Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 03-10-2013 Ran by pdejko (administrator) on PAWEL-NOTEBOOK on 08-10-2013 19:00:49 Running from C:\Documents and Settings\pdejko\Pulpit Microsoft Windows XP Professional Dodatek Service Pack 3 (X86) OS Language: Polish Internet Explorer Version 8 Boot Mode: Normal ==================== Processes (Whitelisted) =================== () C:\WINDOWS\system32\DTS.exe (Lenovo.) C:\windows\system32\ibmpmsvc.exe (AuthenTec, Inc.) C:\WINDOWS\system32\AtService.exe (AuthenTec,Inc) C:\WINDOWS\system32\FpLogonServ.exe (ATI Technologies Inc.) C:\windows\system32\Ati2evxx.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\S24EvMon.exe (Wsys Co., Ltd.) C:\Documents and Settings\All Users\Dane aplikacji\eSafe\eGdpSvc.exe (Microsoft Corporation) C:\windows\System32\SCardSvr.exe (ATI Technologies Inc.) C:\windows\system32\Ati2evxx.exe (Lenovo ) C:\Program Files\ThinkPad\ConnectUtilities\AcPrfMgrSvc.exe (Lenovo ) C:\Program Files\ThinkPad\ConnectUtilities\AcSvc.exe (Apple Inc.) C:\Program Files\Bonjour\mDNSResponder.exe (Lenovo.) C:\Program Files\ThinkPad\Utilities\DOZESVC.EXE (E-MU Systems) C:\windows\system32\emaudsv.exe (Intel(R) Corporation) C:\Program Files\Intel\WiFi\bin\EvtEng.exe (Microsoft Corporation) c:\WINDOWS\Microsoft.NET\Framework\v3.0\WPF\PresentationFontCache.exe (Lenovo Group Limited) C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe (Intel Corporation) C:\Program Files\Intel\AMT\LMS.exe () C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe () C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe (Intel(R) Corporation) C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe (Lenovo Group Limited) C:\Program Files\Lenovo\System Update\SUService.exe (Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\tvt_reg_monitor_svc.exe () C:\WINDOWS\system32\TpKmpSVC.exe (Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe () C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe () C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Lenovo ) C:\Program Files\ThinkPad\ConnectUtilities\SvcGuiHlpr.exe (Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe (Windows (R) Codename Longhorn DDK provider) C:\Program Files\UPHClean\uphclean.exe () C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE (Lenovo Group Limited) C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\bin\btwdins.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPEnh.exe (Microsoft Corporation) C:\windows\system32\wscntfy.exe (Lenovo.) C:\windows\system32\TpShocks.exe (Lenovo Group Limited) C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe (Lenovo ) C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe (Lenovo ) C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe (Advanced Micro Devices Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe (Microsoft Corporation) C:\Program Files\Microsoft ActiveSync\wcescomm.exe () C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe (E-MU Systems) C:\Program Files\Creative Professional\E-MU USB Audio\EmuUsbAudioCP.exe (Microsoft Corporation) C:\PROGRA~1\MICROS~2\rapimgr.exe (Synaptics Incorporated) C:\Program Files\Synaptics\SynTP\SynTPLpr.exe (Broadcom Corporation.) C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Avanquest Software ) C:\Program Files\Digital Line Detect\DLG.exe (OpenOffice.org) D:\Program Files\OpenOffice.org 3\program\soffice.exe (OpenOffice.org) D:\Program Files\OpenOffice.org 3\program\soffice.bin (ATI Technologies Inc.) C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe (Intel Corporation) C:\Program Files\Common Files\Intel\Privacy Icon\PrivacyIconClient.exe ==================== Registry (Whitelisted) ================== HKLM\...