Scan result of Farbar Recovery Scan Tool Version: 29-02-2012 01
Ran by SYSTEM at 04-03-2012 12:21:50
Running from F:\
Windows Vista (TM) Ultimate   (X64) OS Language: Polish 
The current controlset is ControlSet001

========================== Registry (Whitelisted) =============

HKLM\...\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe [7037984 2009-02-18] (Realtek Semiconductor)
HKLM\...\Run: [Skytel] C:\Program Files\Realtek\Audio\HDA\Skytel.exe [1833504 2009-02-18] (Realtek Semiconductor Corp.)
HKLM\...\Run: [NvCplDaemon] RUNDLL32.EXE C:\Windows\system32\NvCpl.dll,NvStartup [15863328 2008-06-25] (NVIDIA Corporation)
HKLM\...\Run: [NvMediaCenter] RUNDLL32.EXE C:\Windows\system32\NvMcTray.dll,NvTaskbarInit [82464 2008-06-25] (NVIDIA Corporation)
HKLM\...\Run: [SynTPEnh] C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [1538344 2008-07-03] (Synaptics, Inc.)
HKLM\...\Run: [Kernel and Hardware Abstraction Layer] KHALMNPR.EXE [x]
HKLM\...\Run: [Windows Mobile Device Center] %windir%\WindowsMobile\wmdc.exe [x]
HKLM-x32\...\Run: [HControlUser] C:\Program Files (x86)\ASUS\ATK Hotkey\HControlUser.exe [98304 2008-01-11] ()
HKLM-x32\...\Run: [AppleSyncNotifier] C:\Program Files (x86)\Common Files\Apple\Mobile Device Support\AppleSyncNotifier.exe [58656 2011-04-20] (Apple Inc.)
HKLM-x32\...\Run: [PPMemCheck] C:\PROGRA~2\PESTPA~1\PPMemCheck.exe [148480 2003-04-19] ()
HKLM-x32\...\Run: [PestPatrol Control Center] C:\PROGRA~2\PESTPA~1\PPControl.exe [98304 2004-11-15] (Computer Associates International)
HKLM-x32\...\Run: [CookiePatrol] C:\PROGRA~2\PESTPA~1\CookiePatrol.exe [73728 2005-01-10] (Computer Associates International)
HKLM-x32\...\Run: [APSDaemon] "C:\Program Files (x86)\Common Files\Apple\Apple Application Support\APSDaemon.exe" [59240 2011-11-01] (Apple Inc.)
HKLM-x32\...\Run: [QuickTime Task] "C:\Program Files (x86)\QuickTime\QTTask.exe" -atboottime [421888 2011-10-24] (Apple Inc.)
HKLM-x32\...\Run: [iTunesHelper] "C:\Program Files (x86)\iTunes\iTunesHelper.exe" [421736 2012-01-16] (Apple Inc.)
HKU\Default\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem [1555968 2008-01-19] (Microsoft Corporation)
HKU\Default\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\Default User\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem [1555968 2008-01-19] (Microsoft Corporation)
HKU\Default User\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\Pawel\...\Run: [ehTray.exe] C:\Windows\ehome\ehTray.exe [138240 2008-01-19] (Microsoft Corporation)
HKU\Pawel\...\Run: [Skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized [17351304 2011-10-13] (Skype Technologies S.A.)
HKU\Pawel\...\Run: [Internet Security] C:\Users\Pawel\AppData\Roaming\isecurity.exe [875008 2012-03-04] ()
HKU\TEMP\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem [1555968 2008-01-19] (Microsoft Corporation)
HKU\TEMP\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\TEMP.Pawel-Laptop\...\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /detectMem [1555968 2008-01-19] (Microsoft Corporation)
HKU\TEMP.Pawel-Laptop\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
HKU\TEST\...\Run: [WindowsWelcomeCenter] rundll32.exe oobefldr.dll,ShowWelcomeCenter [x]
Tcpip\Parameters: [DhcpNameServer] 89.161.65.247 192.168.0.1
Tcpip\..\Interfaces\{5E97097B-5E2C-45F1-96F6-70A31C2964E1}: [NameServer]192.168.1.80
SubSystems: [Windows] ==> ZeroAccess

==================== Services (Whitelisted) ======

2 ADSMService; C:\Program Files\ASUS\ASUS Data Security Manager\ADSMSrv.exe [73728 2007-05-18] ()
2 AgereModemAudio; C:\Windows\system32\agr64svc.exe [15872 2008-03-18] (Agere Systems)
3 AllShare; C:\Program Files (x86)\Samsung\SAMSUNG PC Share Manager\WiselinkPro.exe [6638080 2010-07-16] ()
2 ASLDRService; C:\Program Files (x86)\ASUS\ATK Hotkey\ASLDRSrv.exe [94208 2007-10-02] ()
2 ATKGFNEXSrv; C:\Program Files\ATKGFNEX\GFNEXSrv.exe [94208 2007-08-08] ()
2 Bonjour Service; "C:\Program Files\Bonjour\mDNSResponder.exe" [462184 2011-08-30] (Apple Inc.)
2 GFIBckHAtt; C:\PROGRA~2\GFI\GFIBAC~1\GFIHInst.exe [440616 2009-10-22] (GFI Software Ltd.)
2 GFIBckHSched; C:\PROGRA~2\GFI\GFIBAC~1\GFIHSC~1.EXE [1410856 2009-10-22] (GFI Software Ltd.)
3 IDriverT; "C:\Program Files (x86)\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe" [69632 2005-11-14] (Macrovision Corporation)
3 LBTServ; C:\Program Files\Common Files\Logishrd\Bluetooth\LBTServ.exe [160784 2009-07-20] (Logitech, Inc.)
2 mcdbus; C:\Windows\System32\emitray.dll [5120 2008-01-19] (Iomega)
4 msvsmon90; "C:\Program Files\Microsoft Visual Studio 9.0\Common7\IDE\Remote Debugger\x64\msvsmon.exe" /service msvsmon90 [4466688 2007-11-07] (Microsoft Corporation)
2 Nero BackItUp Scheduler 3; C:\Program Files (x86)\Nero\Nero8\Nero BackItUp\NBService.exe [869672 2007-12-03] (Nero AG)
2 Nero BackItUp Scheduler 4.0; C:\Program Files (x86)\Common Files\Nero\Nero BackItUp 4\NBService.exe [935208 2010-05-18] (Nero AG)
3 NMIndexingService; "C:\Program Files (x86)\Common Files\Nero\Lib\NMIndexingService.exe" [447784 2008-01-14] (Nero AG)
2 PLFlash DeviceIoControl Service; C:\Windows\SysWOW64\IoctlSvc.exe [81920 2006-12-19] (Prolific Technology Inc.)
2 PowerSave; C:\Program Files (x86)\Packard Bell\Software Suite\PowerSave\PSPBSSS.exe [1002016 2009-04-06] (Packard Bell Services)
2 RapiMgr; C:\Windows\WindowsMobile\rapimgr.dll [225672 2007-05-31] (Microsoft Corporation)
3 ServiceLayer; "C:\Program Files (x86)\Nokia\PC Connectivity Solution\ServiceLayer.exe" [300544 2007-06-15] (Nokia.)
2 spmgr; C:\Program Files\ASUS\NB Probe\SPM\spmgr.exe [125496 2007-08-03] ()
2 SWGVCSvc; "C:\Program Files\SonicWALL\SonicWALL Global VPN Client\SWGVCSvc.exe" -regserver [284696 2009-03-05] (SonicWALL, Inc.)
2 Viewpoint Service; "C:\Program Files (x86)\Viewpoint\Common\ViewpointService.exe" [30152 2008-04-04] (Viewpoint Corporation)
2 W3SVC; C:\Windows\system32\inetsrv\iisw3adm.dll [424960 2010-04-20] (Microsoft Corporation)
2 WcesComm; C:\Windows\WindowsMobile\wcescomm.dll [443784 2007-05-31] (Microsoft Corporation)
2 Crypkey License; crypserv.exe [x]
2 MySql; c:\usr/MYSQL/bin/mysqld.exe [x]
2 nidevldu; C:\Windows\SysWOW64\nipalsm.exe [x]
3 wampapache; "c:\wamp\bin\apache\apache2.2.11\bin\httpd.exe" -k runservice [x]
3 wampmysqld; c:\wamp\bin\mysql\mysql5.1.36\bin\mysqld.exe wampmysqld [x]

