Scan result of Farbar Recovery Scan Tool (FRST) (x86) Version: 06-10-2014 01 Ran by Rupert Legge (administrator) on RUPERT on 07-10-2014 13:58:36 Running from C:\Documents and Settings\Rupert Legge\My Documents\Downloads Loaded Profile: Rupert Legge (Available profiles: Rupert Legge) Platform: Microsoft Windows XP Home Edition Service Pack 3 (X86) OS Language: English (United States) Internet Explorer Version 6 Boot Mode: Normal Tutorial for Farbar Recovery Scan Tool: http://www.geekstogo.com/forum/topic/335081-frst-tutorial-how-to-use-farbar-recovery-scan-tool/ ==================== Processes (Whitelisted) ================= (If an entry is included in the fixlist, the process will be closed. The file will not be moved.) (Microsoft Corporation) C:\WINDOWS\system32\cisvc.exe () C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe (Microsoft Corporation) C:\WINDOWS\system32\wscntfy.exe (Realtek Semiconductor Corp.) C:\WINDOWS\soundman.exe (Piriform Ltd) C:\Program Files\CCleaner\CCleaner.exe () C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe (Panda Security) C:\Program Files\Panda USB Vaccine\USBVaccine.exe (Microsoft Corporation) C:\WINDOWS\system32\wbem\unsecapp.exe (Mozilla Corporation) C:\Program Files\Mozilla Firefox\firefox.exe (Microsoft Corporation) C:\WINDOWS\system32\msiexec.exe ==================== Registry (Whitelisted) ================== (If an entry is included in the fixlist, the registry item will be restored to default or removed. The file will not be moved.) HKLM\...\Run: [SoundMan] => C:\WINDOWS\SOUNDMAN.EXE [577536 2007-04-16] (Realtek Semiconductor Corp.) HKU\S-1-5-19\...\Policies\Explorer: [CDRAutoRun] 0 HKU\S-1-5-21-1430662889-353329016-294800167-1007\...\Run: [CCleaner Monitoring] => C:\Program Files\CCleaner\CCleaner.exe [4811032 2014-09-26] (Piriform Ltd) HKU\S-1-5-21-1430662889-353329016-294800167-1007\...\Policies\Explorer: [NoLowDiskSpaceChecks] 1 HKU\S-1-5-21-1430662889-353329016-294800167-1007\...\MountPoints2: Z - C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL HKU\S-1-5-21-1430662889-353329016-294800167-1007\...\MountPoints2: {a2044a21-6549-11da-a5a1-806d6172696f} - E:\Launch.exe Startup: C:\Documents and Settings\All Users\Start Menu\Programs\Startup\TL-WN321G Wireless Utility.lnk ShortcutTarget: TL-WN321G Wireless Utility.lnk -> C:\Program Files\TP-LINK\TL-WN321G\COMMON\TWCU.exe () Startup: C:\Documents and Settings\Rupert Legge\Start Menu\Programs\Startup\PandaUSBVaccine.lnk ShortcutTarget: PandaUSBVaccine.lnk -> C:\Program Files\Panda USB Vaccine\USBVaccine.exe (Panda Security) ==================== Internet (Whitelisted) ==================== (If an item is included in the fixlist, if it is a registry item it will be removed or restored to default.) HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.microsoft.com/isapi/redir.dll?prd=ie&ar=iesearch HKCU\Software\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.sweet-page.com/web/?type=ds&ts=1412361440&from=cor&uid=SAMSUNGXSP0842N_S0DWJ10L590007&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://www.sweet-page.com/web/?type=ds&ts=1412361440&from=cor&uid=SAMSUNGXSP0842N_S0DWJ10L590007&q={searchTerms} HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank Toolbar: HKCU - &Address - {01E04581-4EEE-11D0-BFE9-00AA005B4383} - C:\WINDOWS\system32\browseui.dll (Microsoft Corporation) Toolbar: HKCU - &Links - {0E5CBF21-D15F-11D0-8301-00AA005B4383} - C:\WINDOWS\system32\SHELL32.dll (Microsoft Corporation) DPF: {1754A1BA-A1DF-4F10-B199-AA55AA1A120F} https://signup.msn.com/pages/MsnInstC.cab Handler: ms-itss - {0A9007C0-4076-11D3-8789-0000F8105754} - C:\Program Files\Common Files\Microsoft Shared\Information Retrieval\msitss.dll (Microsoft Corporation) ShellExecuteHooks: - {4F07DA45-8170-4859-9B5F-037EF2970034} - No File [ ] Hosts: There are more than one entry in Hosts. See Hosts section of Addition.txt Tcpip\Parameters: [DhcpNameServer] 89.101.160.4 89.101.160.5 Tcpip\..