Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 22-12-2013 01 Ran by KARINA (administrator) on DELL on 22-12-2013 23:47:05 Running from D:\ Microsoft Windows 7 Professional Service Pack 1 (X86) OS Language: Polish Internet Explorer Version 11 Boot Mode: Normal ==================== Processes (Whitelisted) =================== (IDT, Inc.) C:\Program Files\IDT\WDM\stacsv.exe (Andrea Electronics Corporation) C:\Program Files\IDT\WDM\AEstSrv.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe (France Telecom SA) C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe (Skype Technologies S.A.) C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe (StarWind Software) C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe (IDT, Inc.) C:\Program Files\IDT\WDM\sttray.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe () C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe (ESET) C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (Sun Microsystems, Inc.) C:\Program Files\Common Files\Java\Java Update\jusched.exe (Intel Corporation) C:\Windows\System32\igfxtray.exe (Intel Corporation) C:\Windows\System32\hkcmd.exe (Intel Corporation) C:\Windows\System32\igfxpers.exe (France Telecom SA) C:\Program Files\CardDetector\HUAWEI1752_1552\CardDetector.exe (Microsoft Corporation) C:\Program Files\ZuneLauncher.exe (Microsoft Corporation) C:\Users\KARINA\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPHelper.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\LMS\LMS.exe (Intel Corporation) C:\Program Files\Intel\Intel(R) Management Engine Components\UNS\UNS.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) C:\Program Files\Google\Chrome\Application\chrome.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SysTrayApp] - C:\Program Files\IDT\WDM\sttray.exe [495708 2010-08-05] (IDT, Inc.) HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1938728 2011-03-24] (Synaptics Incorporated) HKLM\...\Run: [FreeFallProtection] - C:\Program Files\STMicroelectronics\AccelerometerP11\FF_Protection.exe [727664 2010-09-24] () HKLM\...\Run: [egui] - C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2219184 2011-01-12] (ESET) HKLM\...\Run: [SunJavaUpdateSched] - C:\Program Files\Common Files\Java\Java Update\jusched.exe [252296 2012-01-17] (Sun Microsystems, Inc.) HKLM\...\Run: [HotKeysCmds] - C:\Windows\system32\hkcmd.exe [ ] () HKLM\...\Run: [CardDetectorHUAWEI1752_1552] - C:\Program Files\CardDetector\HUAWEI1752_1552\CardDetector.exe [282624 2009-10-14] (France Telecom SA) HKLM\...\Run: [BEWINTERNET-PLSessionManager] - C:\Program Files\OrangeBS\BEWInternet-PL\SessionManager\SessionManager.exe [140016 2009-10-14] (France Telecom SA) HKLM\...\Run: [Zune Launcher] - C:\Program Files\ZuneLauncher.exe [159456 2011-08-05] (Microsoft Corporation) HKCU\...\Run: [AlcoholAutomount] - C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe [33120 2010-08-20] (Alcohol Soft Development Team) HKCU\...\Run: [Facebook Update] - C:\Users\KARINA\AppData\Local\Facebook\Update\FacebookUpdate.exe [138096 2012-09-23] (Facebook Inc.) HKCU\...\Run: [SkyDrive] - C:\Users\KARINA\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe [257136 2013-08-26] (Microsoft Corporation) MountPoints2: G - G:\MicroLauncher.exe MountPoints2: {364ce415-188d-11e2-b382-1803736e9200} - G:\AutoRun.exe MountPoints2: {364ce423-188d-11e2-b382-1803736e9200} - G:\AutoRun.exe MountPoints2: {364ce445-188d-11e2-b382-1803736e9200} - G:\AutoRun.exe MountPoints2: {adf6b087-52cb-11e2-9631-1803736e9200} - G:\MicroLauncher.exe ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.dell.com SearchScopes: HKCU - {0633EE93-D776-472f-A0FF-E1416B8B2E3A} URL = BHO: Java(tm) Plug-In SSV Helper - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\ssv.dll (Oracle Corporation) BHO: Skype Browser Helper - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Oracle\JavaFX 2.1 Runtime\bin\jp2ssv.dll (Oracle Corporation) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Handler: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) Tcpip\Parameters: [DhcpNameServer] 62.179.1.60 62.179.1.61 Chrome: ======= CHR DefaultSearchKeyword: google.pl CHR DefaultSearchProvider: Google CHR DefaultSearchURL: {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:bookmarkBarPinned}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}{google:omniboxStartMarginParameter}ie={inputEncoding} CHR DefaultNewTabURL: {google:baseURL}_/chrome/newtab?