========================== Drivers (Whitelisted) =============

2 adfs; C:\Windows\System32\Drivers\adfs.sys [88632 2008-06-27] (Adobe Systems, Inc.)
3 AgereSoftModem; C:\Windows\System32\DRIVERS\agrsm64.sys [1253376 2008-03-21] (Agere Systems)
0 AsDsm; C:\Windows\System32\Drivers\AsDsm.sys [34872 2007-08-10] (Windows (R) Codename Longhorn DDK provider)
2 ASMMAP64; \??\C:\Program Files\ATKGFNEX\ASMMAP64.sys [14904 2007-07-24] ()
3 DCamUSBET; C:\Windows\System32\DRIVERS\etDevice64.sys [530944 2007-09-06] (eMPIA Technology, Inc.)
2 DgiVecp; \??\C:\Windows\system32\Drivers\DgiVecp.sys [53816 2009-02-04] (Samsung Electronics Co., Ltd.)
3 DNE; C:\Windows\System32\DRIVERS\dne64x.sys [157968 2008-11-16] (Deterministic Networks, Inc.)
2 drpkiont; \??\C:\Windows\SysWOW64\drpkiont.sys [3968 2004-10-22] ()
0 DSFKSVCS; C:\Windows\System32\DRIVERS\dsfksvcs.sys [676232 2010-02-08] (Microsoft Corporation)
0 dsfroot; C:\Windows\System32\DRIVERS\dsfroot.sys [35832 2010-02-08] (Microsoft Corporation)
3 FiltUSBET; C:\Windows\System32\DRIVERS\etFilter64.sys [284416 2007-10-15] (eMPIA Technology Inc.)
3 FTDIBUS; C:\Windows\System32\drivers\ftdibus.sys [74376 2011-03-18] (FTDI Ltd.)
3 FTSER2K; C:\Windows\System32\drivers\ftser2k.sys [85384 2011-03-18] (FTDI Ltd.)
2 ghaio; \??\C:\Program Files\ASUS\NB Probe\SPM\ghaio.sys [17464 2007-08-03] ()
3 HRMCFGSPC; C:\Windows\System32\DRIVERS\HRMCFGSPC.SYS [133512 2010-02-08] (Microsoft Corporation)
3 HRMINTS; C:\Windows\System32\DRIVERS\HRMINTS.SYS [128504 2010-02-08] (Microsoft Corporation)
3 HRMPORTS; C:\Windows\System32\DRIVERS\HRMPORTS.SYS [148360 2010-02-08] (Microsoft Corporation)
3 itecir; C:\Windows\System32\DRIVERS\itecir.sys [59392 2007-12-18] (ITE Tech. Inc. )
3 kbfiltr; C:\Windows\System32\DRIVERS\kbfiltr.sys [17464 2008-06-03] ( )
3 LEqdUsb; C:\Windows\System32\DRIVERS\LEqdUsb.Sys [74256 2009-06-17] (Logitech, Inc.)
3 LHidEqd; C:\Windows\System32\DRIVERS\LHidEqd.Sys [13328 2009-06-17] (Logitech, Inc.)
3 LHidFilt; C:\Windows\System32\DRIVERS\LHidFilt.Sys [55312 2009-06-17] (Logitech, Inc.)
3 LMouFilt; C:\Windows\System32\DRIVERS\LMouFilt.Sys [57872 2009-06-17] (Logitech, Inc.)
0 lullaby; C:\Windows\System32\DRIVERS\lullaby.sys [16440 2008-05-29] (Windows (R) Codename Longhorn DDK provider)
3 LUsbFilt; C:\Windows\System32\Drivers\LUsbFilt.Sys [40976 2009-06-17] (Logitech, Inc.)
3 MODEMCSA; C:\Windows\System32\drivers\MODEMCSA.sys [24064 2008-01-19] (Microsoft Corporation)
3 MTsensor; C:\Windows\System32\DRIVERS\ATK64AMD.sys [13680 2006-10-27] ()
3 Netaapl; C:\Windows\System32\DRIVERS\netaapl64.sys [22528 2011-05-10] (Apple Inc.)
3 nmwcdcjx64; C:\Windows\System32\drivers\nmwcdcjx64.sys [17408 2007-02-22] (Nokia)
3 nmwcdcmx64; C:\Windows\System32\drivers\nmwcdcmx64.sys [17408 2007-02-22] (Nokia)
3 nmwcdcx64; C:\Windows\System32\drivers\nmwcdcx64.sys [12288 2007-02-22] (Nokia)
3 nmwcdx64; C:\Windows\System32\drivers\nmwcdx64.sys [173056 2007-02-22] (Nokia)
3 nv; C:\Windows\System32\DRIVERS\nv4_mini.sys [8123008 2008-12-08] (NVIDIA Corporation)
2 RMCAST; C:\Windows\System32\DRIVERS\RMCAST.sys [140288 2009-03-12] (Microsoft Corporation)
3 RTL8169; C:\Windows\System32\DRIVERS\Rtlh64.sys [160768 2008-02-14] (Realtek Corporation                                            )
3 s125bus; C:\Windows\System32\DRIVERS\s125bus.sys [108296 2007-04-24] (MCCI Corporation)
3 s125mdfl; C:\Windows\System32\DRIVERS\s125mdfl.sys [19720 2007-04-24] (MCCI Corporation)
3 s125mdm; C:\Windows\System32\DRIVERS\s125mdm.sys [144648 2007-04-24] (MCCI Corporation)
3 s125mgmt; C:\Windows\System32\DRIVERS\s125mgmt.sys [126216 2007-04-24] (MCCI Corporation)
3 s125obex; C:\Windows\System32\DRIVERS\s125obex.sys [123656 2007-04-24] (MCCI Corporation)
3 ScanUSBET; C:\Windows\System32\DRIVERS\etScan64.sys [9216 2007-09-06] (eMPIA Technology, Inc.)
3 sdusb2em; C:\Windows\System32\Drivers\sdusb2em.sys [55296 2008-07-08] (Spectrum Digital Inc.)
3 Ser2pl; C:\Windows\System32\DRIVERS\ser2pl64.sys [92672 2009-01-14] (Prolific Technology Inc.)
2 SSPORT; \??\C:\Windows\system32\Drivers\SSPORT.sys [11576 2008-01-03] (Samsung Electronics)
1 SWIPsec; \??\C:\Windows\system32\Drivers\SWIPsec.sys [99352 2009-03-05] (SonicWALL, Inc.)
3 SWVNIC; C:\Windows\System32\DRIVERS\swvnic.sys [24600 2009-03-04] (SonicWALL, Inc.)
3 usbser; C:\Windows\System32\DRIVERS\usbser.sys [32768 2008-01-19] (Microsoft Corporation)
3 WinDriver6; C:\Windows\System32\drivers\windrvr6.sys [254464 2009-09-02] (Jungo)
2 xdsfast1; \??\C:\Windows\SysWOW64\xdsfast1.sys [6112 2004-10-22] (Texas Instruments Incorporated)
2 {49DE1C67-83F8-4102-99E0-C16DCC7EEC796}; \??\C:\Program Files (x86)\ASUS\AI TouchMedia\PlayMovie\000.fcl [32240 2008-05-19] (Cyberlink Corp.)
3 ASPI; \??\C:\Windows\System32\DRIVERS\ASPI32.sys [x]
3 ASUSProcObsrv; \??\F:\I386\AsPrOb64.sys [x]
1 Beep;  [x]
4 blbdrive; C:\Windows\System32\drivers\blbdrive.sys [x]
3 catchme; \??\C:\ComboFix\catchme.sys [x]
3 HRMACPI; C:\Windows\System32\DRIVERS\HRMACPI.SYS [x]
3 IpInIp; C:\Windows\System32\DRIVERS\ipinip.sys [x]
3 ipswuio; C:\Windows\System32\DRIVERS\ipswuio.sys [x]
1 NetworkX; C:\Windows\System32\ckldrv.sys [x]
3 niemrkw; C:\Windows\System32\DRIVERS\niemrkw.sys [x]
3 nistc2k; \??\C:\Windows\system32\drivers\nistc2kl.sys [x]
3 NwlnkFlt; C:\Windows\System32\DRIVERS\nwlnkflt.sys [x]
3 NwlnkFwd; C:\Windows\System32\DRIVERS\nwlnkfwd.sys [x]
3 PORTMON; \??\E:\_Biocontrol\_GSM\tools\Portmon\PORTMSYS.SYS [x]
2 sdiont; \??\C:\Windows\system32\drivers\sdiont.sys [x]
3 sentemul; \??\C:\Windows\system32\drivers\sentemul.sys [x]
2 Sentinel; \??\C:\Windows\system32\drivers\sentinel.sys [x]
3 SOFTHIDUSBK; C:\Windows\System32\DRIVERS\SOFTHIDUSBK.SYS [x]
3 SOFTUSBK; C:\Windows\System32\DRIVERS\SOFTUSBK.SYS [x]
3 SOFTUSBTESTHUB; C:\Windows\System32\DRIVERS\SOFTUSBTESTHUB.SYS [x]
3 SOFTWADP; C:\Windows\System32\DRIVERS\SOFTWADP.SYS [x]
1 VD_FileDisk;  [x]
3 WSOFTUSBK; C:\Windows\System32\DRIVERS\WSOFTUSBK.SYS [x]
3 xpvcom; C:\Windows\System32\Drivers\xpvcom.sys [x]

