Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version:23-08-2014 Ran by UserXP (administrator) on PRIVE-D8DBD5EA4 on 23-08-2014 23:31:05 Running from F:\XP\Pobieranie Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 8 Boot Mode: Normal The only official download link for FRST: Download link for 32-Bit version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/81/ Download link for 64-Bit Version: http://www.bleepingcomputer.com/download/farbar-recovery-scan-tool/dl/82/ Download link from any site other than Bleeping Computer is unpermitted or outdated. See tutorial for FRST: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\afwServ.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE (AVAST Software) C:\Program Files\AVAST Software\Avast\avastui.exe (mst software GmbH, Germany) C:\Program Files\Ashampoo\Ashampoo HDD Control 2\DfSdkS.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe (Windows (R) Codename Longhorn DDK provider) C:\Program Files\UPHClean\uphclean.exe (TuneUp Software) C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesApp32.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [20065936 2012-06-06] (Realtek Semiconductor Corp.) HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [nwiz] => C:\Program Files\NVIDIA Corporation\nview\nwiz.exe [2586912 2013-09-12] () HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [4085896 2014-08-19] (AVAST Software) HKU\.DEFAULT\...\Policies\Explorer: [NoDriveAutoRun] 0xE0FFFF03 HKU\S-1-5-20\...\Policies\Explorer: [NoDriveAutoRun] 0xE0FFFF03 HKU\S-1-5-21-484763869-602162358-682003330-1003\...\Policies\Explorer: [NoDrives] 16 IFEO\javacpl.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe" IFEO\javaw.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe" IFEO\javaws.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe" IFEO\skype.exe: [Debugger] "C:\Program Files\TuneUp Utilities 2013\TUAutoReactivator32.exe" ShellIconOverlayIdentifiers: 00avast -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) BootExecute: ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = https://www.google.pl/ HKCU\Software\Microsoft\Internet Explorer\Main,Start Page Restore = http://www.google.pl/ SearchScopes: HKLM - DefaultScope value is missing. BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_20\bin\ssv.dll (Oracle Corporation) BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) BHO: Windows Live Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Adobe Acrobat Create PDF Toolbar Helper -> {AE7CD045-E861-484f-8273-0445EE161910} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_20\bin\jp2ssv.dll (Oracle Corporation) BHO: Adobe Acrobat Create PDF from Selection -> {F4971EE7-DAA0-4053-9964-665D8EE6A077} -> C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKLM - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Toolbar: HKCU - Adobe Acrobat Create PDF Toolbar - {47833539-D0C5-4125-9FA8-0819E2EAAC93} - C:\Program Files\Common Files\Adobe\Acrobat\WCIEActiveX\AcroIEFavClient.dll (Adobe Systems Incorporated) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 Tcpip\..\Interfaces\{2D4B6607-BCF4-4163-AED2-CB6019CFEB94}: [NameServer] 194.204.152.34,194.204.159.1 Tcpip\..\Interfaces\{738F111C-8CF8-45E2-BDBC-39B3B309A86D}: [NameServer] 194.204.152.34,194.204.159.1 FireFox: ======== FF ProfilePath: F:\XP\FF\Henry FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_14_0_0_179.dll () FF Plugin: @intel-webapi.intel.com/Intel WebAPI ipt;version=2.1.42 -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation) FF Plugin: @intel-webapi.intel.com/Intel WebAPI updater -> C:\Program Files\Intel\Intel(R) Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation) FF Plugin: @java.com/DTPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=11.20.2 -> C:\Program Files\Java\jre1.8.0_20\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: Adobe Acrobat -> C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Air\nppdf32.dll (Adobe Systems Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF Plugin: adobe.com/AdobeAAMDetect -> C:\Program Files\Common Files\Adobe\OOBE\PDApp\CCM\Utilities\npAdobeAAMDetect32.dll (Adobe Systems) FF user.js: detected! => F:\XP\FF\Henry\user.js FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.) FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\np_hoem_x.dll () FF SearchPlugin: F:\XP\FF\Henry\searchplugins\wyszukiwarka-filmw-w-youtube.xml FF Extension: DownloadHelper - F:\XP\FF\Henry\Extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2014-08-09] FF Extension: NO Google Analytics - F:\XP\FF\Henry\Extensions\jid1-JcGokIiQyjoBAQ@jetpack.xpi [2014-07-22] FF Extension: Adblock Plus - F:\XP\FF\Henry\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-07-22] FF HKLM\...