Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 18-02-2015 01
Ran by Piotr (administrator) on SZYMON on 19-02-2015 12:36:35
Running from C:\Documents and Settings\Piotr\Moje dokumenty\Downloads
Loaded Profiles: Piotr (Available profiles: Piotr)
Platform: Microsoft Windows XP Home Edition Dodatek Service Pack 3 (X86) OS Language: Polski
Internet Explorer Version 8 (Default browser: Chrome)
Boot Mode: Normal
Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/

==================== Processes (Whitelisted) =================

(If an entry is included in the fixlist, the process will be closed. The file will not be moved.)

(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastSvc.exe
(AVAST Software) C:\Program Files\Alwil Software\Avast5\AvastUI.exe
(Oracle Corporation) C:\Program Files\Common Files\Java\Java Update\jusched.exe
(Samsung Electronics Co., Ltd.) C:\Program Files\Samsung\Kies\KiesTrayAgent.exe
(Valve Corporation) C:\Program Files\Steam\Steam.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(Apache Software Foundation) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
(Hi-Rez Studios) C:\Program Files\Hi-Rez Studios\HiPatchService.exe
() C:\WINDOWS\system32\srvany.exe
() C:\WINDOWS\KMService.exe
(LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe
() C:\WINDOWS\system32\PnkBstrA.exe
(Apache Software Foundation) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\Apache.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftvsa.exe
(DEVGURU Co., LTD.) C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe
(StarWind Software) C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE
() C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe
(LogMeIn Inc.) C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
(NVIDIA Corporation) C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe
(Microsoft Corporation) C:\Program Files\Microsoft Application Virtualization Client\sftlist.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Virtualization Handler\CVHSVC.EXE
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Valve Corporation) C:\Program Files\Steam\bin\steamwebhelper.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
(Google Inc.) C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe


==================== Registry (Whitelisted) ==================

(If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.)

HKLM\...\Run: [WinSys2] => C:\WINDOWS\system32\winsys2.exe [208896 2008-07-03] ()
HKLM\...\Run: [avast] => C:\Program Files\Alwil Software\Avast5\avastUI.exe [4858968 2013-08-30] (AVAST Software)
HKLM\...\Run: [] => [X]
HKLM\...\Run: [SunJavaUpdateSched] => C:\Program Files\Common Files\Java\Java Update\jusched.exe [507776 2014-10-07] (Oracle Corporation)
HKLM\...\Run: [KiesTrayAgent] => C:\Program Files\Samsung\Kies\KiesTrayAgent.exe [311616 2014-12-17] (Samsung Electronics Co., Ltd.)
HKLM\...\Run: [LogMeIn Hamachi Ui] => C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe [3978600 2015-02-17] (LogMeIn Inc.)
HKLM\...\Winlogon: [Userinit] C:\WINDOWS\system32\userinit.exe,,"C:\Program Files\Przyspiesz Komputer\PCSpeedUpNotifier.exe"
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\Run: [Steam] => C:\Program Files\Steam\steam.exe [2874048 2015-02-19] (Valve Corporation)
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\Run: [uTorrent] => C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent\uTorrent.exe [1377872 2015-01-22] (BitTorrent Inc.)
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\Run: [swg] => C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2010-03-08] (Google Inc.)
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\Run: [DAEMON Tools Lite] => C:\Program Files\DAEMON Tools Lite\DTLite.exe [1305408 2011-01-20] (DT Soft Ltd)
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\Run: [Google Update] => C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [107848 2015-02-04] (Google Inc.)
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\MountPoints2: {60e15b73-77c5-11df-a235-001fc66da533} - J:\LaunchU3.exe -a
HKU\S-1-5-21-796845957-1592454029-682003330-1004\...\MountPoints2: {d103bb72-94b0-11de-ba15-806d6172696f} - I:\Setup.exe
AppInit_DLLs: c:\progra~1\pc_boo~1\assist~1.dll => c:\progra~1\pc_boo~1\assist~1.dll File Not Found
ShellIconOverlayIdentifiers: [00avast] -> {472083B0-C522-11CF-8763-00608CC02F24} => C:\Program Files\Alwil Software\Avast5\ashShell.dll (AVAST Software)
CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION

==================== Internet (Whitelisted) ====================

(If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.)

HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.key-find.com/web/?type=ds&ts=1424293725&from=cor&uid=SAMSUNGXHD322IJ_S1UZJ90Q902339&q={searchTerms}
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.key-find.com/web/?type=ds&ts=1424293725&from=cor&uid=SAMSUNGXHD322IJ_S1UZJ90Q902339&q={searchTerms}
HKU\S-1-5-21-796845957-1592454029-682003330-1004\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
HKU\S-1-5-21-796845957-1592454029-682003330-1004\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms}
SearchScopes: HKLM -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} URL = http://search.bearshare.com/web?src=ieb&systemid=2&q={searchTerms}
SearchScopes: HKLM -> {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
SearchScopes: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = 
SearchScopes: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> {483830EE-A4CD-4b71-B0A3-3D82E62A6909} URL = 
SearchScopes: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD22} URL = http://search.bearshare.com//web?src=ieb&appid=0&systemid=2&sr=0&q={searchTerms}
SearchScopes: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> {9BB47C17-9C68-4BB3-B188-DD9AF0FD2A69} URL = http://search.bearshare.com/web?src=ieb&systemid=2&q={searchTerms}
SearchScopes: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> {EEE7E0A3-AE64-4dc8-84D1-F5D7BAF2DB0C} URL = http://slirsredirect.search.aol.com/slirs_http/sredir?sredir=2685&query={searchTerms}&invocationType=tb50winampie7
BHO: RealPlayer Download and Record Plugin for Internet Explorer -> {3049C3E9-B461-4BC5-8870-4C09146192CA} -> C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\IE\rpbrowserrecordplugin.dll (RealPlayer)
BHO: DivX Plus Web Player HTML5 <video> -> {326E768D-4182-46FD-9C16-1449A49795F4} -> C:\Program Files\DivX\DivX Plus Web Player\ie\DivXHTML5\DivXHTML5.dll (DivX, LLC)
BHO: Groove GFS Browser Helper -> {72853161-30C5-4D22-B7F9-0BBC1D38A37E} -> C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> C:\Program Files\Java\jre1.8.0_25\bin\ssv.dll (Oracle Corporation)
BHO: avast! Online Security -> {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} -> C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
BHO: Google Toolbar Helper -> {AA58ED58-01DD-4d91-8333-CF10577473F7} -> C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Skype Browser Helper -> {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} -> C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Notifier BHO -> {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} -> C:\Program Files\Google\GoogleToolbarNotifier\5.7.9012.1008\swg.dll (Google Inc.)
BHO: Office Document Cache Handler -> {B4F3A835-0E21-4959-BA22-42B3008E02FF} -> C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> C:\Program Files\Java\jre1.8.0_25\bin\jp2ssv.dll (Oracle Corporation)
Toolbar: HKLM - No Name - {88c7f2aa-f93f-432c-8f0e-b7d85967a527} -  No File
Toolbar: HKLM - No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} -  No File
Toolbar: HKLM - avast! Online Security - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\Alwil Software\Avast5\aswWebRepIE.dll (AVAST Software)
Toolbar: HKLM - No Name - {c2d64ff7-0ab8-4263-89c9-ea3b0f8f050c} -  No File
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> No Name - {D4027C7F-154A-4066-A1AD-4243D8127440} -  No File
Toolbar: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> No Name - {88C7F2AA-F93F-432C-8F0E-B7D85967A527} -  No File
Toolbar: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> No Name - {32099AAC-C132-4136-9E9A-4E364A424E17} -  No File
Toolbar: HKU\S-1-5-21-796845957-1592454029-682003330-1004 -> No Name - {EEE6C35B-6118-11DC-9C72-001320C79847} -  No File
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {17492023-C23A-453E-A040-C7C580BBF700} http://download.microsoft.com/download/E/5/6/E5611B10-0D6D-4117-8430-A67417AA88CD/LegitCheckControl.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {67DABFBF-D0AB-41FA-9C46-CC0F21721616} http://download.divx.com/player/DivXBrowserPlugin.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {B4891BE9-835D-471B-B495-F5F3E6A8BBD7} http://cdn.vod4net.pl/1791/viv-3.5.27.1/player/player_ocx.jpeg
DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab
DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab
DPF: {E6F480FC-BD44-4CBA-B74A-89AF7842937D} http://content.systemrequirementslab.com.s3.amazonaws.com/global/bin/srldetect_cyri_4.4.26.0.cab
Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
Winsock: Catalog9 01 C:\WINDOWS\system32\nvappfilter.dll [131072] (NVIDIA)
Winsock: Catalog9 02 C:\WINDOWS\system32\nvappfilter.dll [131072] (NVIDIA)
Winsock: Catalog9 03 C:\WINDOWS\system32\nvappfilter.dll [131072] (NVIDIA)
Winsock: Catalog9 09 C:\WINDOWS\system32\nvappfilter.dll [131072] (NVIDIA)
Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt

FireFox:
========
FF ProfilePath: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default
FF DefaultSearchEngine: key-find
FF SearchEngineOrder.1: Google
FF SelectedSearchEngine: key-find
FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_305.dll ()
FF Plugin: @adobe.com/ShockwavePlayer -> C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF Plugin: @divx.com/DivX Player Plugin,version=1.0.0 -> C:\Program Files\DivX\DivX Player\npDivxPlayerPlugin.dll No File
FF Plugin: @divx.com/DivX Plus Web Player Plug-In,version=1.0.0 -> C:\Program Files\DivX\DivX Plus Web Player\npdivx32.dll (DivX, LLC)
FF Plugin: @divx.com/DivX VOD Helper,version=1.0.0 -> C:\Program Files\DivX\DivX OVS Helper\npovshelper.dll (DivX, LLC.)
FF Plugin: @Google.com/GoogleEarthPlugin -> C:\Program Files\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF Plugin: @java.com/DTPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF Plugin: @java.com/JavaPlugin,version=11.25.2 -> C:\Program Files\Java\jre1.8.0_25\bin\plugin2\npjp2.dll (Oracle Corporation)
FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> c:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll ( Microsoft Corporation)
FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPAUTHZ.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~4\Office14\NPSPWRAP.DLL (Microsoft Corporation)
FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF Plugin: @pandonetworks.com/PandoWebPlugin -> C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll No File
FF Plugin: @real.com/nppl3260;version=6.0.12.732 -> c:\program files\real\realplayer\Netscape6\nppl3260.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprjplug;version=1.0.3.732 -> c:\program files\real\realplayer\Netscape6\nprjplug.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprphtml5videoshim;version=1.0.0.0 -> C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\MozillaPlugins\nprphtml5videoshim.dll (RealNetworks, Inc.)
FF Plugin: @real.com/nprpjplug;version=6.0.12.732 -> c:\program files\real\realplayer\Netscape6\nprpjplug.dll (RealNetworks, Inc.)
FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File
FF Plugin: @vividas.com/npVividasPlayer -> C:\Program Files\Vividas\Player\npVividasPlayer.dll ( )
FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF Plugin HKU\S-1-5-21-796845957-1592454029-682003330-1004: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-796845957-1592454029-682003330-1004: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.26.9\npGoogleUpdate3.dll (Google Inc.)
FF Plugin HKU\S-1-5-21-796845957-1592454029-682003330-1004: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS)
FF Plugin HKU\S-1-5-21-796845957-1592454029-682003330-1004: thehappycloud.com/HappyCloudPlugin -> C:\Documents and Settings\All Users\HappyCloud\Application\npHappyCloudPlugin.dll (The Happy Cloud)
FF Plugin HKU\S-1-5-21-796845957-1592454029-682003330-1004: ubisoft.com/uplaypc -> C:\Program Files\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()
FF user.js: detected! => C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\user.js
FF Plugin ProgramFiles/Appdata: C:\Program Files\mozilla firefox\plugins\nppdf32.dll (Adobe Systems Inc.)
FF SearchPlugin: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\searchplugins\askcom.xml
FF SearchPlugin: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\searchplugins\key-find.xml
FF SearchPlugin: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\searchplugins\MyStart Search.xml
FF SearchPlugin: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\searchplugins\SearchResults.xml
FF SearchPlugin: C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\searchplugins\SweetIM Search.xml
FF Extension: Search Enginer - C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\Extensions\searchengine@gmail.com [2015-02-18]
FF Extension: Adblocker - C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\Extensions\vq24svmt@royyai-.com [2014-09-07]
FF Extension: YouTube to MP3 - C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\Extensions\youtube2mp3@mondayx.de.xpi [2011-09-08]
FF Extension: Adblock Plus - C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-09-07]
FF Extension: Skype Click to Call - C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2015-01-29]
FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension
FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2009-12-04]
FF HKLM\...\Firefox\Extensions: [{ABDE892B-13A8-4d1b-88E6-365A6E755758}] - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext
FF Extension: RealPlayer Browser Record Plugin - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Firefox\Ext [2010-04-11]
FF HKLM\...\Firefox\Extensions: [{A27F3FEF-1113-4cfb-A032-8E12D7D8EE70}] - C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Bookmarks Connector\FirefoxExtension
FF HKLM\...\Firefox\Extensions: [wrc@avast.com] - C:\Program Files\Alwil Software\Avast5\WebRep\FF
FF Extension: avast! Online Security - C:\Program Files\Alwil Software\Avast5\WebRep\FF [2011-03-07]
FF HKLM\...\Firefox\Extensions: [{336D0C35-8A85-403a-B9D2-65C292C39087}] - C:\Program Files\Web Assistant\Firefox
FF HKLM\...\Firefox\Extensions: [{23fcfd51-4958-4f00-80a3-ae97e717ed8b}] - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5
FF Extension: DivX Plus Web Player HTML5 &lt;video&gt; - C:\Program Files\DivX\DivX Plus Web Player\firefox\DivXHTML5 [2013-07-22]
FF HKLM\...\Firefox\Extensions: [{8E9E3331-D360-4f87-8803-52DE43566502}] - C:\Program Files\Web Assistant\Firefox
FF HKLM\...\Firefox\Extensions: [searchengine@gmail.com] - C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\2vyijf3g.default\extensions\searchengine@gmail.com
FF HKLM\...\Thunderbird\Extensions: [{CCB7D94B-CA92-4E3F-B79D-ADE0F07ADC74}] - C:\Program Files\Nokia\Nokia Ovi Suite\Connectors\Thunderbird Connector\ThunderbirdExtension