========================== NetSvcs (Whitelisted) ===========
NETSVC: mcdbus
NETSVC: Alpham1
NETSVC: mbmiodrvr
NETSVC: TICalc
NETSVC: atikmdag
NETSVC: PNDIS5
NETSVC: rsvp
NETSVC: rtm
NETSVC: GT680x
NETSVC: oraclemtsrecoveryservice
NETSVC: BcmSqlStartupSvc
NETSVC: servicemgr
NETSVC: VAIOMediaPlatform-PhotoServer-HTTP
NETSVC: acdservice
NETSVC: eaps2kbd
NETSVC: ccalib8
NETSVC: W700mgmt
NETSVC: sonywbms
NETSVC: pepifilter
NETSVC: tpkd
NETSVC: actser
NETSVC: spcflt
NETSVC: ireike
NETSVC: ARCSOFTVIRTUALCAPTURE
NETSVC: SNTIE
NETSVC: xaudioservice
NETSVC: vclone
NETSVC: vncdrv
NETSVC: adobeactivefilemonitor4.0
NETSVC: fshttps
NETSVC: fsks
NETSVC: blueletscoaudio
NETSVC: bridgemp
NETSVC: rnadirmultiplexor
NETSVC: CdaC15BA
NETSVC: NVENET
NETSVC: se45bus
NETSVC: axinstsv
NETSVC: w550mgmt
NETSVC: w800mdm
NETSVC: lexbces
NETSVC: revudfservice
NETSVC: tmesrv3
NETSVC: mwstick
NETSVC: CTEDSPFX.DLL
NETSVC: WUSB54GPV4SRV
NETSVC: oracle_load_balancer_60_server-forms6ip9
NETSVC: mysqlinventime
NETSVC: OracleOraHome92ClientCache
NETSVC: snpstd
NETSVC: s116mdm
NETSVC: irbus
NETSVC: atirage3
NETSVC: transbaseservice
NETSVC: x10nets
NETSVC: camdrl
NETSVC: mindrepair
NETSVC: lvupdtio
NETSVC: emu10k
NETSVC: msvad_simple
NETSVC: puscsrvc
NETSVC: GTPTSER
NETSVC: dlaifs_m
NETSVC: ntsyslog
NETSVC: s117mdfl
NETSVC: nfmservice
NETSVC: schscnt
NETSVC: PAR1284
NETSVC: A88xEnc
NETSVC: WmaCDriverV32
NETSVC: DcFpoint
NETSVC: HWIONT
NETSVC: qhwscsvc
NETSVC: inorpc
NETSVC: Angel2
NETSVC: LMouKE
NETSVC: hnmsvc
NETSVC: sit_bus
NETSVC: cmuda
NETSVC: rrspy
NETSVC: HFACSVC
NETSVC: MtxDma0
NETSVC: qbfcservice
NETSVC: mcusrmgr
NETSVC: mnmdd
NETSVC: AKSIFDH
NETSVC: dtsagntsvc
NETSVC: bdftdif
NETSVC: ATIBTCAP
NETSVC: alertmanager
NETSVC: dmload
NETSVC: dkeysync
NETSVC: uphclean
NETSVC: lvtuner
NETSVC: FirePM
NETSVC: WmaCVideo32
NETSVC: PXRDDriver
NETSVC: mfeapfk
NETSVC: NETw3v32

