Scan result of Farbars's Recovery Tool (FRST written by farbar) Version 2.1.1 Ran by SYSTEM at 2011-06-24 13:29:40 Running from E:\ Microsoft Windows XP (X86) OS Language: English(US) The current controlset is ControlSet003 ========================== Registry ========================== HKLM\...\Run: [SoundMAXPnP] C:\Program Files\Analog Devices\Core\smax4pnp.exe [1404928 2004-10-14] (Analog Devices, Inc.) HKLM\...\Run: [igfxtray] C:\WINDOWS\system32\igfxtray.exe [94208 2006-03-23] (Intel Corporation) HKLM\...\Run: [igfxhkcmd] C:\WINDOWS\system32\hkcmd.exe [77824 2006-03-23] (Intel Corporation) HKLM\...\Run: [igfxpers] C:\WINDOWS\system32\igfxpers.exe [118784 2006-03-23] (Intel Corporation) HKLM\...\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice [2054360 2009-11-16] (ESET) HKLM\...\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" [248552 2010-05-14] (Sun Microsystems, Inc.) HKLM\...\Run: [TkBellExe] "C:\Program Files\Real\RealPlayer\update\realsched.exe" -osboot [274608 2011-01-26] (RealNetworks, Inc.) HKLM\...\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [35760 2011-01-31] (Adobe Systems Incorporated) HKLM\...\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" [932288 2010-09-20] (Adobe Systems Incorporated) HKLM\...\Run: [Mircosoft Explorer] C:\Documents and Settings\gx520\Dane aplikacji\teskmgrs.exe HKU\Administrator\...\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE [15360 2008-04-15] (Microsoft Corporation) HKU\Default User\...\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE [15360 2008-04-15] (Microsoft Corporation) HKU\gx520\...\Run: [CTFMON.EXE] C:\WINDOWS\system32\ctfmon.exe [15360 2008-04-15] (Microsoft Corporation) HKU\gx520\...\Run: [MSMSGS] "C:\Program Files\Messenger\msmsgs.exe" /background [1695232 2008-04-14] (Microsoft Corporation) HKU\gx520\...\Run: [Mircosoft Explorer] C:\Documents and Settings\gx520\Dane aplikacji\teskmgrs.exe HKU\gx520\...\Run: [Kypips] C:\Documents and Settings\gx520\Dane aplikacji\Kypips.exe [153600 2011-06-22] () HKU\gx520\...\Run: [ju7bd] C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-2734\ju7bd.exe HKU\gx520\...\Run: [12CFG214-K641-12SF-N85P] C:\RECYCLER\S-1-5-21-0243936033-3052116371-381863308-1811\vsbntlo.exe [110592 2011-06-22] () HKU\gx520\...\Winlogon: [Shell] C:\RECYCLER\S-1-5-21-0243556031-888888379-781863308-2734\ju7bd.exe,C:\Documents and Settings\gx520\Dane aplikacji\lwzy.exe,C:\Documents and Settings\gx520\Dane aplikacji\hgfrhf.exe,C:\Documents and Settings\gx520\Dane aplikacji\sbqh.exe,explorer.exe,C:\Documents and Settings\gx520\Dane aplikacji\mzrp.exe HKU\LocalService\...\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE [15360 2008-04-15] (Microsoft Corporation) HKU\NetworkService\...\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE [15360 2008-04-15] (Microsoft Corporation) HKLM\...\Winlogon: [Userinit] C:\Documents and Settings\gx520\Dane aplikacji\svchost.exe HKLM\...\Winlogon: [Shell] explorer.exe, svdhalp.exe [x x] () HKLM\...\Winlogon: [UIHost] logonui.exe [515072 2008-04-15] (Microsoft Corporation) Winlogon\Notify\crypt32chain: crypt32.dll (Microsoft Corporation) Winlogon\Notify\cryptnet: cryptnet.dll (Microsoft Corporation) Winlogon\Notify\cscdll: cscdll.dll (Microsoft Corporation) Winlogon\Notify\dimsntfy: %SystemRoot%\System32\dimsntfy.dll (Microsoft Corporation) Winlogon\Notify\igfxcui: igfxdev.dll (Intel Corporation) Winlogon\Notify\ScCertProp: wlnotify.dll (Microsoft Corporation) Winlogon\Notify\Schedule: wlnotify.dll (Microsoft Corporation) Winlogon\Notify\sclgntfy: sclgntfy.dll (Microsoft Corporation) Winlogon\Notify\SensLogn: WlNotify.dll (Microsoft Corporation) Winlogon\Notify\termsrv: wlnotify.dll (Microsoft Corporation) Winlogon\Notify\WgaLogon: WgaLogon.dll (Microsoft Corporation) Winlogon\Notify\wlballoon: wlnotify.dll (Microsoft Corporation) Tcpip\Parameters: [DhcpNameServer] 192.168.1.1 ========================== Services ========================== 4 Alerter; C:\Windows\System32\alrsvc.dll [17408 2008-04-15] (Microsoft Corporation) 3 ALG; C:\Windows\System32\alg.exe [44544 2008-04-15] (Microsoft Corporation) 3 AppMgmt; C:\Windows\System32\appmgmts.dll [172032 2008-04-15] (Microsoft Corporation) 2 ASFIPmon; "C:\Program Files\Broadcom\ASFIPMon\AsfIpMon.exe" -service [61440 2005-03-08] (Broadcom Corporation) 3 aspnet_state; C:\Windows\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [34312 2008-07-25] (Microsoft Corporation) 2 AudioSrv; C:\Windows\System32\audiosrv.dll [42496 2008-04-15] (Microsoft Corporation) 2 BITS; C:\WINDOWS\system32\qmgr.dll [409088 2008-04-15] (Microsoft Corporation) 2 Browser; C:\Windows\System32\browser.dll [77824 2008-04-15] (Microsoft Corporation) 3 CiSvc; C:\Windows\System32\cisvc.exe [5632 2008-04-15] (Microsoft Corporation) 4 ClipSrv; C:\Windows\System32\clipsrv.exe [33280 2008-04-15] (Microsoft Corporation) 3 clr_optimization_v2.0.50727_32; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [69632 2008-07-25] (Microsoft Corporation) 3 COMSysApp; C:\WINDOWS\system32\dllhost.exe /Processid:{02D4B3F1-FD88-11D1-960D-00805FC79235} [5120 2008-04-15] (Microsoft Corporation) 2 CryptSvc; C:\Windows\System32\cryptsvc.dll [62464 2008-04-15] (Microsoft Corporation) 2 DcomLaunch; C:\Windows\System32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation) 2 Dhcp; C:\Windows\System32\dhcpcsvc.dll [126464 2008-04-15] (Microsoft Corporation) 3 dmadmin; C:\Windows\System32\dmadmin.exe /com [225280 2008-04-15] (Microsoft Corp., Veritas Software) 2 dmserver; C:\Windows\System32\dmserver.dll [24064 2008-04-15] (Microsoft Corp.) 2 Dnscache; C:\Windows\System32\dnsrslvr.dll [45568 2009-04-20] (Microsoft Corporation) 3 Dot3svc; C:\Windows\System32\dot3svc.dll [133632 2008-04-15] (Microsoft Corporation) 3 EapHost; C:\Windows\System32\eapsvc.dll [33792 2008-04-15] (Microsoft Corporation) 3 EhttpSrv; "C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe" [20680 2009-11-16] (ESET) 2 ekrn; "C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe" [735960 2009-11-16] (ESET) 2 ERSvc; C:\Windows\System32\ersvc.dll [23040 2008-04-15] (Microsoft Corporation) 2 Eventlog; C:\Windows\System32\services.exe [111104 2009-02-09] (Microsoft Corporation) 3 EventSystem; C:\WINDOWS\system32\es.dll [253952 2008-07-07] (Microsoft Corporation) 3 