Chrome: 
=======
CHR dev: Chrome dev build detected! <======= ATTENTION
CHR Profile: C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default
CHR Extension: (Google Docs) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake [2013-08-16]
CHR Extension: (Google Drive) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf [2013-08-16]
CHR Extension: (YouTube) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo [2013-08-16]
CHR Extension: (Google Search) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf [2013-08-16]
CHR Extension: (paricechhop) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\dahdkolbfamhhmapilflhiciecohdail [2014-08-19]
CHR Extension: (AdBlock) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-01-10]
CHR Extension: (ProxMate) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\ifalmiidchkjjmkkbkoaibpmoeichmki [2013-12-15]
CHR Extension: (Google Wallet) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-23]
CHR Extension: (Gmail) - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia [2013-08-16]
CHR HKLM\...\Chrome\Extension: [dlnembnfbcpjnepmfjmngjenhhajpdfd] - C:\Program Files\Web Assistant\source.crx [Not Found]
CHR HKLM\...\Chrome\Extension: [jfmjfhklogoienhpfnppmbcbjfjnkonk] - C:\Documents and Settings\All Users\Dane aplikacji\Real\RealPlayer\BrowserRecordPlugin\Chrome\Ext\rphtml5video.crx [2010-04-11]
CHR HKLM\...\Chrome\Extension: [jifflliplgeajjdhmkcfnngfpgbjonjg] - C:\Program Files\Perion\NewTab\newTab.crx [2012-09-16]
CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx [2011-10-10]
CHR HKLM\...\Chrome\Extension: [nneajnkjbffgblleaoojgaacokifdkhm] - C:\Program Files\DivX\DivX Plus Web Player\chrome\DivXHTML5\DivXHTML5.crx [2013-05-06]
StartMenuInternet: chrome.exe - C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R2 avast! Antivirus; C:\Program Files\Alwil Software\Avast5\AvastSvc.exe [46808 2013-08-30] (AVAST Software)
S3 BEService; C:\Program Files\Common Files\BattlEye\BEService.exe [282496 2014-06-30] ()
R2 ForceWare Intelligent Application Manager (IAM); C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcAppFlt.exe [172032 2006-09-11] () [File not signed]
R2 ForcewareWebInterface; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\Apache Group\Apache2\bin\apache.exe [20543 2006-04-13] (Apache Software Foundation) [File not signed]
R2 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1848680 2015-02-17] (LogMeIn Inc.)
R2 HiPatchService; C:\Program Files\Hi-Rez Studios\HiPatchService.exe [9216 2014-02-28] (Hi-Rez Studios) [File not signed]
S3 IDriverT; C:\Program Files\Common Files\InstallShield\Driver\1050\Intel 32\IDriverT.exe [73728 2004-10-22] (Macrovision Corporation) [File not signed]
R2 KMService; C:\WINDOWS\system32\srvany.exe [8192 2012-01-18] () [File not signed]
R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [411920 2015-02-16] (LogMeIn, Inc.)
S3 npggsvc; C:\WINDOWS\system32\GameMon.des [4797064 2013-11-05] (INCA Internet Co., Ltd.)
R2 nSvcIp; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcIp.exe [135227 2006-09-11] (NVIDIA Corporation) [File not signed]
S4 nSvcLog; C:\Program Files\NVIDIA Corporation\NetworkAccessManager\bin\nSvcLog.exe [65599 2006-09-11] (NVIDIA Corporation) [File not signed]
R2 PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [75136 2014-11-23] ()
S3 ServiceLayer; C:\Program Files\PC Connectivity Solution\ServiceLayer.exe [628736 2010-12-08] (Nokia) [File not signed]
R2 ss_conn_service; C:\Program Files\Samsung\USB Drivers\25_escape\conn\ss_conn_service.exe [743688 2014-10-13] (DEVGURU Co., LTD.)
R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) [File not signed]

==================== Drivers (Whitelisted) ====================

(If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.)