============ One Month Created Files and Folders ==============

2012-03-04 12:21 - 2012-03-04 12:21 - 0000000 ____D C:\FRST
2012-03-04 11:58 - 2012-03-04 11:58 - 0875008 ____A C:\Users\Pawel\AppData\Roaming\isecurity.exe
2012-03-04 11:58 - 2012-03-04 11:58 - 0000691 ____A C:\Users\Pawel\Desktop\Internet Security.lnk
2012-03-03 12:38 - 2012-03-03 12:38 - 0000890 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-03-03 12:15 - 2012-03-03 12:15 - 0000000 __ASH C:\Windows\System32\dds_log_trash.cmd
2012-03-03 12:10 - 2012-03-03 12:10 - 0000000 __SHD C:\$RECYCLE.BIN
2012-03-03 11:53 - 2012-03-03 11:53 - 0020992 ____A C:\ComboFix.txt
2012-03-03 11:43 - 2012-03-03 11:53 - 0000000 ____D C:\Qoobox
2012-03-03 11:43 - 2011-06-26 07:45 - 0256000 ____A C:\Windows\PEV.exe
2012-03-03 11:43 - 2010-11-07 18:20 - 0208896 ____A C:\Windows\MBR.exe
2012-03-03 11:43 - 2009-04-20 05:56 - 0060416 ____A (NirSoft) C:\Windows\NIRCMD.exe
2012-03-03 11:43 - 2000-08-31 01:00 - 0518144 ____A (SteelWerX) C:\Windows\SWREG.exe
2012-03-03 11:43 - 2000-08-31 01:00 - 0406528 ____A (SteelWerX) C:\Windows\SWSC.exe
2012-03-03 11:43 - 2000-08-31 01:00 - 0098816 ____A C:\Windows\sed.exe
2012-03-03 11:43 - 2000-08-31 01:00 - 0080412 ____A C:\Windows\grep.exe
2012-03-03 11:43 - 2000-08-31 01:00 - 0068096 ____A C:\Windows\zip.exe
2012-03-03 11:38 - 2012-03-03 11:38 - 4420481 ____R (Swearware) C:\Users\Pawel\Desktop\ComboFix.exe
2012-03-03 11:16 - 2012-03-03 11:16 - 0270784 ____A C:\Windows\Minidump\Mini030312-02.dmp
2012-03-03 11:14 - 2012-03-03 11:14 - 0270784 ____A C:\Windows\Minidump\Mini030312-01.dmp
2012-03-02 18:29 - 2012-03-02 21:56 - 0414368 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-03-02 17:17 - 2012-03-02 17:17 - 0031412 ____A C:\Users\Pawel\Desktop\adobe.jpg
2012-03-02 14:25 - 2012-03-02 14:25 - 0006978 ____A C:\AdwCleaner[S1].txt
2012-03-02 14:25 - 2012-03-02 14:25 - 0000048 ____A C:\Windows\DeleteOnReboot.bat
2012-03-02 13:52 - 2012-03-02 13:52 - 0086692 ____A C:\TDSSKiller.2.7.14.0_02.03.2012_13.52.15_log.txt
2012-03-02 12:28 - 2012-03-02 12:30 - 0086714 ____A C:\TDSSKiller.2.7.18.0_02.03.2012_12.28.58_log.txt
2012-03-02 12:23 - 2012-03-02 12:23 - 0009861 ____A C:\AdwCleaner[R1].txt
2012-03-02 12:03 - 2012-03-02 12:06 - 0086692 ____A C:\TDSSKiller.2.7.18.0_02.03.2012_12.03.14_log.txt
2012-03-02 12:02 - 2012-03-02 12:02 - 0000348 ____A C:\TDSSKiller.2.7.14.0_02.03.2012_12.02.28_log.txt
2012-03-02 11:54 - 2012-03-02 11:54 - 0000000 ____D C:\Users\Pawel\AppData\Local\PreEmptive Solutions
2012-03-02 11:46 - 2012-03-02 11:46 - 0000000 ____D C:\Users\Pawel\AppData\Local\ElevatedDiagnostics
2012-03-02 10:59 - 2012-02-13 20:32 - 2345472 ____A (Helge Klein) C:\Windows\SetACL.exe
2012-02-28 02:53 - 2012-02-28 02:55 - 0086692 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.53.54_log.txt
2012-02-28 02:09 - 2012-02-28 02:15 - 0087068 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.09.50_log.txt
2012-02-28 02:05 - 2012-02-28 02:07 - 0209298 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.05.23_log.txt
2012-02-28 02:00 - 2012-02-28 02:00 - 0005146 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.00.46_log.txt
2012-02-27 23:31 - 2012-02-28 02:55 - 0043304 ____A C:\Users\Pawel\Desktop\kasperskiLog.txt
2012-02-27 23:28 - 2012-02-27 23:38 - 0512944 ____A C:\TDSSKiller.2.7.14.0_27.02.2012_23.28.25_log.txt
2012-02-27 23:22 - 2012-02-27 23:22 - 0007120 ____A C:\TDSSKiller.2.7.14.0_27.02.2012_23.22.41_log.txt
2012-02-26 23:28 - 2012-02-26 23:31 - 0088724 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.28.54_log.txt
2012-02-26 23:19 - 2012-02-26 23:22 - 0088702 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.19.27_log.txt
2012-02-26 23:00 - 2012-02-26 23:01 - 0089040 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.00.07_log.txt
2012-02-26 22:32 - 2012-02-28 02:06 - 0000000 ____D C:\TDSSKiller_Quarantine
2012-02-26 22:30 - 2012-02-26 22:32 - 0215038 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_22.30.34_log.txt
2012-02-26 22:19 - 2012-02-26 22:20 - 0022946 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_22.19.41_log.txt
2012-02-26 21:44 - 2012-02-26 22:01 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.44.35_log.txt
2012-02-26 21:40 - 2012-02-26 21:41 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.40.44_log.txt
2012-02-26 21:37 - 2012-02-26 21:38 - 0006192 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.37.40_log.txt
2012-02-26 21:37 - 2012-02-26 21:37 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.37.05_log.txt
2012-02-26 21:37 - 2012-02-22 16:55 - 2062896 ____A (Kaspersky Lab ZAO) C:\tdsskiller.exe
2012-02-26 21:28 - 2012-02-26 21:30 - 0007120 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.28.51_log.txt
2012-02-26 21:17 - 2012-02-26 21:19 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.17.49_log.txt
2012-02-26 21:16 - 2012-02-26 21:17 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.16.34_log.txt
2012-02-26 21:14 - 2012-02-26 21:16 - 0017126 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.14.14_log.txt
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Malwarebytes
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-02-26 17:33 - 2012-02-26 17:33 - 0270784 ____A C:\Windows\Minidump\Mini022612-02.dmp
2012-02-26 17:30 - 2012-02-26 17:31 - 0270784 ____A C:\Windows\Minidump\Mini022612-01.dmp
2012-02-26 17:28 - 2012-03-03 11:53 - 2280654 ____A C:\Windows\ntbtlog.txt
2012-02-26 17:08 - 2012-03-03 11:43 - 0000000 ____D C:\Windows\ERDNT
2012-02-26 17:08 - 2012-03-03 11:29 - 0000000 __ASH C:\Windows\muzuki.exc
2012-02-26 12:32 - 2012-02-26 21:27 - 0000000 ____D C:\Program Files (x86)\GridinSoft Trojan Killer
2012-02-25 15:03 - 2012-02-25 15:03 - 0001696 ____A C:\Users\Public\Desktop\iTunes.lnk
2012-02-25 15:02 - 2012-02-25 15:03 - 0000000 ____D C:\Program Files\iTunes
2012-02-25 15:02 - 2012-02-25 15:02 - 0000000 ____D C:\Program Files\iPod
2012-02-25 14:53 - 2012-02-25 14:53 - 0376622 ____A C:\Users\Pawel\AppData\Local\dd_vcredistMSI2724.txt
2012-02-25 14:53 - 2012-02-25 14:53 - 0012762 ____A C:\Users\Pawel\AppData\Local\dd_vcredistUI2724.txt
2012-02-25 14:24 - 2012-02-25 14:24 - 0000000 ____D C:\Windows\System32\Macromed
2012-02-24 07:49 - 2012-02-24 07:49 - 0001046 ____A C:\Users\Public\Desktop\HH Manager COW.lnk
2012-02-24 07:36 - 2012-02-24 07:42 - 0001079 ____A C:\Users\Public\Desktop\HH Manager SG.lnk
2012-02-19 22:36 - 2012-02-20 12:01 - 0000000 ____D C:\Users\Pawel\Desktop\Podlodowe Bia�e
2012-02-17 18:05 - 2012-02-17 18:24 - 0036352 ____A C:\Users\Pawel\Desktop\history_120217_180519.xls
2012-02-17 14:19 - 2012-02-17 14:38 - 0020480 ____A C:\Users\Pawel\Desktop\BUSINESSCARDSBCP.XLS
2012-02-17 12:36 - 2012-02-17 12:36 - 0000290 ____A C:\Users\Pawel\Desktop\sheep.csv.zip
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Users\Pawel\Documents\BusinessCardsMX templates
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\mojosoft
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Program Files (x86)\mojosoft
2012-02-14 20:34 - 2012-02-14 20:37 - 0000000 ____D C:\Users\Pawel\Desktop\Podlodowe2012
2012-02-07 14:03 - 2012-02-07 14:03 - 0000000 ____D C:\Program Files (x86)\STPViewer