FastUserSwitchingCompatibility; C:\Windows\System32\shsvcs.dll [135680 2009-07-27] (Microsoft Corporation) 2 helpsvc; C:\Windows\PCHealth\HelpCtr\Binaries\pchsvc.dll [38400 2008-04-15] (Microsoft Corporation) 2 HidServ; C:\Windows\System32\hidserv.dll [21504 2008-04-14] (Microsoft Corporation) 3 hkmsvc; C:\Windows\System32\kmsvc.dll [61440 2008-04-15] (Microsoft Corporation) 3 HTTPFilter; C:\Windows\System32\w3ssl.dll [15872 2008-04-15] (Microsoft Corporation) 3 ImapiService; C:\WINDOWS\system32\imapi.exe [150528 2008-04-15] (Microsoft Corporation) 2 LanmanServer; C:\Windows\System32\srvsvc.dll [99840 2010-08-26] (Microsoft Corporation) 2 lanmanworkstation; C:\Windows\System32\wkssvc.dll [132096 2009-06-09] (Microsoft Corporation) 2 LmHosts; C:\Windows\System32\lmhsvc.dll [13824 2008-04-15] (Microsoft Corporation) 4 Messenger; C:\Windows\System32\msgsvc.dll [33792 2008-04-15] (Microsoft Corporation) 3 mnmsrvc; C:\WINDOWS\system32\mnmsrvc.exe [32768 2008-04-15] (Microsoft Corporation) 3 MSDTC; C:\WINDOWS\system32\msdtc.exe [6144 2008-04-15] (Microsoft Corporation) 3 MSIServer; C:\WINDOWS\system32\msiexec.exe /V [78848 2008-04-15] (Microsoft Corporation) 3 napagent; C:\Windows\System32\qagentrt.dll [293376 2008-04-15] (Microsoft Corporation) 4 NetDDE; C:\Windows\System32\netdde.exe [114688 2008-04-15] (Microsoft Corporation) 4 NetDDEdsdm; C:\Windows\System32\netdde.exe [114688 2008-04-15] (Microsoft Corporation) 3 Netlogon; C:\Windows\System32\lsass.exe [13312 2008-04-15] (Microsoft Corporation) 3 Netman; C:\Windows\System32\netman.dll [198144 2008-04-15] (Microsoft Corporation) 3 Nla; C:\Windows\System32\mswsock.dll [246784 2008-06-20] (Microsoft Corporation) 3 NtLmSsp; C:\Windows\System32\lsass.exe [13312 2008-04-15] (Microsoft Corporation) 3 NtmsSvc; C:\Windows\System32\ntmssvc.dll [435712 2008-04-15] (Microsoft Corporation) 3 odserv; "C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE" [441712 2008-11-03] (Microsoft Corporation) 3 ose; "C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE" [145184 2006-10-26] (Microsoft Corporation) 2 PlugPlay; C:\Windows\System32\services.exe [111104 2009-02-09] (Microsoft Corporation) 2 PolicyAgent; C:\Windows\System32\lsass.exe [13312 2008-04-15] (Microsoft Corporation) 2 ProtectedStorage; C:\Windows\System32\lsass.exe [13312 2008-04-15] (Microsoft Corporation) 3 RasAuto; C:\Windows\System32\rasauto.dll [88576 2008-04-15] (Microsoft Corporation) 3 RasMan; C:\Windows\System32\rasmans.dll [186368 2008-04-15] (Microsoft Corporation) 3 RDSessMgr; C:\WINDOWS\system32\sessmgr.exe [142336 2008-04-15] (Microsoft Corporation) 4 RemoteAccess; C:\Windows\System32\mprdim.dll [53248 2008-04-15] (Microsoft Corporation) 2 RemoteRegistry; C:\Windows\System32\regsvc.dll [59904 2008-04-15] (Microsoft Corporation) 3 RpcLocator; C:\Windows\System32\locator.exe [75264 2008-04-15] (Microsoft Corporation) 2 RpcSs; C:\Windows\System32\rpcss.dll [401408 2009-02-09] (Microsoft Corporation) 3 RSVP; C:\Windows\System32\rsvp.exe [132608 2008-04-15] (Microsoft Corporation) 2 SamSs; C:\Windows\System32\lsass.exe [13312 2008-04-15] (Microsoft Corporation) 3 SCardSvr; C:\Windows\System32\SCardSvr.exe [98304 2008-04-15] (Microsoft Corporation) 2 Schedule; C:\Windows\System32\schedsvc.dll [193536 2008-04-15] (Microsoft Corporation) 2 seclogon; C:\Windows\System32\seclogon.dll [18944 2008-04-15] (Microsoft Corporation) 2 SENS; C:\Windows\System32\sens.dll [39424 2008-04-15] (Microsoft Corporation) 2 SharedAccess; C:\Windows\System32\ipnathlp.dll [330752 2008-04-15] (Microsoft Corporation) 2 ShellHWDetection; C:\Windows\System32\shsvcs.dll [135680 2009-07-27] (Microsoft Corporation) 2 Spooler; C:\Windows\System32\spoolsv.exe [58880 2010-08-17] (Microsoft Corporation) 2 srservice; C:\WINDOWS\system32\srsvc.dll [171520 2008-04-15] (Microsoft Corporation) 3 SSDPSRV; C:\Windows\System32\ssdpsrv.dll [71680 2008-04-15] (Microsoft Corporation) 2 stisvc; C:\Windows\System32\wiaservc.dll [334336 2008-04-15] (Microsoft Corporation) 3 SwPrv; C:\WINDOWS\system32\dllhost.exe /Processid:{44C1170B-E3DE-4F37-A9EC-33D6A72D7D61} [5120 2008-04-15] (Microsoft Corporation) 3 SysmonLog; C:\Windows\System32\smlogsvc.exe [91136 2008-04-15] (Microsoft Corporation) 3 TapiSrv; C:\Windows\System32\tapisrv.dll [249856 2008-04-15] (Microsoft Corporation) 3 TermService; C:\Windows\System32\termsrv.dll [296448 2008-04-15] (Microsoft Corporation) 2 Themes; C:\Windows\System32\shsvcs.dll [135680 2009-07-27] (Microsoft Corporation) 4 TlntSvr; C:\WINDOWS\system32\tlntsvr.exe [75264 2008-04-15] (Microsoft Corporation) 2 TrkWks; C:\Windows\System32\trkwks.dll [90112 2008-04-15] (Microsoft Corporation) 3 upnphost; C:\Windows\System32\upnphost.dll [186880 2008-04-15] (Microsoft Corporation) 3 UPS; C:\Windows\System32\ups.exe [18432 2008-04-15] (Microsoft Corporation) 3 VSS; C:\Windows\System32\vssvc.exe [291840 2008-04-15] (Microsoft Corporation) 2 W32Time; C:\WINDOWS\system32\w32time.dll [176128 2008-04-15] (Microsoft Corporation) 2 WebClient; C:\Windows\System32\webclnt.dll [68096 2008-04-15] (Microsoft Corporation) 2 winmgmt; C:\Windows\System32\wbem\WMIsvc.dll [145408 2008-04-15] (Microsoft Corporation) 3 WmdmPmSN; C:\WINDOWS\system32\mspmsnsv.dll [52736 2008-04-15] (Microsoft Corporation) 3 Wmi; C:\Windows\System32\advapi32.dll [686592 2009-02-09] (Microsoft Corporation) 3 WmiApSrv; C:\WINDOWS\system32\wbem\wmiapsrv.exe [126464 2008-04-15] (Microsoft Corporation) 2 wscsvc; C:\Windows\System32\wscsvc.dll [80896 2008-04-15] (Microsoft Corporation) 2 wuauserv; C:\WINDOWS\system32\wuauserv.dll [6656 2008-04-15] (Microsoft Corporation) 2 WZCSVC; C:\Windows\System32\wzcsvc.dll [483840 2008-04-15] (Microsoft Corporation) 3 xmlprov; C:\Windows\System32\xmlprov.dll [129024 2008-04-15] (Microsoft Corporation) 3 FontCache3.0.0.0; c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe [x] 3 idsvc; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe" [x] 2 JavaQuickStarterService; "C:\Program Files\Java\jre6\bin\jqs.exe" -service -config "C:\Program Files\Java\jre6\lib\deploy\jqs\jqs.conf" [x] 4 NetTcpPortSharing; "c:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe" [x] 2 PSI_SVC_2; "c:\Program Files\Common Files\Protexis\License Service\PsiService_2.exe" [x] ==================== Drivers ==================== 0 ACPI; C:\Windows\System32\DRIVERS\ACPI.sys [188544 2008-04-15] (Microsoft Corporation) 4 ACPIEC; C:\Windows\System32\Drivers\ACPIEC.sys [12032 2008-04-15] (Microsoft Corporation) 3 aec; C:\Windows\System32\drivers\aec.sys [142592 2008-04-13] (Microsoft Corporation) 1 AFD; C:\Windows\System32\drivers\afd.sys [138496 2011-02-16] (Microsoft Corporation) 3 AsyncMac; C:\Windows\System32\DRIVERS\asyncmac.sys [14336 2008-04-15] (Microsoft Corporation) 0 atapi; C:\Windows\System32\DRIVERS\atapi.sys [96512 2008-04-13] (Microsoft Corporation) 3 Atmarpc; C:\Windows\System32\DRIVERS\atmarpc.sys [59904 2008-04-15] (Microsoft Corporation) 3 audstub; C:\Windows\System32\DRIVERS\audstub.sys [3072 2001-08-17] (Microsoft Corporation) 3 AVPsys; \??