Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 07-01-2015 Ran by x-324 (administrator) on X on 08-01-2015 16:52:31 Running from E:\Documents and Settings\x-324\Pulpit Loaded Profiles: x-324 & UpdatusUser (Available profiles: x-324 & UpdatusUser) Platform: Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polski Internet Explorer Version 6 (Default browser: Opera) Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (ALWIL Software) D:\avast\AvastSvc.exe (NVIDIA Corporation) E:\WINDOWS\system32\nvsvc32.exe (Microsoft Corporation) E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE (Microsoft Corporation) E:\Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVCM.EXE (Microsoft Corporation) E:\WINDOWS\system32\wscntfy.exe (ALWIL Software) D:\avast\AvastUI.exe (Microsoft Corporation) E:\WINDOWS\system32\rundll32.exe (Realtek Semiconductor Corp.) E:\WINDOWS\RTHDCPL.EXE (Microsoft Corporation) E:\WINDOWS\system32\rundll32.exe (DT Soft Ltd) N:\Program Files\DAEMON Tools Pro\DTAgent.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe () D:\Program Files\Opera\26.0.1656.60\opera_crashreporter.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (TrueCrypt Foundation) N:\Program Files\TrueCrypt\TrueCrypt.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (Opera Software) D:\Program Files\Opera\26.0.1656.60\opera.exe (OldTimer Tools) E:\Documents and Settings\x-324\Pulpit\OTL.exe (Microsoft Corporation) E:\WINDOWS\system32\msiexec.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [avast5] => D:\avast\avastUI.exe [2769336 2010-03-09] (ALWIL Software) HKLM\...\Run: [NvMediaCenter] => RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login HKLM\...\Run: [NvCplDaemon] => RUNDLL32.EXE E:\WINDOWS\system32\NvCpl.dll,NvStartup HKLM\...\Run: [nwiz] => E:\Program Files\NVIDIA Corporation\nview\nwiz.exe [1634112 2011-12-17] () HKLM\...\Run: [RTHDCPL] => E:\WINDOWS\RTHDCPL.EXE [19557480 2010-07-28] (Realtek Semiconductor Corp.) HKLM\...\Run: [APSDaemon] => E:\Program Files\Common Files\Apple\Apple Application Support\APSDaemon.exe [59720 2013-09-13] (Apple Inc.) HKLM\...\Run: [QuickTime Task] => "U:\quick time\QTTask.exe" -atboottime HKLM\...\Run: [Adobe ARM] => E:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [959904 2013-11-21] (Adobe Systems Incorporated) HKLM\...\Run: [WinampAgent] => R:\Program Files\Winamp\winampa.exe [37888 2009-07-01] () HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\...\Run: [DAEMON Tools Lite] => "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\...\Run: [DAEMON Tools Pro Agent] => N:\Program Files\DAEMON Tools Pro\DTAgent.exe [3035968 2012-02-02] (DT Soft Ltd) HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\...\Policies\system: [DisableLockWorkstation] 0 Lsa: [Authentication Packages] msv1_0 nwprovau ShellIconOverlayIdentifiers: [snxPluginsShell] -> {F4B3B0AA-13D1-4a36-BDA2-2055B0F3D5DE} => D:\avast\snxPlugins.dll (ALWIL Software) BootExecute: PDBoot.exeautocheck autochk * ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKLM\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\SOFTWARE\Policies\Microsoft\Internet Explorer: Policy restriction <======= ATTENTION HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670&type=default&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670&type=default&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\.DEFAULT\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=msnhome HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://search.delta-homes.com/web/?type=ds&ts=1388681878&from=wpm0102&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&q={searchTerms} HKU\S-1-5-21-1123561945-1326574676-1801674531-1003\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=hp&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 URLSearchHook: HKU\S-1-5-21-1123561945-1326574676-1801674531-1003 - Microsoft Url Search Hook - {CFBFAE00-17A6-11D0-99CB-00C04FD64497} - E:\WINDOWS\system32\shdocvw.dll (Microsoft Corporation) URLSearchHook: [S-1-5-21-1123561945-1326574676-1801674531-1004] ATTENTION ==> Default URLSearchHook is missing. HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURLs,Tabs: "" <======= ATTENTION StartMenuInternet: IEXPLORE.EXE - E:\Program Files\Internet Explorer\iexplore.exe http://www.delta-homes.com/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=sc&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 SearchScopes: HKLM -> DefaultScope value is missing. SearchScopes: HKU\S-1-5-21-1123561945-1326574676-1801674531-1003 -> DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670&type=default&q={searchTerms} SearchScopes: HKU\S-1-5-21-1123561945-1326574676-1801674531-1003 -> {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.delta-homes.com/web/?utm_source=b&utm_medium=wpm0226&utm_campaign=installer&utm_content=ds&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670&type=default&q={searchTerms} BHO: Apps Hat -> {11111111-1111-1111-1111-110411851159} -> E:\Program Files\Apps Hat\Apps Hat-bho.dll (Nero) BHO: IETabPage Class -> {3593C8B9-8E18-4B4B-B7D3-CB8BEB1AA42C} -> E:\Program Files\SupTab\SupTab.dll (Thinknice Co. Limited) BHO: Java(tm) Plug-In SSV Helper -> {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} -> E:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) BHO: Windows Live ID Sign-in Helper -> {9030D464-4C02-4ABF-8ECC-5164760863C6} -> E:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) BHO: Java(tm) Plug-In 2 SSV Helper -> {DBC80044-A445-435b-BC74-9C25C1C588A9} -> E:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) BHO: IEPluginBHO Class -> {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} -> E:\Documents and Settings\x-324\Dane aplikacji\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) Tcpip\Parameters: [DhcpNameServer] 192.168.100.252 Tcpip\..\Interfaces\{3500C3CA-6F0C-4246-84DB-6CA4FBEF8D0E}: [NameServer] 194.204.159.1 FireFox: ======== FF ProfilePath: E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default FF NewTab: hxxp://www.delta-homes.com/newtab/?utm_source=b&utm_medium=wpm0226&utm_campaign=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&utm_content=nt&from=wpm0226&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T&ts=1393415670 FF SearchEngineOrder.3: Bing FF Homepage: hxxp://www.delta-homes.com/?type=hp&ts=1388681878&from=wpm0102&uid=TOSHIBAXMK2555GSXXH_40OPTJQ6TXX40OPTJQ6T FF Keyword.URL: hxxp://www.bing.com/search?FORM=UP97DF&PC=UP97&q= FF Plugin: @adobe.com/FlashPlayer -> E:\WINDOWS\system32\Macromed\Flash\NPSWF32_15_0_0_246.dll () FF Plugin: @java.com/DTPlugin,version=10.51.2 -> E:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF Plugin: @java.com/JavaPlugin,version=10.51.2 -> E:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF Plugin: @Microsoft.com/NpCtrl,version=1.0 -> E:\Program Files\Microsoft Silverlight\5.1.20913.0\npctrl.dll ( Microsoft Corporation) FF Plugin: @microsoft.com/WPF,version=3.5 -> E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: @tools.google.com/Google Update;version=9 -> E:\Program Files\Google\Update\1.3.25.11\npGoogleUpdate3.dll (Google Inc.) FF Plugin: Adobe Reader -> E:\Program Files\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF SearchPlugin: E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\searchplugins\bingp.xml FF Extension: Apps Hat - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\39ed7c16-185d-4f88-b976-666d4928ba01@fe4550c1-7a4f-4a62-ad1c-45e0afdf81a4.com [2014-04-05] FF Extension: Illimitux - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\illimitux@illimitux.net [2010-03-15] FF Extension: Quick Start - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\quick_start@gmail.com [2014-04-11] FF Extension: No Name - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\staged-xpis [2014-07-24] FF Extension: No Name - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\{73a6fe31-595d-460b-a920-fcc0f8843232} [2014-07-24] FF Extension: No Name - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\Extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2014-07-24] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - E:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2014-01-18] FF HKLM\...