============ 3 Months Modified Files and Folders =============

2012-03-04 12:21 - 2012-03-04 12:21 - 0000000 ____D C:\FRST
2012-03-04 12:10 - 2009-03-14 01:24 - 0006497 ____A C:\Windows\bthservsdp.dat
2012-03-04 12:10 - 2006-11-02 16:40 - 0032546 ____A C:\Windows\Tasks\SCHEDLGU.TXT
2012-03-04 12:10 - 2006-11-02 16:40 - 0000006 ___AH C:\Windows\Tasks\SA.DAT
2012-03-04 12:10 - 2006-11-02 16:26 - 1636044 ____A C:\Windows\WindowsUpdate.log
2012-03-04 12:10 - 2006-11-02 16:21 - 0004176 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
2012-03-04 12:10 - 2006-11-02 16:21 - 0004176 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
2012-03-04 12:09 - 2010-06-18 18:45 - 0000416 ___AH C:\Windows\Tasks\User_Feed_Synchronization-{ED4041AE-0D6B-4689-B6A1-0F526AE20579}.job
2012-03-04 11:59 - 2006-12-05 08:17 - 0747590 ____A C:\Windows\System32\perfh015.dat
2012-03-04 11:59 - 2006-12-05 08:17 - 0161494 ____A C:\Windows\System32\perfc015.dat
2012-03-04 11:59 - 2006-11-02 13:46 - 1695016 ____A C:\Windows\System32\PerfStringBackup.INI
2012-03-04 11:58 - 2012-03-04 11:58 - 0875008 ____A C:\Users\Pawel\AppData\Roaming\isecurity.exe
2012-03-04 11:58 - 2012-03-04 11:58 - 0000691 ____A C:\Users\Pawel\Desktop\Internet Security.lnk
2012-03-04 11:55 - 2011-03-11 09:30 - 0046532 ____A C:\Windows\setupact.log
2012-03-04 11:50 - 2009-03-18 15:44 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Skype
2012-03-03 19:58 - 2009-08-30 09:16 - 0000069 ____A C:\Windows\NeroDigital.ini
2012-03-03 19:46 - 2011-01-07 16:11 - 0001046 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineUA.job
2012-03-03 12:38 - 2012-03-03 12:38 - 0000890 ____A C:\Users\Public\Desktop\Mozilla Firefox.lnk
2012-03-03 12:38 - 2009-03-18 15:28 - 0000000 ____D C:\Program Files (x86)\Mozilla Firefox
2012-03-03 12:15 - 2012-03-03 12:15 - 0000000 __ASH C:\Windows\System32\dds_log_trash.cmd
2012-03-03 12:13 - 2011-07-18 09:19 - 0000000 ____D C:\Alpro
2012-03-03 12:10 - 2012-03-03 12:10 - 0000000 __SHD C:\$RECYCLE.BIN
2012-03-03 12:10 - 2011-03-11 09:46 - 0203832 ____A C:\Windows\PFRO.log
2012-03-03 12:10 - 2011-01-07 16:11 - 0001042 ____A C:\Windows\Tasks\GoogleUpdateTaskMachineCore.job
2012-03-03 12:10 - 2009-03-12 15:51 - 0045056 ____A C:\Windows\System32\acovcnt.exe
2012-03-03 11:53 - 2012-03-03 11:53 - 0020992 ____A C:\ComboFix.txt
2012-03-03 11:53 - 2012-03-03 11:43 - 0000000 ____D C:\Qoobox
2012-03-03 11:53 - 2012-02-26 17:28 - 2280654 ____A C:\Windows\ntbtlog.txt
2012-03-03 11:50 - 2006-11-02 13:34 - 0000215 ____A C:\Windows\system.ini
2012-03-03 11:50 - 2006-11-02 13:34 - 0000027 ____A C:\Windows\System32\Drivers\etc\hosts
2012-03-03 11:43 - 2012-02-26 17:08 - 0000000 ____D C:\Windows\ERDNT
2012-03-03 11:38 - 2012-03-03 11:38 - 4420481 ____R (Swearware) C:\Users\Pawel\Desktop\ComboFix.exe
2012-03-03 11:29 - 2012-02-26 17:08 - 0000000 __ASH C:\Windows\muzuki.exc
2012-03-03 11:16 - 2012-03-03 11:16 - 0270784 ____A C:\Windows\Minidump\Mini030312-02.dmp
2012-03-03 11:16 - 2011-04-13 09:22 - 408588728 ____A C:\Windows\MEMORY.DMP
2012-03-03 11:16 - 2009-04-13 09:11 - 0000000 ____D C:\Windows\Minidump
2012-03-03 11:14 - 2012-03-03 11:14 - 0270784 ____A C:\Windows\Minidump\Mini030312-01.dmp
2012-03-02 21:56 - 2012-03-02 18:29 - 0414368 ____A (Adobe Systems Incorporated) C:\Windows\SysWOW64\FlashPlayerCPLApp.cpl
2012-03-02 17:17 - 2012-03-02 17:17 - 0031412 ____A C:\Users\Pawel\Desktop\adobe.jpg
2012-03-02 17:16 - 2009-03-27 12:01 - 0000000 ____D C:\Users\Pawel\AppData\Local\Paint.NET
2012-03-02 14:25 - 2012-03-02 14:25 - 0006978 ____A C:\AdwCleaner[S1].txt
2012-03-02 14:25 - 2012-03-02 14:25 - 0000048 ____A C:\Windows\DeleteOnReboot.bat
2012-03-02 14:25 - 2009-03-10 20:14 - 0000000 ____D C:\Users\Pawel\AppData\LocalLow
2012-03-02 14:13 - 2010-04-22 14:22 - 0000000 ____D C:\Users\Pawel\AppData\Local\Adobe
2012-03-02 14:12 - 2010-04-22 14:24 - 0000000 ____D C:\Program Files (x86)\Adobe
2012-03-02 14:12 - 2009-03-27 11:49 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Adobe
2012-03-02 14:10 - 2010-04-22 14:27 - 0000000 ____D C:\Users\All Users\Adobe
2012-03-02 14:10 - 2010-04-22 14:27 - 0000000 ____D C:\ProgramData\Adobe
2012-03-02 13:52 - 2012-03-02 13:52 - 0086692 ____A C:\TDSSKiller.2.7.14.0_02.03.2012_13.52.15_log.txt
2012-03-02 12:30 - 2012-03-02 12:28 - 0086714 ____A C:\TDSSKiller.2.7.18.0_02.03.2012_12.28.58_log.txt
2012-03-02 12:23 - 2012-03-02 12:23 - 0009861 ____A C:\AdwCleaner[R1].txt
2012-03-02 12:06 - 2012-03-02 12:03 - 0086692 ____A C:\TDSSKiller.2.7.18.0_02.03.2012_12.03.14_log.txt
2012-03-02 12:02 - 2012-03-02 12:02 - 0000348 ____A C:\TDSSKiller.2.7.14.0_02.03.2012_12.02.28_log.txt
2012-03-02 11:54 - 2012-03-02 11:54 - 0000000 ____D C:\Users\Pawel\AppData\Local\PreEmptive Solutions
2012-03-02 11:46 - 2012-03-02 11:46 - 0000000 ____D C:\Users\Pawel\AppData\Local\ElevatedDiagnostics
2012-03-02 11:32 - 2006-11-02 14:34 - 0000000 ____D C:\Windows\System32\pl-PL
2012-02-28 02:55 - 2012-02-28 02:53 - 0086692 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.53.54_log.txt
2012-02-28 02:55 - 2012-02-27 23:31 - 0043304 ____A C:\Users\Pawel\Desktop\kasperskiLog.txt
2012-02-28 02:51 - 2010-03-01 12:03 - 0000000 ____D C:\users\Dom
2012-02-28 02:51 - 2006-11-02 14:33 - 0000000 __RHD C:\users\Default
2012-02-28 02:51 - 2006-11-02 14:33 - 0000000 ___RD C:\users\Public
2012-02-28 02:15 - 2012-02-28 02:09 - 0087068 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.09.50_log.txt