\C:\WINDOWS\system32\drivers\cdaudio.sys [18688 2001-08-17] (Microsoft Corporation) 3 b57w2k; C:\Windows\System32\DRIVERS\b57xp32.sys [132608 2005-03-17] (Broadcom Corporation) 2 BASFND; \??\C:\Program Files\Broadcom\ASFIPMon\BASFND.sys [6025 2003-04-24] (Broadcom Corporation) 1 Beep; C:\Windows\System32\Drivers\Beep.sys [4224 2008-04-15] (Microsoft Corporation) 4 cbidf2k; C:\Windows\System32\Drivers\cbidf2k.sys [13952 2008-04-15] (Microsoft Corporation) 1 Cdaudio; C:\Windows\System32\Drivers\Cdaudio.sys [18688 2001-08-17] (Microsoft Corporation) 4 Cdfs; C:\Windows\System32\Drivers\Cdfs.sys [63744 2008-04-15] (Microsoft Corporation) 1 Cdrom; C:\Windows\System32\DRIVERS\cdrom.sys [62976 2008-04-15] (Microsoft Corporation) 0 Disk; C:\Windows\System32\DRIVERS\disk.sys [36352 2008-04-15] (Microsoft Corporation) 4 dmboot; C:\Windows\System32\drivers\dmboot.sys [800000 2008-04-15] (Microsoft Corp., Veritas Software) 0 dmio; C:\Windows\System32\drivers\dmio.sys [153856 2008-04-15] (Microsoft Corp., Veritas Software) 0 dmload; C:\Windows\System32\drivers\dmload.sys [5888 2008-04-15] (Microsoft Corp., Veritas Software.) 3 DMusic; C:\Windows\System32\drivers\DMusic.sys [52864 2008-04-13] (Microsoft Corporation) 3 drmkaud; C:\Windows\System32\drivers\drmkaud.sys [2944 2008-04-13] (Microsoft Corporation) 2 eamon; C:\Windows\System32\DRIVERS\eamon.sys [116520 2009-11-15] (ESET) 1 ehdrv; C:\Windows\System32\DRIVERS\ehdrv.sys [108792 2009-11-16] (ESET) 1 epfwtdir; C:\Windows\System32\DRIVERS\epfwtdir.sys [96408 2009-11-16] (ESET) 4 Fastfat; C:\Windows\System32\Drivers\Fastfat.sys [143744 2008-04-15] (Microsoft Corporation) 1 Fdc; C:\Windows\System32\Drivers\Fdc.sys [27392 2008-04-15] (Microsoft Corporation) 1 Fips; C:\Windows\System32\Drivers\Fips.sys [44672 2008-04-15] (Microsoft Corporation) 1 Flpydisk; C:\Windows\System32\Drivers\Flpydisk.sys [20480 2008-04-15] (Microsoft Corporation) 0 FltMgr; C:\Windows\System32\DRIVERS\fltMgr.sys [129792 2008-04-15] (Microsoft Corporation) 1 Fs_Rec; C:\Windows\System32\Drivers\Fs_Rec.sys [7936 2008-04-15] (Microsoft Corporation) 0 Ftdisk; C:\Windows\System32\DRIVERS\ftdisk.sys [125568 2008-04-15] (Microsoft Corporation) 3 Gpc; C:\Windows\System32\DRIVERS\msgpc.sys [35072 2008-04-15] (Microsoft Corporation) 3 hidusb; C:\Windows\System32\DRIVERS\hidusb.sys [10368 2008-04-15] (Microsoft Corporation) 3 HTTP; C:\Windows\System32\Drivers\HTTP.sys [265728 2009-10-20] (Microsoft Corporation) 1 i8042prt; C:\Windows\System32\Drivers\i8042prt.sys [53248 2008-04-15] (Microsoft Corporation) 3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [1166972 2006-03-23] (Intel Corporation) 1 Imapi; C:\Windows\System32\DRIVERS\imapi.sys [42112 2008-04-15] (Microsoft Corporation) 1 intelppm; C:\Windows\System32\DRIVERS\intelppm.sys [40448 2008-04-15] (Microsoft Corporation) 3 Ip6Fw; C:\Windows\System32\DRIVERS\Ip6Fw.sys [36608 2008-04-15] (Microsoft Corporation) 3 IpFilterDriver; C:\Windows\System32\DRIVERS\ipfltdrv.sys [32896 2008-04-15] (Microsoft Corporation) 3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [20864 2008-04-15] (Microsoft Corporation) 3 IpNat; C:\Windows\System32\DRIVERS\ipnat.sys [152832 2008-04-15] (Microsoft Corporation) 1 IPSec; C:\Windows\System32\DRIVERS\ipsec.sys [75264 2008-04-15] (Microsoft Corporation) 3 IRENUM; C:\Windows\System32\DRIVERS\irenum.sys [11264 2008-04-15] (Microsoft Corporation) 0 isapnp; C:\Windows\System32\DRIVERS\isapnp.sys [37632 2008-04-14] (Microsoft Corporation) 1 Kbdclass; C:\Windows\System32\DRIVERS\kbdclass.sys [24960 2008-04-15] (Microsoft Corporation) 1 kbdhid; C:\Windows\System32\DRIVERS\kbdhid.sys [14720 2008-04-15] (Microsoft Corporation) 3 kmixer; C:\Windows\System32\drivers\kmixer.sys [172416 2008-04-13] (Microsoft Corporation) 0 KSecDD; C:\Windows\System32\Drivers\KSecDD.sys [92928 2009-06-24] (Microsoft Corporation) 1 mnmdd; C:\Windows\System32\Drivers\mnmdd.sys [4224 2008-04-15] (Microsoft Corporation) 3 Modem; C:\Windows\System32\Drivers\Modem.sys [30208 2008-04-15] (Microsoft Corporation) 1 Mouclass; C:\Windows\System32\DRIVERS\mouclass.sys [23296 2008-04-15] (Microsoft Corporation) 3 mouhid; C:\Windows\System32\DRIVERS\mouhid.sys [12160 2008-04-15] (Microsoft Corporation) 0 MountMgr; C:\Windows\System32\Drivers\MountMgr.sys [42368 2008-04-15] (Microsoft Corporation) 3 MRxDAV; C:\Windows\System32\DRIVERS\mrxdav.sys [180608 2008-04-15] (Microsoft Corporation) 1 MRxSmb; C:\Windows\System32\DRIVERS\mrxsmb.sys [456320 2011-04-29] (Microsoft Corporation) 1 Msfs; C:\Windows\System32\Drivers\Msfs.sys [19072 2008-04-15] (Microsoft Corporation) 3 MSKSSRV; C:\Windows\System32\drivers\MSKSSRV.sys [7552 2008-04-13] (Microsoft Corporation) 3 MSPCLOCK; C:\Windows\System32\drivers\MSPCLOCK.sys [5376 2008-04-13] (Microsoft Corporation) 3 MSPQM; C:\Windows\System32\drivers\MSPQM.sys [4992 2008-04-13] (Microsoft Corporation) 3 mssmbios; C:\Windows\System32\DRIVERS\mssmbios.sys [15488 2008-04-15] (Microsoft Corporation) 0 Mup; C:\Windows\System32\Drivers\Mup.sys [105472 2011-04-21] (Microsoft Corporation) 0 NDIS; C:\Windows\System32\Drivers\NDIS.sys [182656 2008-04-15] (Microsoft Corporation) 3 NdisTapi; C:\Windows\System32\DRIVERS\ndistapi.sys [10112 2008-04-15] (Microsoft Corporation) 3 Ndisuio; C:\Windows\System32\DRIVERS\ndisuio.sys [14592 2008-04-15] (Microsoft Corporation) 3 NdisWan; C:\Windows\System32\DRIVERS\ndiswan.sys [91520 2008-04-15] (Microsoft Corporation) 3 NDProxy; C:\Windows\System32\Drivers\NDProxy.sys [40960 2010-11-02] (Microsoft Corporation) 1 NetBIOS; C:\Windows\System32\DRIVERS\netbios.sys [34688 2008-04-15] (Microsoft Corporation) 1 