Logfile of random's system information tool 1.08 (written by random/random) Run by Administrator at 2011-05-12 22:34:05 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 30 GB (78%) free of 38 GB Total RAM: 895 MB (24% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 22:34:20, on 2011-05-12 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v8.00 (8.00.6001.18702) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\Explorer.EXE C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe C:\Program Files\UPHClean\uphclean.exe C:\Program Files\Vista Drive Icon\DrvIcon.exe C:\Program Files\PeerBlock\peerblock.exe C:\Program Files\ID-Blaster Plus\idblasterplus.exe C:\Program Files\Ad Muncher\AdMunch.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe D:\Dokumenty - Programy\Programy\Analiza\rsit.exe C:\Program Files\trend micro\Administrator.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/ R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = http://start.facemoods.com/?a=stonicla&s={searchTerms}&f=4 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O3 - Toolbar: QT Breadcrumbs Address Bar - {af83e43c-dd2b-4787-826b-31b17dee52ed} - mscoree.dll (file missing) O3 - Toolbar: QT TabBar - {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - mscoree.dll (file missing) O3 - Toolbar: QT Tab Standard Buttons - {D2BF470E-ED1C-487F-A666-2BD8835EB6CE} - mscoree.dll (file missing) O4 - HKLM\..\Run: [DrvIcon] C:\Program Files\Vista Drive Icon\DrvIcon.exe O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [PeerBlock] C:\Program Files\PeerBlock\peerblock.exe O4 - HKCU\..\Run: [idblasterplus.exe] C:\Program Files\ID-Blaster Plus\idblasterplus.exe O4 - HKCU\..\Run: [AdMunch.exe] C:\Program Files\Ad Muncher\AdMunch.exe O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe" O4 - HKCU\..\Run: [Advanced SystemCare 3] "C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe" /startup O4 - HKCU\..\Run: [egui.exe] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe O4 - HKCU\..\Run: [mbam.exe] C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe O4 - HKUS\S-1-5-20\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [LClock] C:\Program Files\LClock\LClock.exe (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [_nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O8 - Extra context menu item: Block frame with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=2.0&pass=66332576&id=menu_ie_frame O8 - Extra context menu item: Block image with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=2.0&pass=66332576&id=menu_ie_image O8 - Extra context menu item: Block link with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=2.0&pass=66332576&id=menu_ie_link O8 - Extra context menu item: Don't filter page with Ad Muncher - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=2.0&pass=66332576&id=menu_ie_exclude O8 - Extra context menu item: Report page to the Ad Muncher developers - http://www.admuncher.com/request_will_be_intercepted_by/Ad_Muncher/browserextensions.pl?exbrowser=ie&exversion=2.0&pass=66332576&id=menu_ie_report O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} (WUWebControl Class) - http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1302614870937 O17 - HKLM\System\CCS\Services\Tcpip\..