R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-07-01] (Advanced Micro Devices)
R2 aswFsBlk; C:\WINDOWS\system32\Drivers\aswFsBlk.sys [29816 2013-08-30] (AVAST Software)
R1 aswKbd; C:\WINDOWS\system32\Drivers\aswKbd.sys [21576 2013-08-30] (AVAST Software)
R2 aswMonFlt; C:\WINDOWS\system32\drivers\aswMonFlt.sys [66336 2013-08-30] (AVAST Software)
R1 aswRdr; C:\WINDOWS\system32\Drivers\aswRdr.sys [49760 2013-08-30] (AVAST Software)
R0 aswRvrt; C:\WINDOWS\system32\Drivers\aswRvrt.sys [49376 2013-08-30] ()
R1 aswSnx; C:\WINDOWS\system32\Drivers\aswSnx.sys [770784 2014-12-01] (AVAST Software)
R1 aswSP; C:\WINDOWS\system32\Drivers\aswSP.sys [369584 2013-08-30] (AVAST Software)
R1 aswTdi; C:\WINDOWS\system32\Drivers\aswTdi.sys [56080 2013-08-30] (AVAST Software)
R0 aswVmm; C:\WINDOWS\system32\Drivers\aswVmm.sys [177864 2013-08-30] ()
R2 atksgt; C:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2011-10-01] ()
S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-13] (Microsoft Corporation)
R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.)
R1 ISODrive; C:\Program Files\UltraISO\drivers\ISODrive.sys [82168 2013-11-21] (EZB Systems, Inc.)
R2 lirsgt; C:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2011-10-01] ()
S3 LVUSBSta; C:\WINDOWS\System32\DRIVERS\LVUSBSta.sys [39424 2005-12-06] (Logitech Inc.)
R3 MTsensor; C:\WINDOWS\System32\DRIVERS\ASACPI.sys [5810 2004-08-13] ()
S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-13] (Microsoft Corporation)
R0 nvata; C:\WINDOWS\System32\DRIVERS\nvata.sys [105344 2006-08-21] (NVIDIA Corporation)
R3 NVENETFD; C:\WINDOWS\System32\DRIVERS\NVENETFD.sys [57856 2006-09-11] (NVIDIA Corporation)
R3 nvnetbus; C:\WINDOWS\System32\DRIVERS\nvnetbus.sys [19968 2006-09-11] (NVIDIA Corporation)
R1 NVTCP; C:\WINDOWS\System32\DRIVERS\NVTcp.sys [110592 2006-09-11] (NVIDIA Corporation)
S3 pepifilter; C:\WINDOWS\System32\DRIVERS\lv302af.sys [13976 2009-04-30] (Logitech Inc.)
S3 PID_08A0; C:\WINDOWS\System32\DRIVERS\LV302AV.SYS [916096 2005-12-06] (Logitech Inc.)
S3 PID_PEPI; C:\WINDOWS\System32\DRIVERS\LV302V32.SYS [2687512 2009-04-30] () [File not signed]
R1 prodrv06; C:\WINDOWS\System32\drivers\prodrv06.sys [54368 2004-11-25] (Protection Technology) [File not signed]
R0 prohlp02; C:\WINDOWS\System32\drivers\prohlp02.sys [77248 2004-11-25] (Protection Technology) [File not signed]
R0 prosync1; C:\WINDOWS\System32\drivers\prosync1.sys [6944 2003-09-06] (Protection Technology) [File not signed]
R3 SenFiltService; C:\WINDOWS\System32\drivers\Senfilt.sys [392960 2006-03-17] (Sensaura)
R0 sfhlp01; C:\WINDOWS\System32\drivers\sfhlp01.sys [4832 2003-12-01] (Protection Technology) [File not signed]
R3 Sftfs; C:\WINDOWS\System32\DRIVERS\Sftfsxp.sys [587944 2013-06-26] (Microsoft Corporation)
R3 Sftplay; C:\WINDOWS\System32\DRIVERS\Sftplayxp.sys [213288 2013-06-26] (Microsoft Corporation)
R3 Sftredir; C:\WINDOWS\System32\DRIVERS\Sftredirxp.sys [23208 2013-06-26] (Microsoft Corporation)
R3 Sftvol; C:\WINDOWS\System32\DRIVERS\Sftvolxp.sys [19112 2013-06-26] (Microsoft Corporation)
R0 sptd; C:\WINDOWS\System32\Drivers\sptd.sys [443448 2011-05-31] () [File not signed]
U3 aa0by4e3; C:\WINDOWS\system32\Drivers\aa0by4e3.sys [0 ] (NVIDIA Corporation) <==== ATTENTION (zero size file/folder)
U3 azqf0wtz; C:\WINDOWS\system32\Drivers\azqf0wtz.sys [0 ] (NVIDIA Corporation) <==== ATTENTION (zero size file/folder)
S3 EagleNT; \??\C:\WINDOWS\system32\drivers\EagleNT.sys [X]
S3 EagleXNt; \??\C:\WINDOWS\system32\drivers\EagleXNt.sys [X]
S3 GMSIPCI; \??\E:\INSTALL\GMSIPCI.SYS [X]
S4 IntelIde; No ImagePath
S3 XDva369; \??\C:\WINDOWS\system32\XDva369.sys [X]
S3 XDva375; \??\C:\WINDOWS\system32\XDva375.sys [X]
S3 XDva380; \??\C:\WINDOWS\system32\XDva380.sys [X]
S3 XDva383; \??\C:\WINDOWS\system32\XDva383.sys [X]
S3 XDva385; \??\C:\WINDOWS\system32\XDva385.sys [X]
S3 XDva386; \??\C:\WINDOWS\system32\XDva386.sys [X]
S3 XDva389; \??\C:\WINDOWS\system32\XDva389.sys [X]
S3 XDva390; \??\C:\WINDOWS\system32\XDva390.sys [X]
S3 XDva391; \??\C:\WINDOWS\system32\XDva391.sys [X]
S3 XDva392; \??\C:\WINDOWS\system32\XDva392.sys [X]
S3 XDva393; \??\C:\WINDOWS\system32\XDva393.sys [X]
S3 XDva394; \??\C:\WINDOWS\system32\XDva394.sys [X]
S3 XDva396; \??\C:\WINDOWS\system32\XDva396.sys [X]
S3 XDva397; \??\C:\WINDOWS\system32\XDva397.sys [X]
S3 XDva398; \??\C:\WINDOWS\system32\XDva398.sys [X]
S3 XDva399; \??\C:\WINDOWS\system32\XDva399.sys [X]
S3 XDva401; \??\C:\WINDOWS\system32\XDva401.sys [X]
S3 XDva404; \??\C:\WINDOWS\system32\XDva404.sys [X]
S3 XDva405; \??\C:\WINDOWS\system32\XDva405.sys [X]

