools 2014 2014-08-11 17:22 - 2014-08-11 21:41 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\KARUZELA 2014-08-10 18:20 - 2014-08-10 18:25 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Nowy folder (4) 2014-08-08 17:05 - 2014-08-08 17:05 - 00001847 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Fishdom 3 Collectors New.lnk 2014-07-27 19:13 - 2014-07-28 15:34 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Nowy folder 2014-07-27 10:11 - 2014-07-27 10:11 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\Dane aplikacji\Temp 2014-07-27 10:08 - 2014-07-27 10:08 - 00001733 _____ () C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\WINDOWS\jumpshot.com 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\AVAST Software 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Avast 2014-07-27 10:07 - 2014-08-17 10:48 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-07-27 10:07 - 2014-07-27 10:07 - 00779536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00192352 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00057800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00055112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-07-27 10:07 - 2014-07-27 10:07 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys 2014-07-27 09:58 - 2014-07-27 09:58 - 00000000 ____D () C:\Program Files\AVAST Software 2014-07-27 09:52 - 2014-07-27 09:54 - 04862664 _____ (AVAST Software) C:\avast_free_antivirus_setup_online.exe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-17 11:03 - 2014-08-17 11:02 - 00012621 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\FRST.txt 2014-08-17 11:03 - 2014-06-15 14:00 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\temp 2014-08-17 11:02 - 2014-08-17 11:02 - 01093632 _____ (Farbar) C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\FRST.exe 2014-08-17 11:02 - 2014-08-17 11:02 - 00000000 ____D () C:\FRST 2014-08-17 11:02 - 2013-04-13 17:04 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit 2014-08-17 10:48 - 2014-07-27 10:07 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-08-17 10:47 - 2013-04-13 16:57 - 01388985 _____ () C:\WINDOWS\WindowsUpdate.log 2014-08-17 10:45 - 2013-10-29 10:37 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\Dane aplikacji\tuto4pc_pl_21 2014-08-17 10:43 - 2013-04-13 18:49 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-08-17 10:43 - 2013-04-13 18:49 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-08-17 10:42 - 2014-03-09 11:36 - 00000224 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job 2014-08-17 10:42 - 2013-04-13 17:02 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-08-16 15:11 - 2013-04-13 17:02 - 00032292 _____ () C:\WINDOWS\SchedLgU.Txt 2014-08-16 14:50 - 2014-08-16 14:50 - 00030252 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Extras.Txt 2014-08-16 14:49 - 2014-08-16 14:49 - 00096082 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\OTL.Txt 2014-08-16 14:30 - 2014-08-16 14:30 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\OTL.exe 2014-08-16 14:27 - 2014-08-16 14:26 - 00000000 ____D () C:\WINDOWS\pss 2014-08-16 14:27 - 2013-04-13 18:46 - 01098100 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-08-16 14:27 - 2013-04-13 18:44 - 00000311 ___SH () C:\boot.ini 2014-08-16 14:27 - 2006-03-02 16:00 - 00494412 _____ () C:\WINDOWS\system32\perfh015.dat 2014-08-16 14:27 - 2006-03-02 16:00 - 00085572 _____ () C:\WINDOWS\system32\perfc015.dat 2014-08-16 14:27 - 2006-03-02 16:00 - 00000552 _____ () C:\WINDOWS\win.ini 2014-08-16 14:27 - 2006-03-02 16:00 - 00000227 _____ () C:\WINDOWS\system.ini 2014-08-16 14:22 - 2014-08-16 14:09 - 00000000 ____D () C:\Program Files\jv16 PowerTools 2014 2014-08-16 14:09 - 2014-08-16 14:09 - 00001564 _____ () C:\Documents and Settings\All Users\Pulpit\jv16 PowerTools 2014.lnk 2014-08-16 14:09 - 2014-08-16 14:09 - 00000024 ___SH () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\System5908ConfigCollection.dat 2014-08-16 14:09 - 2014-08-16 14:09 - 00000024 ___SH () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\1D959CA221C7573.sys 2014-08-16 14:09 - 2014-08-16 14:09 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Menu Start\Programy\jv16 PowerTools 2014 2014-08-16 14:09 - 2014-08-16 14:09 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\jv16 PowerTools 2014 2014-08-16 