Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 31-08-2013 04
Ran by Administrator (administrator) on ŹREBAK on 31-08-2013 17:33:51
Running from C:\Documents and Settings\Administrator\Pulpit\diagnoza
Microsoft Windows XP Professional Dodatek Service Pack 2 (X86) OS Language: Polish
Internet Explorer Version 6
Boot Mode: Normal

==================== Processes (Whitelisted) ===================

(SweetIM Technologies Ltd.) C:\Program Files\SweetIM\Messenger\SweetIM.exe
(Google Inc.) C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe
(BitTorrent, Inc.) C:\Program Files\uTorrent\uTorrent.exe
(McAfee, Inc.) C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe
(Microsoft Corporation) C:\Program Files\Common Files\Microsoft Shared\VS7Debug\mdm.exe
(Microsoft Corporation) C:\WINDOWS\system32\wuauclt.exe
(Google Inc.) C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe

==================== Registry (Whitelisted) ==================

HKLM\...\Run: [Adobe Reader Speed Launcher] - C:\Program Files\Adobe\Reader 10.0\Reader\Reader_sl.exe [35736 2011-01-30] (Adobe Systems Incorporated)
HKLM\...\Run: [Adobe ARM] - C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [946352 2012-12-03] (Adobe Systems Incorporated)
HKLM\...\Run: [SweetIM] - C:\Program Files\SweetIM\Messenger\SweetIM.exe [114992 2011-08-01] (SweetIM Technologies Ltd.)
Winlogon\Notify\igfxcui: igfxsrvc.dll (Intel Corporation)
HKLM\...\Policies\Explorer\Run: [59010] - C:\DOCUME~1\ALLUSE~1\LOCALS~1\Temp\ccbtruifc.pif [100763 2004-08-04] ( (House))
HKCU\...\Run: [swg] - C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [39408 2003-05-19] (Google Inc.)
HKCU\...\Run: [uTorrent] - C:\Program Files\uTorrent\uTorrent.exe [969104 2003-05-16] (BitTorrent, Inc.)
HKCU\...\Run: [Google Update] - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [116648 2003-05-24] (Google Inc.)
MountPoints2: {77ded5f0-8c97-11d7-8bbb-00065b36c815} - F:\urDrive.exe
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\McAfee Security Scan Plus.lnk
ShortcutTarget: McAfee Security Scan Plus.lnk -> C:\Program Files\McAfee Security Scan\2.0.181\SSScheduler.exe (McAfee, Inc.)
Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Microsoft Office.lnk
ShortcutTarget: Microsoft Office.lnk -> C:\Program Files\Microsoft Office\Office10\OSA.EXE (Microsoft Corporation)