\Run: [SynTPEnh] - C:\Program Files\Synaptics\SynTP\SynTPEnh.exe [2379504 2013-05-29] (Synaptics Incorporated) HKLM\...\Run: [StartCCC] - C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [98304 2010-08-25] (Advanced Micro Devices, Inc.) HKLM\...\Run: [] - [x] HKLM\...\Run: [TpShocks] - C:\windows\system32\TpShocks.exe [338216 2013-05-10] (Lenovo.) HKLM\...\Run: [TVT Scheduler Proxy] - C:\Program Files\Common Files\Lenovo\Scheduler\scheduler_proxy.exe [487424 2008-03-04] (Lenovo Group Limited) HKLM\...\Run: [ACTray] - C:\Program Files\ThinkPad\ConnectUtilities\ACTray.exe [432488 2013-03-12] (Lenovo ) HKLM\...\Run: [ACWLIcon] - C:\Program Files\ThinkPad\ConnectUtilities\ACWLIcon.exe [194920 2013-03-12] (Lenovo ) HKLM\...\Run: [FingerPrintSoftware] - C:\Program Files\Lenovo Fingerprint Software\fpapp.exe [12100928 2010-02-05] (Authentec,Inc) HKLM\...\Run: [picon] - C:\Program Files\Common Files\Intel\Privacy Icon\PIconStartup.exe [111640 2010-02-04] () HKLM\...\Run: [TPKMAPHELPER] - C:\Program Files\ThinkPad\Utilities\TpKmapAp.exe [868352 2007-01-09] (Lenovo) HKLM\...\Run: [HotKeysCmds] - C:\WINDOWS\system32\hkcmd.exe [ ] () HKLM\...\Run: [UpdReg] - C:\windows\UpdReg.EXE [90112 2000-05-11] (Creative Technology Ltd.) Winlogon\Notify\ACNotify: C:\Program Files\ThinkPad\ConnectUtilities\ACNotify.dll (Lenovo ) Winlogon\Notify\ATFUS: C:\WINDOWS\system32\FpWinLogonNp.dll (AuthenTec,Inc) Winlogon\Notify\AtiExtEvent: C:\windows\system32\Ati2evxx.dll (ATI Technologies Inc.) HKCU\...\Run: [H/PC Connection Agent] - C:\Program Files\Microsoft ActiveSync\wcescomm.exe [1289000 2006-11-13] (Microsoft Corporation) HKCU\...\Run: [TPKMAPMN] - C:\Program Files\ThinkPad\Utilities\TpKmapMn.exe [49152 2007-09-21] () HKCU\...\Run: [] - [x] HKCU\...\Run: [E-MU USB Audio Control Panel] - C:\Program Files\Creative Professional\E-MU USB Audio\EmuUsbAudioCP.exe [274432 2007-11-26] (E-MU Systems) Lsa: [Notification Packages] scecli ACGina Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\BTTray.lnk ShortcutTarget: BTTray.lnk -> C:\Program Files\ThinkPad\Bluetooth Software\BTTray.exe (Broadcom Corporation.) Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Digital Line Detect.lnk ShortcutTarget: Digital Line Detect.lnk -> C:\Program Files\Digital Line Detect\DLG.exe (Avanquest Software ) Startup: C:\Documents and Settings\pdejko\Menu Start\Programy\Autostart\OpenOffice.org 3.4.1.lnk ShortcutTarget: OpenOffice.org 3.4.1.lnk -> D:\Program Files\OpenOffice.org 3\program\quickstart.exe () ==================== Internet (Whitelisted) ==================== HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ StartMenuInternet: IEXPLORE.EXE - C:\Program Files\Internet Explorer\iexplore.exe http://www.qvo6.com/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=sc&from=cor&uid=SAMSUNGXHM320II_S230J56SC01821&ts=1379585702 SearchScopes: HKLM - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=ds&from=cor&uid=SAMSUNGXHM320II_S230J56SC01821&ts=1379585702&type=default&q={searchTerms} SearchScopes: HKLM - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=ds&from=cor&uid=SAMSUNGXHM320II_S230J56SC01821&ts=1379585702&type=default&q={searchTerms} SearchScopes: HKCU - DefaultScope {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=ds&from=cor&uid=SAMSUNGXHM320II_S230J56SC01821&ts=1379585702&type=default&q={searchTerms} SearchScopes: HKCU - {33BB0A4E-99AF-4226-BDF6-49120163DE86} URL = http://search.qvo6.com/web/?utm_source=b&utm_medium=cor&utm_campaign=eXQ&utm_content=ds&from=cor&uid=SAMSUNGXHM320II_S230J56SC01821&ts=1379585702&type=default&q={searchTerms} Toolbar: HKCU -&Adres - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\Windows\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU -&Łącza - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\Windows\system32\SHELL32.dll (Microsoft Corporation) DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab Winsock: Catalog5 04 C:\Program Files\Bonjour\mdnsNSP.dll [121704] (Apple Inc.) Tcpip\Parameters: [DhcpNameServer] 46.151.191.151 46.151.191.5 ========================== Services (Whitelisted) ================= S3 ADMonitor; C:\WINDOWS\system32\ADMonitor.exe [106496 2010-02-05] () R2 dtsvc; C:\WINDOWS\system32\DTS.exe [98304 2010-02-05] () R2 emaudsv; C:\Windows\system32\emaudsv.exe [20992 2007-11-26] (E-MU Systems) R2 FingerprintServer; C:\WINDOWS\system32\FpLogonServ.exe [118784 2010-02-05] (AuthenTec,Inc) S3 ICDSPTSV; C:\WINDOWS\system32\IcdSptSv.exe [99688 2009-10-14] (Sony Corporation) R2 LENOVO.CAMMUTE; C:\Program Files\Lenovo\Communications Utility\CAMMUTE.exe [50536 2010-07-27] (Lenovo Group Limited) R2 NovacomD; C:\Program Files\Palm, Inc\novacom\x86\novacomd.exe [30720 2009-07-02] () R2 PassThru Service; C:\Program Files\HTC\Internet Pass-Through\PassThruSvr.exe [80896 2010-09-16] () R2 Power Manager DBC Service; C:\Program Files\ThinkPad\Utilities\PWMDBSVC.EXE [1645568 2013-01-11] () R2 PwmEWSvc; C:\Program Files\ThinkPad\Utilities\PWMEWSVC.EXE [1663272 2013-01-11] (Lenovo Group Limited) R2 S24EventMonitor; C:\Program Files\Intel\WiFi\bin\S24EvMon.exe [920304 2013-02-21] (Intel(R) Corporation) R2 SUService; C:\Program Files\Lenovo\System Update\SUService.exe [28672 2013-04-15] (Lenovo Group Limited) R2 TpKmpSVC; C:\WINDOWS\system32\TpKmpSVC.exe [32768 2006-06-29] () R2 TVT Scheduler; C:\Program Files\Common Files\Lenovo\Scheduler\tvtsched.exe [1122304 2008-03-04] (Lenovo Group Limited) R2 UNS; C:\Program Files\Common Files\Intel\Privacy Icon\UNS\UNS.exe [2058776 2010-02-04] (Intel Corporation) R2 UPHClean; C:\Program Files\UPHClean\uphclean.exe [399872 2010-09-13] (Windows (R) Codename Longhorn DDK provider) R2 WsysSvc; C:\Documents and Settings\All Users\Dane aplikacji\eSafe\eGdpSvc.exe [825920 2013-10-02] (Wsys Co., Ltd.) ==================== Drivers (Whitelisted) ==================== S3 ACSSCR; C:\Windows\System32\DRIVERS\a38usb.sys [37632 2012-08-28] (Advanced Card Systems Ltd) R1 ANC; C:\Windows\System32\drivers\ANC.SYS [11520 2013-03-07] (IBM Corp.) S3 btaudio; C:\Windows\System32\drivers\btaudio.sys [533152 2009-09-18] (Broadcom Corporation.) R3 BTDriver; C:\Windows\System32\DRIVERS\btport.sys [37160 2008-02-04] (Broadcom Corporation.) R3 BTKRNL; C:\Windows\System32\DRIVERS\btkrnl.sys [993576 2010-09-23] (Broadcom Corporation.) S3 BTWDNDIS; C:\Windows\System32\DRIVERS\btwdndis.sys [156816 2008-07-24] (Broadcom Corporation.) S3 BTWUSB; C:\Windows\System32\Drivers\btwusb.sys [51752 2010-09-16] (Broadcom Corporation.) R1 CBDisk; C:\windows\system32\drivers\{1ec00332-9da9-436d-9aaa-048787df45b6}.sys [57800 2013-07-26] (EldoS Corporation) R1 cbdisk2; C:\windows\system32\drivers\cbdisk2.sys [186504 2012-10-17] (EldoS Corporation) R1 CbFs; C:\windows\system32\drivers\{E7224BCD-D889-4528-8456-60CE0724367E}.sys [145504 2013-07-26] (EldoS Corporation) R1 cbfs3; C:\windows\system32\drivers\cbfs3.sys [299016 2012-10-22] (EldoS