\{BC332D88-DE75-4B98-85F0-1C6EB6EF09A2}: NameServer = 194.204.159.1,194.204.152.34 O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: MBAMService - Malwarebytes Corporation - C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe O23 - Service: User Profile Hive Cleanup (UPHClean) - Windows (R) Codename Longhorn DDK provider - C:\Program Files\UPHClean\uphclean.exe -- End of file - 6664 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\ASC4_AutoCare.job C:\WINDOWS\tasks\ASC4_AutoSweep.job C:\WINDOWS\tasks\ASC4_PerformanceMonitor.job C:\WINDOWS\tasks\DriverEasy Scheduled Scan.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2011-01-30 62376] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2011-02-09 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2011-02-09 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {af83e43c-dd2b-4787-826b-31b17dee52ed} - QT Breadcrumbs Address Bar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808] {d2bf470e-ed1c-487f-a333-2bd8835eb6ce} - QT TabBar - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808] {D2BF470E-ED1C-487F-A666-2BD8835EB6CE} - QT Tab Standard Buttons - C:\WINDOWS\system32\mscoree.dll [2009-11-07 297808] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "DrvIcon"=C:\Program Files\Vista Drive Icon\DrvIcon.exe [2008-04-13 49152] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "PeerBlock"=C:\Program Files\PeerBlock\peerblock.exe [2010-11-06 1867888] "idblasterplus.exe"=C:\Program Files\ID-Blaster Plus\idblasterplus.exe [2002-10-06 299008] "AdMunch.exe"=C:\Program Files\Ad Muncher\AdMunch.exe [2011-04-12 535752] "Gadu-Gadu 10"=C:\Program Files\Gadu-Gadu 10\gg.exe [2011-04-15 12984928] "Advanced SystemCare 3"=C:\Program Files\IObit\Advanced SystemCare 3\AWC.exe [2011-03-22 2403024] "egui.exe"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-01-12 2219184] "mbam.exe"=C:\Program Files\Malwarebytes' Anti-Malware\mbam.exe [2010-12-20 963976] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [2011-01-30 35736] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\mbamgui.exe] C:\Program Files\Malwarebytes' Anti-Malware\mbamgui.exe [2010-12-20 443728] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SlimDrivers] C:\Program Files\SlimDrivers\SlimDrivers.exe [2011-04-13 25331552] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VIARaidUtl] C:\Program Files\VIA\RAID\raid_tool.exe [2009-02-19 4918936] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer] ;;; VTTimer.exe [] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^D & S^All Users^Menu Start^Programy^Autostart^IDETool.lnk] [] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\WgaLogon] C:\WINDOWS\system32\WgaLogon.dll [2009-03-10 265608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\wpdshserviceobj.dll [2010-04-06 133632] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "NoSecCpl"=0 "DisableChangePassword"=0 "DisableLockWorkstation"=0 "NoDispCpl"=0 "NoDispScrSavPage"=0 "NoDispAppearancePage"=0 "NoDispSettingsPage"=0 "NoVisualStyleChoice"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableCAD"=1 "DisableStatusMessages"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoSMMyPictures"=1 "NoSMConfigurePrograms"=1 "NoDesktop"=0 "HideClock"=0 "NoStartMenuPinnedList"=0 "NoStartMenuMFUprogramsList"=0 "NoUserNameInStartMenu"=0 "NoStartMenuSubFolders"=0 "NoCommonGroups"=0 "NoPrinterTabs"=0 "NoDeletePrinter"=0 "NoAddPrinter"=0 "NoPrinters"=0 "NoViewContextMenu"=0 "NoDrives"=0 "NoToolbarCustomize"=0 "NoRecentDocsNetHood"=0 "NoChangeAnimation"=0 "NoChangeKeyboardNavigationIndicators"=0 "NoThemesTab"=0 "NoInstrumentation"=0 "NoActiveDesktop"=0 "StartmenuLogoff"=0 "NoFavoritesMenu"=0 "NoClose"=0 "NoSetFolders"=0 "NoDriveTypeAutoRun"=36 "NoDriveAutoRun"=0xFFFFFFFF [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoDesktopCleanupWizard"=1 "NoResolveSearch"=1 "NoWelcomeScreen"=1 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\uSerenity_2.2.0_23703\uSerenity.exe"="C:\Program Files\uSerenity_2.2.0_23703\uSerenity.exe:*:Enabled:µTorrent" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======List of files/folders created in the last 1 months====== 2011-05-12 22:34:07 ----D---- C:\Program Files\trend micro 2011-05-12 22:34:05 ----D---- C:\rsit 2011-05-12 22:13:39 ----A---- C:\WINDOWS\ntbtlog.txt 2011-05-11 21:38:16 ----D---- C:\DivXRepair 2011-05-11 21:27:30 ----D---- C:\DivFix 2011-05-09 23:31:34 ----D---- C:\WINDOWS\Minidump 2011-05-09 18:44:10 ----A---- C:\WINDOWS\system32\drivers\rxvbus.sys 2011-05-09 18:44:09 ----A---- C:\WINDOWS\system32\drivers\rxvstor.sys 2011-05-09 18:44:08 ----D---- C:\Program Files\VSuite Ramdisk (Public Edition) 2011-05-07 14:25:52 ----D---- C:\WINDOWS\Temp 2011-05-06 20:56:21 ----D---- C:\Program Files\Mozilla Firefox 2011-05-05 23:56:00 ----D---- C:\Program Files\NT Registry Optimizer 2011-05-01 14:12:21 ----D---- C:\WINDOWS\system32\windowspowershell 2011-05-01 14:12:09 ----HDC---- C:\WINDOWS\$NtUninstallKB926139-v2$ 2011-04-30 15:29:03 ----D---- C:\D & S\All Users\Dane aplikacji\RFA_Backups 2011-04-30 15:29:03 ----D---- C:\D & S\All Users\Dane aplikacji\Registry First Aid 2011-04-30 15:03:19 ----D---- C:\D & S\Administrator\Dane aplikacji\vlc 2011-04-30 11:47:52 ----D---- C:\Program Files\DriverGenius 2011-04-30 10:37:31 ----D---- C:\D & S\Administrator\Dane aplikacji\DeepBurner 2011-04-28 22:14:48 ----D---- C:\WINDOWS\XSxS 2011-04-28 12:22:57 ----D---- C:\Program Files\BurnAware Professional 2011-04-27 23:55:35 ----D---- C:\Program Files\Common Files\Tobit 2011-04-27 23:55:34 ----A---- C:\WINDOWS\system32\dvmsg.dll 2011-04-27 16:59:37 ----A---- C:\WINDOWS\system32\drivers\PortTalk.sys 2011-04-26 20:52:33 ----D---- C:\Program Files\Common Files\Seagate 2011-04-26 17:16:22 ----D---- C:\D & S\Administrator\Dane aplikacji\Fighters 2011-04-26 14:14:29 ----A---- C:\WINDOWS\system32\drivers\videX32.sys 2011-04-24 20:53:07 ----A---- C:\D & S\Administrator\Dane aplikacji\burnaware.ini 2011-04-24 18:02:04 ----RASHD---- C:\autorun.inf 2011-04-24 16:01:58 ----D---- C:\Program Files\TNod User & Password Finder 2011-04-24 08:11:11 ----A---- C:\WINDOWS\system32\s3iset32_2_00_92.dll 2011-04-24 08:10:28 ----A---- C:\WINDOWS\system32\drivers\S3gIGPm.sys 2011-04-24 00:43:46 ----A---- C:\WINDOWS\system32\sh4native.exe 2011-04-23 22:28:33 ----A---- C:\WINDOWS\system32\results.txt 2011-04-23 22:03:27 ----A---- C:\WINDOWS\system32\s3iset32_2_0_113_0206.dll 2011-04-23 22:02:59 ----A---- C:\WINDOWS\system32\drivers\ucb_32.sys 2011-04-23 21:50:50 ----D---- C:\Program Files\SlimDrivers 2011-04-23 21:44:12 ----A---- C:\WINDOWS\IsUninst.exe 2011-04-22 20:28:02 ----A---- C:\WINDOWS\iun6002.exe 2011-04-21 15:49:23 ----A---- C:\WINDOWS\system32\hidserv.dll 2011-04-21 15:49:21 ----A---- C:\WINDOWS\system32\drivers\hidusb.sys 2011-04-21 15:48:19 ----A---- C:\WINDOWS\system32\drivers\USBAUDIO.sys 2011-04-21 15:47:46 ----A---- C:\WINDOWS\system32\drivers\usbccgp.sys 2011-04-19 23:17:27 ----A---- C:\WINDOWS\Ascd_tmp.ini 2011-04-19 23:17:21 ----A---- C:\WINDOWS\system32\drivers\ASUSHWIO.SYS 2011-04-19 14:52:50 ----D---- C:\Program Files\SystemRequirementsLab 2011-04-19 14:52:13 ----D---- C:\WINDOWS\Sun 2011-04-19 11:33:53 ----D---- C:\Program