==================== Internet (Whitelisted) ====================

HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://www.microsoft.com/isapi/redir.dll?prd=ie&pver=6&ar=msnhome
HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch
HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.sweetim.com
URLSearchHook: ATTENTION ==> Default URLSearchHook is missing.
URLSearchHook: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo2.dll (Conduit Ltd.)
URLSearchHook: SweetIM ToolbarURLSearchHook Class - {EEE6C35D-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgHelper.dll (SweetIM Technologies Ltd.)
StartMenuInternet: IEXPLORE.EXE - %programfiles%\Internet Explorer\iexplore.exe
SearchScopes: HKLM - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKLM - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - DefaultScope {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
SearchScopes: HKCU - {171DEBEB-C3D4-40b7-AC73-056A5EBA4A7E} URL = 
SearchScopes: HKCU - {afdbddaa-5d3f-42ee-b79c-185a7020515b} URL = http://search.conduit.com/ResultsExt.aspx?q={searchTerms}&SearchSource=4&ctid=CT2786678
SearchScopes: HKCU - {EEE6C360-6118-11DC-9C72-001320C79847} URL = http://search.sweetim.com/search.asp?src=6&q={searchTerms}
BHO: Adobe PDF Link Helper - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
BHO: Skype add-on (mastermind) - {22BF413B-C6D2-4d91-82A9-A0F997BA588C} - C:\Program Files\Skype\Toolbars\Internet Explorer\SkypeIEPlugin.dll (Skype Technologies S.A.)
BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.7.8313.1002\swg.dll (Google Inc.)
BHO: uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo2.dll (Conduit Ltd.)
BHO: Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
BHO: SweetIM Toolbar Helper - {EEE6C35C-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM - Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKLM - uTorrentBar Toolbar - {bf7380fa-e3b4-4db2-af3e-9d8783a45bfc} - C:\Program Files\uTorrentBar\prxtbuTo2.dll (Conduit Ltd.)
Toolbar: HKLM - SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
Toolbar: HKLM - Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -&Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\System32\browseui.dll (Microsoft Corporation)
Toolbar: HKCU -&Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation)
Toolbar: HKCU -Google Toolbar - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.)
Toolbar: HKCU -Foxit PDF Creator Toolbar - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask)
Toolbar: HKCU -uTorrentBar Toolbar - {BF7380FA-E3B4-4DB2-AF3E-9D8783A45BFC} - C:\Program Files\uTorrentBar\prxtbuTo2.dll (Conduit Ltd.)
Toolbar: HKCU -SweetIM Toolbar for Internet Explorer - {EEE6C35B-6118-11DC-9C72-001320C79847} - C:\Program Files\SweetIM\Toolbars\Internet Explorer\mgToolbarIE.dll (SweetIM Technologies Ltd.)
DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab
Handler: cdo - {CD00020A-8B95-11D1-82DB-00C04FB1625D} - C:\Program Files\Common Files\Microsoft Shared\Web Folders\PKMCDO.DLL (Microsoft Corporation)
Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\MSITSS.DLL (Microsoft Corporation)
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Chrome: 
=======
CHR DefaultSearchURL: (Google) - {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR DefaultSuggestURL: (Google) - {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}
CHR Plugin: (Remoting Viewer) - internal-remoting-viewer
CHR Plugin: (Native Client) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\ppGoogleNaClPluginChrome.dll ()
CHR Plugin: (Chrome PDF Viewer) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\pdf.dll ()
CHR Plugin: (Shockwave Flash) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\22.0.1229.94\gcswf32.dll No File
CHR Plugin: (Shockwave Flash) - C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
CHR Plugin: (Adobe Acrobat) - C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll (Adobe Systems Inc.)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npdrmv2.dll (Microsoft Corporation)
CHR Plugin: (Microsoft\u00AE DRM) - C:\Program Files\Windows Media Player\npwmsdrm.dll (Microsoft Corporation)
CHR Plugin: (Windows Media Player Plug-in Dynamic Link Library) - C:\Program Files\Windows Media Player\npdsplay.dll (Microsoft Corporation (written by Digital Renaissance Inc.))
CHR Plugin: (Google Update) - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll No File
CHR Plugin: (Foxit Reader Plugin for Mozilla) - C:\Program Files\Foxit Software\Foxit Reader\plugins\npFoxitReaderPlugin.dll (Foxit Corporation)
CHR HKLM\...\Chrome\Extension: [bejbohlohkkgompgecdcbbglkpjfjgdj] - C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\crx2E.tmp
CHR StartMenuInternet: Google Chrome - C:\Documents and Settings\Administrator\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe

========================== Services (Whitelisted) =================

S3 McComponentHostService; C:\Program Files\McAfee Security Scan\2.0.181\McCHSvc.exe [227232 2010-01-15] (McAfee, Inc.)

==================== Drivers (Whitelisted) ====================

R3 ac97intc; C:\Windows\System32\drivers\ac97intc.sys [96256 2001-08-17] (Intel Corporation)
R3 EL90XBC; C:\Windows\System32\DRIVERS\el90xbc5.sys [66591 2001-08-17] (3Com Corporation)
S3 ialm; C:\Windows\System32\DRIVERS\ialmnt5.sys [681469 2004-02-10] (Intel Corporation)
R1 P3; C:\Windows\System32\DRIVERS\p3.sys [46592 2004-08-04] (Microsoft Corporation)
S3 rtl8139; C:\Windows\System32\DRIVERS\RTL8139.SYS [20992 2004-08-03] (Realtek Semiconductor Corporation)
S3 Secdrv; C:\Windows\System32\DRIVERS\secdrv.sys [27440 2002-03-25] ()
U5 ScsiPort; C:\Windows\system32\drivers\scsiport.sys [96256 2004-08-03] (Microsoft Corporation)