==================== NetSvcs (Whitelisted) ===================

(If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.)


==================== One Month Created Files and Folders ========

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-19 12:35 - 2015-02-19 12:36 - 00000000 ____D () C:\FRST
2015-02-19 12:35 - 2015-02-19 12:35 - 00000000 ____D () C:\Documents and Settings\Piotr\Pulpit\Nowy folder
2015-02-18 20:55 - 2015-02-18 20:55 - 00000000 ____D () C:\Program Files\LogMeIn Hamachi
2015-02-18 20:55 - 2015-02-18 20:55 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\LogMeIn Hamachi
2015-02-18 20:44 - 2015-02-18 20:45 - 00000000 ____D () C:\Documents and Settings\Piotr\Pulpit\kopia zapas rm2 sc
2015-02-18 19:50 - 2015-02-18 19:50 - 00000736 _____ () C:\Documents and Settings\Piotr\Pulpit\Skrót do The Creative Assembly.lnk
2015-02-15 12:19 - 2015-02-15 12:24 - 00000000 ____D () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Swipecart
2015-02-12 00:15 - 2015-02-12 00:15 - 00000000 ____D () C:\7df65dd7a4ae5b5bffcd8af3aa7e
2015-02-11 22:42 - 2015-02-11 22:42 - 00098304 _____ () C:\WINDOWS\Minidump\Mini021115-01.dmp
2015-02-08 13:57 - 2015-02-08 13:57 - 00000000 ____D () C:\Documents and Settings\Piotr\Moje dokumenty\Shadows on the Vatican Act I
2015-02-05 13:34 - 2015-02-05 13:34 - 00000000 ____D () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Steam
2015-01-29 14:28 - 2015-01-29 14:28 - 00000000 ____D () C:\Program Files\Mozilla Firefox
2015-01-25 12:36 - 2015-01-25 12:43 - 00000000 ____D () C:\Documents and Settings\Piotr\Pulpit\zdjęcie
2015-01-24 20:01 - 2015-01-24 20:00 - 00098304 _____ () C:\WINDOWS\Minidump\Mini012415-02.dmp
2015-01-24 18:19 - 2015-01-24 18:19 - 00098304 _____ () C:\WINDOWS\Minidump\Mini012415-01.dmp

==================== One Month Modified Files and Folders =======

(If an entry is included in the fixlist, the file\folder will be moved.)

