Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 17-11-2014 Ran by amx (administrator) on X-628658B1E9874 on 20-11-2014 15:23:37 Running from C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\frst Loaded Profile: amx (Available profiles: amx & Administrator) Platform: Microsoft Windows XP Professional Dodatek Service Pack 2 (X86) OS Language: Polski Internet Explorer Version 6 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (ATI Technologies Inc.) C:\WINDOWS\system32\ati2evxx.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastSvc.exe (ATI Technologies, Inc.) C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe (Realtek Semiconductor Corp.) C:\WINDOWS\RTHDCPL.EXE (Synaptics, Inc.) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe (AVAST Software) C:\Program Files\AVAST Software\Avast\AvastUI.exe (Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Hewlett-Packard Co.) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe (Hewlett-Packard) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard Co.) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpoevm08.exe (Hewlett-Packard Co.) C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hposts08.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [ATIPTA] => C:\Program Files\ATI Technologies\ATI Control Panel\atiptaxx.exe [344064 2005-12-11] (ATI Technologies, Inc.) HKLM\...\Run: [SkyTel] => C:\WINDOWS\SkyTel.EXE [2879488 2006-05-16] (Realtek Semiconductor Corp.) HKLM\...\Run: [RTHDCPL] => C:\WINDOWS\RTHDCPL.EXE [16261632 2006-07-21] (Realtek Semiconductor Corp.) HKLM\...\Run: [SynTPEnh] => C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [766041 2006-04-28] (Synaptics, Inc.) HKLM\...\Run: [QuickTime Task] => C:\Program Files\QuickTime\QTTask.exe [413696 2009-05-26] (Apple Inc.) HKLM\...\Run: [BluetoothAuthenticationAgent] => rundll32.exe bthprops.cpl,,BluetoothAuthenticationAgent HKLM\...\Run: [AvastUI.exe] => C:\Program Files\AVAST Software\Avast\AvastUI.exe [5223016 2014-10-22] (AVAST Software) HKLM Group Policy restriction on software: C:\Program Files\Trend Micro <====== ATTENTION HKLM Group Policy restriction on software: C:\Program Files\Common Files\Symantec Shared <====== ATTENTION HKLM Group Policy restriction on software: C:\Program Files\AVAST Software <====== ATTENTION HKLM Group Policy restriction on software: C:\Program Files\Trend Micro <====== ATTENTION Winlogon\Notify\AtiExtEvent: C:\WINDOWS\system32\Ati2evxx.dll (ATI Technologies Inc.) HKU\S-1-5-21-1547161642-117609710-725345543-1003\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2013-10-09] (Google Inc.) HKU\S-1-5-21-1547161642-117609710-725345543-1003\...\Run: [XegdUhfug] => regsvr32.exe "C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\XegdUhfug\XegdUhfug.dat" Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hp psc 1000 series.lnk ShortcutTarget: hp psc 1000 series.lnk -> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe (Hewlett-Packard Co.) Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hpoddt01.exe.lnk ShortcutTarget: hpoddt01.exe.lnk -> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard) Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hp psc 1000 series.lnk ShortcutTarget: hp psc 1000 series.lnk -> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpohmr08.exe (Hewlett-Packard Co.) Startup: C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Autostart\hpoddt01.exe.lnk ShortcutTarget: hpoddt01.exe.lnk -> C:\Program Files\Hewlett-Packard\Digital Imaging\bin\hpotdd01.exe (Hewlett-Packard) ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\AVAST Software\Avast\ashShell.dll (AVAST Software) ShellIconOverlayIdentifiers: [Uchwyt nakładania ikony podpisu cyfrowego] -> {36A21736-36C2-4C11-8ACB-D4136F2B57BD} => C:\WINDOWS\system32\AcSignIcon.dll (Autodesk, Inc.) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1547161642-117609710-725345543-1003\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKU\S-1-5-21-1547161642-117609710-725345543-1003\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank SearchScopes: HKLM -> DefaultScope value is missing. BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.) Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) Toolbar: HKU\S-1-5-21-1547161642-117609710-725345543-1003 -> &Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKU\S-1-5-21-1547161642-117609710-725345543-1003 -> &Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) Toolbar: HKU\S-1-5-21-1547161642-117609710-725345543-1003 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {CAFEEFAC-0017-0000-0009-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.7.0/jinstall-1_7_0_09-windows-i586.cab Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 FireFox: ======== FF ProfilePath: C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\Mozilla\Firefox\Profiles\eth5cbwj.default-1416492254968 FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google) FF Plugin: @java.com/DTPlugin,version=10.9.2 -> C:\WINDOWS\system32\npDeployJava1.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @real.com/nppl3260;version=6.0.12.69 -> C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF Plugin: @real.com/nprpjplug;version=6.0.12.69 -> C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\AVAST Software\Avast\WebRep\FF FF Extension: Avast Online Security - C:\Program Files\AVAST Software\Avast\WebRep\FF [2014-10-22] Chrome: ======= CHR HKLM\...\Chrome\Extension: [eofcbnmajmjmplflapaojjnihcjkigck] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChromeSp.crx [2014-10-22] CHR HKLM\...\Chrome\Extension: [gomekmidlodglbbmalcneegieacbdmki] - C:\Program Files\AVAST Software\Avast\WebRep\Chrome\aswWebRepChrome.crx [2014-10-22] ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 avast! Antivirus; C:\Program Files\AVAST Software\Avast\AvastSvc.exe [50344 2014-10-22] (AVAST Software) S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe [69632 2005-04-03] (Macrovision Corporation) [File not signed] S4 Sony Ericsson PCCompanion; C:\Program Files\Sony Ericsson\Sony Ericsson PC Companion\PCCService.exe [153808 2010-06-08] (Avanquest Software) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21419 2010-08-02] (Meetinghouse Data Communications) [File not signed] R2 aswHwid; C:\WINDOWS\system32\drivers\aswHwid.sys [24184 2014-10-22] () R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [70384 2014-10-22] (AVAST Software) R1 aswRdr; C:\WINDOWS\system32\drivers\aswRdr.sys [55240 2014-10-22] (AVAST Software) R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49944 2014-10-22] () R1 aswSnx; C:\WINDOWS\system32\drivers\aswSnx.sys [787800 2014-10-22] (AVAST Software) R1 aswSP; C:\WINDOWS\system32\drivers\aswSP.sys [422760 2014-10-22] (AVAST Software) R1 aswTdi; C:\WINDOWS\system32\drivers\aswTdi.sys [57928 2014-10-22] (AVAST Software) R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [206248 2014-10-22] () R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2011-06-02] () S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2004-08-03] (Microsoft Corporation) R1 cdrbsdrv; C:\WINDOWS\system32\Drivers\cdrbsdrv.sys [13567 2004-03-08] (B.H.A Corporation) [File not signed] S3 grmnusb; C:\WINDOWS\System32\drivers\grmnusb.sys [8320 2007-03-08] (GARMIN Corp.) [File not signed] S3 HPZid412; C:\WINDOWS\System32\DRIVERS\HPZid412.sys [51024 2003-04-07] (HP) S3 HPZipr12; C:\WINDOWS\System32\DRIVERS\HPZipr12.sys [16080 2003-04-07] (HP) S3 HPZius12; C:\WINDOWS\System32\DRIVERS\HPZius12.sys [21456 