Corporation) S3 CBUSB; C:\Windows\System32\drivers\CBUSB.sys [45136 2013-07-04] (MARX CryptoTech LP) R3 CnxtHdAudService; C:\Windows\System32\drivers\CHDAU32.sys [822400 2010-07-18] (Conexant Systems Inc.) R3 e1yexpress; C:\Windows\System32\DRIVERS\e1y5132.sys [250584 2011-10-20] (Intel Corporation) S3 emusba10; C:\Windows\System32\DRIVERS\emusba10.sys [163352 2007-11-26] (E-MU Systems) S3 FRIdrv; C:\Windows\System32\drivers\FRIdrv.sys [3968 2013-08-27] (Beyond Logic http://www.beyondlogic.org) R3 HSFHWAZL; C:\Windows\System32\DRIVERS\HSFHWAZL.sys [210304 2009-06-30] (Conexant Systems, Inc.) R3 HSF_DPV; C:\Windows\System32\DRIVERS\HSF_DPV.sys [986240 2009-06-30] (Conexant Systems, Inc.) R1 IBMTPCHK; C:\WINDOWS\system32\Drivers\IBMBLDID.sys [4224 2013-03-07] () S3 ICDUSB2; C:\Windows\System32\Drivers\ICDUSB2.sys [39048 2002-11-28] (Sony Corporation) S3 NdisIP; C:\Windows\System32\DRIVERS\NdisIP.sys [10880 2008-04-14] (Microsoft Corporation) R3 NETwNx32; C:\Windows\System32\DRIVERS\NETwNx32.sys [7477760 2012-01-23] (Intel Corporation) S3 PhSerUsb; C:\Windows\System32\DRIVERS\PhSerUsb.sys [48896 2006-06-30] (PHILOG) S3 s0017bus; C:\Windows\System32\DRIVERS\s0017bus.sys [86824 2012-07-24] (MCCI Corporation) S3 s0017mdfl; C:\Windows\System32\DRIVERS\s0017mdfl.sys [15016 2012-07-24] (MCCI Corporation) S3 s0017mdm; C:\Windows\System32\DRIVERS\s0017mdm.sys [114600 2012-07-24] (MCCI Corporation) S3 s0017mgmt; C:\Windows\System32\DRIVERS\s0017mgmt.sys [108328 2012-07-24] (MCCI Corporation) S3 s0017nd5; C:\Windows\System32\DRIVERS\s0017nd5.sys [26024 2012-07-24] (MCCI Corporation) S3 s0017obex; C:\Windows\System32\DRIVERS\s0017obex.sys [104616 2012-07-24] (MCCI Corporation) S3 s0017unic; C:\Windows\System32\DRIVERS\s0017unic.sys [109736 2012-07-24] (MCCI Corporation) S3 s125bus; C:\Windows\System32\DRIVERS\s125bus.sys [83336 2012-07-24] (MCCI Corporation) S3 s125mdfl; C:\Windows\System32\DRIVERS\s125mdfl.sys [15112 2012-07-24] (MCCI Corporation) S3 s125mdm; C:\Windows\System32\DRIVERS\s125mdm.sys [108680 2012-07-24] (MCCI Corporation) S3 s125mgmt; C:\Windows\System32\DRIVERS\s125mgmt.sys [100488 2012-07-24] (MCCI Corporation) S3 s125obex; C:\Windows\System32\DRIVERS\s125obex.sys [98696 2012-07-24] (MCCI Corporation) R2 s24trans; C:\Windows\System32\DRIVERS\s24trans.sys [13952 2010-05-19] (Intel Corporation) R3 SmbDrvI; C:\Windows\System32\DRIVERS\Smb_driver_Intel.sys [38768 2013-05-29] (Synaptics Incorporated) R3 SNP2UVC; C:\Windows\System32\DRIVERS\snp2uvc.sys [3486208 2009-06-11] () R0 sptd; C:\Windows\System32\Drivers\sptd.sys [466008 2013-07-02] (Duplex Secure Ltd.) S3 ssm_bus; C:\Windows\System32\DRIVERS\ssm_bus.sys [104448 2013-05-02] (MCCI Corporation) S3 ssm_mdfl; C:\Windows\System32\DRIVERS\ssm_mdfl.sys [14848 2013-05-02] (MCCI Corporation) S3 ssm_mdm; C:\Windows\System32\DRIVERS\ssm_mdm.sys [132608 2013-05-02] (MCCI Corporation) S3 ss_bbus; C:\Windows\System32\DRIVERS\ss_bbus.sys [98432 2013-05-02] (MCCI) S3 ss_bmdfl; C:\Windows\System32\DRIVERS\ss_bmdfl.sys [14848 2013-05-02] (MCCI Corporation) S3 ss_bmdm; C:\Windows\System32\DRIVERS\ss_bmdm.sys [123648 2013-05-02] (MCCI Corporation) R1 TPPWRIF; C:\Windows\System32\drivers\Tppwrif.sys [13936 2013-01-11] (Lenovo Group Limited) U3 arpuiqy4; C:\Windows\System32\Drivers\arpuiqy4.sys [0 ] (Microsoft Corporation) S4 IntelIde; No ImagePath U1 WS2IFSL; ==================== NetSvcs (Whitelisted) =================== ==================== One Month Created Files and Folders ======== 2013-10-08 19:00 - 2013-10-08 19:00 - 00000000 ____D C:\FRST 2013-10-08 18:58 - 2013-10-08 18:58 - 00377856 _____ C:\Documents and Settings\pdejko\Pulpit\jkll9m9f.exe 2013-10-08 18:56 - 2013-10-08 18:56 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\pdejko\Pulpit\OTL.exe 2013-10-08 18:55 - 2013-10-08 18:55 - 01087213 _____ (Farbar) C:\Documents and Settings\pdejko\Pulpit\FRST.exe 2013-10-08 13:28 - 2013-10-08 13:28 - 00000000 ____D C:\Program Files\UPHClean 2013-10-08 13:13 - 2000-05-11 01:00 - 00090112 ____N (Creative Technology Ltd.) C:\windows\Updreg.EXE 2013-10-08 13:12 - 2013-10-08 13:12 - 00001897 _____ C:\Documents and Settings\All Users\Pulpit\E-MU USB Audio Application.lnk 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\windows\system32\Data 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\Program Files\Creative Professional 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Creative Professional 2013-10-08 13:12 - 2007-11-26 15:07 - 00011776 _____ (Creative Technology Limited) C:\windows\INRES.DLL 2013-10-08 13:08 - 2013-10-08 13:08 - 00000000 ____D C:\Documents and Settings\pdejko\Pulpit\Creative EMU 2013-10-08 12:12 - 2013-10-08 12:13 - 17868248 _____ (Lenovo Group Limited ) C:\Documents and Settings\pdejko\Pulpit\6ea118ww.exe 2013-10-08 12:02 - 2013-07-31 13:08 - 00661184 _____ (Sysinternals - www.sysinternals.com) C:\Documents and Settings\pdejko\Pulpit\autoruns.exe 2013-10-08 11:54 - 2013-10-08 11:54 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\Macromedia 2013-10-08 09:37 - 2013-10-08 09:37 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Conexant 2013-10-08 09:37 - 2013-10-08 09:37 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Conexant 2013-10-02 15:39 - 2013-10-02 15:39 - 00017440 _____ C:\windows\KB2870699-IE8.log 2013-10-02 15:39 - 2013-10-02 15:39 - 00010513 _____ C:\windows\KB2834904-v2.log 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2876315$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2876217$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2864063$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2834904-v2_WM11$ 2013-10-02 15:30 - 2013-10-02 15:39 - 00020401 _____ C:\windows\KB2876315.log 2013-10-02 15:30 - 2013-10-02 15:39 - 00019437 _____ C:\windows\KB2876217.log 2013-10-02 15:30 - 2013-10-02 15:39 - 00019366 _____ C:\windows\KB2864063.log 2013-10-02 15:28 - 2013-10-08 11:54 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Program Files\Common Files\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2013-10-02 15:08 - 2013-10-02 15:08 - 00000000 ____D C:\Program Files\Trend Micro 2013-10-02 15:08 - 2013-10-02 15:08 - 00000000 ____D C:\Documents and Settings\pdejko\Menu Start\Programy\HiJackThis 2013-10-02 15:07 - 2013-10-02 15:07 - 00000000 ____D C:\Program Files\Foxit Software 2013-10-02 15:07 - 2013-10-02 15:07 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Foxit Reader 2013-10-02 15:07 - 2013-06-09 21:59 - 00216064 _____ C:\windows\system32\gcapi_dll.dll 2013-10-02 15:00 - 2013-10-08 18:54 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\eSafe 2013-09-19 12:15 - 2013-10-02 15:40 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\DProtect 2013-09-19 12:15 - 2013-10-02 15:04 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Lollipop 2013-09-19 12:15 - 2013-09-19 12:15 - 00000000 __SHD C:\Documents and Settings\LocalService\IETldCache 2013-09-19 12:15 - 2013-09-19 12:15 - 00000000 ____D C:\User Data 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info9.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info7.