2015-02-19 12:36 - 2009-08-29 14:53 - 00000000 ____D () C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp
2015-02-19 12:35 - 2009-08-29 14:53 - 00000000 ____D () C:\Documents and Settings\Piotr\Pulpit
2015-02-19 12:29 - 2012-05-18 23:48 - 00000930 _____ () C:\WINDOWS\Tasks\Adobe Flash Player Updater.job
2015-02-19 12:24 - 2011-02-23 15:28 - 00000000 ____D () C:\Program Files\Steam
2015-02-19 12:20 - 2014-01-29 20:41 - 00000000 ____D () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2015-02-19 12:20 - 2010-06-28 16:55 - 00000000 ____D () C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent
2015-02-19 12:20 - 2009-08-29 14:47 - 01351977 _____ () C:\WINDOWS\WindowsUpdate.log
2015-02-19 12:19 - 2014-01-29 20:41 - 00000000 ____D () C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\LogMeIn Hamachi
2015-02-19 12:19 - 2012-10-07 20:10 - 00000366 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job
2015-02-19 12:19 - 2011-08-31 16:06 - 00000286 _____ () C:\WINDOWS\Tasks\RealUpgradeScheduledTaskS-1-5-21-796845957-1592454029-682003330-1004.job
2015-02-19 12:19 - 2011-08-31 16:06 - 00000278 _____ () C:\WINDOWS\Tasks\RealUpgradeLogonTaskS-1-5-21-796845957-1592454029-682003330-1004.job
2015-02-19 12:19 - 2009-08-29 16:40 - 00000159 _____ () C:\WINDOWS\wiadebug.log
2015-02-19 12:19 - 2009-08-29 16:40 - 00000050 _____ () C:\WINDOWS\wiaservc.log
2015-02-19 12:18 - 2014-03-27 14:47 - 00000222 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — logowanie.job
2015-02-19 12:18 - 2010-01-12 16:55 - 00001032 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job
2015-02-19 12:18 - 2009-08-29 14:51 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT
2015-02-19 12:17 - 2009-08-29 14:53 - 00000188 ___SH () C:\Documents and Settings\Piotr\ntuser.ini
2015-02-19 12:17 - 2009-08-29 14:51 - 00032278 _____ () C:\WINDOWS\SchedLgU.Txt
2015-02-19 11:59 - 2012-07-19 10:56 - 00001132 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1592454029-682003330-1004UA.job
2015-02-19 11:42 - 2010-01-12 16:55 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job
2015-02-19 11:16 - 2009-08-29 14:53 - 00000000 __RHD () C:\Documents and Settings\Piotr\Dane aplikacji
2015-02-19 02:26 - 2013-08-30 15:23 - 00000266 _____ () C:\WINDOWS\Tasks\EPUpdater.job
2015-02-19 00:31 - 2010-04-07 19:26 - 00000000 ____D () C:\Program Files\Common Files\Nokia
2015-02-19 00:29 - 2009-08-29 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy
2015-02-19 00:24 - 2009-08-29 16:38 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit
2015-02-19 00:23 - 2009-08-29 14:53 - 00000000 ___HD () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji
2015-02-19 00:13 - 2014-08-19 23:54 - 00000000 ____D () C:\Program Files\pricechhop
2015-02-18 22:09 - 2010-12-10 11:54 - 00001324 _____ () C:\WINDOWS\system32\d3d9caps.dat
2015-02-18 20:55 - 2014-12-15 12:17 - 00101254 _____ () C:\WINDOWS\setupapi.log
2015-02-18 20:10 - 2014-07-17 14:16 - 00000000 ___RD () C:\Documents and Settings\Piotr\Pulpit\zapisy z gier !
2015-02-18 19:00 - 2011-04-14 17:54 - 00000254 _____ () C:\WINDOWS\Tasks\RMSchedule.job
2015-02-18 11:18 - 2008-04-15 13:00 - 00013646 _____ () C:\WINDOWS\system32\wpa.dbl
2015-02-16 17:29 - 2009-12-03 18:29 - 00000000 ____D () C:\Program Files\THQ
2015-02-16 16:20 - 2014-01-30 08:54 - 00026176 ____H (LogMeIn, Inc.) C:\WINDOWS\system32\hamachi.sys
2015-02-13 17:15 - 2011-03-08 12:34 - 00000390 _____ () C:\WINDOWS\Tasks\1-Click Maintenance.job
2015-02-13 09:04 - 2009-12-03 18:28 - 00000000 ____D () C:\WINDOWS\Microsoft.NET
2015-02-12 07:59 - 2012-07-19 10:56 - 00001080 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1592454029-682003330-1004Core.job
2015-02-12 07:42 - 2014-02-11 15:04 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Package Cache
2015-02-12 00:15 - 2013-07-13 22:19 - 00000000 ____D () C:\WINDOWS\system32\MRT
2015-02-12 00:15 - 2011-04-12 20:03 - 00000000 ____D () C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
2015-02-12 00:15 - 2009-08-29 20:46 - 113756392 _____ (Microsoft Corporation) C:\WINDOWS\system32\MRT.exe
2015-02-12 00:15 - 2008-04-15 13:00 - 00000705 _____ () C:\WINDOWS\win.ini
2015-02-11 22:42 - 2009-10-02 15:07 - 00000000 ____D () C:\WINDOWS\Minidump
2015-02-11 22:28 - 2015-01-16 12:27 - 00000000 ____D () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\The Witcher
2015-02-08 15:00 - 2014-03-27 14:47 - 00000216 _____ () C:\WINDOWS\Tasks\Powiadomienie o zakończeniu obsługi systemu Microsoft Windows XP — co miesiąc.job
2015-02-08 13:57 - 2009-08-29 14:53 - 00000000 ___RD () C:\Documents and Settings\Piotr\Moje dokumenty
2015-02-08 13:02 - 2012-10-06 15:17 - 01072680 _____ () C:\WINDOWS\system32\nvdrsdb0.bin
2015-02-08 13:02 - 2012-10-06 15:17 - 00000001 _____ () C:\WINDOWS\system32\nvdrssel.bin
2015-02-07 20:38 - 2012-04-25 21:47 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service
2015-02-05 21:29 - 2012-05-18 23:48 - 00701616 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerApp.exe
2015-02-05 21:29 - 2012-05-18 23:48 - 00071344 _____ (Adobe Systems Incorporated) C:\WINDOWS\system32\FlashPlayerCPLApp.cpl
2015-02-02 18:18 - 2012-10-06 15:17 - 01072680 _____ () C:\WINDOWS\system32\nvdrsdb1.bin

==================== Files in the root of some directories =======

2010-05-25 13:05 - 2011-10-15 09:22 - 0000000 _____ () C:\Documents and Settings\Piotr\Dane aplikacji\AVSMediaPlayer.m3u
2014-06-04 17:42 - 2014-06-06 15:22 - 0000098 _____ () C:\Documents and Settings\Piotr\Dane aplikacji\LauncherSettings_live.cfg
2014-03-16 18:14 - 2014-04-25 10:27 - 0138056 _____ () C:\Documents and Settings\Piotr\Dane aplikacji\PnkBstrK.sys
2014-06-05 14:14 - 2014-06-05 14:14 - 0008143 _____ () C:\Documents and Settings\Piotr\Dane aplikacji\TheHunterSettings_live.bin
2014-06-04 16:32 - 2014-06-04 16:32 - 0000039 _____ () C:\Documents and Settings\Piotr\Dane aplikacji\TheHunterSettings_steam_live.cfg
2009-12-20 19:15 - 2014-12-17 14:14 - 0085504 _____ () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
2010-07-06 21:21 - 2010-07-06 21:21 - 0000130 _____ () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
2014-02-11 15:08 - 2014-02-11 15:08 - 0000000 ___SH () C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\LumaEmu
2012-07-19 19:24 - 2012-05-20 19:24 - 0000032 ____R () C:\Documents and Settings\All Users\hash.dat

Files to move or delete:
====================
C:\Documents and Settings\All Users\hash.dat
C:\Documents and Settings\Piotr\DivXInstaller.exe
C:\Documents and Settings\Piotr\DVD9.0.14.106_63202_STD_iUpgrade.exe
C:\Documents and Settings\Piotr\SVGICC.exe
C:\Documents and Settings\Piotr\SVGView.exe


Some content of TEMP:
====================
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\Execute2App.exe
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\ICReinstall_Process-Explorer(12562)-dp.exe
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\msvcp90.dll
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\msvcr90.dll
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\NEventMessages.dll
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\Nexus%20Mod%20Manager-legacy-0.52.3.exe
C:\Documents and Settings\Piotr\Ustawienia lokalne\Temp\SRLDetectionLibrary5052257525734819934.dll


==================== Bamital & volsnap Check =================

(There is no automatic fix for files that do not pass verification.)

C:\WINDOWS\explorer.exe => File is digitally signed
C:\WINDOWS\system32\winlogon.exe => File is digitally signed
C:\WINDOWS\system32\svchost.exe => File is digitally signed
C:\WINDOWS\system32\services.exe => File is digitally signed
C:\WINDOWS\system32\User32.dll => File is digitally signed
C:\WINDOWS\system32\userinit.exe => File is digitally signed
C:\WINDOWS\system32\rpcss.dll => File is digitally signed
C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed

==================== End Of Log ============================