\Interfaces\{801F5AAB-5307-4AD1-92FF-031981878D25}: [NameServer] 8.8.8.8,8.8.4.4 FireFox: ======== FF ProfilePath: C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default FF Plugin: @microsoft.com/WPF,version=3.5 -> C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF Plugin: @tools.google.com/Google Update;version=3 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File FF Plugin: @tools.google.com/Google Update;version=9 -> C:\Program Files\Google\Update\1.3.24.15\npGoogleUpdate3.dll No File FF Plugin HKCU: @unity3d.com/UnityPlayer,version=1.0 -> C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Unity\WebPlayer\loader\npUnity3D32.dll (Unity Technologies ApS) FF user.js: detected! => C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\user.js FF SearchPlugin: C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\searchplugins\zonealarm.xml FF Extension: CoStmin - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\ApITwsd94@T.edu [2014-10-04] FF Extension: PrivDog - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\PrivDog@AdTrustMedia.com [2014-09-21] FF Extension: No Name - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\{b749fc7c-e949-447f-926c-3f4eed6accfe}(2) [2014-09-20] FF Extension: Tab Grenade - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\jid1-gzlHTgBCb5hzkA@jetpack.xpi [2014-09-21] FF Extension: RAMBack - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\ramback@pavlov.net.xpi [2014-09-21] FF Extension: FastestFox - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\smarterwiki@wikiatic.com.xpi [2014-09-30] FF Extension: YSlow - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\yslow@yahoo-inc.com.xpi [2014-10-03] FF Extension: Web Developer - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\Extensions\{c45c406e-ab73-11d8-be73-000a95be3b12}.xpi [2014-10-03] FF HKLM\...\Firefox\Extensions: [{20a82645-c095-46ed-80e3-08825760534b}] - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension FF Extension: Microsoft .NET Framework Assistant - C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension [2011-12-19] FF Extension: No Name - C:\Documents and Settings\Rupert Legge\Application Data\Mozilla\Firefox\Profiles\ptluom4j.default\extensions\ffxtlbr@zonealarm.com [Not Found] Chrome: ======= CHR CustomProfile: C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Google\Chrome\User Data\Default CHR Extension: (CoStmin) - C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Google\Chrome\User Data\Default\Extensions\ojllcfefjehijjlgpjhlbjpkhciapecl [2014-10-04] CHR HKLM\...