NetBT; C:\Windows\System32\DRIVERS\netbt.sys [162816 2008-04-15] (Microsoft Corporation) 1 Npfs; C:\Windows\System32\Drivers\Npfs.sys [30848 2008-04-15] (Microsoft Corporation) 4 Ntfs; C:\Windows\System32\Drivers\Ntfs.sys [574976 2008-04-15] (Microsoft Corporation) 1 Null; C:\Windows\System32\Drivers\Null.sys [2944 2008-04-15] (Microsoft Corporation) 3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [12416 2008-04-15] (Microsoft Corporation) 3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [32512 2008-04-15] (Microsoft Corporation) 3 Parport; C:\Windows\System32\DRIVERS\parport.sys [80256 2008-04-15] (Microsoft Corporation) 0 PartMgr; C:\Windows\System32\Drivers\PartMgr.sys [19712 2008-04-15] (Microsoft Corporation) 4 ParVdm; C:\Windows\System32\Drivers\ParVdm.sys [6912 2008-04-15] (Microsoft Corporation) 0 PCI; C:\Windows\System32\DRIVERS\pci.sys [68608 2008-04-14] (Microsoft Corporation) 0 PCIIde; C:\Windows\System32\DRIVERS\pciide.sys [3456 2001-10-26] (Microsoft Corporation) 4 Pcmcia; C:\Windows\System32\Drivers\Pcmcia.sys [120320 2008-04-15] (Microsoft Corporation) 3 PptpMiniport; C:\Windows\System32\DRIVERS\raspptp.sys [48384 2008-04-15] (Microsoft Corporation) 3 PSched; C:\Windows\System32\DRIVERS\psched.sys [69120 2008-04-15] (Microsoft Corporation) 3 Ptilink; C:\Windows\System32\DRIVERS\ptilink.sys [17792 2008-04-15] (Parallel Technologies, Inc.) 1 RasAcd; C:\Windows\System32\DRIVERS\rasacd.sys [8832 2008-04-15] (Microsoft Corporation) 3 Rasl2tp; C:\Windows\System32\DRIVERS\rasl2tp.sys [51328 2008-04-15] (Microsoft Corporation) 3 RasPppoe; C:\Windows\System32\DRIVERS\raspppoe.sys [41472 2008-04-15] (Microsoft Corporation) 3 Raspti; C:\Windows\System32\DRIVERS\raspti.sys [16512 2008-04-15] (Microsoft Corporation) 1 Rdbss; C:\Windows\System32\DRIVERS\rdbss.sys [175744 2008-04-15] (Microsoft Corporation) 1 RDPCDD; C:\Windows\System32\DRIVERS\RDPCDD.sys [4224 2008-04-15] (Microsoft Corporation) 3 rdpdr; C:\Windows\System32\DRIVERS\rdpdr.sys [196224 2008-04-13] (Microsoft Corporation) 3 RDPWD; C:\Windows\System32\Drivers\RDPWD.sys [139656 2008-04-15] (Microsoft Corporation) 1 redbook; C:\Windows\System32\DRIVERS\redbook.sys [58880 2008-04-14] (Microsoft Corporation) 3 rt2870; C:\Windows\System32\DRIVERS\Drt2870.sys [724736 2009-08-03] (Ralink Technology, Corp.) 3 Secdrv; C:\Windows\System32\DRIVERS\secdrv.sys [20480 2008-04-15] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) 3 senfilt; C:\Windows\System32\drivers\senfilt.sys [732928 2004-09-16] (Creative Technology Ltd.) 3 serenum; C:\Windows\System32\DRIVERS\serenum.sys [15744 2008-04-15] (Microsoft Corporation) 1 Serial; C:\Windows\System32\DRIVERS\serial.sys [65280 2008-04-15] (Microsoft Corporation) 1 Sfloppy; C:\Windows\System32\Drivers\Sfloppy.sys [11392 2008-04-15] (Microsoft Corporation) 3 smwdm; C:\Windows\System32\drivers\smwdm.sys [260352 2005-01-27] (Analog Devices, Inc.) 3 splitter; C:\Windows\System32\drivers\splitter.sys [6272 2008-04-13] (Microsoft Corporation) 0 sr; C:\Windows\System32\DRIVERS\sr.sys [73472 2008-04-15] (Microsoft Corporation) 3 Srv; C:\Windows\System32\DRIVERS\srv.sys [357888 2011-02-17] (Microsoft Corporation) 3 swenum; C:\Windows\System32\DRIVERS\swenum.sys [4352 2008-04-15] (Microsoft Corporation) 3 swmidi; C:\Windows\System32\drivers\swmidi.sys [56576 2008-04-13] (Microsoft Corporation) 3 sysaudio; C:\Windows\System32\drivers\sysaudio.sys [60800 2008-04-13] (Microsoft Corporation) 1 Tcpip; C:\Windows\System32\DRIVERS\tcpip.sys [361600 2008-06-20] (Microsoft Corporation) 3 TDPIPE; C:\Windows\System32\Drivers\TDPIPE.sys [12040 2008-04-15] (Microsoft Corporation) 3 TDTCP; C:\Windows\System32\Drivers\TDTCP.sys [21896 2008-04-15] (Microsoft Corporation) 1 TermDD; C:\Windows\System32\DRIVERS\termdd.sys [40840 2008-04-14] (Microsoft Corporation) 4 Udfs; C:\Windows\System32\Drivers\Udfs.sys [66048 2008-04-15] (Microsoft Corporation) 3 Update; C:\Windows\System32\DRIVERS\update.sys [384768 2008-04-15] (Microsoft Corporation) 3 usbaudio; C:\Windows\System32\drivers\usbaudio.sys [60032 2008-04-13] (Microsoft Corporation) 3 usbccgp; C:\Windows\System32\DRIVERS\usbccgp.sys [32128 2008-04-13] (Microsoft Corporation) 3 usbehci; C:\Windows\System32\DRIVERS\usbehci.sys [30208 2008-04-13] (Microsoft Corporation) 3 usbhub; C:\Windows\System32\DRIVERS\usbhub.sys [59520 2008-04-13] (Microsoft Corporation) 3 usbprint; C:\Windows\System32\DRIVERS\usbprint.sys [25856 2008-04-13] (Microsoft Corporation) 3 usbscan; C:\Windows\System32\DRIVERS\usbscan.sys [15104 2008-04-13] (Microsoft Corporation) 3 USBSTOR; C:\Windows\System32\DRIVERS\USBSTOR.SYS [26368 2008-04-13] (Microsoft Corporation) 3 usbuhci; C:\Windows\System32\DRIVERS\usbuhci.sys [20608 2008-04-13] (Microsoft Corporation) 1 VgaSave; C:\Windows\System32\drivers\vga.sys [20992 2008-04-15] (Microsoft Corporation) 0 VolSnap; C:\Windows\System32\Drivers\VolSnap.sys [52864 2008-04-15] (Microsoft Corporation) 3 Wanarp; C:\Windows\System32\DRIVERS\wanarp.sys [34560 2008-04-15] (Microsoft Corporation) 3 wdmaud; C:\Windows\System32\drivers\wdmaud.sys [83072 2008-04-13] (Microsoft Corporation) 1 WS2IFSL; C:\Windows\System32\Drivers\WS2IFSL.sys [12032 2008-04-15] (Microsoft Corporation) 4 Abiosdsk; [x] 4 abp480n5; [x] 4 adpu160m; [x] 4 Aha154x; [x] 4 aic78u2; [x] 4 aic78xx; [x] 4 AliIde; [x] 4 amsint; [x] 4 asc; [x] 4 asc3350p; [x] 4 asc3550; [x] 4 Atdisk; [x] 4 cd20xrnt; [x] 0 cerc6; [x] 1 Changer; [x] 4 CmdIde; [x] 4 Cpqarray; [x] 4 dac2w2k; [x] 4 dac960nt; [x] 4 dpti2o; [x] 4 hpn; [x] 1 i2omgmt; [x] 4 i2omp; [x] 4 ini910u; [x] 4 IntelIde; [x] 1 lbrtfdc; [x] 4 mraid35x; [x] 1 PCIDump; [x] 3 PDCOMP; [x] 3 PDFRAME; [x] 3 PDRELI; [x] 3 PDRFRAME; [x] 4 perc2; [x] 4 perc2hib; [x] 4 ql1080; [x] 4 Ql10wnt; [x] 4 ql12160; [x] 4 ql1240; [x] 4 ql1280; [x] 4 Simbad; [x] 4 Sparrow; [x] 4 symc810; [x] 4 symc8xx; [x] 4 sym_hi; [x] 4 sym_u3; [x] 4 TosIde; [x] 4 ultra; [x] 4 ViaIde; [x] 3 WDICA; [x] ========================= NetSvcs ============================ ============ One Month Created Files and folders ============= 2011-06-24 13:29 - 2011-06-24 13:29 - 0000000 ____D C:\FRST 2011-06-22 09:10 - 2011-06-22 09:14 - 0000188 __ASH C:\Documents and Settings\Administrator\ntuser.ini 2011-06-22 09:10 - 2010-05-13 05:15 - 0000000 __SHD C:\Documents and Settings\Administrator\IETldCache 