Files\Google 2011-04-19 01:08:13 ----N---- C:\WINDOWS\system32\difxapi.dll 2011-04-19 01:06:23 ----A---- C:\WINDOWS\system32\drivers\viamraid.sys 2011-04-17 16:54:02 ----D---- C:\Program Files\ESET 2011-04-17 16:54:02 ----D---- C:\D & S\All Users\Dane aplikacji\ESET 2011-04-17 10:38:07 ----D---- C:\Program Files\Eusing Free Registry Cleaner 2011-04-15 23:24:50 ----D---- C:\D & S\Administrator\Dane aplikacji\ChomikBox 2011-04-15 23:18:22 ----D---- C:\Program Files\ChomikBox 2011-04-15 22:24:39 ----D---- C:\D & S\All Users\Dane aplikacji\Zbshareware Lab 2011-04-15 22:24:39 ----D---- C:\D & S\Administrator\Dane aplikacji\Zbshareware Lab 2011-04-15 22:21:58 ----D---- C:\Program Files\USB Disk Security 2011-04-15 16:22:16 ----D---- C:\WINDOWS\system32\NtmsData 2011-04-15 14:36:06 ----A---- C:\WINDOWS\system32\drivers\ssmdrv.sys 2011-04-15 14:36:01 ----A---- C:\WINDOWS\system32\drivers\avipbb.sys 2011-04-15 14:36:01 ----A---- C:\WINDOWS\system32\drivers\avgntmgr.sys 2011-04-15 14:36:01 ----A---- C:\WINDOWS\system32\drivers\avgntflt.sys 2011-04-15 14:36:01 ----A---- C:\WINDOWS\system32\drivers\avgntdd.sys 2011-04-15 14:36:01 ----A---- C:\WINDOWS\system32\drivers\avfwot.sys 2011-04-15 11:26:15 ----D---- C:\D & S\Administrator\Dane aplikacji\BESTplayer 2011-04-14 18:11:01 ----D---- C:\Program Files\UPHClean 2011-04-14 16:59:14 ----D---- C:\D & S\Administrator\Dane aplikacji\Malwarebytes 2011-04-14 16:58:59 ----A---- C:\WINDOWS\system32\drivers\mbamswissarmy.sys 2011-04-14 16:58:57 ----D---- C:\D & S\All Users\Dane aplikacji\Malwarebytes 2011-04-14 16:58:53 ----A---- C:\WINDOWS\system32\drivers\mbam.sys 2011-04-14 16:58:52 ----D---- C:\Program Files\Malwarebytes' Anti-Malware 2011-04-14 00:26:44 ----A---- C:\WINDOWS\system32\vusetup.dll 2011-04-14 00:26:44 ----A---- C:\WINDOWS\system32\drivers\vulfntr.sys 2011-04-14 00:26:44 ----A---- C:\WINDOWS\system32\drivers\vulfnth.sys 2011-04-14 00:26:36 ----A---- C:\WINDOWS\IsUn0415.exe 2011-04-14 00:21:49 ----D---- C:\Program Files\S3 2011-04-14 00:21:12 ----A---- C:\WINDOWS\system32\s3hotplug.dll 2011-04-13 23:20:26 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-04-13 23:13:53 ----HD---- C:\Program Files\InstallShield Installation Information 2011-04-13 23:09:55 ----D---- C:\Program Files\VIA 2011-04-13 23:09:13 ----D---- C:\Program Files\Common Files\InstallShield 2011-04-13 21:52:58 ----A---- C:\WINDOWS\system32\drivers\TVICHW32.SYS 2011-04-13 21:02:49 ----D---- C:\Program Files\ID-Blaster Plus 2011-04-13 19:33:26 ----D---- C:\WINDOWS\pss 2011-04-13 16:15:18 ----D---- C:\Program Files\MediaInfo 2011-04-13 13:49:47 ----ASH---- C:\BOOT.BAK 2011-04-13 13:49:26 ----RSHD---- C:\cmdcons 2011-04-13 13:49:26 ----A---- C:\WINDOWS\UPGRADE.TXT 2011-04-13 13:49:05 ----D---- C:\WINDOWS\setupupd 2011-04-13 12:18:35 ----A---- C:\WINDOWS\system32\drivers\USBSTOR.SYS 2011-04-13 12:16:24 ----AD---- C:\D & S\All Users\Dane aplikacji\TEMP 2011-04-13 00:13:40 ----D---- C:\Program Files\Vista Drive Icon 2011-04-13 00:04:35 ----A---- C:\WINDOWS\system32\drivers\tcpip.sys.backup ======List of files/folders modified in the last 1 months====== 2011-05-12 22:34:11 ----D---- C:\WINDOWS\Prefetch 2011-05-12 22:34:08 ----D---- C:\Program Files\PeerBlock 2011-05-12 22:34:07 ----RD---- C:\Program Files 2011-05-12 22:33:49 ----D---- C:\D & S\Administrator\Dane aplikacji\TeraCopy 2011-05-12 22:33:44 ----A---- C:\WINDOWS\system32\Notepad.ini 2011-05-12 22:27:34 ----D---- C:\Program Files\CometBird 2011-05-12 22:18:43 ----D---- C:\WINDOWS\system32\CatRoot2 