\Chrome\Extension: [kfejhbidgehdoaglokpfddkmiepmhcck] - C:\Documents and Settings\All Users\Application Data\Plugin\iseekdeal-chrome.crx [2012-12-18] CHR HKLM\SOFTWARE\Policies\Google: Policy restriction <======= ATTENTION ========================== Services (Whitelisted) ================= (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) ATTENTION: => Could not perform signature verification. Cryptographic Service is not running. S4 IePluginServices; C:\Documents and Settings\All Users\Application Data\IePluginServices\PluginService.exe [705416 2014-09-24] (Cherished Technololgy LIMITED) S4 McAfee SiteAdvisor Service; c:\Program Files\McAfee\SiteAdvisor\McSACore.exe [133696 2014-09-02] (McAfee, Inc.) R2 RalinkRegistryWriter; C:\Program Files\TP-LINK\TL-WN321G\COMMON\RegistryWriter.exe [69632 2009-01-05] () S4 gupdate; "C:\Program Files\Google\Update\GoogleUpdate.exe" /svc [X] S4 gupdatem; "C:\Program Files\Google\Update\GoogleUpdate.exe" /medsvc [X] ==================== Drivers (Whitelisted) ==================== (If an entry is included in the fixlist, the service will be removed from the registry. The file will not be moved unless listed separately.) R0 abp480n5; C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS [23552 2004-08-04] (Microsoft Corporation) R2 AegisP; C:\WINDOWS\System32\DRIVERS\AegisP.sys [21361 2014-10-04] (Cisco Systems, Inc.) R3 ALCXWDM; C:\WINDOWS\System32\drivers\ALCXWDM.SYS [4122368 2008-09-24] (Realtek Semiconductor Corp.) S3 AR9271; C:\WINDOWS\System32\DRIVERS\athuw.sys [1714176 2010-01-05] (Atheros Communications, Inc.) R1 Cdr4_xp; C:\WINDOWS\system32\Drivers\Cdr4_xp.sys [43392 2004-04-03] (Roxio) R1 Cdralw2k; C:\WINDOWS\system32\Drivers\Cdralw2k.sys [24576 2004-04-03] (Roxio) R1 CSN5PDTS82; C:\WINDOWS\System32\Drivers\CSN5PDTS82.sys [28184 2010-05-20] (Colasoft Co., Ltd.) R2 DgiVecp; C:\WINDOWS\system32\Drivers\DgiVecp.sys [41984 2005-03-14] (DeviceGuys, Inc.) S3 EL90X; C:\WINDOWS\System32\DRIVERS\el90xnd5.sys [153631 2001-08-17] (3Com Corporation) S3 FETNDIS; C:\WINDOWS\System32\DRIVERS\fetnd5.sys [27165 2001-08-17] (VIA Technologies, Inc. ) R3 FETNDISB; C:\WINDOWS\System32\DRIVERS\fetnd5b.sys [42496 2004-04-15] (VIA Technologies, Inc. ) R0 giveio; C:\WINDOWS\System32\giveio.sys [5248 1996-04-03] () R0 KL1; C:\WINDOWS\System32\DRIVERS\kl1.sys [135776 2014-06-11] (Kaspersky Lab ZAO) R1 KLIF; C:\WINDOWS\System32\DRIVERS\klif.sys [483936 2014-06-11] (Kaspersky Lab ZAO) S3 ms_mpu401; C:\WINDOWS\System32\drivers\msmpu401.sys [2944 2001-08-17] (Microsoft Corporation) R3 RT73; C:\WINDOWS\System32\DRIVERS\rt73.sys [465152 2008-10-21] (Ralink Technology, Corp.) R0 speedfan; C:\WINDOWS\System32\speedfan.sys [24184 2012-12-29] (Almico Software) S3 SWDUMon; C:\WINDOWS\System32\DRIVERS\SWDUMon.sys [12984 2011-12-16] () S3 uac4pdt; C:\WINDOWS\System32\DRIVERS\uac4pdt.sys [15232 2005-12-12] (Micronas GmbH) R3 viagfx; C:\WINDOWS\System32\DRIVERS\vtmini.sys [296960 2009-11-10] (Copyright (C) VIA/S3 Graphics Co, Ltd.) R0 videX32; C:\WINDOWS\System32\DRIVERS\videX32.sys [13976 2010-02-11] (VIA Technologies, Inc.) U5 klflt; C:\Windows\System32\Drivers\klflt.sys [74336 2014-06-11] (Kaspersky Lab ZAO) U5 ScsiPort; C:\WINDOWS\system32\drivers\scsiport.sys [96384 2008-04-14] (Microsoft Corporation) U5 Tcpip6; C:\Windows\System32\Drivers\Tcpip6.sys [225664 2008-04-14] (Microsoft Corporation) S2 ZDPSp50; System32\Drivers\ZDPSp50.sys [X] ========================== Drivers MD5 ======================= C:\WINDOWS\System32\DRIVERS\ABP480N5.SYS 6ABB91494FE6C59089B9336452AB2EA3 C:\WINDOWS\System32\DRIVERS\ACPI.sys 8FD99680A539792A30E97944FDAECF17 C:\WINDOWS\system32\Drivers\ACPIEC.sys 9859C0F6936E723E4892D7141B1327D5 C:\WINDOWS\System32\DRIVERS\adpu160m.sys 9A11864873DA202C996558B2106B0BBC C:\WINDOWS\System32\drivers\aec.sys 8BED39E3C35D6A489438B8141717A557 C:\WINDOWS\System32\DRIVERS\AegisP.sys 023867B6606FBABCDD52E089C4A507DA