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 __RHD C:\Documents and Settings\Administrator\Dane aplikacji 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ___RD C:\Documents and Settings\Administrator\Menu Start 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ___HD C:\Documents and Settings\Administrator\Ustawienia lokalne 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ___HD C:\Documents and Settings\Administrator\PrintHood 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ___HD C:\Documents and Settings\Administrator\NetHood 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ____D C:\Documents and Settings\Administrator\Ulubione 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ____D C:\Documents and Settings\Administrator\Pulpit 2011-06-22 09:10 - 2009-08-19 06:12 - 0000000 ____D C:\Documents and Settings\Administrator\Moje dokumenty 2011-06-22 09:10 - 2009-08-19 04:20 - 0000000 ___HD C:\Documents and Settings\Administrator\Szablony 2011-06-22 09:09 - 2011-06-22 09:14 - 0263358 ____A C:\Windows\ntbtlog.txt 2011-06-22 05:52 - 2011-06-22 05:53 - 0187904 ____A C:\Windows\System32\svdhalp.exe.vir 2011-06-22 05:52 - 2011-06-22 05:53 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0802816 ____A (Microsoft Corporation) C:\Windows\System32\wwwycdcx.dll.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe984.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe247.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini648.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini267.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0000017 ____A C:\Windows\syskey2i.drv 2011-06-21 00:30 - 2011-06-21 00:30 - 0000009 ___SH C:\Windows\System32\windows.acm 2011-06-21 00:30 - 2011-06-21 00:30 - 0000009 ___SH C:\Windows\System32\systeme.acm 2011-06-21 00:29 - 2011-06-21 00:29 - 0000000 ____A C:\winnit.acm 2011-06-16 08:48 - 2011-06-16 08:48 - 0011328 ____A C:\Windows\KB2503665.log 2011-06-16 08:48 - 2011-06-16 08:48 - 0000000 __HDC C:\Windows\$NtUninstallKB2503665$ 2011-06-16 08:48 - 2011-06-16 08:48 - 0000000 __HDC C:\Windows\$NtUninstallKB2476490$ 2011-06-16 08:47 - 2011-06-16 08:48 - 0011330 ____A C:\Windows\KB2535512.log 2011-06-16 08:47 - 2011-06-16 08:47 - 0011408 ____A C:\Windows\KB2536276.log 2011-06-16 08:47 - 2011-06-16 08:47 - 0000000 __HDC C:\Windows\$NtUninstallKB2536276$ 2011-06-16 08:47 - 2011-06-16 08:47 - 0000000 __HDC C:\Windows\$NtUninstallKB2535512$ 2011-06-16 08:46 - 2011-06-17 00:22 - 0000000 ____D C:\Windows\SxsCaPendDel 2011-06-16 08:46 - 2011-06-16 08:47 - 0015711 ____A C:\Windows\KB2530548-IE8.log 2011-06-16 08:46 - 2011-06-16 08:46 - 0007452 ____A C:\Windows\KB2544893.log 2011-06-16 08:46 - 2011-06-16 08:46 - 0000000 __HDC C:\Windows\$NtUninstallKB2544893$ 2011-06-16 08:44 - 2011-06-16 08:44 - 0006838 ____A C:\Windows\KB2544521-IE8.log 2011-06-16 00:20 - 2011-06-16 08:48 - 0015694 ____A C:\Windows\KB2476490.log 2011-06-09 10:20 - 2011-06-09 10:20 - 0000000 ____D C:\Program Files\Common Files\Adobe 2011-06-09 10:20 - 2011-06-09 10:20 - 0000000 ____D C:\Program Files\Adobe ============ 3 Months Modified Files and folders ============= 2011-06-24 13:29 - 2011-06-24 13:29 - 0000000 ____D C:\FRST 2011-06-24 02:48 - 2008-04-15 04:00 - 0013646 ____A C:\Windows\System32\wpa.dbl 2011-06-22 10:04 - 2009-08-19 04:36 - 0000000 __RHD C:\Documents and Settings\gx520\Dane aplikacji 2011-06-22 09:14 - 2011-06-22 09:10 - 0000188 __ASH C:\Documents and Settings\Administrator\ntuser.ini 2011-06-22 09:14 - 2011-06-22 09:09 - 0263358 ____A C:\Windows\ntbtlog.txt 2011-06-22 09:14 - 2009-08-19 04:36 - 0000188 ___SH C:\Documents and Settings\gx520\ntuser.ini 2011-06-22 09:14 - 2009-08-19 04:23 - 1648227 ____A C:\Windows\WindowsUpdate.log 2011-06-22 09:06 - 2011-01-26 13:54 - 0000278 ____A C:\Windows\Tasks\RealUpgradeLogonTaskS-1-5-21-2451808524-3504958794-299580187-1003.job 2011-06-22 09:06 - 2009-08-19 06:15 - 0000216 ____A C:\Windows\wiadebug.log 2011-06-22 09:06 - 2009-08-19 06:15 - 0000050 ____A C:\Windows\wiaservc.log 2011-06-22 09:06 - 2009-08-19 04:36 - 0000000 ____A C:\Windows\0.log 2011-06-22 09:06 - 2009-08-19 04:35 - 0032604 ____A C:\Windows\SchedLgU.Txt 2011-06-22 09:06 - 2009-08-19 04:35 - 0000006 ___AH C:\Windows\Tasks\SA.DAT 2011-06-22 05:57 - 2010-06-17 01:45 - 0000000 ____D C:\Program Files\Mozilla Firefox 2011-06-22 05:53 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.vir 2011-06-22 05:53 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0802816 ____A (Microsoft Corporation) C:\Windows\System32\wwwycdcx.dll.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe984.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe247.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini648.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0187904 ____A C:\Windows\System32\svdhalp.exe.ini267.vir 2011-06-22 05:52 - 2011-06-22 05:52 - 0000017 ____A C:\Windows\syskey2i.drv 2011-06-21 08:03 - 2011-01-26 13:54 - 0000286 ____A C:\Windows\Tasks\RealUpgradeScheduledTaskS-1-5-21-2451808524-3504958794-299580187-1003.job 2011-06-21 00:30 - 2011-06-21 00:30 - 0000009 ___SH C:\Windows\System32\windows.acm 2011-06-21 00:30 - 2011-06-21 00:30 - 0000009 ___SH C:\Windows\System32\systeme.acm 2011-06-21 00:29 - 2011-06-21 00:29 - 0000000 ____A C:\winnit.acm 2011-06-20 08:13 - 2009-08-19 04:36 - 0000000 ____D C:\Documents and Settings\gx520\Pulpit 2011-06-17 01:11 - 2009-08-19 04:36 - 0000000 ___RD C:\Documents and Settings\gx520\Moje dokumenty 2011-06-17 00:22 - 2011-06-16 08:46 - 0000000 ____D C:\Windows\SxsCaPendDel 2011-06-16 08:49 - 2010-03-25 05:34 - 47716296 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe 2011-06-16 08:48 - 2011-06-16 08:48 - 0011328 ____A C:\Windows\KB2503665.log 2011-06-16 08:48 - 2011-06-16 08:48 - 0000000 __HDC C:\Windows\$NtUninstallKB2503665$ 2011-06-16 08:48 - 2011-06-16 08:48 - 0000000 __HDC C:\Windows\$NtUninstallKB2476490$ 2011-06-16 08:48 - 2011-06-16 08:47 - 0011330 ____A C:\Windows\KB2535512.log 2011-06-16 08:48 - 2011-06-16 00:20 - 0015694 ____A C:\Windows\KB2476490.log 2011-06-16 08:48 - 2010-03-22 13:25 - 0000000 ___HD C:\Windows\$hf_mig$ 2011-06-16 08:48 - 2009-08-19 06:13 - 1106257 ____A C:\Windows\iis6.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0988408 ____A C:\Windows\FaxSetup.