\Firefox\Extensions: [quick_start@gmail.com] - E:\Documents and Settings\x-324\Dane aplikacji\Mozilla\Firefox\Profiles\7e5wnjns.default\extensions\quick_start@gmail.com FF StartMenuInternet: FIREFOX.EXE - C:\Program Files\mozilla\firefox.exe Chrome: ======= ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R2 6to4; E:\WINDOWS\System32\6to4svc.dll [100352 2008-04-14] (Microsoft Corporation) R2 avast! Antivirus; D:\avast\AvastSvc.exe [40384 2010-03-09] (ALWIL Software) S3 avast! Mail Scanner; D:\avast\AvastSvc.exe [40384 2010-03-09] (ALWIL Software) S3 avast! Web Scanner; D:\avast\AvastSvc.exe [40384 2010-03-09] (ALWIL Software) S4 IePluginService; E:\Documents and Settings\All Users\Dane aplikacji\IePluginService\PluginService.exe [508016 2014-02-26] (Cherished Technololgy LIMITED) S4 Intel(R) Capability Licensing Service Interface; E:\Program Files\Intel\iCLS Client\HeciServer.exe [458464 2012-02-02] (Intel(R) Corporation) S4 JavaQuickStarterService; E:\Program Files\Java\jre7\bin\jqs.exe [182696 2013-12-18] (Oracle Corporation) R2 NWCWorkstation; E:\WINDOWS\System32\nwwks.dll [65536 2008-04-14] (Microsoft Corporation) S4 PassThru Service; E:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [167424 2012-12-07] () [File not signed] S4 PDAgent; D:\Program Files\defragmentator\PDAgent.exe [1415032 2012-10-10] (Raxco Software, Inc.) S4 PDEngine; E:\Program Files\Common Files\Raxco\Shared\PDEngine.exe [2166648 2012-10-10] (Raxco Software, Inc.) S4 Wybór systemu operacyjnego; D:\Program Files\acronis\OSS\reinstall_svc.exe [2155736 2011-11-24] () S2 BlueSoleil Hid Service; C:\bluesoliel\BTNtService.exe [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R1 Aavmker4; E:\WINDOWS\system32\Drivers\Aavmker4.sys [28880 2010-03-09] (ALWIL Software) S3 Ambfilt; E:\WINDOWS\System32\drivers\Ambfilt.sys [1691480 2009-11-18] (Creative) R2 ASPI32; E:\WINDOWS\System32\drivers\aspi32.sys [16877 2002-07-17] (Adaptec) [File not signed] R2 aswFsBlk; E:\WINDOWS\system32\Drivers\aswFsBlk.sys [19024 2010-03-09] (ALWIL Software) R2 aswMon2; E:\WINDOWS\system32\Drivers\aswMon2.sys [100432 2010-03-09] (ALWIL Software) S3 aswRdr; E:\WINDOWS\system32\Drivers\aswRdr.sys [23376 2010-03-09] (ALWIL Software) R1 aswSnx; E:\WINDOWS\system32\Drivers\aswSnx.sys [294480 2010-03-09] (ALWIL Software) R1 aswSP; E:\WINDOWS\system32\Drivers\aswSP.sys [162640 2010-03-09] (ALWIL Software) R1 aswTdi; E:\WINDOWS\system32\Drivers\aswTdi.sys [46672 2010-03-09] (ALWIL Software) R2 atksgt; E:\WINDOWS\System32\DRIVERS\atksgt.sys [281760 2009-11-30] () R3 BlueletAudio; E:\WINDOWS\System32\DRIVERS\blueletaudio.sys [20096 2004-10-19] (IVT Corporation) [File not signed] S3 BT; E:\WINDOWS\System32\DRIVERS\btnetdrv.sys [10804 2004-09-21] (IVT Corporation) [File not signed] S3 Btcsrusb; E:\WINDOWS\System32\Drivers\btcusb.sys [22488 2004-12-01] (IVT Corporation) [File not signed] R3 BTHidEnum; E:\WINDOWS\System32\DRIVERS\vbtenum.sys [11604 2004-09-21] () [File not signed] R0 BTHidMgr; E:\WINDOWS\System32\Drivers\BTHidMgr.sys [28207 2004-10-19] (IVT Corporation) [File not signed] S3 BTNetFilter; E:\WINDOWS\system32\drivers\BTNetFilter.sys [13304 2004-12-16] () [File not signed] S3 CCDECODE; E:\WINDOWS\System32\DRIVERS\CCDECODE.sys [17024 2008-04-14] (Microsoft Corporation) R2 DefragFS; E:\WINDOWS\system32\Drivers\DefragFS.sys [104088 2012-10-10] (Raxco Software, Inc.) R1 dtsoftbus01; E:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys [242240 2014-07-23] (DT Soft Ltd) S3 epmntdrv; E:\WINDOWS\system32\epmntdrv.sys [13192 2011-07-29] () [File not signed] S3 EuGdiDrv; E:\WINDOWS\system32\EuGdiDrv.sys [8456 2011-07-29] () [File not signed] S3 gdrv; E:\WINDOWS\gdrv.sys [16608 2010-03-30] (Windows (R) 2000 DDK provider) R3 HDAudBus; E:\WINDOWS\System32\DRIVERS\HDAudBus.sys [138752 2005-01-07] (Windows (R) Server 2003 DDK provider) [File not signed] R0 imagedrv; E:\WINDOWS\System32\Drivers\imagedrv.sys [5888 2005-09-01] (Ahead Software AG) [File not signed] R0 imagesrv; E:\WINDOWS\System32\DRIVERS\imagesrv.sys [127488 2005-09-01] (Ahead Software AG) [File not signed] R2 lirsgt; E:\WINDOWS\System32\DRIVERS\lirsgt.sys [25888 2009-11-30] () R3 MEI; E:\WINDOWS\System32\DRIVERS\HECI.sys [46080 2011-11-10] (Intel Corporation) S3 Monfilt; E:\WINDOWS\System32\drivers\Monfilt.sys [1395800 2009-11-18] (Creative Technology Ltd.) S3 NdisIP; E:\WINDOWS\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) R3 nv; E:\WINDOWS\System32\DRIVERS\nv4_mini.sys [13733696 2011-12-17] (NVIDIA Corporation) [File not signed] R3 NVHDA; E:\WINDOWS\System32\drivers\nvhda32.sys [122816 2011-11-09] (NVIDIA Corporation) R2 NwlnkIpx; E:\WINDOWS\System32\DRIVERS\nwlnkipx.sys [88320 2008-04-14] (Microsoft Corporation) R2 NwlnkNb; E:\WINDOWS\System32\DRIVERS\nwlnknb.sys [63232 2001-08-17] (Microsoft Corporation) R2 NwlnkSpx; E:\WINDOWS\System32\DRIVERS\nwlnkspx.sys [55936 2001-08-17] (Microsoft Corporation) R3 NWRDR; E:\WINDOWS\System32\DRIVERS\nwrdr.sys [163584 2008-04-14] (Microsoft Corporation) R1 oxser; E:\WINDOWS\System32\DRIVERS\oxser.sys [51169 2005-01-20] (OEM) [File not signed] R2 PDFSFilter; E:\WINDOWS\System32\DRIVERS\PDFsFilter.sys [69016 2012-10-10] (Raxco Software, Inc.) R0 sptd; E:\WINDOWS\System32\Drivers\sptd.sys [324096 2013-11-05] (Duplex Secure Ltd.) S3 ssudeadb; E:\WINDOWS\System32\Drivers\ssudeadb.sys [32736 2012-09-20] (Google Inc) R1 Tcpip6; E:\WINDOWS\System32\DRIVERS\tcpip6.sys [225664 2008-04-14] (Microsoft Corporation) R3 TIACXLN; E:\WINDOWS\System32\DRIVERS\tiacxln.sys [155392 2003-03-06] ( ) [File not signed] R4 truecrypt; N:\Program Files\TrueCrypt\truecrypt.sys [231760 2014-05-05] (TrueCrypt Foundation) R3 VComm; E:\WINDOWS\System32\DRIVERS\VComm.sys [61312 2004-10-19] (IVT Corporation) [File not signed] R3 VcommMgr; E:\WINDOWS\System32\Drivers\VcommMgr.sys [82148 2004-11-05] (IVT Corporation) [File not signed] S3 HTCAND32; System32\Drivers\ANDROIDUSB.sys [X] S4 IntelIde; No ImagePath S3 mcdbus; system32\DRIVERS\mcdbus.sys [X] U5 ScsiPort; E:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) U3 avhtf8fj; No ImagePath ========================== Drivers MD5 ======================= E:\WINDOWS\system32\Drivers\Aavmker4.sys D5D75EDD02157FCD3EB576D4681E8C3E E:\WINDOWS\System32\DRIVERS\ACPI.sys 05118282F5D039595A2B92B4A4AFE197 E:\WINDOWS\system32\Drivers\ACPIEC.sys 66A42B7DB194E24B973BBCCE840A0F3F E:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557 E:\WINDOWS\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD E:\WINDOWS\System32\drivers\Ambfilt.sys 267FC636801EDC5AB28E14036349E3BE E:\WINDOWS\System32\drivers\aspi32.sys 5B01AF89D16D562825C4DB4530F20CBB E:\WINDOWS\system32\Drivers\aswFsBlk.sys FB6A381C32A87EE6588EED61D22DC03B E:\WINDOWS\system32\Drivers\aswMon2.sys 1A10CBECFDD0A597B27E2D0998D95CF9 E:\WINDOWS\system32\Drivers\aswRdr.sys 7827F70B86B29FBF112CBCE547205ACC E:\WINDOWS\system32\Drivers\aswSnx.sys 72B31CFCFF65D2BEAFDC5CE71C32A479 E:\WINDOWS\system32\Drivers\aswSP.sys 39BF48164A958F4BF0C0EC6CDC447DB5 E:\WINDOWS\system32\Drivers\aswTdi.sys 755E4AFB683E3306886A0F4DF02A1575 E:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC E:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674 E:\WINDOWS\System32\DRIVERS\atksgt.sys F0D933B42CD0594048E4D5200AE9E417 E:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159 E:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68 E:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9 E:\WINDOWS\System32\DRIVERS\blueletaudio.sys 31FF5B87C1DD907613CC613224B8E303 E:\WINDOWS\System32\DRIVERS\bridge.sys F934D1B230F84E1D19DD00AC5A7A83ED E:\WINDOWS\System32\DRIVERS\bridge.sys F934D1B230F84E1D19DD00AC5A7A83ED E:\WINDOWS\System32\DRIVERS\btnetdrv.sys 9DA8ABC4885AFF4793D4AA420E40BB12 E:\WINDOWS\System32\Drivers\btcusb.sys BDF2C32C14EF7AB75DDCC3394D6F80D4 E:\WINDOWS\System32\DRIVERS\vbtenum.sys 