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info4.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info10.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Program Files\mySyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\pdejko\Menu Start\Programy\SyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\SyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\pdejko 2013-09-19 11:14 - 2013-09-19 11:14 - 00039399 _____ C:\Documents and Settings\pdejko\Pulpit\w175_w180.rar 2013-09-19 11:14 - 2013-09-19 11:14 - 00000000 ____D C:\Documents and Settings\pdejko\Pulpit\w175_w180 2013-09-19 11:14 - 2006-06-30 02:20 - 00048896 _____ (PHILOG) C:\windows\system32\Drivers\PhSerUsb.sys ==================== One Month Modified Files and Folders ======= 2013-10-08 19:00 - 2013-10-08 19:00 - 00000000 ____D C:\FRST 2013-10-08 18:59 - 2013-07-02 08:35 - 00000000 ____D C:\Documents and Settings\pdejko\Pulpit 2013-10-08 18:58 - 2013-10-08 18:58 - 00377856 _____ C:\Documents and Settings\pdejko\Pulpit\jkll9m9f.exe 2013-10-08 18:56 - 2013-10-08 18:56 - 00602112 _____ (OldTimer Tools) C:\Documents and Settings\pdejko\Pulpit\OTL.exe 2013-10-08 18:55 - 2013-10-08 18:55 - 01087213 _____ (Farbar) C:\Documents and Settings\pdejko\Pulpit\FRST.exe 2013-10-08 18:54 - 2013-10-02 15:00 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\eSafe 2013-10-08 18:52 - 2013-07-02 08:30 - 01824612 _____ C:\windows\WindowsUpdate.log 2013-10-08 18:51 - 2013-07-17 10:13 - 00726516 _____ C:\windows\setupapi.log 2013-10-08 18:51 - 2013-07-02 10:13 - 00000159 _____ C:\windows\wiadebug.log 2013-10-08 18:51 - 2013-07-02 10:13 - 00000050 _____ C:\windows\wiaservc.log 2013-10-08 18:51 - 2013-07-02 08:34 - 00000006 ____H C:\windows\Tasks\SA.DAT 2013-10-08 18:51 - 2004-08-04 14:00 - 00013646 _____ C:\windows\system32\wpa.dbl 2013-10-08 13:33 - 2013-08-13 10:16 - 00180960 _____ C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat 2013-10-08 13:33 - 2013-07-02 10:10 - 00000000 ___HD C:\Documents and Settings\All Users\Dane aplikacji 2013-10-08 13:33 - 2013-07-02 10:10 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty 2013-10-08 13:33 - 2013-07-02 08:35 - 00000188 ___SH C:\Documents and Settings\pdejko\ntuser.ini 2013-10-08 13:33 - 2013-07-02 08:35 - 00000000 ___HD C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji 2013-10-08 13:33 - 2013-07-02 08:35 - 00000000 ___HD C:\Documents and Settings\pdejko\Dane aplikacji 2013-10-08 13:33 - 2013-07-02 08:35 - 00000000 ____D C:\Documents and Settings\pdejko\Moje dokumenty 2013-10-08 13:33 - 2013-07-02 08:34 - 00019100 _____ C:\windows\SchedLgU.Txt 2013-10-08 13:33 - 2013-07-02 08:34 - 00000000 ___HD C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji 2013-10-08 13:28 - 2013-10-08 13:28 - 00000000 ____D C:\Program Files\UPHClean 2013-10-08 13:12 - 2013-10-08 13:12 - 00001897 _____ C:\Documents and Settings\All Users\Pulpit\E-MU USB Audio Application.lnk 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\windows\system32\Data 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\Program Files\Creative Professional 2013-10-08 13:12 - 2013-10-08 13:12 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Creative Professional 2013-10-08 13:12 - 2013-07-02 10:10 - 00000000 ___RD C:\Documents and Settings\All Users\Menu Start\Programy 2013-10-08 13:12 - 2013-07-02 10:10 - 00000000 ____D C:\Documents and Settings\All Users\Pulpit 2013-10-08 13:11 - 2013-07-02 11:19 - 00000000 ____D C:\Program Files\Common Files\InstallShield 2013-10-08 