2011-05-12 22:17:23 ----D---- C:\WINDOWS\system32\drivers 2011-05-12 22:17:18 ----D---- C:\WINDOWS 2011-05-12 22:14:21 ----D---- C:\WINDOWS\system32 2011-05-12 10:01:49 ----D---- C:\TMP 2011-05-12 01:08:34 ----D---- C:\D & S\Administrator\Dane aplikacji\uTorrent 2011-05-11 19:02:48 ----A---- C:\WINDOWS\system32\pgdfgsvc.exe 2011-05-11 17:12:55 ----D---- C:\WINDOWS\Debug 2011-05-11 08:22:39 ----A---- C:\WINDOWS\system32\MRT.exe 2011-05-10 08:16:18 ----SD---- C:\WINDOWS\Tasks 2011-05-09 23:22:59 ----A---- C:\WINDOWS\Notepad.ini 2011-05-09 18:45:39 ----HD---- C:\WINDOWS\inf 2011-05-09 18:15:10 ----SHD---- C:\WINDOWS\Installer 2011-05-09 09:28:13 ----D---- C:\Program Files\Common Files 2011-05-07 17:27:23 ----D---- C:\WINDOWS\system32\config 2011-05-07 17:16:27 ----N---- C:\WINDOWS\win.ini 2011-05-06 21:13:06 ----D---- C:\D & S\Administrator\Dane aplikacji\Thinstall 2011-05-06 21:00:45 ----SD---- C:\D & S\Administrator\Dane aplikacji\Microsoft 2011-05-05 23:59:25 ----SHD---- C:\RECYCLER 2011-05-05 23:51:38 ----D---- C:\WINDOWS\Help 2011-05-05 23:50:36 ----D---- C:\Program Files\Tools 2011-05-05 21:32:35 ----RASH---- C:\boot.ini 2011-05-05 21:32:35 ----N---- C:\WINDOWS\system.ini 2011-05-03 20:07:05 ----D---- C:\WINDOWS\Network Diagnostic 2011-05-01 22:40:40 ----D---- C:\Program Files\360Amigo 2011-05-01 22:38:01 ----D---- C:\Program Files\Windows Media Player 2011-05-01 22:38:01 ----D---- C:\Program Files\Paint.NET 2011-05-01 19:54:38 ----D---- C:\D & S\Administrator\Dane aplikacji\IObit 2011-05-01 14:15:52 ----D---- C:\WINDOWS\AppPatch 2011-05-01 14:14:06 ----D---- C:\WINDOWS\system32\CatRoot 2011-05-01 14:13:01 ----SD---- C:\WINDOWS\Downloaded Program Files 2011-05-01 14:12:39 ----RSD---- C:\WINDOWS\assembly 2011-04-30 20:28:46 ----D---- C:\Program Files\IconTweaker 2011-04-30 15:29:26 ----D---- C:\WINDOWS\system32\wbem 2011-04-30 15:29:25 ----D---- C:\WINDOWS\Registration 2011-04-30 15:29:21 ----D---- C:\WINDOWS\system 2011-04-30 15:29:11 ----D---- C:\WINDOWS\system32\ReinstallBackups 2011-04-30 12:27:42 ----A---- C:\AUTOEXEC.BAT 2011-04-30 00:21:17 ----D---- C:\WINDOWS\repair 2011-04-30 00:11:18 ----D---- C:\Program Files\IObit 2011-04-26 22:57:28 ----D---- C:\WINDOWS\system32\drivers\UMDF 2011-04-26 14:22:20 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-04-21 15:24:24 ----HDC---- C:\WINDOWS\$NtUninstallKB2141007$ 2011-04-18 23:40:22 ----D---- C:\WINDOWS\WinSxS 2011-04-17 16:42:00 ----D---- C:\Program Files\TeraCopy 2011-04-16 14:43:14 ----D---- C:\D & S\All Users\Dane aplikacji\Adobe 2011-04-15 15:04:23 ----D---- C:\WINDOWS\system32\Restore 2011-04-15 00:28:01 ----D---- C:\Program Files\Gadu-Gadu 10 2011-04-15 00:20:36 ----D---- C:\D & S\Administrator\Dane aplikacji\Qrix 2011-04-13 12:10:28 ----D---- C:\D & S\Administrator\Dane aplikacji\Adobe 2011-04-13 11:41:45 ----D---- C:\Program Files\Unlocker 2011-04-13 00:04:44 ----D---- C:\WINDOWS\system32\dllcache ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 rxvbus;Rxvbus; C:\WINDOWS\system32\DRIVERS\rxvbus.sys [2010-06-01 22144] R0 rxvstor;Rxvstor; C:\WINDOWS\system32\DRIVERS\rxvstor.sys [2010-02-26 72448] R0 Si3112;Si3112; C:\WINDOWS\system32\drivers\Si3112.sys [2010-04-07 62208] R0 uagp35;Filtr AGPv3.5 firmy Microsoft; C:\WINDOWS\system32\DRIVERS\uagp35.sys [2008-04-13 44672] R0 viamraid;viamraid; C:\WINDOWS\system32\DRIVERS\viamraid.sys [2008-07-09 117248] R0 videX32;videX32; C:\WINDOWS\system32\DRIVERS\videX32.sys [2009-05-05 