{google:RLZ}{google:instantExtendedEnabledParameter}{google:ntpIsThemedParameter}ie={inputEncoding} CHR Extension: (Google Docs) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0 CHR Extension: (Google Drive) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0 CHR Extension: (Google Search) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0 CHR Extension: (Skype Click to Call) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\lifbcibllhkdhoafpjfnlhfpfgnpldfl\6.3.0.11079_0 CHR Extension: (Google Wallet) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\0.0.6.0_0 CHR Extension: (Gmail) - C:\Users\KARINA\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_1 CHR HKLM\...\Chrome\Extension: [lifbcibllhkdhoafpjfnlhfpfgnpldfl] - C:\Program Files\Skype\Toolbars\Skype for Chromium\skype_chrome_extension.crx ========================== Services (Whitelisted) ================= S3 EhttpSrv; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [33584 2011-01-12] (ESET) R2 ekrn; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [810144 2011-01-12] (ESET) R2 FTRTSVC; C:\Program Files\Common Files\France Telecom\Shared Modules\FTRTSVC\0\FTRTSVC.exe [90112 2009-10-14] (France Telecom SA) R2 Skype C2C Service; C:\ProgramData\Skype\Toolbars\Skype C2C Service\c2c_service.exe [3064000 2012-10-02] (Skype Technologies S.A.) R2 STacSV; C:\Program Files\IDT\WDM\STacSV.exe [249938 2010-08-05] (IDT, Inc.) R2 StarWindServiceAE; C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe [370688 2009-12-23] (StarWind Software) S3 WMZuneComm; C:\Program Files\WMZuneComm.exe [268512 2011-08-05] (Microsoft Corporation) S3 ZuneNetworkSvc; C:\Program Files\ZuneNss.exe [6363872 2011-08-05] (Microsoft Corporation) S3 ZuneWlanCfgSvc; C:\Program Files\ZuneWlanCfgSvc.exe [444640 2011-08-05] (Microsoft Corporation) ==================== Drivers (Whitelisted) ==================== R3 Acceler; C:\Windows\System32\DRIVERS\Accelern.sys [43888 2010-08-20] (ST Microelectronics) R2 eamonm; C:\Windows\System32\DRIVERS\eamonm.sys [137144 2010-12-21] (ESET) R1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [115008 2010-12-21] (ESET) R2 epfwwfpr; C:\Windows\System32\DRIVERS\epfwwfpr.sys [95384 2010-12-21] (ESET) S3 hwusbfake; C:\Windows\System32\DRIVERS\ewusbfake.sys [103040 2009-08-04] (Huawei Technologies Co., Ltd.) R0 sptd; C:\Windows\System32\Drivers\sptd.sys [436792 2012-05-06] () R0 stdcfltn; C:\Windows\System32\DRIVERS\stdcfltn.sys [17648 2010-08-20] (ST Microelectronics) U3 aygszcgx; C:\Windows\System32\Drivers\aygszcgx.sys [0 ] (Microsoft Corporation) S2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [x] S3 hwusbdev; system32\DRIVERS\ewusbdev.sys [x] ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-12-22 23:46 - 2013-12-22 23:46 - 00000000 ____D C:\FRST 2013-12-16 22:05 - 2013-05-10 05:56 - 12625408 _____ (Microsoft Corporation) C:\Windows\system32\wmploc.DLL 2013-12-16 22:05 - 2013-05-10 05:56 - 11410432 _____ (Microsoft Corporation) C:\Windows\system32\wmp.dll 2013-12-10 22:40 - 2013-11-26 11:11 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-12-10 22:40 - 2013-11-26 10:23 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-12-10 22:40 - 2013-11-26 10:22 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-12-10 22:40 - 2013-11-26 09:53 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-12-10 22:40 - 2013-11-26 09:52 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-12-10 22:40 - 2013-11-26 09:38 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-12-10 22:40 - 2013-11-26 09:38 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-12-10 22:40 - 2013-11-26 09:36 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-12-10 22:40 - 2013-11-26 09:32 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-12-10 22:40 - 2013-11-26 09:29 