2012-02-28 02:07 - 2012-02-28 02:05 - 0209298 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.05.23_log.txt
2012-02-28 02:06 - 2012-02-26 22:32 - 0000000 ____D C:\TDSSKiller_Quarantine
2012-02-28 02:00 - 2012-02-28 02:00 - 0005146 ____A C:\TDSSKiller.2.7.14.0_28.02.2012_02.00.46_log.txt
2012-02-27 23:38 - 2012-02-27 23:28 - 0512944 ____A C:\TDSSKiller.2.7.14.0_27.02.2012_23.28.25_log.txt
2012-02-27 23:22 - 2012-02-27 23:22 - 0007120 ____A C:\TDSSKiller.2.7.14.0_27.02.2012_23.22.41_log.txt
2012-02-26 23:31 - 2012-02-26 23:28 - 0088724 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.28.54_log.txt
2012-02-26 23:22 - 2012-02-26 23:19 - 0088702 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.19.27_log.txt
2012-02-26 23:01 - 2012-02-26 23:00 - 0089040 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_23.00.07_log.txt
2012-02-26 22:32 - 2012-02-26 22:30 - 0215038 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_22.30.34_log.txt
2012-02-26 22:20 - 2012-02-26 22:19 - 0022946 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_22.19.41_log.txt
2012-02-26 22:11 - 2011-08-25 19:48 - 0000000 ____D C:\Program Files (x86)\vShare.tv plugin
2012-02-26 22:01 - 2012-02-26 21:44 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.44.35_log.txt
2012-02-26 21:41 - 2012-02-26 21:40 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.40.44_log.txt
2012-02-26 21:38 - 2012-02-26 21:37 - 0006192 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.37.40_log.txt
2012-02-26 21:37 - 2012-02-26 21:37 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.37.05_log.txt
2012-02-26 21:30 - 2012-02-26 21:28 - 0007120 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.28.51_log.txt
2012-02-26 21:27 - 2012-02-26 12:32 - 0000000 ____D C:\Program Files (x86)\GridinSoft Trojan Killer
2012-02-26 21:24 - 2009-03-10 20:14 - 0000000 ____D C:\Users\Pawel\AppData\Local\VirtualStore
2012-02-26 21:19 - 2012-02-26 21:17 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.17.49_log.txt
2012-02-26 21:17 - 2012-02-26 21:16 - 0005146 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.16.34_log.txt
2012-02-26 21:16 - 2012-02-26 21:14 - 0017126 ____A C:\TDSSKiller.2.7.14.0_26.02.2012_21.14.14_log.txt
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Malwarebytes
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\Users\All Users\Malwarebytes
2012-02-26 17:53 - 2012-02-26 17:53 - 0000000 ____D C:\ProgramData\Malwarebytes
2012-02-26 17:33 - 2012-02-26 17:33 - 0270784 ____A C:\Windows\Minidump\Mini022612-02.dmp
2012-02-26 17:31 - 2012-02-26 17:30 - 0270784 ____A C:\Windows\Minidump\Mini022612-01.dmp
2012-02-26 14:22 - 2010-06-10 09:11 - 0067992 ____A C:\mksbasel.cpp.log
2012-02-26 13:13 - 2011-03-11 08:18 - 0000000 ____D C:\Program Files (x86)\DAEMON Tools Toolbar
2012-02-26 12:46 - 2010-06-10 08:59 - 0000000 ____D C:\Program Files\SkanerOnline
2012-02-26 12:16 - 2009-10-21 18:06 - 0000000 ____D C:\Program Files (x86)\PestPatrol
2012-02-25 17:16 - 2009-09-04 09:17 - 0000000 ____D C:\Program Files (x86)\Viewpoint
2012-02-25 15:03 - 2012-02-25 15:03 - 0001696 ____A C:\Users\Public\Desktop\iTunes.lnk
2012-02-25 15:03 - 2012-02-25 15:02 - 0000000 ____D C:\Program Files\iTunes
2012-02-25 15:03 - 2012-01-18 09:06 - 0000000 ____D C:\Program Files (x86)\iTunes
2012-02-25 15:02 - 2012-02-25 15:02 - 0000000 ____D C:\Program Files\iPod
2012-02-25 14:53 - 2012-02-25 14:53 - 0376622 ____A C:\Users\Pawel\AppData\Local\dd_vcredistMSI2724.txt
2012-02-25 14:53 - 2012-02-25 14:53 - 0012762 ____A C:\Users\Pawel\AppData\Local\dd_vcredistUI2724.txt
2012-02-25 14:43 - 2010-05-19 14:52 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Apple Computer
2012-02-25 14:24 - 2012-02-25 14:24 - 0000000 ____D C:\Windows\System32\Macromed
2012-02-24 07:49 - 2012-02-24 07:49 - 0001046 ____A C:\Users\Public\Desktop\HH Manager COW.lnk
2012-02-24 07:49 - 2010-11-19 13:02 - 0000000 ____D C:\Program Files (x86)\DeLaval
2012-02-24 07:42 - 2012-02-24 07:36 - 0001079 ____A C:\Users\Public\Desktop\HH Manager SG.lnk
2012-02-23 07:22 - 2009-03-14 16:16 - 0000000 ____D C:\Users\All Users\Microsoft Help
2012-02-23 07:22 - 2009-03-14 16:16 - 0000000 ____D C:\ProgramData\Microsoft Help
2012-02-22 16:55 - 2012-02-26 21:37 - 2062896 ____A (Kaspersky Lab ZAO) C:\tdsskiller.exe
2012-02-21 08:58 - 2006-11-02 16:06 - 0000000 ____D C:\Windows\System32\FxsTmp
2012-02-21 08:43 - 2009-08-29 12:05 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Nero
2012-02-20 12:01 - 2012-02-19 22:36 - 0000000 ____D C:\Users\Pawel\Desktop\Podlodowe Bia�e
2012-02-17 18:24 - 2012-02-17 18:05 - 0036352 ____A C:\Users\Pawel\Desktop\history_120217_180519.xls
2012-02-17 14:38 - 2012-02-17 14:19 - 0020480 ____A C:\Users\Pawel\Desktop\BUSINESSCARDSBCP.XLS
2012-02-17 12:36 - 2012-02-17 12:36 - 0000290 ____A C:\Users\Pawel\Desktop\sheep.csv.zip
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Users\Pawel\Documents\BusinessCardsMX templates
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\mojosoft
2012-02-17 10:01 - 2012-02-17 10:01 - 0000000 ____D C:\Program Files (x86)\mojosoft
2012-02-17 07:27 - 2010-02-01 13:41 - 0000000 ____D C:\Program Files (x86)\Microsoft Silverlight
2012-02-16 07:34 - 2006-11-02 13:35 - 54585368 ____A (Microsoft Corporation) C:\Windows\System32\mrt.exe
2012-02-14 20:37 - 2012-02-14 20:34 - 0000000 ____D C:\Users\Pawel\Desktop\Podlodowe2012
2012-02-14 09:59 - 2009-03-12 15:45 - 0000000 ____D C:\Users\Pawel\AppData\Local\Downloaded Installations