2003-04-07] (HP) R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2011-06-02] () S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2004-08-03] (Microsoft Corporation) R3 RT61; C:\WINDOWS\System32\DRIVERS\RT61.sys [385280 2006-09-07] (Ralink Technology Inc.) R2 SecDrv; C:\WINDOWS\system32\drivers\SECDRV.SYS [12400 2010-09-19] (Macrovision Europe Ltd) [File not signed] S3 sonypvs1; C:\WINDOWS\System32\DRIVERS\sonypvs1.sys [102220 2002-10-15] (Sony Corporation) [File not signed] S3 VNUSB; C:\WINDOWS\System32\DRIVERS\VNUSB.sys [38448 2003-12-15] (OLYMPUS OPTICAL CO.,LTD.) [File not signed] S4 IntelIde; No ImagePath S4 sptd; System32\Drivers\sptd.sys [X] U1 WS2IFSL; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-20 15:05 - 2014-11-20 15:05 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\Stare dane programu Firefox 2014-11-20 14:37 - 2014-11-20 14:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\XegdUhfug 2014-11-20 14:37 - 2014-11-20 14:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\XegdUhfug 2014-11-20 00:26 - 2014-11-20 04:39 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\logi 2014-11-19 19:06 - 2014-11-20 14:28 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\Prezentacja 20.11.2014 2014-11-19 11:19 - 2014-11-19 21:55 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\gmer 2014-11-19 11:13 - 2014-11-19 11:48 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\otl 2014-11-19 11:13 - 2014-11-19 11:13 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\Adobe 2014-11-19 11:13 - 2014-11-19 11:13 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Dane aplikacji\Adobe 2014-11-19 11:08 - 2014-11-19 11:08 - 00522360 _____ (Duplex Secure Ltd.) C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\SPTDinst-v186-x86.exe 2014-11-19 11:03 - 2014-11-19 11:03 - 00000000 ____D () C:\Program Files\Common Files\PDF Architect 2014-11-19 11:03 - 2014-11-19 11:03 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\PDF Architect 2014-11-19 01:58 - 2014-11-20 15:23 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\frst 2014-11-19 01:53 - 2014-11-19 01:53 - 00145276 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\Shortcut.txt 2014-11-19 01:51 - 2014-11-19 01:53 - 00031804 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\Addition.txt 2014-11-19 01:49 - 2014-11-19 01:53 - 00034249 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\FRST.txt 2014-11-19 01:47 - 2014-11-20 15:23 - 00000000 ____D () C:\FRST 2014-11-16 01:16 - 2014-11-20 14:47 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore1d0013287c01750.job 2014-11-13 02:24 - 2014-11-13 02:24 - 00000087 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\amxmaxmalware.txt 2014-11-07 02:40 - 2014-11-07 03:01 - 00000395 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\Nowy Dokument tekstowy.txt 2014-11-07 01:57 - 2014-11-10 22:18 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\zabieram 2 2014-11-01 00:40 - 2014-11-01 00:40 - 00000000 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\administratorkuponekdorady atramentkulka.txt 2014-10-31 01:31 - 2014-11-20 14:48 - 00000008 __RSH () C:\Documents and Settings\All Users.WINDOWS\ntuser.pol 2014-10-30 01:46 - 2014-10-30 01:46 - 00000994 _____ () C:\WINDOWS\DirectX.log 2014-10-30 01:31 - 2014-11-20 13:38 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-10-22 23:38 - 2014-10-22 23:38 - 00000000 ____D () C:\WINDOWS\jumpshot.com 2014-10-22 23:38 - 2014-10-22 23:38 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\AVAST Software 2014-10-22 23:37 - 2014-11-20 14:47 - 00000310 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-10-22 23:37 - 2014-10-22 23:37 - 00001731 _____ () C:\Documents and Settings\All Users.WINDOWS\Pulpit\Avast Free Antivirus.lnk 2014-10-22 23:37 - 2014-10-22 23:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\AVAST