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0481820 ____A C:\Windows\ocgen.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0459612 ____A C:\Windows\tsoc.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0341336 ____A C:\Windows\comsetup.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0314898 ____A C:\Windows\msmqinst.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0205129 ____A C:\Windows\ntdtcsetup.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0173904 ____A C:\Windows\netfxocm.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0068648 ____A C:\Windows\MedCtrOC.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0061873 ____A C:\Windows\ocmsn.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0051704 ____A C:\Windows\tabletoc.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0049693 ____A C:\Windows\msgsocm.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0001374 ____A C:\Windows\imsins.log 2011-06-16 08:48 - 2009-08-19 06:13 - 0001374 ____A C:\Windows\imsins.BAK 2011-06-16 08:47 - 2011-06-16 08:47 - 0011408 ____A C:\Windows\KB2536276.log 2011-06-16 08:47 - 2011-06-16 08:47 - 0000000 __HDC C:\Windows\$NtUninstallKB2536276$ 2011-06-16 08:47 - 2011-06-16 08:47 - 0000000 __HDC C:\Windows\$NtUninstallKB2535512$ 2011-06-16 08:47 - 2011-06-16 08:46 - 0015711 ____A C:\Windows\KB2530548-IE8.log 2011-06-16 08:46 - 2011-06-16 08:46 - 0007452 ____A C:\Windows\KB2544893.log 2011-06-16 08:46 - 2011-06-16 08:46 - 0000000 __HDC C:\Windows\$NtUninstallKB2544893$ 2011-06-16 08:46 - 2010-03-22 13:38 - 0087049 ____A C:\Windows\updspapi.log 2011-06-16 08:46 - 2009-08-19 06:13 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared 2011-06-16 08:44 - 2011-06-16 08:44 - 0006838 ____A C:\Windows\KB2544521-IE8.log 2011-06-09 10:21 - 2009-08-19 06:12 - 0000000 ____D C:\Documents and Settings\All Users\Pulpit 2011-06-09 10:20 - 2011-06-09 10:20 - 0000000 ____D C:\Program Files\Common Files\Adobe 2011-06-09 10:20 - 2011-06-09 10:20 - 0000000 ____D C:\Program Files\Adobe 2011-06-09 05:20 - 2009-08-19 04:36 - 0000000 ___HD C:\Documents and Settings\gx520\NetHood 2011-05-31 04:28 - 2011-04-28 00:49 - 0000000 ____D C:\Program Files\Pity Format 2010 2011-05-31 00:44 - 2009-08-19 06:12 - 0496171 ____A C:\Windows\setupapi.log 2011-05-30 14:12 - 2008-04-15 04:00 - 5964800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mshtml.dll 2011-05-30 14:12 - 2008-04-15 04:00 - 5964800 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll 2011-05-20 07:28 - 2009-08-19 04:23 - 0000000 __SHD C:\Documents and Settings\All Users\DRM 2011-05-02 07:32 - 2009-08-19 04:21 - 0692736 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\inetcomm.dll 2011-05-02 07:32 - 2009-08-19 04:21 - 0692736 ____A (Microsoft Corporation) C:\Windows\System32\inetcomm.dll 2011-04-29 19:00 - 2009-08-19 04:22 - 0758784 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\vgx.dll 2011-04-29 08:19 - 2010-03-22 13:33 - 0456320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mrxsmb.sys 2011-04-29 08:19 - 2008-04-15 04:00 - 0456320 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mrxsmb.sys 2011-04-28 04:32 - 2010-03-31 07:53 - 0000000 ____D C:\Program Files\Kyocera 2011-04-28 01:36 - 2010-03-31 08:01 - 0000058 ____A C:\Windows\KMSTMVM.ini 2011-04-27 09:37 - 2011-04-27 09:37 - 0000109 ____A C:\mbam-error.txt 2011-04-27 09:37 - 2010-03-23 12:30 - 0000000 ____D C:\Program Files\Malwarebytes' Anti-Malware 2011-04-27 09:36 - 2009-08-19 06:13 - 1096208 ____A C:\Windows\System32\PerfStringBackup.INI 2011-04-27 09:36 - 2008-04-15 04:00 - 0493632 ____A C:\Windows\System32\perfh015.dat 2011-04-27 09:36 - 2008-04-15 04:00 - 0435260 ____A C:\Windows\System32\perfh009.dat 2011-04-27 09:36 - 2008-04-15 04:00 - 0084916 ____A C:\Windows\System32\perfc015.dat 2011-04-27 09:36 - 2008-04-15 04:00 - 0068156 ____A C:\Windows\System32\perfc009.dat 2011-04-26 00:05 - 2010-04-15 08:59 - 11081728 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieframe.dll 2011-04-26 00:05 - 2009-03-07 18:39 - 11081728 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll 2011-04-25 08:05 - 2011-04-17 23:48 - 0206848 ____N (Microsoft Corporation) C:\Windows\System32\occache.dll 2011-04-25 08:05 - 2010-06-10 05:19 - 0743424 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedvtool.dll 2011-04-25 08:05 - 2010-04-15 08:59 - 1991680 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iertutil.dll 2011-04-25 08:05 - 2010-04-15 08:59 - 0602112 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeeds.dll 2011-04-25 08:05 - 2010-04-15 08:59 - 0247808 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ieproxy.dll 2011-04-25 08:05 - 2010-04-15 08:59 - 0055296 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\msfeedsbs.dll 2011-04-25 08:05 - 2010-04-15 08:59 - 0012800 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\xpshims.dll 2011-04-25 08:05 - 2009-03-07 18:32 - 1991680 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll 2011-04-25 08:05 - 2009-03-07 18:32 - 0602112 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll 2011-04-25 08:05 - 2009-03-07 18:31 - 0055296 ____A (Microsoft Corporation) C:\Windows\System32\msfeedsbs.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 1469440 ____N (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl 2011-04-25 08:05 - 2008-04-15 04:00 - 1469440 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\inetcpl.cpl 2011-04-25 08:05 - 2008-04-15 04:00 - 1211904 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\urlmon.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 1211904 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0916480 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\wininet.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0916480 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0611840 ____N (Microsoft Corporation) C:\Windows\System32\mstime.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0611840 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\mstime.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0387584 ____N (Microsoft Corporation) C:\Windows\System32\iedkcs32.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0387584 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iedkcs32.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0206848 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\occache.