2012-02-13 20:32 - 2012-03-02 10:59 - 2345472 ____A (Helge Klein) C:\Windows\SetACL.exe
2012-02-13 12:17 - 2010-12-27 13:53 - 0000000 ____D C:\Users\Pawel\Desktop\Domek
2012-02-10 12:30 - 2009-08-29 12:00 - 0000000 ____D C:\Program Files (x86)\Nero
2012-02-10 12:26 - 2009-08-29 12:00 - 0000000 ____D C:\Users\All Users\Nero
2012-02-10 12:26 - 2009-08-29 12:00 - 0000000 ____D C:\ProgramData\Nero
2012-02-07 14:03 - 2012-02-07 14:03 - 0000000 ____D C:\Program Files (x86)\STPViewer
2012-02-03 16:11 - 2009-03-10 20:14 - 0000732 ____A C:\Users\Pawel\AppData\Local\d3d9caps64.dat
2012-02-02 20:56 - 2012-02-02 20:56 - 0000913 ____A C:\Users\TEST\Desktop\Counter-Strike 1.6.lnk
2012-02-02 20:56 - 2012-02-02 20:56 - 0000913 ____A C:\Users\Pawel\Desktop\Counter-Strike 1.6.lnk
2012-02-02 20:56 - 2009-04-04 21:54 - 0000000 ____D C:\Program Files (x86)\Counter-Strike 1.6
2012-01-31 20:05 - 2012-01-31 20:05 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Navi
2012-01-31 20:05 - 2012-01-31 20:05 - 0000000 ____D C:\Program Files\NaviWeather
2012-01-31 09:29 - 2011-04-01 09:41 - 0050865 ____A C:\Users\Pawel\Desktop\Invoice oryginal[1]_OVE.wps.rtf
2012-01-30 10:43 - 2009-08-17 10:12 - 0171461 ____H C:\treeinfo.wc
2012-01-30 08:41 - 2010-04-11 18:28 - 0000000 ____D C:\eclipse
2012-01-29 05:10 - 2009-10-02 21:17 - 0279656 ____N (Microsoft Corporation) C:\Windows\System32\MpSigStub.exe
2012-01-27 09:54 - 2012-01-27 09:54 - 0000655 ____A C:\Users\Pawel\Desktop\__iMan todo.xlsx.lnk
2012-01-26 10:00 - 2009-05-11 10:39 - 0000000 ____D C:\Program Files (x86)\BioControl
2012-01-22 20:26 - 2012-01-17 19:41 - 0000000 ____D C:\Users\All Users\opencpn
2012-01-22 20:26 - 2012-01-17 19:41 - 0000000 ____D C:\ProgramData\opencpn
2012-01-20 18:54 - 2012-01-20 18:54 - 0050869 ____A C:\Users\Pawel\Desktop\Icelandair - Reservation Kamil.pdf
2012-01-19 07:15 - 2009-03-27 10:11 - 0000000 ____D C:\Program Files (x86)\Mozilla Thunderbird
2012-01-17 19:41 - 2012-01-17 19:41 - 0366178 ____A C:\Users\Pawel\AppData\Local\dd_vcredistMSI1CB3.txt
2012-01-17 19:41 - 2012-01-17 19:41 - 0011398 ____A C:\Users\Pawel\AppData\Local\dd_vcredistUI1CB3.txt
2012-01-17 19:41 - 2012-01-17 19:41 - 0000000 ____D C:\Program Files (x86)\OpenCPN
2012-01-15 18:45 - 2012-01-15 18:45 - 0004788 ____A C:\Users\Pawel\Desktop\pawel.gif
2012-01-09 17:06 - 2006-11-02 16:21 - 0492832 ____A C:\Windows\System32\FNTCACHE.DAT
2012-01-09 10:33 - 2009-03-10 20:15 - 0148120 ____A C:\Users\Pawel\AppData\Local\GDIPFONTCACHEV1.DAT
2012-01-04 12:46 - 2012-01-04 12:46 - 0000000 ____D C:\Program Files (x86)\Microsoft Visual Studio
2012-01-04 12:46 - 2009-03-14 16:19 - 0000000 ____D C:\Program Files (x86)\Microsoft Works
2012-01-04 12:46 - 2006-11-02 16:06 - 0000000 ____D C:\Windows\ShellNew
2012-01-04 12:43 - 2006-11-02 13:32 - 0000297 ____A C:\Windows\win.ini
2012-01-03 15:36 - 2012-01-03 11:44 - 0000103 ____A C:\Users\Pawel\_sam-ba.rc
2012-01-03 15:36 - 2012-01-03 11:44 - 0000000 ____A C:\Users\Pawel\.sam-ba.historysource
2012-01-03 13:17 - 2012-01-03 13:17 - 0000000 ____D C:\Program Files (x86)\Microsoft Analysis Services
2012-01-03 13:16 - 2009-03-14 16:16 - 0000000 ____D C:\Program Files\Microsoft Office
2012-01-03 13:16 - 2009-03-14 16:16 - 0000000 ____D C:\Program Files (x86)\Microsoft Office
2012-01-03 13:16 - 2006-11-02 14:33 - 0000000 ____D C:\Program Files\Common Files\Microsoft Shared
2012-01-03 12:32 - 2010-05-24 11:21 - 0000556 ____A C:\Windows\ODBC.INI
2012-01-03 11:44 - 2009-03-10 20:14 - 0000000 ____D C:\users\Pawel
2012-01-03 11:30 - 2012-01-03 11:30 - 0275080 ____A C:\Windows\Minidump\Mini010312-01.dmp
2012-01-03 11:09 - 2012-01-02 15:35 - 0000000 ____D C:\Program Files (x86)\ATMEL Corporation
2012-01-01 14:12 - 2009-06-28 10:04 - 0000000 ____D C:\Users\All Users\Suunto
2012-01-01 14:12 - 2009-06-28 10:04 - 0000000 ____D C:\ProgramData\Suunto
2011-12-27 07:51 - 2009-03-18 15:36 - 0000000 ___RD C:\Program Files (x86)\Skype
2011-12-17 13:27 - 2011-12-17 13:27 - 0000000 ____D C:\Users\Pawel\AppData\Roaming\Xerox
2011-12-17 13:26 - 2011-12-17 13:26 - 0000000 ____D C:\Users\All Users\Xerox
2011-12-17 13:26 - 2011-12-17 13:26 - 0000000 ____D C:\ProgramData\Xerox
2011-12-16 07:36 - 2011-12-16 07:33 - 1975410 ____A C:\Windows\dd_vstor40_x64MSI2B41.txt
2011-12-16 07:36 - 2011-12-16 07:33 - 0011254 ____A C:\Windows\dd_vstor40_x64UI2B41.txt
2011-12-12 22:49 - 2009-02-11 08:15 - 0035640 ____A C:\Windows\SysWOW64\sdopts.cfg
2011-12-12 22:47 - 2011-12-12 22:47 - 0035640 ____A C:\Windows\SysWOW64\sdopts.bak
2011-12-12 22:28 - 2011-12-12 22:28 - 0001876 ____A C:\Users\Public\Desktop\SdConfigEx v3.3.lnk
2011-12-12 22:28 - 2011-12-12 22:28 - 0001852 ____A C:\Users\Public\Desktop\SdConfig v3.3.lnk
2011-12-12 22:28 - 2011-12-12 22:28 - 0000739 ____A C:\Users\Public\Desktop\Edit sdopts.cfg v3.3.lnk
2011-12-12 22:28 - 2009-06-01 13:16 - 0000000 ____D C:\CCStudio_v3.3
2011-12-12 22:28 - 2009-03-12 12:01 - 0000000 ___HD C:\Program Files (x86)\InstallShield Installation Information
2011-12-12 22:27 - 2009-04-02 17:43 - 0000000 ____D C:\Windows\Downloaded Installations
2011-12-12 22:17 - 2011-12-12 13:55 - 0029528 ____A C:\TI_InstallLog.txt
2011-12-12 22:00 - 2011-12-12 22:00 - 0001768 ____A C:\Users\Public\Desktop\Setup CCStudio v3.3.lnk
2011-12-12 22:00 - 2011-12-12 22:00 - 0001754 ____A C:\Users\Public\Desktop\CCStudio v3.3.lnk
2011-12-07 14:46 - 2011-03-14 12:17 - 0000000 ____D C:\Users\Pawel\Documents\Visual Studio 2008