083AD7F6FF500D0A93C0BEA2CF298C93 E:\WINDOWS\System32\Drivers\BTHidMgr.sys F408264F6AD1DC7E7BDD4837440F115D E:\WINDOWS\system32\drivers\BTNetFilter.sys 6B05FDC0CFC3753B520D2D4176CC32D0 E:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9 E:\WINDOWS\System32\DRIVERS\CCDECODE.sys 0BE5AEF125BE881C4F854C554F2B025C E:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B E:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32 E:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE E:\WINDOWS\system32\Drivers\DefragFS.sys 13E9D581F1D3E769D3F359A7BAB89976 E:\WINDOWS\System32\DRIVERS\ssudbus.sys 6CC6C4B9D7B906A151AA094CA087B9F0 E:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25 E:\WINDOWS\System32\drivers\dmboot.sys BC9219ABC5696942E6F9AC8A9B28670F E:\WINDOWS\System32\drivers\dmio.sys 5FA232E3BA6E1346F9F5A7E519320CB0 E:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F E:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45 E:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8 E:\WINDOWS\System32\DRIVERS\dtsoftbus01.sys 687AF6BB383885FF6A64071B189A7F3E E:\WINDOWS\system32\epmntdrv.sys F07BA56B0235F15EFF8F10DC6389C42E E:\WINDOWS\system32\EuGdiDrv.sys 1F2F4AB15CE03ECC257FEB2F6DC5A013 E:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E E:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81 E:\WINDOWS\system32\Drivers\Fips.sys 09E2A4D33F81A06A8AAB2BA0A0B5D235 E:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0 E:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0 E:\WINDOWS\System32\DRIVERS\fltsrv.sys 27C75AC6D6FC808D8244D9C9CEA681D1 E:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A E:\WINDOWS\System32\DRIVERS\ftdisk.sys ED6D921D8AB423138FB35BEEE6D6A6CB E:\WINDOWS\gdrv.sys C6E3105B8C68C35CC1EB26A00FD1A8C6 E:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2 E:\WINDOWS\System32\DRIVERS\HDAudBus.sys 3FCC124B6E08EE0E9351F717DD136939 E:\WINDOWS\System32\DRIVERS\htcnprot.sys 04E3B3554076B8192A668EFE88A682A1 E:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9 E:\WINDOWS\System32\DRIVERS\i8042prt.sys 177B372AF55C4460D0968B5F1D02AA1C E:\WINDOWS\System32\Drivers\imagedrv.sys 25EDD75E23C5EF6B33D0FBCCE125A601 E:\WINDOWS\System32\DRIVERS\imagesrv.sys 9C4BBACF4E9B9543C3CE23F1FE556941 E:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E E:\WINDOWS\System32\drivers\RtkHDAud.sys A109FE3CA1EE4E92292B349DE1B32F7B E:\WINDOWS\System32\DRIVERS\intelppm.sys DA153EDC09DE8C4F846C085CAA39D1CC E:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0 E:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182 E:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5 E:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB E:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91 E:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89 E:\WINDOWS\System32\DRIVERS\isapnp.sys C8EEF2E93835B81BD335DE2123121283 E:\WINDOWS\System32\DRIVERS\kbdclass.sys 2AECA45D4AEAACBDCB77AD11184E4601 E:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378 E:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517 E:\WINDOWS\System32\DRIVERS\lirsgt.sys F8A7212D0864EF5E9185FB95E6623F4D E:\WINDOWS\System32\DRIVERS\HECI.sys 240D715CFE4FB8F4CDA76F6863E62334 E:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6 E:\WINDOWS\system32\Drivers\Modem.sys 4A068DB7DC37D5AFEDB6512D2931D7B3 E:\WINDOWS\System32\drivers\Monfilt.sys C7D9F9717916B34C1B00DD4834AF485C E:\WINDOWS\System32\DRIVERS\mouclass.sys FBED3DF6B884F8CF00447B73507F2C48 E:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD E:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD E:\WINDOWS\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0 E:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027 E:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1 E:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E E:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D E:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136 E:\WINDOWS\System32\drivers\MSTEE.sys E53736A9E30C45FA9E7B5EAC55056D1D E:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1 E:\WINDOWS\System32\DRIVERS\NABTSFEC.sys 5B50F1B2A2ED47D560577B221DA734DB E:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D E:\WINDOWS\System32\DRIVERS\NdisIP.sys 7FF1F1FD8609C149AA432F95A8163D97 E:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F E:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849 E:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB E:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A E:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0 E:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D E:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A E:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA E:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD E:\WINDOWS\System32\DRIVERS\nv4_mini.sys 7A5346BF6225B678152F79D351569C5C E:\WINDOWS\System32\drivers\nvhda32.sys 629AC630493E70F0BA9FBBBD6177E59B E:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57 E:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9 E:\WINDOWS\System32\DRIVERS\nwlnkipx.sys 8B8B1BE2DBA4025DA6786C645F77F123 E:\WINDOWS\System32\DRIVERS\nwlnknb.sys 56D34A67C05E94E16377C60609741FF8 E:\WINDOWS\System32\DRIVERS\nwlnkspx.sys C0BB7D1615E1ACBDC99757F6CEAF8CF0 E:\WINDOWS\System32\DRIVERS\nwrdr.sys 36B9B950E3D2E100970A48D8BAD86740 E:\WINDOWS\System32\DRIVERS\oxser.sys 8DB0DBDEC7880E81B73B8E7E8E9A666A E:\WINDOWS\System32\DRIVERS\parport.sys 2D4CDAEBCED17743AA9E25D3016DC229 E:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6 E:\WINDOWS\system32\Drivers\ParVdm.sys 453EC2C2A20A1382F564541918520EEB E:\WINDOWS\System32\DRIVERS\pci.sys 6862C69168D787B85A7D95CCD33C694E E:\WINDOWS\System32\DRIVERS\pciide.sys 548CF2D6369EAE441A4C6BAA75BC4F0A E:\WINDOWS\system32\Drivers\Pcmcia.sys 8DB27F1AE9593C94095485305A583862 E:\WINDOWS\System32\DRIVERS\PDFsFilter.sys 4BF1B60276BE359158F0E68681713872 E:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99 E:\WINDOWS\System32\DRIVERS\psched.sys 09298EC810B07E5D582CB3A3F9255424 E:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD E:\WINDOWS\System32\Drivers\PxHelp20.sys 153D02480A0A2F45785522E814C634B6 E:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C E:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6 E:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE E:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242 E:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A E:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332 E:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1 E:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD E:\WINDOWS\System32\DRIVERS\redbook.sys E0C7BBD18040B58651BAC700C804861D E:\WINDOWS\System32\Drivers\RootMdm.sys D8B0B4ADE32574B2D9C5CC34DC0DBBE7 E:\WINDOWS\System32\DRIVERS\Rtenicxp.sys C6D34A1874CD2B212DC3E788091C64B4 E:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit E:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE E:\WINDOWS\System32\DRIVERS\serial.sys D07B02F88165E69B9F17162CF592C8A6 E:\WINDOWS\system32\Drivers\Sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562 E:\WINDOWS\System32\DRIVERS\SLIP.sys 866D538EBE33709A5C9F5C62B73B7D14 E:\WINDOWS\System32\DRIVERS\snapman.sys 5583054EF09D13CA953DA1FAE287D80D E:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F E:\WINDOWS\System32\Drivers\sptd.sys FEB11DBAA5E152D98BD897C97A6DDCD0 E:\WINDOWS\system32\DRIVERS\sr.sys EB032822BE406EF220D546DDFFCF0002 E:\WINDOWS\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B E:\WINDOWS\System32\Drivers\ssudeadb.sys A28E6B8F15C5D107AF575D0FD6DC8777 E:\WINDOWS\System32\DRIVERS\ssudmdm.sys 359FEE084F1173FFFFD7F9CCBD43D47F E:\WINDOWS\System32\DRIVERS\StreamIP.sys 77813007BA6265C4B6098187E6ED79D2 E:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F E:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01 E:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290 E:\WINDOWS\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733 E:\WINDOWS\System32\DRIVERS\tcpip6.sys