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-12-10 22:40 - 2013-11-26 09:29 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-12-10 22:40 - 2013-11-26 09:28 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-12-10 22:40 - 2013-11-26 09:16 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-12-10 22:40 - 2013-11-26 09:13 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-12-10 22:40 - 2013-11-26 08:32 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-12-10 22:40 - 2013-11-26 08:26 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-12-10 22:40 - 2013-11-26 07:34 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-12-10 22:40 - 2013-11-26 07:33 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-12-10 22:40 - 2013-11-26 07:27 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-12-10 22:34 - 2013-11-23 19:26 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2013-12-10 22:34 - 2013-11-12 03:07 - 00002048 _____ (Microsoft Corporation) C:\Windows\system32\tzres.dll 2013-12-10 22:34 - 2013-10-30 03:19 - 00301568 _____ (Microsoft Corporation) C:\Windows\system32\msieftp.dll 2013-12-10 22:34 - 2013-10-19 02:36 - 00159232 _____ (Microsoft Corporation) C:\Windows\system32\imagehlp.dll 2013-12-10 22:34 - 2013-10-12 03:04 - 00121856 _____ (Microsoft Corporation) C:\Windows\system32\wshom.ocx 2013-12-10 22:34 - 2013-10-12 03:03 - 00163840 _____ (Microsoft Corporation) C:\Windows\system32\scrrun.dll 2013-12-10 22:34 - 2013-10-12 02:15 - 00141824 _____ (Microsoft Corporation) C:\Windows\system32\wscript.exe 2013-12-10 22:34 - 2013-10-12 02:15 - 00126976 _____ (Microsoft Corporation) C:\Windows\system32\cscript.exe 2013-12-10 22:34 - 2013-10-04 02:49 - 00081408 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\drmk.sys 2013-12-10 22:34 - 2013-10-04 02:17 - 00177152 _____ (Microsoft Corporation) C:\Windows\system32\Drivers\portcls.sys 2013-12-10 22:33 - 2013-10-30 02:27 - 02349056 _____ (Microsoft Corporation) C:\Windows\system32\win32k.sys 2013-12-03 23:06 - 2013-12-03 23:06 - 00131072 _____ C:\Windows\Minidump\120313-23010-01.dmp 2013-12-03 21:23 - 2013-12-03 21:23 - 00131072 _____ C:\Windows\Minidump\120313-14476-01.dmp 2013-12-03 16:47 - 2013-12-03 16:47 - 00131072 _____ C:\Windows\Minidump\120313-15100-01.dmp 2013-11-22 17:39 - 2013-11-22 17:40 - 00131072 _____ C:\Windows\Minidump\112213-13977-01.dmp ==================== One Month Modified Files and Folders ======= 2013-12-22 23:46 - 2013-12-22 23:46 - 00000000 ____D C:\FRST 2013-12-22 23:39 - 2009-07-14 05:34 - 00035280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 2013-12-22 23:39 - 2009-07-14 05:34 - 00035280 ____H C:\Windows\system32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 2013-12-22 23:31 - 2012-09-21 10:12 - 00001036 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job 2013-12-22 23:31 - 2012-05-07 18:15 - 00000930 _____ C:\Windows\Tasks\Adobe Flash Player Updater.job 2013-12-22 22:06 - 2012-09-21 10:12 - 00001032 _____ C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job 2013-12-22 21:38 - 2012-05-07 06:29 - 00698146 _____ C:\Windows\system32\perfh015.dat 2013-12-22 21:38 - 2012-05-07 06:29 - 00135224 _____ C:\Windows\system32\perfc015.dat 2013-12-22 21:38 - 2010-11-20 22:01 - 01549932 _____ C:\Windows\system32\PerfStringBackup.INI 2013-12-22 21:35 - 2012-05-06 20:34 - 01094088 _____ C:\Windows\WindowsUpdate.log 2013-12-22 21:33 - 2013-08-26 19:51 - 00000000 ___RD C:\Users\KARINA\SkyDrive 2013-12-22 21:32 - 2009-07-14 05:53 - 00000006 ____H C:\Windows\Tasks\SA.DAT 2013-12-22 21:32 - 2009-07-14 05:39 - 00085750 _____ C:\Windows\setupact.log 2013-12-22 18:15 - 2012-09-23 20:10 - 00000932 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1894948540-1604837987-1390749897-1000UA.job 2013-12-22 12:29 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\rescache 2013-12-19 21:15 - 2012-09-23 20:10 - 00000910 _____ C:\Windows\Tasks\FacebookUpdateTaskUserS-1-5-21-1894948540-1604837987-1390749897-1000Core.job 2013-12-11 22:18 - 2012-05-07 18:15 - 00692616 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerApp.exe 2013-12-11 22:18 - 2012-05-06 21:14 - 00071048 _____ (Adobe Systems Incorporated) C:\Windows\system32\FlashPlayerCPLApp.cpl 2013-12-10 22:53 - 2009-07-14 05:33 - 00412056 _____ C:\Windows\system32\FNTCACHE.DAT 2013-12-10 22:51 - 2009-07-14 03:37 - 00000000 ____D C:\Windows\system32\pl-PL 2013-12-10 22:40 - 2012-05-06 22:14 - 00000000 ____D C:\ProgramData\Microsoft Help 2013-12-10 22:38 - 2013-08-22 18:08 - 00000000 ____D C:\Windows\system32\MRT 2013-12-10 22:35 - 2012-05-07 17:48 - 88123800 _____ (Microsoft Corporation) C:\Windows\system32\MRT.exe 2013-12-09 23:53 - 2012-05-18 12:38 - 00000000 ____D C:\Users\KARINA\AppData\Roaming\Skype 2013-12-07 22:07 - 2013-11-05 22:47 - 00002101 _____ C:\Users\Public\Desktop\Google Chrome.lnk 2013-12-03 23:06 - 2013-12-03 23:06 - 00131072 _____ C:\Windows\Minidump\120313-23010-01.dmp 2013-12-03 23:06 - 2012-05-12 09:37 - 289161493 _____ C:\Windows\MEMORY.DMP 2013-12-03 23:06 - 2012-05-12 09:37 - 00000000 ____D C:\Windows\Minidump 2013-12-03 21:23 - 2013-12-03 21:23 - 00131072 _____ C:\Windows\Minidump\120313-14476-01.dmp 2013-12-03 16:47 - 2013-12-03 16:47 - 00131072 _____ C:\Windows\Minidump\120313-15100-01.dmp 2013-11-26 11:11 - 2013-12-10 22:40 - 17112576 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.dll 2013-11-26 10:23 - 2013-12-10 22:40 - 02724864 _____ (Microsoft Corporation) C:\Windows\system32\mshtml.tlb 2013-11-26 10:22 - 2013-12-10 22:40 - 00004096 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollectorres.dll 2013-11-26 09:53 - 2013-12-10 22:40 - 00061952 _____ (Microsoft Corporation) C:\Windows\system32\iesetup.dll 2013-11-26 09:52 - 2013-12-10 22:40 - 00051200 _____ (Microsoft Corporation) C:\Windows\system32\ieetwproxystub.dll 2013-11-26 09:38 - 2013-12-10 22:40 - 02166784 _____ (Microsoft Corporation) C:\Windows\system32\iertutil.dll 2013-11-26 09:38 - 2013-12-10 22:40 - 00043008 _____ (Microsoft Corporation) C:\Windows\system32\jsproxy.dll 2013-11-26 09:36 - 2013-12-10 22:40 - 00032768 _____ (Microsoft Corporation) C:\Windows\system32\iernonce.dll 2013-11-26 09:32 - 2013-12-10 22:40 - 00440832 _____ (Microsoft Corporation) C:\Windows\system32\ieui.dll 2013-11-26 09:29 - 2013-12-10 22:40 - 00112128 _____ (Microsoft Corporation) C:\Windows\system32\ieUnatt.exe 2013-11-26 09:29 - 2013-12-10 22:40 - 00108032 _____ (Microsoft Corporation) C:\Windows\system32\ieetwcollector.exe 2013-11-26 09:28 - 2013-12-10 22:40 - 00553472 _____ (Microsoft Corporation) C:\Windows\system32\jscript9diag.dll 2013-11-26 09:16 - 2013-12-10 22:40 - 04243968 _____ (Microsoft Corporation) C:\Windows\system32\jscript9.dll 2013-11-26 09:13 - 2013-12-10 22:40 - 00208896 _____ (Microsoft Corporation) C:\Windows\system32\ie4uinit.exe 2013-11-26 08:32 - 2013-12-10 22:40 - 01928192 _____ (Microsoft Corporation) C:\Windows\system32\inetcpl.cpl 2013-11-26 08:26 - 2013-12-10 22:40 - 11221504 _____ (Microsoft Corporation) C:\Windows\system32\ieframe.dll 2013-11-26 07:34 - 2013-12-10 22:40 - 00703488 _____ (Microsoft Corporation) C:\Windows\system32\ieapfltr.dll 2013-11-26 07:33 - 2013-12-10 22:40 - 01820160 _____ (Microsoft Corporation) C:\Windows\system32\wininet.dll 2013-11-26 07:27 - 2013-12-10 22:40 - 01157632 _____ (Microsoft Corporation) C:\Windows\system32\urlmon.dll 2013-11-23 19:26 - 2013-12-10 22:34 - 00417792 _____ (Microsoft Corporation) C:\Windows\system32\WMPhoto.dll 2013-11-22 17:40 - 2013-11-22 17:39 - 00131072 _____ C:\Windows\Minidump\112213-13977-01.dmp Some content of TEMP: ==================== C:\Users\KARINA\AppData\Local\Temp\DataCard_Setup.exe C:\Users\KARINA\AppData\Local\Temp\java-installer.exe C:\Users\KARINA\AppData\Local\Temp\SkypeSetup.exe ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe => MD5 is legit C:\Windows\System32\winlogon.exe => MD5 is legit C:\Windows\System32\wininit.exe => MD5 is legit C:\Windows\System32\svchost.exe => MD5 is legit C:\Windows\System32\services.exe => MD5 is legit C:\Windows\System32\User32.dll => MD5 is legit C:\Windows\System32\userinit.exe => MD5 is legit C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit LastRegBack: 2013-12-21 23:17 ==================== End Of Log ============================