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0184320 ____N (Microsoft Corporation) C:\Windows\System32\iepeers.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0184320 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\iepeers.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0066560 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mshtmled.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0066560 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0043520 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\licmgr10.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0043520 ____A (Microsoft Corporation) C:\Windows\System32\licmgr10.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0025600 ____N (Microsoft Corporation) C:\Windows\System32\jsproxy.dll 2011-04-25 08:05 - 2008-04-15 04:00 - 0025600 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\jsproxy.dll 2011-04-25 04:01 - 2008-04-15 04:00 - 0385024 ____A (Microsoft Corporation) C:\Windows\System32\html.iec 2011-04-25 04:01 - 2008-04-15 04:00 - 0173568 ____N (Microsoft Corporation) C:\Windows\System32\ie4uinit.exe 2011-04-25 04:01 - 2008-04-15 04:00 - 0173568 ____C (Microsoft Corporation) C:\Windows\System32\dllcache\ie4uinit.exe 2011-04-22 08:43 - 2010-11-26 04:29 - 0000411 ____A C:\Windows\BRWMARK.INI 2011-04-21 05:37 - 2008-04-15 04:00 - 0105472 ___AC (Microsoft Corporation) C:\Windows\System32\dllcache\mup.sys 2011-04-21 05:37 - 2008-04-15 04:00 - 0105472 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\mup.sys 2011-04-19 04:11 - 2011-02-21 01:49 - 0000000 ____D C:\Windows\Microsoft.NET 2011-04-18 10:07 - 2009-08-19 06:11 - 0277352 ____A C:\Windows\System32\FNTCACHE.DAT 2011-04-18 07:57 - 2011-04-18 07:57 - 0013813 ____A C:\Windows\KB2485663.log 2011-04-18 07:57 - 2011-04-18 07:57 - 0000000 __HDC C:\Windows\$NtUninstallKB2485663$ 2011-04-18 07:57 - 2011-04-17 23:49 - 0019633 ____A C:\Windows\KB2506223.log 2011-04-18 07:56 - 2011-04-18 07:56 - 0000000 __HDC C:\Windows\$NtUninstallKB2506223$ 2011-04-18 07:56 - 2011-04-18 07:55 - 0017980 ____A C:\Windows\KB2497640-IE8.log 2011-04-18 07:55 - 2011-04-18 07:55 - 0007653 ____A C:\Windows\KB2412687.log 2011-04-18 07:55 - 2011-04-18 07:55 - 0000000 __HDC C:\Windows\$NtUninstallKB2412687$ 2011-04-18 07:52 - 2011-04-18 07:52 - 0009387 ____A C:\Windows\KB2508272.log 2011-04-18 07:52 - 2011-04-18 07:52 - 0000000 __HDC C:\Windows\$NtUninstallKB2508272$ 2011-04-18 07:52 - 2011-04-18 07:52 - 0000000 __HDC C:\Windows\$NtUninstallKB2503658$ 2011-04-18 07:52 - 2011-04-17 23:46 - 0014276 ____A C:\Windows\KB2503658.log 2011-04-18 07:51 - 2011-04-18 07:51 - 0008982 ____A C:\Windows\KB2511455.log 2011-04-18 07:51 - 2011-04-18 07:51 - 0000000 __HDC C:\Windows\$NtUninstallKB2511455$ 2011-04-18 07:51 - 2011-04-18 07:51 - 0000000 __HDC C:\Windows\$NtUninstallKB2508429$ 2011-04-18 07:51 - 2011-04-18 07:51 - 0000000 __HDC C:\Windows\$NtUninstallKB2507618$ 2011-04-18 07:51 - 2011-04-17 23:45 - 0014346 ____A C:\Windows\KB2507618.log 2011-04-18 07:51 - 2011-04-17 23:45 - 0014042 ____A C:\Windows\KB2508429.log 2011-04-18 07:51 - 2011-04-17 23:44 - 0013159 ____A C:\Windows\KB2506212.log 2011-04-18 07:50 - 2011-04-18 07:50 - 0000000 __HDC C:\Windows\$NtUninstallKB2506212$ 2011-04-18 07:49 - 2011-04-18 07:49 - 0000000 __HDC C:\Windows\$NtUninstallKB2509553$ 2011-04-18 07:49 - 2011-04-18 07:48 - 0007526 ____A C:\Windows\KB2510531-IE8.log 2011-04-18 07:49 - 2011-04-17 23:43 - 0014387 ____A C:\Windows\KB2509553.log 2011-03-25 02:28 - 2009-08-19 06:12 - 0000000 ___RD C:\Documents and Settings\All Users\Dokumenty 2011-03-25 02:15 - 2011-03-25 02:15 - 0000000 __HDC C:\Windows\$NtUninstallKB2524375$ 2011-03-25 02:15 - 2011-03-25 02:14 - 0006170 ____A C:\Windows\KB2524375.log ========================= Known DLLs ========================= [2008-04-15 04:00] - [2009-02-09 02:53] - 0686592 ____A (Microsoft Corporation) C:\Windows\System32\advapi32.dll [2009-08-19 04:20] - [2008-04-15 04:00] - 0498688 ____A (Microsoft Corporation) C:\Windows\System32\clbcatq.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0280064 ____A (Microsoft Corporation) C:\Windows\System32\comdlg32.dll [2008-04-15 04:00] - [2008-10-23 04:42] - 0286720 ____A (Microsoft Corporation) C:\Windows\System32\gdi32.dll [2009-03-07 18:32] - [2011-04-25 08:05] - 1991680 ____A (Microsoft Corporation) C:\Windows\System32\IERTUTIL.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0144384 ____A (Microsoft Corporation) C:\Windows\System32\imagehlp.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0110080 ____A (Microsoft Corporation) C:\Windows\System32\IMM32.dll [2008-04-15 04:00] - [2009-03-21 06:08] - 1018368 ____A (Microsoft Corporation) C:\Windows\System32\kernel32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0022016 ____A (Microsoft Corporation) C:\Windows\System32\LPK.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0002560 ____A (Microsoft Corporation) C:\Windows\System32\lz32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0297984 ____A (Microsoft Corporation) C:\Windows\System32\MSCTF.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0343040 ____A (Microsoft Corporation) C:\Windows\System32\MSVCRT.dll [2009-01-07 08:20] - [2009-01-07 08:20] - 0023552 ____A (Microsoft Corporation) C:\Windows\System32\NORMALIZ.dll [2008-04-15 04:00] - [2010-07-16 04:00] - 1287680 ____A (Microsoft Corporation) C:\Windows\System32\ole32.dll [2008-04-15 04:00] - [2010-12-20 09:32] - 0551936 ____A (Microsoft Corporation) C:\Windows\System32\oleaut32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0075264 ____A (Microsoft Corporation) C:\Windows\System32\olecli32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0037376 ____A (Microsoft Corporation) C:\Windows\System32\olecnv32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0022016 ____A (Microsoft Corporation) C:\Windows\System32\olesvr32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0069120 ____A (Microsoft Corporation) C:\Windows\System32\olethk32.dll [2008-04-15 04:00] - [2010-08-16 00:45] - 0590848 ____A (Microsoft Corporation) C:\Windows\System32\rpcrt4.