\Firefox\Extensions: [web2pdfextension@web2pdf.adobedotcom] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn FF Extension: Adobe Acrobat - Create PDF - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCFirefoxExtn [2013-04-07] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2013-04-08] FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: avast! Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-08-19] Chrome: ======= CHR HKLM\...\Chrome\Extension: [efaidnbmnnnibpcajpcglclefindmkaj] - C:\Program Files\Adobe\Acrobat 11.0\Acrobat\Browser\WCChromeExtn\WCChromeExtn.crx [2012-09-23] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-08-19] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 AHDDC2; C:\Program Files\Ashampoo\Ashampoo HDD Control 2\AHDDC2_Service.exe [1518504 2012-07-30] () R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-08-19] (AVAST Software) R2 avast! Firewall; C:\Program Files\AVAST Software\Avast\afwServ.exe [106488 2014-08-19] (AVAST Software) R2 DfSdkS; C:\Program Files\Ashampoo\Ashampoo HDD Control 2\DfsdkS.exe [406016 2009-08-24] (mst software GmbH, Germany) [File not signed] S3 Intel(R) Capability Licensing Service Interface; C:\Program Files\Intel\iCLS Client\HeciServer.exe [462048 2012-04-20] (Intel(R) Corporation) S4 jhi_service; C:\Program Files\Intel\Intel(R) Management Engine Components\DAL\jhi_service.exe [166720 2012-06-25] (Intel Corporation) R2 TuneUp.UtilitiesSvc; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesService32.exe [1729336 2013-12-10] (TuneUp Software) R2 UPHClean; C:\Program Files\UPHClean\uphclean.exe [399872 2010-09-13] (Windows (R) Codename Longhorn DDK provider) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 61883; C:\WINDOWS\System32\DRIVERS\61883.sys [48128 2008-04-14] (Microsoft Corporation) S3 Ambfilt; C:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) S3 ampa; C:\WINDOWS\system32\ampa.sys [12656 2013-11-29] () R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-08-19] () R1 aswKbd; C:\WINDOWS\system32\drivers\aswKbd.sys [26136 2014-08-19] (AVAST Software) R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [67824 2014-08-19] (AVAST Software) R0 aswNdis; C:\WINDOWS\System32\DRIVERS\aswNdis.sys [12112 2014-08-19] (ALWIL Software) R0 aswNdis2; C:\WINDOWS\system32\Drivers\aswNdis2.sys [252872 2014-08-19] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55112 2014-08-19] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-08-19] () R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [779536 2014-08-19] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [414520 2014-08-19] (AVAST Software) R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57800 2014-08-19] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [192352 2014-08-19] () S3 BrScnUsb; C:\WINDOWS\System32\DRIVERS\BrScnUsb.sys [15295 2004-10-15] (Brother Industries Ltd.) S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R3 EtronHub3; C:\WINDOWS\System32\Drivers\EtronHub3.sys [51328 2012-08-07] (Etron Technology Inc) R3 EtronXHCI; C:\WINDOWS\System32\Drivers\EtronXHCI.sys [71552 2012-08-07] (Etron Technology Inc) S3 i81x; C:\WINDOWS\System32\DRIVERS\i81xnt5.sys [161020 2008-04-13] (Intel(R) Corporation) R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82320 2010-01-29] (EZB Systems, Inc.) R3 MEI; C:\WINDOWS\System32\DRIVERS\HECI.sys [55104 2012-07-02] (Intel Corporation) S3 Monfilt; C:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) S3 MPE; C:\WINDOWS\System32\DRIVERS\MPE.sys [15232 2008-04-14] (Microsoft Corporation) S0 mvs91xx; C:\WINDOWS\System32\DRIVERS\mvs91xx.sys [274736 2011-03-07] (Marvell Semiconductor, Inc.) S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) R3 NVHDA; C:\WINDOWS\System32\drivers\nvhda32.sys [128672 2013-06-16] (NVIDIA Corporation) R1 Tcpip; C:\WINDOWS\System32\DRIVERS\tcpip.sys [361600 2014-03-01] (Microsoft Corporation) [File not signed] R3 TuneUpUtilitiesDrv; C:\Program Files\TuneUp Utilities 2013\TuneUpUtilitiesDriver32.sys [10088 2012-11-16] (TuneUp Software) S3 V0260VID; C:\WINDOWS\System32\DRIVERS\V0260Vid.sys [178913 2006-11-04] (Creative Technology Ltd.) S3 VMHybrid; C:\WINDOWS\System32\DRIVERS\VMHybrid.sys [1060352 2008-11-11] (Compro Technology, Inc.) S3 ALSysIO; \??\F:\XP\TEMP\ALSysIO.sys [X] S3 gdrv; \??\C:\WINDOWS\gdrv.sys [X] S3 hocksquw; No ImagePath S3 HWiNFO32; \??