13976] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2010-04-06 77568] R0 xfilt;VIA SATA IDE Hot-plug Driver; C:\WINDOWS\system32\DRIVERS\xfilt.sys [2009-05-05 22168] R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2010-12-21 115008] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2010-12-21 94872] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-15 40448] R1 WS2IFSL;Środowisko wspomagające dostawcę usług innych niż IFS - Windows Socket 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2008-04-15 12032] R2 Aspi32;Aspi32; C:\WINDOWS\system32\drivers\Aspi32.sys [2002-07-17 16877] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2010-12-21 141264] R3 FET5X86V;VIA Rhine-Family Fast-Ethernet Adapter Driver Service; C:\WINDOWS\system32\DRIVERS\fetnd5bv.sys [2010-06-25 47104] R3 HDAudBus;Microsoft UAA Bus Driver for High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2011-04-06 6388328] R3 MBAMProtector;MBAMProtector; \??\C:\WINDOWS\system32\drivers\mbam.sys [] R3 pbfilter;pbfilter; \??\C:\Program Files\PeerBlock\pbfilter.sys [] R3 S3GIGP;S3GIGP; C:\WINDOWS\system32\DRIVERS\S3gIGPm.sys [2009-03-17 561152] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-15 20608] R3 vulfnths;VIA USB Host Controller Lower Filter; C:\WINDOWS\System32\Drivers\vulfnth.sys [2002-10-24 6912] R3 vulfntrs;VIA USB Roothub Lower Filter; C:\WINDOWS\System32\Drivers\vulfntr.sys [2002-11-13 10496] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2009-11-18 1691480] S3 cpudrv;cpudrv; \??\C:\Program Files\SystemRequirementsLab\cpudrv.sys [] S3 FETNDIS;Sterownik NT karty VIA PCI 10/100Mb Fast Ethernet; C:\WINDOWS\system32\DRIVERS\fetnd5.sys [2001-08-17 27165] S3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2009-11-18 1395800] S3 PortTalk;PortTalk; C:\WINDOWS\System32\Drivers\PortTalk.sys [2002-01-12 3567] S3 RAMDiskXP;RAMDiskXP; C:\WINDOWS\System32\Drivers\RAMDiskXP.sys [2010-11-11 54528] S3 TVICHW32;TVICHW32; \??\C:\WINDOWS\system32\DRIVERS\TVICHW32.SYS [] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2008-04-13 60032] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-13 26368] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2010-04-06 38528] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2010-04-06 82944] S4 exFat;exFat; C:\WINDOWS\system32\drivers\exFat.sys [2008-09-29 133632] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-01-12 810144] R2 MBAMService;MBAMService; C:\Program Files\Malwarebytes' Anti-Malware\mbamservice.exe [2010-12-20 363344] R2 UPHClean;User Profile Hive Cleanup; C:\Program Files\UPHClean\uphclean.exe [2010-09-13 399872] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2011-01-12 33584] S3 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2011-04-19 136176] S3 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2011-02-02 153376] S3 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S4 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2008-07-25 34312] S4 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; c:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2008-07-25 69632] S4 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [2008-07-30 46104] S4 idsvc;Windows CardSpace; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2008-07-30 881664] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2008-07-30 132096] S4 VRAID Log Service;VRAID Log Service; C:\Program Files\VIA\RAID\vialogsv.exe [2008-09-24 52888] S4 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] -----------------EOF-----------------