AA7A55536096D646DC7AB0AC5641E9E8 E:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397 E:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61 E:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E E:\WINDOWS\System32\DRIVERS\tiacxln.sys BC0EAC3430F0134C4C494994510567A9 N:\Program Files\TrueCrypt\truecrypt.sys ED5E4CE36C54F55E7698642E94D32EC7 E:\WINDOWS\System32\DRIVERS\tunmp.sys 8F861EDA21C05857EB8197300A92501C E:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9 E:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31 E:\WINDOWS\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8 E:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7 E:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C E:\WINDOWS\System32\DRIVERS\usbscan.sys A0B8CF9DEB1184FBDD20784A58FA75D4 E:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9 E:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6 E:\WINDOWS\System32\DRIVERS\usb8023x.sys B6CC50279D6CD28E090A5D33244ADC9A E:\WINDOWS\System32\DRIVERS\VComm.sys 9EBEE4A060C5364A31AEAA04EAC2AF1E E:\WINDOWS\System32\Drivers\VcommMgr.sys EF0D45ED806B0C9AE9756BFEECB077ED E:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1 E:\WINDOWS\system32\Drivers\VolSnap.sys 56B191AC5FC0DF219949C95A6C87AFE7 E:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6 E:\WINDOWS\System32\Drivers\wdf01000.sys BBCFEAB7E871CDDAC2D397EE7FA91FDC E:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F E:\WINDOWS\System32\DRIVERS\WinUSB.sys FD600B032E741EB6AAB509FC630F7C42 E:\WINDOWS\System32\Drivers\wpdusb.sys CF4DEF1BF66F06964DC0D91844239104 E:\WINDOWS\System32\drivers\ws2ifsl.sys 6ABE6E225ADB5A751622A9CC3BC19CE8 E:\WINDOWS\System32\DRIVERS\WSTCODEC.SYS C98B39829C2BBD34E454150633C62C78 E:\WINDOWS\System32\DRIVERS\WudfPf.sys F15FEAFFFBB3644CCC80C5DA584E6311 E:\WINDOWS\System32\DRIVERS\wudfrd.sys 28B524262BCE6DE1F7EF9F510BA3985B ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-08 16:52 - 2015-01-08 16:52 - 00032171 _____ () E:\Documents and Settings\x-324\Pulpit\FRST.txt 2015-01-08 16:52 - 2015-01-08 16:52 - 00000000 ____D () E:\FRST 2015-01-08 16:51 - 2015-01-08 16:51 - 01115648 _____ (Farbar) E:\Documents and Settings\x-324\Pulpit\FRST.exe 2015-01-08 16:50 - 2015-01-08 16:50 - 00602112 _____ (OldTimer Tools) E:\Documents and Settings\x-324\Pulpit\OTL.exe 2015-01-08 14:59 - 2015-01-08 14:59 - 00000000 ____D () E:\Documents and Settings\x-324\Dane aplikacji\WinRAR 2015-01-08 14:59 - 2012-02-15 22:01 - 00000000 ____D () E:\Documents and Settings\x-324\Pulpit\Save Mass Effect (Strażnik) 2015-01-08 14:25 - 2015-01-08 16:49 - 00000930 _____ () E:\WINDOWS\Tasks\Adobe Flash Player Updater.job 2015-01-08 14:25 - 2015-01-08 14:25 - 00000892 _____ () E:\WINDOWS\Tasks\Adobe Flash Player PPAPI Notifier.job 2015-01-08 13:38 - 2015-01-08 13:38 - 00000000 ____D () E:\Documents and Settings\NetworkService\Dane aplikacji\Adobe 2015-01-08 13:37 - 2015-01-08 13:48 - 00000000 ____D () E:\Documents and Settings\NetworkService\Dane aplikacji\Winamp 2015-01-08 13:07 - 2015-01-08 13:07 - 00422978 _____ () E:\Documents and Settings\x-324\Pulpit\Save Mass Effect (Strażnik).rar 2015-01-08 12:40 - 2015-01-08 12:40 - 00121344 ___SH () E:\Documents and Settings\x-324\Moje dokumenty\Thumbs.db 2015-01-08 12:11 - 2015-01-08 12:11 - 00000792 _____ () E:\Documents and Settings\NetworkService\Menu Start\Programy\Windows Media Player.lnk 2015-01-08 12:11 - 2015-01-08 12:11 - 00000767 _____ () E:\Documents and Settings\NetworkService\Menu Start\Programy\Internet Explorer.lnk 2015-01-08 12:11 - 2015-01-08 12:11 - 00000738 _____ () E:\Documents and Settings\NetworkService\Menu Start\Programy\Outlook Express.lnk 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Ulubione 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Moje dokumenty\Moje obrazy 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Moje dokumenty\Moja muzyka 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Moje dokumenty 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Menu