Software 2014-10-22 23:37 - 2014-10-22 23:37 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\AVAST Software 2014-10-22 23:37 - 2014-10-22 23:36 - 00422760 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSP.sys 2014-10-22 23:37 - 2014-10-22 23:36 - 00206248 _____ () C:\WINDOWS\system32\Drivers\aswVmm.sys 2014-10-22 23:37 - 2014-10-22 23:36 - 00057928 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswTdi.sys 2014-10-22 23:37 - 2014-10-22 23:36 - 00049944 _____ () C:\WINDOWS\system32\Drivers\aswRvrt.sys 2014-10-22 23:36 - 2014-10-22 23:36 - 00787800 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswSnx.sys 2014-10-22 23:36 - 2014-10-22 23:36 - 00291352 _____ (AVAST Software) C:\WINDOWS\system32\aswBoot.exe 2014-10-22 23:36 - 2014-10-22 23:36 - 00070384 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswMonFlt.sys 2014-10-22 23:36 - 2014-10-22 23:36 - 00055240 _____ (AVAST Software) C:\WINDOWS\system32\Drivers\aswRdr.sys 2014-10-22 23:36 - 2014-10-22 23:36 - 00043152 _____ (AVAST Software) C:\WINDOWS\avastSS.scr 2014-10-22 23:36 - 2014-10-22 23:36 - 00024184 _____ () C:\WINDOWS\system32\Drivers\aswHwid.sys 2014-10-22 23:33 - 2014-10-22 23:33 - 00000000 ____D () C:\Program Files\AVAST Software 2014-10-22 23:22 - 2014-10-22 23:33 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVAST Software 2014-10-22 23:22 - 2014-10-22 23:33 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\AVAST Software 2014-10-22 23:22 - 2014-10-22 23:22 - 00093640 _____ () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2014-10-22 23:21 - 2014-10-22 23:21 - 05004328 _____ (AVAST Software) C:\Documents and Settings\All Users.WINDOWS\Pulpit\avast_free_antivirus_setup_online.exe 2014-10-22 23:21 - 2014-10-22 23:21 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Moje dokumenty\Pobrane 2014-10-21 23:33 - 2014-10-21 23:33 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\Mozilla 2014-10-21 23:33 - 2014-10-21 23:33 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Dane aplikacji\Mozilla 2014-10-21 23:29 - 2014-11-20 14:38 - 00000000 ___SD () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\Historia 2014-10-21 23:29 - 2014-11-20 14:38 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\temp 2014-10-21 23:29 - 2014-11-19 11:15 - 00000188 ___SH () C:\Documents and Settings\Administrator.X-628658B1E9874\ntuser.ini 2014-10-21 23:29 - 2014-11-19 11:13 - 00000000 __RHD () C:\Documents and Settings\Administrator.X-628658B1E9874\Dane aplikacji 2014-10-21 23:29 - 2014-11-19 11:13 - 00000000 ___HD () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji 2014-10-21 23:29 - 2014-10-22 23:21 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Moje dokumenty 2014-10-21 23:29 - 2014-10-21 23:29 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874 2014-10-21 23:29 - 2010-02-26 13:28 - 00000000 ___HD () C:\Documents and Settings\Administrator.X-628658B1E9874\Ustawienia lokalne 2014-10-21 23:29 - 2009-04-07 14:50 - 00000000 ___RD () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start\Programy\Autostart 2014-10-21 23:29 - 2009-04-07 14:50 - 00000000 ___RD () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start 2014-10-21 23:29 - 2009-04-07 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Ulubione 2014-10-21 23:29 - 2009-04-07 14:50 - 00000000 ____D () C:\Documents and Settings\Administrator.X-628658B1E9874\Pulpit 2014-10-21 23:29 - 2009-04-07 10:34 - 00001599 _____ () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start\Programy\Pomoc zdalna.lnk 2014-10-21 23:29 - 2009-04-07 10:34 - 00000792 _____ () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start\Programy\Windows Media Player.lnk 2014-10-21 23:29 - 2009-04-07 10:34 - 00000000 ___RD () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start\Programy\Akcesoria 2014-10-21 23:29 - 2009-04-07 10:34 - 00000000 ___RD () C:\Documents and Settings\Administrator.X-628658B1E9874\Menu Start\Programy 2014-10-21 23:29 - 2009-04-07 10:29 - 00000000 ___HD () C:\Documents and Settings\Administrator.X-628658B1E9874\Szablony 2014-10-21 22:47 - 2014-10-21 22:48 - 00020792 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Moje dokumenty\cc_20141021_234757.reg ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-11-20 15:24 - 2010-02-26 13:28 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\temp 2014-11-20 15:20 - 2013-10-09 20:28 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2014-11-20 15:05 - 2009-04-07 10:41 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit 2014-11-20 15:01 - 2001-07-21 21:16 - 00000801 _____ () C:\WINDOWS\win.ini 2014-11-20 14:48 - 2009-04-07 14:49 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS 2014-11-20 14:48 - 2009-04-07 10:41 - 00000000 ___SD () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Historia 2014-11-20 14:47 - 2013-10-09 20:28 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2014-11-20 14:47 - 2009-05-13 10:01 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2014-11-20 14:47 - 2009-04-07 14:55 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-11-20 14:47 - 2009-04-07 10:39 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-11-20 14:47 - 2009-04-07 10:39 - 00000000 ___SD () C:\Documents and Settings\LocalService.ZARZĄDZANIE NT\Ustawienia lokalne\Historia 2014-11-20 14:42 - 2011-12-03 02:38 - 01931083 _____ () C:\WINDOWS\WindowsUpdate.log 2014-11-20 14:42 - 2009-04-07 10:41 - 00000188 ___SH () C:\Documents and Settings\amx.X-628658B1E9874\ntuser.ini 2014-11-20 14:42 - 2009-04-07 10:39 - 00032252 _____ () C:\WINDOWS\SchedLgU.Txt 2014-11-20 14:37 - 2010-02-26 13:28 - 00000000 ____D () C:\Documents and Settings\LocalService.ZARZĄDZANIE NT\Ustawienia lokalne\temp 2014-11-20 14:37 - 2009-04-07 14:50 - 00000000 __RHD () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji 2014-11-20 14:37 - 2009-04-07 14:50 - 00000000 ___SD () C:\Documents and Settings\Default User.WINDOWS\Ustawienia lokalne\Historia 2014-11-20 14:37 - 2009-04-07 10:41 - 00000000 __RHD () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji 2014-11-20 14:37 - 2009-04-07 10:39 - 00000000 ___HD () C:\Documents and Settings\NetworkService.ZARZĄDZANIE NT\Ustawienia lokalne\Historia 2014-11-20 14:33 - 2008-05-09 10:07 - 00000000 ___HD () C:\WINDOWS\system32\GroupPolicy 2014-11-20 14:11 - 2009-04-08 01:42 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Adobe 2014-11-20 14:11 - 2009-04-08 01:42 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Adobe 2014-11-20 14:10 - 2009-04-08 01:43 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\Adobe 2014-11-20 14:10 - 2009-04-07 14:50 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy 2014-11-20 14:10 - 2009-04-07 14:50 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy 2014-11-20 14:08 - 2009-04-08 01:43 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\Adobe 2014-11-20 14:08 - 2009-04-07 16:45 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\Macromedia 2014-11-20 14:08 - 2008-04-23 22:36 - 00000000 ____D () C:\WINDOWS\system32\Adobe 2014-11-20 14:08 - 2007-08-14 14:23 - 00000000 ____D () C:\WINDOWS\system32\Macromed 2014-11-20 13:56 - 2009-04-07 10:41 - 00000000 ___HD () C:\Documents and Settings\amx.X-628658B1E9874\Szablony 2014-11-20 13:54 - 2010-07-29 12:49 - 00000000 ____D () C:\Program Files\OpenOffice.ux.pl 3 2014-11-20 13:53 - 2009-04-07 10:41 - 00000000 ___RD () C:\Documents and Settings\amx.X-628658B1E9874\Menu Start\Programy 2014-11-20 13:45 - 2007-11-17 21:14 - 00000000 ____D () C:\Program Files\Common Files\Java 2014-11-20 13:44 - 2007-11-17 21:16 - 00000000 ____D () C:\Program Files\Java 2014-11-20 04:44 - 2009-04-07 14:50 - 00000000 ___RD () C:\Documents and Settings\All Users.WINDOWS\Menu Start 2014-11-20 04:23 - 2010-02-26 23:49 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\stałe foldery 2014-11-20 00:35 - 2014-07-10 17:38 - 00110296 _____ (Malwarebytes Corporation) C:\WINDOWS\system32\Drivers\MBAMSwissArmy.sys 2014-11-20 00:11 - 2009-04-07 10:41 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874 2014-11-19 21:53 - 2009-04-07 14:51 - 00997954 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-11-19 21:53 - 2001-10-26 15:15 - 00454236 _____ () C:\WINDOWS\system32\perfh015.dat 2014-11-19 21:53 - 2001-10-26 15:15 - 00076298 _____ () C:\WINDOWS\system32\perfc015.dat 2014-11-19 11:05 - 2014-02-08 22:01 - 00000000 ____D () C:\Program Files\Xerte 2014-11-19 11:04 - 2009-04-07 10:41 - 00000000 __RHD () C:\Documents and Settings\amx.X-628658B1E9874\Moje dokumenty 2014-11-19 11:01 - 2013-03-23 12:58 - 00464730 _____ () C:\WINDOWS\setupapi.log 2014-11-19 11:01 - 2009-04-07 14:50 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Pulpit 2014-11-18 21:29 - 2009-04-07 10:41 - 00000000 ___HD () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji 2014-11-18 15:07 - 2009-04-02 22:32 - 00001300 _____ () C:\hpfr3420.xml 2014-11-15 23:16 - 2014-08-05 22:43 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\rada 2014-11-15 23:16 - 2013-04-05 22:22 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\kewins 2014-11-14 11:25 - 2013-12-21 01:14 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\dyplomy ja 2014-11-11 22:20 - 2012-05-03 10:14 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2014-11-11 22:20 - 2001-07-21 21:17 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl 2014-11-03 18:16 - 2013-12-21 01:13 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Pulpit\dyplomy julia 2014-11-02 22:43 - 2009-04-17 00:46 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\dvdcss 2014-11-02 00:44 - 2007-08-14 16:08 - 00000000 ____D () C:\WINDOWS\twain_32 2014-10-31 01:47 - 2010-02-26 13:11 - 00000000 ____D () C:\WINDOWS\ERDNT 2014-10-31 00:27 - 2011-09-09 15:59 - 00000730 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Mozilla Firefox.lnk 2014-10-31 00:27 - 2011-09-09 15:59 - 00000730 _____ () C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Mozilla Firefox.lnk 2014-10-31 00:27 - 2011-09-09 15:59 - 00000724 _____ () C:\Documents and Settings\All Users.WINDOWS\Pulpit\Mozilla Firefox.lnk 2014-10-31 00:27 - 2009-04-07 10:42 - 00000767 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Menu Start\Programy\Internet Explorer.lnk 2014-10-30 01:42 - 2007-08-14 14:34 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-10-30 01:22 - 2009-04-17 12:58 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DAEMON Tools Lite 2014-10-30 01:22 - 2009-04-17 12:58 - 00000000 ____D () C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DAEMON Tools Lite 2014-10-30 01:21 - 2009-04-15 23:44 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Dane aplikacji\DAEMON Tools Lite 2014-10-30 00:52 - 2009-04-11 16:11 - 00210944 _____ () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2014-10-23 02:15 - 2009-11-21 02:02 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\Temp 2014-10-22 01:36 - 2007-08-14 16:08 - 00000000 ____D () C:\WINDOWS\Connection Wizard 2014-10-22 01:35 - 2009-04-07 19:35 - 01966080 _____ () C:\WINDOWS\system32\config\Antivirus.Evt 2014-10-21 23:04 - 2009-04-08 10:11 - 00000000 ____D () C:\Documents and Settings\amx.X-628658B1E9874\Ustawienia lokalne\Dane aplikacji\Google 2014-10-21 00:23 - 2007-11-25 10:29 - 00000000 ___HD () C:\WINDOWS\$hf_mig$ ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================