========================= Known DLLs (Whitelisted) ============


========================= Bamital & volsnap Check ============

C:\Windows\System32\winlogon.exe
[2009-08-31 07:29] - [2008-01-19 09:00] - 0406016 ____A (Microsoft Corporation) 856491FCED98093D824B9EB2892F564A

C:\Windows\System32\wininit.exe => MD5 is legit
C:\Windows\SysWOW64\wininit.exe => MD5 is legit
C:\Windows\explorer.exe => MD5 is legit
C:\Windows\SysWOW64\explorer.exe
[2009-03-12 13:59] - [2009-03-12 13:59] - 2927104 ____A (Microsoft Corporation) 4F554999D7D5F05DAAEBBA7B5BA1089D

C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\SysWOW64\svchost.exe => MD5 is legit
C:\Windows\System32\User32.dll
[2009-08-31 07:28] - [2008-01-19 09:04] - 0820224 ____A (Microsoft Corporation) 32B87D215905F648EBE36A621978442C

C:\Windows\SysWOW64\User32.dll
[2009-08-31 07:33] - [2008-01-19 08:32] - 0648192 ____A (Microsoft Corporation) 3D691030DBD3BD75DE1501BE54F0D425

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

========================= Memory info ====================== 

Percentage of memory in use: 19%
Total physical RAM: 3070.5 MB
Available physical RAM: 2479.89 MB
Total Pagefile: 2839.21 MB
Available Pagefile: 2632.29 MB
Total Virtual: 8192 MB
Available Virtual: 8191.91 MB

======================= Partitions =========================

1 Drive c: (OS) (Fixed) (Total:149.04 GB) (Free:38.94 GB) NTFS ==>[Drive with boot components (obtanied from BCD)]
2 Drive d: (DATA) (Fixed) (Total:139.28 GB) (Free:2.77 GB) NTFS
3 Drive e: (LRMCxFRE_PL_DVD) (CDROM) (Total:3.44 GB) (Free:0 GB) UDF
4 Drive f: () (Removable) (Total:0.94 GB) (Free:0.94 GB) FAT
5 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

  Dysk ###  Stan        Rozmiar  Wolne    Dyn  Gpt
  --------  ----------  -------  -------  ---  ---
  Dysk 0    Online       298 GB  1559 KB         
  Dysk 1    Online       961 MB      0 B         

Trwa opuszczanie programu DiskPart...


==========================================================

Last Boot: 2012-03-03 12:18

======================= End Of Log ==========================