14:09 - 2013-04-13 18:46 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2014-08-16 14:09 - 2013-04-13 18:46 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-08-16 14:09 - 2013-04-13 17:04 - 00000000 __RHD () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji 2014-08-16 14:09 - 2013-04-13 17:04 - 00000000 ___RD () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Menu Start\Programy 2014-08-16 14:00 - 2013-04-13 19:30 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Media Player Classic 2014-08-16 14:00 - 2013-04-13 18:03 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\Winamp 2014-08-16 14:00 - 2013-04-13 17:04 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C 2014-08-14 13:43 - 2013-04-13 17:04 - 00000000 ___RD () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Moje dokumenty 2014-08-14 13:37 - 2006-03-02 16:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl 2014-08-13 21:55 - 2013-07-16 13:01 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-08-13 21:52 - 2013-04-14 22:09 - 96303304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-08-12 12:29 - 2013-10-16 10:59 - 00000520 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Moje dokumenty\spider.sav 2014-08-11 21:51 - 2013-11-10 15:38 - 00196608 _____ () C:\WINDOWS\system32\Drivers\nStandard.bin 2014-08-11 21:41 - 2014-08-11 17:22 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\KARUZELA 2014-08-10 18:25 - 2014-08-10 18:20 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Nowy folder (4) 2014-08-08 17:05 - 2014-08-08 17:05 - 00001847 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Fishdom 3 Collectors New.lnk 2014-08-08 15:00 - 2014-03-09 11:36 - 00000218 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job 2014-08-03 19:36 - 2013-05-29 13:55 - 00000072 _____ () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\default.pls 2014-08-03 19:36 - 2013-05-29 13:55 - 00000069 _____ () C:\WINDOWS\NeroDigital.ini 2014-08-01 13:58 - 2013-04-13 17:43 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-07-31 15:11 - 2013-04-13 17:43 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-07-30 19:42 - 2013-04-13 17:04 - 00000000 ___RD () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Moje dokumenty\Moje obrazy 2014-07-28 15:34 - 2014-07-27 19:13 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Pulpit\Nowy folder 2014-07-28 15:19 - 2014-07-07 20:00 - 00000000 ____D () C:\Program Files\PLAY ONLINE 2014-07-27 10:11 - 2014-07-27 10:11 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\Dane aplikacji\Temp 2014-07-27 10:11 - 2013-04-13 17:04 - 00000000 ___HD () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Ustawienia lokalne\Dane aplikacji 2014-07-27 10:08 - 2014-07-27 10:08 - 00001733 _____ () C:\Documents and Settings\All Users\Pulpit\avast! Free Antivirus.lnk 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\WINDOWS\jumpshot.com 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\Documents and Settings\Marcin.DOM-D69AD2F462C\Dane aplikacji\AVAST Software 2014-07-27 10:08 - 2014-07-27 10:08 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Avast 2014-07-27 10:07 - 2014-07-27 10:07 - 00779536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00192352 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00057800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00055112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-07-27 10:07 - 2014-07-27 10:07 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-07-27 10:07 - 2014-07-27 10:07 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys 2014-07-27 10:07 - 2013-04-13 18:33 - 00276432 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2014-07-27 10:03 - 2013-04-13 18:45 - 00000000 ___HD () C:\Documents and Settings\All Users\Dane aplikacji 2014-07-27 10:02 - 2013-07-15 10:40 - 00000000 ____D () C:\Documents and Settings\MARCIN~1~DOM 2014-07-27 09:58 - 2014-07-27 09:58 - 00000000 ____D () C:\Program Files\AVAST Software 2014-07-27 09:58 - 2013-04-13 18:31 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software 2014-07-27 09:54 - 2014-07-27 09:52 - 04862664 _____ (AVAST Software) C:\avast_free_antivirus_setup_online.exe 2014-07-24 11:56 - 2013-04-13 18:39 - 00065536 _____ () C:\WINDOWS\system32\config\OAlerts.evt ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================