13:11 - 2013-07-02 10:53 - 00000000 ___HD C:\Program Files\InstallShield Installation Information 2013-10-08 13:08 - 2013-10-08 13:08 - 00000000 ____D C:\Documents and Settings\pdejko\Pulpit\Creative EMU 2013-10-08 12:50 - 2013-07-02 10:44 - 00000000 ____D C:\Program Files\CONEXANT 2013-10-08 12:13 - 2013-10-08 12:12 - 17868248 _____ (Lenovo Group Limited ) C:\Documents and Settings\pdejko\Pulpit\6ea118ww.exe 2013-10-08 11:59 - 2013-07-02 11:27 - 00000000 ____D C:\Program Files\Opera 2013-10-08 11:54 - 2013-10-08 11:54 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\Macromedia 2013-10-08 11:54 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\Adobe 2013-10-08 09:37 - 2013-10-08 09:37 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Conexant 2013-10-08 09:37 - 2013-10-08 09:37 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Conexant 2013-10-02 15:40 - 2013-09-19 12:15 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\DProtect 2013-10-02 15:40 - 2013-07-02 10:10 - 00123728 _____ C:\windows\system32\FNTCACHE.DAT 2013-10-02 15:39 - 2013-10-02 15:39 - 00017440 _____ C:\windows\KB2870699-IE8.log 2013-10-02 15:39 - 2013-10-02 15:39 - 00010513 _____ C:\windows\KB2834904-v2.log 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2876315$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2876217$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2864063$ 2013-10-02 15:39 - 2013-10-02 15:39 - 00000000 __HDC C:\windows\$NtUninstallKB2834904-v2_WM11$ 2013-10-02 15:39 - 2013-10-02 15:30 - 00020401 _____ C:\windows\KB2876315.log 2013-10-02 15:39 - 2013-10-02 15:30 - 00019437 _____ C:\windows\KB2876217.log 2013-10-02 15:39 - 2013-10-02 15:30 - 00019366 _____ C:\windows\KB2864063.log 2013-10-02 15:39 - 2013-07-05 13:46 - 00153746 _____ C:\windows\updspapi.log 2013-10-02 15:39 - 2013-07-02 10:11 - 01098772 _____ C:\windows\iis6.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00988410 _____ C:\windows\FaxSetup.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00481820 _____ C:\windows\ocgen.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00457884 _____ C:\windows\tsoc.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00341134 _____ C:\windows\comsetup.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00313084 _____ C:\windows\msmqinst.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00205115 _____ C:\windows\ntdtcsetup.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00173904 _____ C:\windows\netfxocm.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00068648 _____ C:\windows\MedCtrOC.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00061873 _____ C:\windows\ocmsn.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00051704 _____ C:\windows\tabletoc.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00049693 _____ C:\windows\msgsocm.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00001374 _____ C:\windows\imsins.log 2013-10-02 15:39 - 2013-07-02 10:11 - 00001374 _____ C:\windows\imsins.BAK 2013-10-02 15:38 - 2013-08-16 13:46 - 00000000 ____D C:\windows\system32\MRT 2013-10-02 15:32 - 2013-07-18 09:45 - 76725432 _____ (Microsoft Corporation) C:\windows\system32\MRT.exe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Program Files\Common Files\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\All Users\Dokumenty\Adobe 2013-10-02 15:28 - 2013-10-02 15:28 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\Adobe 2013-10-02 15:08 - 2013-10-02 15:08 - 00000000 ____D C:\Program Files\Trend Micro 2013-10-02 15:08 - 