Start\Programy\Akcesoria 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ___RD () E:\Documents and Settings\NetworkService\Menu Start\Programy 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ____D () E:\Documents and Settings\NetworkService\Pulpit 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ____D () E:\Documents and Settings\NetworkService\Menu Start\Programy\Autostart 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ____D () E:\Documents and Settings\NetworkService\Menu Start 2015-01-08 12:11 - 2015-01-08 12:11 - 00000000 ____D () E:\Documents and Settings\NetworkService\Dane aplikacji\Apple Computer ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2015-01-08 16:52 - 2009-06-23 18:50 - 00000000 ____D () E:\Documents and Settings\x-324\Ustawienia lokalne\Temp 2015-01-08 16:52 - 2009-06-23 18:50 - 00000000 ____D () E:\Documents and Settings\x-324\Pulpit 2015-01-08 16:42 - 2014-04-25 14:20 - 00001036 _____ () E:\WINDOWS\Tasks\GoogleUpdateTaskMachineUA.job 2015-01-08 16:23 - 2014-01-18 16:23 - 00001972 _____ () E:\WINDOWS\Tasks\Apps Hat-chromeinstaller.job 2015-01-08 14:59 - 2009-06-23 18:50 - 00000000 __RHD () E:\Documents and Settings\x-324\Dane aplikacji 2015-01-08 14:50 - 2013-11-04 13:57 - 00701104 ____C (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerApp.exe 2015-01-08 14:50 - 2013-11-04 13:57 - 00071344 ____C (Adobe Systems Incorporated) E:\WINDOWS\system32\FlashPlayerCPLApp.cpl 2015-01-08 14:28 - 2009-07-14 20:31 - 00000000 ____D () E:\Documents and Settings\x-324\Ustawienia lokalne\Dane aplikacji\Adobe 2015-01-08 13:49 - 2014-04-25 14:20 - 00001032 _____ () E:\WINDOWS\Tasks\GoogleUpdateTaskMachineCore.job 2015-01-08 13:48 - 2009-06-23 18:50 - 00000188 ___SH () E:\Documents and Settings\x-324\ntuser.ini 2015-01-08 13:48 - 2009-06-23 18:49 - 00000000 ___HD () E:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji 2015-01-08 13:48 - 2009-06-23 18:45 - 01117612 _____ () E:\WINDOWS\WindowsUpdate.log 2015-01-08 13:38 - 2009-06-23 18:49 - 00000000 ____D () E:\Documents and Settings\NetworkService\Dane aplikacji 2015-01-08 12:40 - 2009-06-23 18:50 - 00000000 ___RD () E:\Documents and Settings\x-324\Moje dokumenty 2015-01-08 12:11 - 2009-06-23 18:49 - 00000000 __SHD () E:\Documents and Settings\NetworkService 2015-01-08 12:11 - 2009-06-23 18:49 - 00000000 ___SD () E:\Documents and Settings\NetworkService\Ustawienia lokalne\Historia 2015-01-08 12:11 - 2009-06-23 18:42 - 00028944 ____C () E:\WINDOWS\wmsetup.log 2015-01-08 10:42 - 2009-06-23 18:50 - 00000000 ___HD () E:\Documents and Settings\x-324\Ustawienia lokalne\Dane aplikacji 2015-01-08 10:39 - 2009-06-23 20:36 - 01189940 ____C () E:\WINDOWS\system32\PerfStringBackup.INI 2015-01-08 10:39 - 2001-10-26 17:15 - 00532572 _____ () E:\WINDOWS\system32\perfh015.dat 2015-01-08 10:39 - 2001-10-26 17:15 - 00093754 _____ () E:\WINDOWS\system32\perfc015.dat 2015-01-08 10:35 - 2009-06-23 20:39 - 00000159 _____ () E:\WINDOWS\wiadebug.log 2015-01-08 10:35 - 2009-06-23 20:39 - 00000050 _____ () E:\WINDOWS\wiaservc.log 2015-01-08 10:35 - 2009-06-23 18:49 - 00000006 ____H () E:\WINDOWS\Tasks\SA.DAT 2015-01-08 10:34 - 2001-07-21 23:17 - 00002206 _____ () E:\WINDOWS\system32\wpa.dbl Some content of TEMP: ==================== E:\Documents and Settings\x-324\Ustawienia lokalne\Temp\gtapi_signed.dll E:\Documents and Settings\x-324\Ustawienia lokalne\Temp\install_reader11_pl_chra_aaa_aih.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) E:\WINDOWS\explorer.exe => File is digitally signed E:\WINDOWS\system32\winlogon.exe => File is digitally signed E:\WINDOWS\system32\svchost.exe => File is digitally signed E:\WINDOWS\system32\services.exe => File is digitally signed E:\WINDOWS\system32\User32.dll => File is digitally signed E:\WINDOWS\system32\userinit.exe => File is digitally signed E:\WINDOWS\system32\rpcss.dll => File is digitally signed E:\WINDOWS\system32\Drivers\volsnap.sys => File is digitally signed ==================== End Of Log ============================