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0997888 ____A (Microsoft Corporation) C:\Windows\System32\Setupapi.dll [2008-04-15 04:00] - [2011-01-21 06:44] - 8491008 ____A (Microsoft Corporation) C:\Windows\System32\shell32.dll [2008-04-15 04:00] - [2009-12-08 01:25] - 0474112 ____A (Microsoft Corporation) C:\Windows\System32\SHLWAPI.dll [2008-04-15 04:00] - [2009-03-07 18:34] - 0105984 ____A (Microsoft Corporation) C:\Windows\System32\url.dll [2008-04-15 04:00] - [2011-04-25 08:05] - 1211904 ____A (Microsoft Corporation) C:\Windows\System32\urlmon.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0580096 ____A (Microsoft Corporation) C:\Windows\System32\user32.dll [2008-04-15 04:00] - [2010-04-16 07:38] - 0406016 ____A (Microsoft Corporation) C:\Windows\System32\USP10.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0018944 ____A (Microsoft Corporation) C:\Windows\System32\version.dll [2008-04-15 04:00] - [2011-04-25 08:05] - 0916480 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0172544 ____A (Microsoft Corporation) C:\Windows\System32\wldap32.dll [2008-04-15 04:00] - [2008-04-15 04:00] - 0082432 ____A (Microsoft Corporation) C:\Windows\System32\WS2_32.dll ==================== Bamital & volsnap Check ================= C:\Windows\System32\winlogon.exe [2008-04-15 04:00] - [2008-04-15 04:00] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 C:\Windows\explorer.exe [2008-04-15 04:00] - [2008-04-15 04:00] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a C:\Windows\System32\Drivers\volsnap.sys [2008-04-15 04:00] - [2008-04-15 04:00] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 RP: -> 2011-06-22 04:11 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP256 RP: -> 2011-06-16 08:43 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP255 RP: -> 2011-06-16 03:54 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP254 RP: -> 2011-06-15 03:35 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP253 RP: -> 2011-06-13 05:03 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP252 RP: -> 2011-06-10 07:48 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP251 RP: -> 2011-06-09 00:21 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP250 RP: -> 2011-06-08 00:14 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP249 RP: -> 2011-06-06 04:06 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP248 RP: -> 2011-06-03 03:45 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP247 RP: -> 2011-06-01 04:24 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP246 RP: -> 2011-05-31 01:04 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP245 RP: -> 2011-05-30 00:15 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP244 RP: -> 2011-05-28 05:51 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP243 RP: -> 2011-05-27 04:34 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP242 RP: -> 2011-05-26 03:10 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP241 RP: -> 2011-05-24 23:33 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP240 RP: -> 2011-05-23 01:24 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP239 RP: -> 2011-05-20 00:08 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP238 RP: -> 2011-05-18 04:44 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP237 RP: -> 2011-05-17 03:09 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP236 RP: -> 2011-05-16 02:02 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP235 RP: -> 2011-05-13 01:16 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP234 RP: -> 2011-05-12 00:35 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP233 RP: -> 2011-05-10 08:22 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP232 RP: -> 2011-05-09 03:20 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP231 RP: -> 2011-05-05 04:36 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP230 RP: -> 2011-05-04 01:19 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP229 RP: -> 2011-05-02 06:54 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP228 RP: -> 2011-05-02 06:40 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP227 RP: -> 2011-05-02 01:05 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP226 RP: -> 2011-04-28 23:53 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP225 RP: -> 2011-04-28 04:31 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP224 RP: -> 2011-04-28 04:31 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP223 RP: -> 2011-04-27 04:19 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP222 RP: -> 2011-04-26 01:56 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP221 RP: -> 2011-04-22 03:43 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP220 RP: -> 2011-04-21 02:35 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP219 RP: -> 2011-04-20 01:59 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP218 RP: -> 2011-04-18 07:48 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP217 RP: -> 2011-04-18 05:20 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP216 RP: -> 2011-04-14 06:33 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP215 RP: -> 2011-04-13 04:24 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP214 RP: -> 2011-04-11 04:46 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP213 RP: -> 2011-04-08 03:19 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP212 RP: -> 2011-04-07 00:56 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP211 RP: -> 2011-04-05 04:20 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP210 RP: -> 2011-04-04 01:41 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP209 RP: -> 2011-03-31 08:33 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP208 RP: -> 2011-03-30 05:10 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP207 RP: -> 2011-03-28 04:59 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP206 RP: -> 2011-03-25 02:14 - 024576 _restore{A9FE1F50-1059-49FA-9251-588D77AA98F6}\RP205 ========================= Memory info ======================== Percentage of memory in use: 30% Total physical RAM: 1013.52 MB Available physical RAM: 708.94 MB Total Pagefile: 862.92 MB Available Pagefile: 738.36 MB Total Virtual: 2047.88 MB Available Virtual: 1983.94 MB ======================= Partitions =========================== 1 Drive c: () (Fixed) (Total:74.5 GB) (Free:60.08 GB) NTFS 2 Drive d: (2007.11.03_2329) (CDROM) (Total:0.12 GB) (Free:0 GB) UDF 3 Drive e: (Lexar) (Removable) (Total:3.73 GB) (Free:3.6 GB) FAT32 4 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS