Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 27-04-2015 01 Ran by Matiasik (administrator) on BRONX-A45522097 on 27-04-2015 20:54:33 Running from C:\Documents and Settings\Matiasik\Moje dokumenty\Downloads Loaded Profiles: Matiasik (Available profiles: Matiasik & Administrator) Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 8 (Default browser: Chrome) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Realtek Semiconductor Corp.) C:\WINDOWS\SOUNDMAN.EXE (Microsoft Corporation) C:\WINDOWS\system32\rundll32.exe (Google Inc.) C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (LogMeIn, Inc.) C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe (NVIDIA Corporation) C:\WINDOWS\system32\nvsvc32.exe (Microsoft Corporation) C:\WINDOWS\system32\MsPMSPSv.exe (Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [NVRTCLK] => C:\WINDOWS\system32\NVRTCLK\NVRTClk.exe [24576 2003-12-30] () HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [77824 2004-12-22] (Realtek Semiconductor Corp.) HKLM\...\Run: [VGAUtil] => C:\Program Files\GigaByte\VGA Utility Manager\G-VGA.exe [544768 2012-08-14] () HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [BCSSync] => C:\Program Files\Microsoft Office\Office14\BCSSync.exe [91520 2010-03-13] (Microsoft Corporation) HKLM\...\Run: [nwiz] => nwiz.exe /install HKLM\...\Run: [NvMediaCenter] => RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\Run: [Google Update] => C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [136176 2012-02-14] (Google Inc.) HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\Run: [uTorrent] => C:\Documents and Settings\Matiasik\Dane aplikacji\uTorrent\uTorrent.exe [1742928 2015-03-04] (BitTorrent Inc.) HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\Run: [GUDelayStartup] => C:\Program Files\Glary Utilities 5\StartupManager.exe [37152 2015-02-12] (Glarysoft Ltd) HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [5496600 2015-01-20] (Piriform Ltd) HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\Run: [Spotify Web Helper] => C:\SpotifyWebHelper.exe [2020920 2015-04-26] (Spotify Ltd) HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\MountPoints2: {956e7c8a-17da-11e4-b007-0014852d45ea} - I:\RunGame.exe HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\MountPoints2: {bd88f9ae-5ba3-11e4-b110-0014852d45ea} - H:\Startme.exe HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\MountPoints2: {c0883150-6c78-11e2-aac3-0014852d45ea} - G:\Startme.exe HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\...\MountPoints2: {e7e3d716-fc5c-11e3-afad-0014852d45ea} - H:\RunGame.exe Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\SATARaid.lnk [2012-08-13] ShortcutTarget: SATARaid.lnk -> C:\Program Files\Silicon Image\SiISATARaid\SATARaid.exe (Silicon Image, Inc.) BootExecute: autocheck autochk * GroupPolicy: Group Policy on Chrome detected <======= ATTENTION CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.yahoo.com HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = HKU\S-1-5-21-1482476501-1604221776-1606980848-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://mail.ru/cnt/10445?gp=blackbear2 SearchScopes: HKU\S-1-5-21-1482476501-1604221776-1606980848-1003 -> DefaultScope {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = http://go.mail.ru/search?q={SearchTerms}&fr=ntg SearchScopes: HKU\S-1-5-21-1482476501-1604221776-1606980848-1003 -> {22CAF995-988B-438F-B0B5-675FB04239F6} URL = http://search.yahoo.com/search?p={searchTerms}&ei=utf-8&fr=b1ie7 SearchScopes: HKU\S-1-5-21-1482476501-1604221776-1606980848-1003 -> {FFEBBF0A-C22C-4172-89FF-45215A135AC7} URL = http://go.mail.ru/search?q={SearchTerms}&fr=ntg DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1360331474609 DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll [2011-11-03] (Skype Technologies) Filter: deflate - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2012-11-01] (Microsoft Corporation) Filter: gzip - {8f6b0360-b80d-11d0-a9b3-006097942311} - C:\WINDOWS\system32\urlmon.dll [2012-11-01] (Microsoft Corporation) Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt FireFox: ======== FF ProfilePath: C:\Documents and Settings\Matiasik\Dane aplikacji\Mozilla\Firefox\Profiles\darzj09k.default FF DefaultSearchEngine,S: FF SearchEngineOrder.1: FF SearchEngineOrder.1,S: FF SelectedSearchEngine,S: FF Homepage: about:home FF Keyword.URL: hxxp://go.mail.ru/search?fr=ntg&q= FF Plugin: @adobe.com/FlashPlayer -> C:\WINDOWS\system32\Macromed\Flash\NPSWF32_16_0_0_257.dll [2015-01-18] () FF Plugin: @java.com/DTPlugin,version=1.6.0_37 -> C:\WINDOWS\system32\npdeployJava1.dll [2012-09-24] (Sun Microsystems, Inc.) FF Plugin: @java.com/JavaPlugin -> C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll [2012-09-24] (Sun Microsystems, Inc.) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> C:\Program Files\Microsoft Silverlight\5.1.30514.0\npctrl.dll [2014-05-13] ( Microsoft Corporation) FF Plugin: @microsoft.com/OfficeAuthz,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPAUTHZ.DLL [2010-01-09] (Microsoft Corporation) FF Plugin: @microsoft.com/SharePoint,version=14.0 -> C:\PROGRA~1\MICROS~3\Office14\NPSPWRAP.DLL [2010-03-24] (Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll [2008-07-30] (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-20] (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.25.5\npGoogleUpdate3.dll [2014-10-20] (Google Inc.) FF Plugin: Adobe Reader -> C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll [2013-12-18] (Adobe Systems Inc.) FF Plugin HKU\S-1-5-21-1482476501-1604221776-1606980848-1003: @tools.google.com/Google Update;version=3 -> C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-08] (Google Inc.) FF Plugin HKU\S-1-5-21-1482476501-1604221776-1606980848-1003: @tools.google.com/Google Update;version=9 -> C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.22.3\npGoogleUpdate3.dll [2013-12-08] (Google Inc.) FF Plugin HKU\S-1-5-21-1482476501-1604221776-1606980848-1003: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Unity\WebPlayer\loader\npUnity3D32.dll [2013-03-10] (Unity Technologies ApS) FF SearchPlugin: C:\Documents and Settings\Matiasik\Dane aplikacji\Mozilla\Firefox\Profiles\darzj09k.default\searchplugins\mailru.xml [2014-12-31] FF Extension: SoundCloud Downloader - Technowise - C:\Documents and Settings\Matiasik\Dane aplikacji\Mozilla\Firefox\Profiles\darzj09k.default\Extensions\{c8d3bc80-0810-4d21-a2c2-be5f2b2832ac}.xpi [2014-01-25] FF Extension: Adblock Plus - C:\Documents and Settings\Matiasik\Dane aplikacji\Mozilla\Firefox\Profiles\darzj09k.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}.xpi [2014-01-01] FF HKLM\...\Firefox\Extensions: [jqs@sun.com] - C:\Program Files\Java\jre6\lib\deploy\jqs\ff FF Extension: Java Quick Starter - C:\Program Files\Java\jre6\lib\deploy\jqs\ff [2012-06-26] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2012-11-13] Chrome: ======= CHR HomePage: Default -> CHR DefaultSuggestURL: Default -> {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client={google:suggestClient}&gs_ri={google:suggestRid}&xssi=t&q={searchTerms}&{google:inputType}{google:cursorPosition}{google:currentPageUrl}{google:pageClassification}{google:searchVersion}{google:sessionToken}{google:prefetchQuery}sugkey={google:suggestAPIKeyParameter} CHR Profile: C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default CHR Extension: (Adblock Plus) - C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb [2014-10-20] CHR Extension: (BetaFish Adblocker) - C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2014-10-20] CHR Extension: (Google Wallet) - C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2013-08-30] CHR HKLM\...\Chrome\Extension: [gdknicmnhbaajdglbinpahhapghpakch] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [jedelkhanefmcnpappfhachbpnlhomai] - https://clients2.google.com/service/update2/crx CHR HKLM\...\Chrome\Extension: [pganlglbhgfjfgopijbhemcpbehjnpia] - https://clients2.google.com/service/update2/crx StartMenuInternet: chrome.exe - C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 Hamachi2Svc; C:\Program Files\LogMeIn Hamachi\hamachi-2.exe [1682768 2014-05-13] (LogMeIn Inc.) S3 HitmanProScheduler; C:\Program Files\HitmanPro\hmpsched.exe [106280 2014-05-28] (SurfRight B.V.) R2 LMIGuardianSvc; C:\Program Files\LogMeIn Hamachi\LMIGuardianSvc.exe [375056 2014-04-15] (LogMeIn, Inc.) S3 Sony PC Companion; C:\Program Files\Sony\Sony PC Companion\PCCService.exe [155824 2013-02-04] (Avanquest Software) R2 WMDM PMSP Service; C:\WINDOWS\system32\MsPMSPSv.exe [53520 2000-06-26] (Microsoft Corporation) [File not signed] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) S3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2304320 2004-12-22] (Realtek Semiconductor Corp.) [File not signed] R1 AmdK8; C:\WINDOWS\System32\DRIVERS\AmdK8.sys [43520 2006-07-01] (Advanced Micro Devices) R3 anvsnddrv; C:\WINDOWS\System32\drivers\anvsnddrv.sys [32896 2013-10-12] (AnvSoft Inc.) [File not signed] S3 CCDECODE; C:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R1 dtsoftbus01; C:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2013-05-02] (DT Soft Ltd) S3 ET5Drv; C:\WINDOWS\system32\Drivers\ET5Drv.sys [186584 2004-09-21] (Microsoft Corporation) [File not signed] S3 gdrv; C:\WINDOWS\gdrv.sys [17488 2012-11-27] (Windows (R) 2000 DDK provider) R1 GUBootStartup; C:\WINDOWS\System32\drivers\GUBootStartup.sys [17344 2015-02-24] (Glarysoft Ltd) R3 GVCplDrv; C:\WINDOWS\system32\Drivers\GVCplDrv.sys [23040 2004-05-02] () [File not signed] R3 hamachi; C:\WINDOWS\System32\DRIVERS\hamachi.sys [26176 2009-03-18] (LogMeIn, Inc.) S3 NdisIP; C:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2011-12-16] (Microsoft Corporation) S3 NTSIM; C:\WINDOWS\system32\ntsim.sys [7040 2003-07-17] (VIA Networking Technologies, Inc. ) [File not signed] S3 s0017bus; C:\WINDOWS\System32\DRIVERS\s0017bus.sys [86824 2008-10-21] (MCCI Corporation) S3 s0017mdfl; C:\WINDOWS\System32\DRIVERS\s0017mdfl.sys [15016 2008-10-21] (MCCI Corporation) S3 s0017mdm; C:\WINDOWS\System32\DRIVERS\s0017mdm.sys [114600 2008-10-21] (MCCI Corporation) S3 s0017mgmt; C:\WINDOWS\System32\DRIVERS\s0017mgmt.sys [108328 2008-10-21] (MCCI Corporation) S3 s0017nd5; C:\WINDOWS\System32\DRIVERS\s0017nd5.sys [26024 2008-10-21] (MCCI Corporation) S3 s0017obex; C:\WINDOWS\System32\DRIVERS\s0017obex.sys [104616 2008-10-21] (MCCI Corporation) S3 s0017unic; C:\WINDOWS\System32\DRIVERS\s0017unic.sys [109736 2008-10-21] (MCCI Corporation) S3 s3017bus; C:\WINDOWS\System32\DRIVERS\s3017bus.sys [83880 2007-12-10] (MCCI Corporation) S3 s3017mdfl; C:\WINDOWS\System32\DRIVERS\s3017mdfl.sys [15016 2007-12-10] (MCCI Corporation) S3 s3017mdm; C:\WINDOWS\System32\DRIVERS\s3017mdm.sys [110632 2007-12-10] (MCCI Corporation) S3 s3017mgmt; C:\WINDOWS\System32\DRIVERS\s3017mgmt.sys [104616 2007-12-10] (MCCI Corporation) S3 s3017nd5; C:\WINDOWS\System32\DRIVERS\s3017nd5.sys [25512 2007-12-10] (MCCI Corporation) S3 s3017obex; C:\WINDOWS\System32\DRIVERS\s3017obex.sys [100648 2007-12-10] (MCCI Corporation) S3 s3017unic; C:\WINDOWS\System32\DRIVERS\s3017unic.sys [110120 2007-12-10] (MCCI Corporation) R0 Si3112; C:\WINDOWS\system32\Drivers\Si3112.sys [69168 2011-12-16] (Silicon Image, Inc.) S0 Si3114r5; C:\WINDOWS\system32\Drivers\Si3114r5.sys [211496 2011-12-16] (Silicon Image, Inc) R0 Si3124; C:\WINDOWS\system32\Drivers\Si3124.sys [69248 2011-12-16] (Silicon Image, Inc.) [File not signed] R0 Si3132; C:\WINDOWS\system32\Drivers\Si3132.sys [80424 2011-12-16] (Silicon Image, Inc) R0 Si3132r5; C:\WINDOWS\system32\Drivers\Si3132r5.sys [217128 2011-12-16] (Silicon Image, Inc) R0 Si3531; C:\WINDOWS\system32\Drivers\Si3531.sys [210736 2011-12-16] (Silicon Image, Inc) R3 stdriver; C:\WINDOWS\System32\DRIVERS\stdriverx86.sys [40344 2012-09-22] () R0 viaagp1; C:\WINDOWS\System32\DRIVERS\viaagp1.sys [27904 2003-07-01] (VIA Technologies, Inc.) S3 viafilter; C:\WINDOWS\System32\Drivers\viausb1.sys [9728 2001-09-19] (VIA Technologies, Inc.) [File not signed] R0 viamraid; C:\WINDOWS\System32\DRIVERS\viamraid.sys [60928 2005-04-21] (VIA Technologies inc,.ltd) R3 VIAudio; C:\WINDOWS\System32\drivers\viaudios.sys [117248 2004-03-17] (VIA Technologies, Inc.) [File not signed] R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [13976 2009-05-05] (VIA Technologies, Inc.) S3 vulfnths; C:\WINDOWS\System32\Drivers\vulfnth.sys [6912 2005-01-05] (VIA Technologies, Inc.) [File not signed] S3 vulfntrs; C:\WINDOWS\System32\Drivers\vulfntr.sys [11264 2005-06-06] (VIA Technologies, Inc.) [File not signed] R0 xfilt; C:\WINDOWS\System32\DRIVERS\xfilt.sys [22168 2009-05-05] (VIA Technologies,Inc) S5 GVTDrv; C:\WINDOWS\system32\Drivers\GVTDrv.sys [17962 2015-04-27] () [File not signed] S4 IntelIde; No ImagePath S3 rtl8139; system32\DRIVERS\RTL8139.SYS [X] S2 StarOpen; No ImagePath U1 WS2IFSL; No ImagePath ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-27 20:51 - 2015-04-27 20:54 - 00000000 ____D () C:\FRST 2015-04-27 20:39 - 2015-04-27 20:39 - 00001897 _____ () C:\Documents and Settings\Matiasik\Pulpit\gmer.txt 2015-04-27 17:31 - 2015-04-27 17:31 - 00000789 _____ () C:\Documents and Settings\All Users\Menu Start\Programy\WavePad Sound Editor.lnk 2015-04-27 17:31 - 2015-04-27 17:31 - 00000783 _____ () C:\Documents and Settings\All Users\Pulpit\WavePad Sound Editor.lnk 2015-04-27 17:31 - 2015-04-27 17:31 - 00000000 ____D () C:\Program Files\NCH Software 2015-04-27 17:31 - 2015-04-27 17:31 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\NCH Software 2015-04-27 17:31 - 2015-04-27 17:31 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\NCH Software Suite 2015-04-26 19:31 - 2015-04-26 19:31 - 00017018 _____ () C:\Documents and Settings\Matiasik\Moje dokumenty\[rutracker.org].t4291451.torrent 2015-04-26 19:24 - 2015-04-26 19:24 - 00055845 _____ () C:\Documents and Settings\Matiasik\Moje dokumenty\[rutracker.org].t2670835.torrent 2015-04-26 18:55 - 2015-04-26 18:55 - 40518200 _____ () C:\libcef.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 10490576 _____ () C:\icudtl.dat 2015-04-26 18:55 - 2015-04-26 18:55 - 07168568 _____ (Spotify Ltd) C:\Spotify.exe 2015-04-26 18:55 - 2015-04-26 18:55 - 05066068 _____ () C:\devtools_resources.pak 2015-04-26 18:55 - 2015-04-26 18:55 - 03457592 _____ (Microsoft Corporation) C:\d3dcompiler_47.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 02106424 _____ (Microsoft Corporation) C:\d3dcompiler_43.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 02020920 _____ (Spotify Ltd) C:\SpotifyWebHelper.exe 2015-04-26 18:55 - 2015-04-26 18:55 - 01894102 _____ () C:\cef.pak 2015-04-26 18:55 - 2015-04-26 18:55 - 01365560 _____ () C:\libGLESv2.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 00990776 _____ () C:\ffmpegsumo.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 00778808 _____ (Spotify Ltd) C:\SpotifyCrashService.exe 2015-04-26 18:55 - 2015-04-26 18:55 - 00544454 _____ () C:\cef_200_percent.pak 2015-04-26 18:55 - 2015-04-26 18:55 - 00392015 _____ () C:\cef_100_percent.pak 2015-04-26 18:55 - 2015-04-26 18:55 - 00219192 _____ () C:\libEGL.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 00124472 _____ (Spotify Ltd) C:\SpotifyLauncher.exe 2015-04-26 18:55 - 2015-04-26 18:55 - 00073272 _____ () C:\wow_helper.exe 2015-04-26 18:55 - 2015-04-26 18:55 - 00000020 _____ () C:\inst_ver.dat 2015-04-26 18:55 - 2015-04-26 18:55 - 00000000 ____D () C:\pdf.dll 2015-04-26 18:55 - 2015-04-26 18:55 - 00000000 ____D () C:\locales 2015-04-24 17:46 - 2015-04-24 17:50 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2015-04-23 23:05 - 2015-04-27 18:37 - 00010075 _____ () C:\WINDOWS\wmsetup.log 2015-04-23 22:57 - 2015-04-27 20:51 - 00070138 _____ () C:\WINDOWS\setupapi.log 2015-04-21 21:28 - 2015-04-21 21:28 - 00111954 _____ () C:\Documents and Settings\Matiasik\Moje dokumenty\[rutracker.org].t2925802.torrent 2015-04-20 20:56 - 2015-04-20 20:56 - 00000742 _____ () C:\Documents and Settings\Matiasik\Pulpit\M4UDownloader.lnk 2015-04-20 20:55 - 2015-04-20 20:55 - 00000000 ____D () C:\Documents and Settings\Matiasik\Menu Start\Programy\M4UDownloader 2015-04-20 20:54 - 2015-04-25 23:00 - 00000000 ____D () C:\Program Files\M4UDownloader 2015-04-13 23:26 - 2015-04-13 23:26 - 00017691 _____ () C:\Documents and Settings\Matiasik\Moje dokumenty\[rutracker.org].t4646513.torrent 2015-04-12 14:36 - 2015-04-15 02:23 - 00000000 ____D () C:\Documents and Settings\Matiasik\Pulpit\Nowy folder 2015-04-11 12:30 - 2015-04-09 19:51 - 00490005 _____ () C:\Documents and Settings\Matiasik\Pulpit\Tv.exe 2015-04-11 12:29 - 2015-04-11 12:29 - 00000719 _____ () C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk 2015-04-11 12:29 - 2015-04-11 12:29 - 00000000 ____D () C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-04-27 20:55 - 2012-02-14 13:58 - 00000000 ____D () C:\Documents and Settings\Matiasik\Ustawienia lokalne\Temp 2015-04-27 20:51 - 2015-02-24 00:45 - 00000324 _____ () C:\WINDOWS\Tasks\GlaryInitialize 5.job 2015-04-27 20:51 - 2012-02-14 13:49 - 01556235 _____ () C:\WINDOWS\WindowsUpdate.log 2015-04-27 20:50 - 2015-02-24 00:45 - 00000000 ____D () C:\Program Files\Glary Utilities 5 2015-04-27 20:50 - 2014-10-20 19:53 - 00001036 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-04-27 20:50 - 2014-06-07 14:20 - 00017962 _____ () C:\WINDOWS\system32\Drivers\GVTDrv.sys 2015-04-27 20:50 - 2013-02-08 15:56 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2015-04-27 20:50 - 2012-12-10 22:43 - 00000159 _____ () C:\WINDOWS\wiadebug.log 2015-04-27 20:50 - 2012-08-13 19:05 - 00759116 _____ () C:\errlgr.txt 2015-04-27 20:50 - 2012-02-14 15:02 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\uTorrent 2015-04-27 20:50 - 2012-02-14 13:58 - 00000000 ___HD () C:\Documents and Settings\Matiasik\Szablony 2015-04-27 20:50 - 2012-02-14 13:56 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2015-04-27 20:50 - 2005-02-24 01:32 - 00180747 _____ () C:\WINDOWS\system32\nvapps.xml 2015-04-27 20:48 - 2012-02-14 13:58 - 00000188 ___SH () C:\Documents and Settings\Matiasik\ntuser.ini 2015-04-27 20:48 - 2012-02-14 13:56 - 00032492 _____ () C:\WINDOWS\SchedLgU.Txt 2015-04-27 20:39 - 2012-02-14 13:58 - 00000000 ____D () C:\Documents and Settings\Matiasik\Pulpit 2015-04-27 20:27 - 2013-07-30 13:10 - 00001144 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1604221776-1606980848-1003UA.job 2015-04-27 19:59 - 2014-10-20 19:54 - 00001040 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-04-27 17:34 - 2012-02-14 15:44 - 00000000 ____D () C:\Documents and Settings\Matiasik\Moje dokumenty\Programy 2015-04-27 17:32 - 2012-02-14 14:37 - 00000000 ____D () C:\Documents and Settings\All Users\Pulpit 2015-04-27 17:31 - 2012-02-14 14:37 - 00000000 ___RD () C:\Documents and Settings\All Users\Menu Start\Programy 2015-04-27 17:31 - 2012-02-14 13:58 - 00000000 __RHD () C:\Documents and Settings\Matiasik\Dane aplikacji 2015-04-27 17:31 - 2012-02-14 13:58 - 00000000 ___RD () C:\Documents and Settings\Matiasik\Ulubione 2015-04-27 17:29 - 2012-02-14 13:58 - 00000000 ___RD () C:\Documents and Settings\Matiasik\Menu Start\Programy 2015-04-27 15:27 - 2013-07-30 13:10 - 00001092 _____ () C:\WINDOWS\Tasks\GoogleUpdateTaskUserS-1-5-21-1482476501-1604221776-1606980848-1003Core.job 2015-04-26 19:50 - 2013-02-23 15:54 - 00000000 ____D () C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\Spotify 2015-04-26 19:50 - 2013-02-23 15:53 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\Spotify 2015-04-26 19:31 - 2012-02-14 13:58 - 00000000 ___RD () C:\Documents and Settings\Matiasik\Moje dokumenty 2015-04-26 16:33 - 2014-10-25 23:32 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\foobar2000 2015-04-26 16:32 - 2012-04-21 11:04 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\vlc 2015-04-26 16:07 - 2013-02-23 15:54 - 00001867 _____ () C:\Documents and Settings\Matiasik\Menu Start\Programy\Spotify.lnk 2015-04-26 16:07 - 2013-02-23 15:54 - 00001861 _____ () C:\Documents and Settings\Matiasik\Pulpit\Spotify.lnk 2015-04-25 11:49 - 2013-08-31 10:59 - 00000000 ____D () C:\Program Files\Mozilla Maintenance Service 2015-04-24 13:02 - 2012-03-24 11:37 - 00000116 _____ () C:\WINDOWS\NeroDigital.ini 2015-04-23 22:46 - 2012-02-14 13:58 - 00000000 ____D () C:\Documents and Settings\Matiasik 2015-04-23 22:33 - 2014-08-26 15:58 - 00000000 ____D () C:\Documents and Settings\Matiasik\Moje dokumenty\Pobrane 2015-04-23 15:42 - 2012-02-14 14:56 - 00096768 _____ () C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2015-04-22 17:05 - 2014-08-19 17:47 - 00002562 _____ () C:\WINDOWS\diagwrn.xml 2015-04-22 17:05 - 2014-08-19 17:47 - 00001908 _____ () C:\WINDOWS\diagerr.xml 2015-04-19 23:08 - 2012-03-05 15:07 - 00000000 ____D () C:\Documents and Settings\Matiasik\Dane aplikacji\Youtube Downloader HD 2015-04-11 12:28 - 2012-04-21 11:03 - 00000000 ____D () C:\Program Files\VideoLAN 2015-04-09 15:35 - 2012-02-14 14:38 - 01127644 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2015-04-09 15:35 - 2011-12-16 21:03 - 00504156 _____ () C:\WINDOWS\system32\perfh015.dat 2015-04-09 15:35 - 2011-12-16 21:03 - 00090698 _____ () C:\WINDOWS\system32\perfc015.dat 2015-04-09 15:30 - 2011-12-16 21:03 - 00002206 _____ () C:\WINDOWS\system32\wpa.dbl ==================== Files in the root of some directories ======= 2014-03-29 12:52 - 2014-03-29 12:52 - 0000364 _____ () C:\Documents and Settings\Matiasik\Dane aplikacji\Safer-Networking.log 2012-02-14 14:56 - 2015-04-23 15:42 - 0096768 _____ () C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini 2013-02-08 16:40 - 2013-02-08 16:40 - 0000133 _____ () C:\Documents and Settings\Matiasik\Ustawienia lokalne\Dane aplikacji\fusioncache.dat ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => File is digitally signed C:\WINDOWS\system32\winlogon.exe => File is digitally signed C:\WINDOWS\system32\svchost.exe => File is digitally signed C:\WINDOWS\system32\services.exe => File is digitally signed C:\WINDOWS\system32\User32.dll => File is digitally signed C:\WINDOWS\system32\userinit.exe => File is digitally signed C:\WINDOWS\system32\rpcss.dll => File is digitally signed C:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================