\F:\XP\TMP\HWiNFO32.SYS [X] S4 IntelIde; No ImagePath S3 RTLVLANMP; system32\DRIVERS\RTLVLAN.SYS [X] U1 WS2IFSL; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-23 16:45 - 2014-08-23 23:31 - 00000000 ____D () C:\FRST 2014-08-22 23:09 - 2014-08-22 23:09 - 00000000 ____D () C:\Documents and Settings\UserXP\.jmc 2014-08-22 22:55 - 2014-08-22 22:55 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-08-22 22:55 - 2014-08-22 22:54 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2014-08-22 22:55 - 2014-08-22 22:54 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2014-08-22 22:54 - 2014-08-23 08:43 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Java Development Kit 2014-08-22 22:54 - 2014-08-22 22:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Java 2014-08-22 22:54 - 2014-08-22 22:54 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Oracle 2014-08-22 20:35 - 2014-08-22 20:35 - 00000000 ____D () C:\Program Files\CPUID 2014-08-22 20:35 - 2014-08-22 20:35 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\CPUID 2014-08-21 07:08 - 2014-08-21 07:08 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Windows Live 2014-08-21 07:07 - 2014-08-21 07:08 - 00000000 ____D () C:\Program Files\Windows Live 2014-08-19 15:01 - 2014-08-23 23:22 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-08-19 15:01 - 2014-08-19 15:01 - 00779536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00276432 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2014-08-19 15:01 - 2014-08-19 15:01 - 00252872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00192352 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00057800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00055112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-08-19 15:01 - 2014-08-19 15:01 - 00026136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Avast 2014-08-19 14:58 - 2014-08-19 14:59 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software 2014-08-17 22:07 - 2014-08-18 14:46 - 00001024 ____H () C:\AMTAG.BIN 2014-07-30 21:06 - 2014-07-30 21:06 - 00001767 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk 2014-07-30 21:06 - 2014-07-30 21:06 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013 2014-07-30 21:06 - 2013-12-10 21:44 - 00032568 _____ (TuneUp Software) C:\WINDOWS\system32\TURegOpt.exe 2014-07-30 21:06 - 2013-12-10 21:44 - 00030520 _____ (TuneUp Software) C:\WINDOWS\system32\uxtuneup.dll ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-08-23 23:31 - 2014-08-23 16:45 - 00000000 ____D () C:\FRST 2014-08-23 23:22 - 2014-08-19 15:01 - 00000364 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-08-23 23:22 - 2013-04-08 02:22 - 01259762 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-08-23 23:22 - 2013-04-02 21:50 - 00557102 _____ () C:\WINDOWS\system32\perfh015.dat 2014-08-23 23:22 - 2013-04-02 21:50 - 00105792 _____ () C:\WINDOWS\system32\perfc015.dat 2014-08-23 23:18 - 2013-12-27 22:29 - 01857942 _____ () C:\WINDOWS\WindowsUpdate.log 2014-08-23 23:18 - 2013-04-02 21:54 - 00012598 _____ () C:\WINDOWS\system32\wpa.dbl 2014-08-23 23:17 - 2014-04-08 16:48 - 00000224 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job 2014-08-23 23:17 - 2013-04-08 00:33 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-08-23 20:32 - 2013-07-30 09:45 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-08-23 20:32 - 2013-04-08 02:23 - 00000216 _____ () C:\WINDOWS\wiadebug.log 2014-08-23 20:32 - 2013-04-08 00:33 - 00032530 _____ () C:\WINDOWS\SchedLgU.Txt 2014-08-23 20:32 - 2013-04-07 21:43 - 00000188 ___SH () C:\Documents and Settings\UserXP\ntuser.ini 2014-08-23 20:32 - 2013-04-07 20:28 - 00065536 _____ () C:\WINDOWS\system32\config\TuneUp.evt 2014-08-23 20:02 - 2014-02-03 18:29 - 00968274 _____ () C:\WINDOWS\setupapi.log 2014-08-23 20:00 - 2014-03-15 18:52 - 00008224 _____ () C:\WINDOWS\system32\nvAppTimestamps 2014-08-23 19:37 - 2013-04-08 01:03 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2014-08-23 16:53 - 2013-04-07 21:43 - 00000000 ___RD () C:\Documents and Settings\UserXP\Menu Start 2014-08-23 16:32 - 2013-04-21 21:01 - 00001057 _____ () C:\Documents and Settings\UserXP\Dane aplikacji\vso_ts_preview.xml 2014-08-23 16:32 - 2013-04-21 17:02 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\Vso 2014-08-23 08:43 - 2014-08-22 22:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Java Development Kit 2014-08-23 08:43 - 2013-04-28 19:56 - 00000000 ____D () C:\Program Files\Java 2014-08-22 23:09 - 2014-08-22 23:09 - 00000000 ____D () C:\Documents and Settings\UserXP\.jmc 2014-08-22 23:09 - 2013-04-07 21:43 - 00000000 ____D () C:\Documents and Settings\UserXP 2014-08-22 22:55 - 2014-08-22 22:55 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-08-22 22:54 - 2014-08-22 22:55 - 00146432 _____ (Oracle Corporation) C:\WINDOWS\system32\javacpl.cpl 2014-08-22 22:54 - 2014-08-22 22:55 - 00096680 _____ (Oracle Corporation) C:\WINDOWS\system32\WindowsAccessBridge.dll 2014-08-22 22:54 - 2014-08-22 22:54 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Java 2014-08-22 22:54 - 2014-08-22 22:54 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Oracle 2014-08-22 22:54 - 2013-04-08 02:21 - 00000000 __RHD () C:\Documents and Settings\All Users\Dane aplikacji 2014-08-22 22:54 - 2013-04-08 02:21 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2014-08-22 20:35 - 2014-08-22 20:35 - 00000000 ____D () C:\Program Files\CPUID 2014-08-22 20:35 - 2014-08-22 20:35 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\CPUID 2014-08-21 08:14 - 2013-04-07 21:43 - 00000000 ____D () C:\Documents and Settings\UserXP\Pulpit 2014-08-21 07:08 - 2014-08-21 07:08 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Windows Live 2014-08-21 07:08 - 2014-08-21 07:07 - 00000000 ____D () C:\Program Files\Windows Live 2014-08-19 17:11 - 2014-02-12 10:20 - 00000135 _____ () C:\WINDOWS\setupact.log 2014-08-19 17:01 - 2013-04-07 21:43 - 00000000 __RHD () C:\Documents and Settings\UserXP\Dane aplikacji 2014-08-19 15:04 - 2013-04-08 02:21 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2014-08-19 15:01 - 2014-08-19 15:01 - 00779536 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00414520 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswsp.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00276432 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2014-08-19 15:01 - 2014-08-19 15:01 - 00252872 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswNdis2.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00192352 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00067824 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00057800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00055112 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-08-19 15:01 - 2014-08-19 15:01 - 00026136 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswKbd.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00012112 _____ (ALWIL Software) C:\WINDOWS\system32\Drivers\aswNdis.sys 2014-08-19 15:01 - 2014-08-19 15:01 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\Avast 2014-08-19 15:01 - 2014-07-22 21:43 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys 2014-08-19 15:01 - 2014-03-14 15:58 - 00000000 ____D () C:\Documents and Settings\UserXP\Dane aplikacji\AVAST Software 2014-08-19 14:59 - 2014-08-19 14:58 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\AVAST Software 2014-08-19 14:59 - 2014-03-14 15:57 - 00000000 ____D () C:\Program Files\AVAST Software 2014-08-19 14:48 - 2013-04-08 00:31 - 00002596 _____ () C:\WINDOWS\system32\CONFIG.NT 2014-08-18 14:46 - 2014-08-17 22:07 - 00001024 ____H () C:\AMTAG.BIN 2014-08-18 14:46 - 2014-07-23 00:06 - 00000000 ____D () C:\Program Files\AOMEI Partition Assistant Standard Edition 5.5 2014-08-16 15:55 - 2013-10-29 10:29 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Malwarebytes' Anti-Malware (portable) 2014-08-16 15:52 - 2013-10-29 10:29 - 00113880 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-08-16 15:52 - 2013-10-29 10:28 - 00054232 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\mbamchameleon.sys 2014-08-14 09:14 - 2013-08-16 12:58 - 00000000 ____D () C:\WINDOWS\system32\MRT 2014-08-14 09:14 - 2013-04-08 01:00 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help 2014-08-14 09:13 - 2013-04-07 21:36 - 96303304 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe 2014-08-14 09:02 - 2013-04-08 01:03 - 00699568 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe 2014-08-14 09:02 - 2013-04-08 01:03 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2014-08-09 20:55 - 2013-04-07 21:43 - 00000000 ___RD () C:\Documents and Settings\UserXP\Menu Start\Programy\Autostart 2014-08-09 20:52 - 2013-04-08 01:22 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-07-30 21:08 - 2013-07-29 08:53 - 00000000 __SHD () C:\Documents and Settings\All Users\Dane aplikacji\{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F} 2014-07-30 21:06 - 2014-07-30 21:06 - 00001767 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013.lnk 2014-07-30 21:06 - 2014-07-30 21:06 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\TuneUp Utilities 2013 2014-07-30 21:06 - 2014-02-11 12:42 - 00000000 ____D () C:\Program Files\TuneUp Utilities 2013 2014-07-30 21:05 - 2014-02-11 12:42 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\TuneUp Software ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================