2013-10-02 15:08 - 00000000 ____D C:\Documents and Settings\pdejko\Menu Start\Programy\HiJackThis 2013-10-02 15:08 - 2013-07-02 08:35 - 00000000 ___RD C:\Documents and Settings\pdejko\Menu Start\Programy 2013-10-02 15:07 - 2013-10-02 15:07 - 00000000 ____D C:\Program Files\Foxit Software 2013-10-02 15:07 - 2013-10-02 15:07 - 00000000 ____D C:\Documents and Settings\All Users\Menu Start\Programy\Foxit Reader 2013-10-02 15:04 - 2013-09-19 12:15 - 00000000 ____D C:\Documents and Settings\pdejko\Ustawienia lokalne\Dane aplikacji\Lollipop 2013-10-02 15:00 - 2013-08-13 10:33 - 00001081 _____ C:\Documents and Settings\pdejko\Menu Start\Programy\Internet Explorer.lnk 2013-10-02 14:59 - 2013-07-04 14:11 - 00000000 ____D C:\Program Files\Common Files\Apple 2013-09-19 12:15 - 2013-09-19 12:15 - 00000000 __SHD C:\Documents and Settings\LocalService\IETldCache 2013-09-19 12:15 - 2013-09-19 12:15 - 00000000 ____D C:\User Data 2013-09-19 12:15 - 2013-07-02 08:34 - 00000000 __SHD C:\Documents and Settings\LocalService 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info9.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info7.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info4.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000019 _____ C:\windows\info10.ini 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Program Files\mySyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\pdejko\Menu Start\Programy\SyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\SyncCell 2013-09-19 11:56 - 2013-09-19 11:56 - 00000000 ____D C:\Documents and Settings\All Users\Dane aplikacji\pdejko 2013-09-19 11:35 - 2013-08-13 10:37 - 00692616 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerApp.exe 2013-09-19 11:35 - 2013-08-13 10:37 - 00071048 _____ (Adobe Systems Incorporated) C:\windows\system32\FlashPlayerCPLApp.cpl 2013-09-19 11:14 - 2013-09-19 11:14 - 00039399 _____ C:\Documents and Settings\pdejko\Pulpit\w175_w180.rar 2013-09-19 11:14 - 2013-09-19 11:14 - 00000000 ____D C:\Documents and Settings\pdejko\Pulpit\w175_w180 2013-09-19 11:11 - 2013-07-04 14:44 - 00000000 ____D C:\Documents and Settings\pdejko\Dane aplikacji\Foxit Software 2013-09-19 10:54 - 2004-08-04 14:00 - 00000477 _____ C:\windows\win.ini 2013-09-19 10:54 - 2004-08-04 14:00 - 00000227 _____ C:\windows\system.ini 2013-09-13 09:33 - 2013-07-02 10:10 - 00230417 _____ C:\windows\setupact.log ==================== Bamital & volsnap Check ================= C:\Windows\explorer.exe [2008-04-14 22:51] - [2008-04-14 22:51] - 1035264 ____A (Microsoft Corporation) c791ed9eac5e76d9525e157b1d7a599a C:\Windows\System32\winlogon.exe [2008-04-14 22:51] - [2008-04-14 22:51] - 0510464 ____A (Microsoft Corporation) 51fd2e13d723857b9ca239ae77150f48 C:\Windows\System32\svchost.exe [2008-04-14 22:51] - [2008-04-14 22:51] - 0014336 ____A (Microsoft Corporation) 8607d35d92528e2df386f19a960d23ce C:\Windows\System32\services.exe [2008-04-14 22:51] - [2009-02-09 13:25] - 0111104 ____A (Microsoft Corporation) 02a467e27af55f7064c5b251e587315f C:\Windows\System32\User32.dll [2008-04-14 22:50] - [2008-04-14 22:50] - 0580096 ____A (Microsoft Corporation) a435c5c069afd901751ac323ad238793 C:\Windows\System32\userinit.exe [2008-04-14 22:51] - [2008-04-14 22:51] - 0026624 ____A (Microsoft Corporation) 2a5b37d520508be6570a3ea79695f5b5 C:\Windows\System32\Drivers\volsnap.sys [2008-04-14 21:31] - [2008-04-14 21:31] - 0052864 ____A (Microsoft Corporation) 56b191ac5fc0df219949c95a6c87afe7 ==================== End Of Log ============================