==================== NetSvcs (Whitelisted) ===================


==================== One Month Created Files and Folders ========

2013-08-31 17:33 - 2013-08-31 17:33 - 00000000 ____D C:\FRST

==================== One Month Modified Files and Folders =======

2013-08-31 17:33 - 2013-08-31 17:33 - 00000000 ____D C:\FRST
2013-08-31 17:33 - 2011-09-26 13:03 - 00000000 ____D D:\Moje dokumenty\Downloads
2013-08-31 17:33 - 2003-05-16 00:05 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit\diagnoza
2013-08-31 17:30 - 2011-09-26 12:49 - 00000000 ____D C:\Documents and Settings\Administrator\Dane aplikacji\uTorrent
2013-08-31 17:17 - 2008-05-14 04:59 - 00000000 ____D C:\Documents and Settings\Administrator\Pulpit

Files to move or delete:
====================
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\contentDATs.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\GoogleToolbarInstaller_en.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\SecurityScan_Release.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\SkypeSetup.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\utt28.tmp.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{483D84A3-2AFD-4AF1-8C0C-3FF0AFED442D}-24.0.1312.56_chrome_installer.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleCrashHandler.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleCrashHandler64.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleUpdate.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleUpdateBroker.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleUpdateOnDemand.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\GoogleUpdateSetup.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdate.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_am.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ar.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_bg.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_bn.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ca.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_cs.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_da.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_de.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_el.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_en-GB.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_en.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_es-419.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_es.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_et.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_fa.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_fi.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_fil.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_fr.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_gu.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_hi.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_hr.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_hu.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_id.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_is.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_it.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_iw.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ja.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_kn.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ko.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_lt.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_lv.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ml.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_mr.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ms.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_nl.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_no.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_pl.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_pt-BR.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_pt-PT.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ro.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ru.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_sk.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_sl.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_sr.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_sv.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_sw.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ta.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_te.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_th.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_tr.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_uk.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_ur.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_vi.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_zh-CN.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\goopdateres_zh-TW.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\npGoogleUpdate3.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\psmachine.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\{194D903B-0860-41C9-9588-E1F424DD9C4A}\psuser.dll
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\CCIS\ccsqlh.exe
C:\DOCUME~1\ADMINI~1\USTAWI~1\Temp\CCIS\sqlite3.dll

==================== Bamital & volsnap Check =================

C:\Windows\explorer.exe
[2002-09-20 18:05] - [2004-08-04 00:44] - 1033728 ____A (Microsoft Corporation) 379098a96e6c165b659de7e4328010ea 

C:\Windows\System32\winlogon.exe
[2002-09-20 18:05] - [2004-08-04 00:44] - 0504832 ____A (Microsoft Corporation) 0344407089b08548d4feba62bb0f32d0 

C:\Windows\System32\svchost.exe
[2001-10-26 17:30] - [2004-08-04 00:44] - 0014336 ____A (Microsoft Corporation) ba98327e90022dbd6ee76490e0622e2e 

C:\Windows\System32\services.exe
[2001-10-26 17:30] - [2004-08-04 00:44] - 0108544 ____A (Microsoft Corporation) 3da8d964d2cc12ef8e8c342471a37917 

C:\Windows\System32\User32.dll
[2002-09-20 18:04] - [2004-08-04 00:44] - 0578560 ____A (Microsoft Corporation) 0c81764f50f32d376e6e4b9e9f4b01a0 

C:\Windows\System32\userinit.exe
[2002-09-20 18:05] - [2004-08-04 00:44] - 0025088 ____A (Microsoft Corporation) bd768099b4c44aa631728cb74eb54396 

C:\Windows\System32\Drivers\volsnap.sys
[2001-10-26 16:57] - [2004-08-04 00:36] - 0052864 ____A (Microsoft Corporation) ecd173739b8ec10a814cc18653df5a36 


==================== End Of Log ============================