C:\WINDOWS\System32\drivers\afd.sys 322D0E36693D6E24A2398BEE62A268CD C:\WINDOWS\System32\DRIVERS\agpCPQ.sys 03A7E0922ACFE1B07D5DB2EEB0773063 C:\WINDOWS\System32\DRIVERS\aha154x.sys C23EA9B5F46C7F7910DB3EAB648FF013 C:\WINDOWS\System32\DRIVERS\aic78u2.sys 19DD0FB48B0C18892F70E2E7D61A1529 C:\WINDOWS\System32\DRIVERS\aic78xx.sys B7FE594A7468AA0132DEB03FB8E34326 C:\WINDOWS\System32\drivers\ALCXWDM.SYS DD8520280304B6145A6BE31008748C7C C:\WINDOWS\System32\DRIVERS\aliide.sys 1140AB9938809700B46BB88E46D72A96 C:\WINDOWS\System32\DRIVERS\alim1541.sys CB08AED0DE2DD889A8A820CD8082D83C C:\WINDOWS\System32\DRIVERS\amdagp.sys 95B4FB835E28AA1336CEEB07FD5B9398 C:\WINDOWS\System32\DRIVERS\amsint.sys 79F5ADD8D24BD6893F2903A3E2F3FAD6 C:\WINDOWS\System32\DRIVERS\athuw.sys 8E2257584B2C52D44B4CB1949947D885 C:\WINDOWS\System32\DRIVERS\asc.sys 62D318E9A0C8FC9B780008E724283707 C:\WINDOWS\System32\DRIVERS\asc3350p.sys 69EB0CC7714B32896CCBFD5EDCBEA447 C:\WINDOWS\System32\DRIVERS\asc3550.sys 5D8DE112AA0254B907861E9E9C31D597 C:\WINDOWS\System32\DRIVERS\asyncmac.sys B153AFFAC761E7F5FCFA822B9C4E97BC C:\WINDOWS\System32\DRIVERS\atapi.sys 9F3A2F5AA6875C72BF062C712CFA2674 C:\WINDOWS\System32\DRIVERS\atmarpc.sys 9916C1225104BA14794209CFA8012159 C:\WINDOWS\System32\DRIVERS\audstub.sys D9F724AA26C010A217C97606B160ED68 C:\WINDOWS\system32\Drivers\Beep.sys DA1F27D85E0D1525F6621372E7B685E9 C:\WINDOWS\System32\DRIVERS\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9 C:\WINDOWS\system32\Drivers\cbidf2k.sys 90A673FC8E12A79AFBED2576F6A7AAF9 C:\WINDOWS\System32\DRIVERS\cd20xrnt.sys F3EC03299634490E97BBCE94CD2954C7 C:\WINDOWS\system32\Drivers\Cdaudio.sys C1B486A7658353D33A10CC15211A873B C:\WINDOWS\system32\Drivers\Cdfs.sys C885B02847F5D2FD45A24E219ED93B32 C:\WINDOWS\system32\Drivers\Cdr4_xp.sys 44A3774E1CFC72C71B044BE54BEC588C C:\WINDOWS\system32\Drivers\Cdralw2k.sys E0CF12DE9723109B15BD89845E36C8BB C:\WINDOWS\System32\DRIVERS\cdrom.sys 1F4260CC5B42272D71F79E570A27A4FE C:\WINDOWS\System32\DRIVERS\cmdide.sys E5DCB56C533014ECBC556A8357C929D5 C:\WINDOWS\System32\DRIVERS\cpqarray.sys 3EE529119EED34CD212A215E8C40D4B6 C:\WINDOWS\System32\Drivers\CSN5PDTS82.sys 89CA27ED0EBD13FB0FF00DDCD5B48C39 C:\WINDOWS\System32\DRIVERS\dac2w2k.sys E550E7418984B65A78299D248F0A7F36 C:\WINDOWS\System32\DRIVERS\dac960nt.sys 683789CAA3864EB46125AE86FF677D34 C:\WINDOWS\system32\Drivers\DgiVecp.sys A5034F77B278F07E224FE07CF98A8B76 C:\WINDOWS\System32\DRIVERS\disk.sys 044452051F3E02E7963599FC8F4F3E25 C:\WINDOWS\System32\drivers\dmboot.sys D992FE1274BDE0F84AD826ACAE022A41 C:\WINDOWS\System32\drivers\dmio.sys 7C824CF7BBDE77D95C08005717A95F6F C:\WINDOWS\System32\drivers\dmload.sys E9317282A63CA4D188C0DF5E09C6AC5F C:\WINDOWS\System32\drivers\DMusic.sys 8A208DFCF89792A484E76C40E5F50B45 C:\WINDOWS\System32\DRIVERS\dpti2o.sys 40F3B93B4E5B0126F2F5C0A7A5E22660 C:\WINDOWS\System32\drivers\drmkaud.sys 8F5FCFF8E8848AFAC920905FBD9D33C8 C:\WINDOWS\system32\Drivers\DrvAgent32.sys 651554E483712B708EDE864D0CA1AA73 C:\WINDOWS\System32\DRIVERS\el90xnd5.sys 653394706FF5634F4B5180B8294BADB1 C:\WINDOWS\system32\Drivers\Fastfat.sys 38D332A6D56AF32635675F132548343E C:\WINDOWS\System32\DRIVERS\fdc.sys 92CDD60B6730B9F50F6A1A0C1F8CDC81 C:\WINDOWS\System32\DRIVERS\fetnd5.sys E9648254056BCE81A85380C0C3647DC4 C:\WINDOWS\System32\DRIVERS\fetnd5b.sys A583BC166495B07F704533754CE29CBD C:\WINDOWS\system32\Drivers\Fips.sys D45926117EB9FA946A6AF572FBE1CAA3 C:\WINDOWS\System32\DRIVERS\flpydisk.sys 9D27E7B80BFCDF1CDD9B555862D5E7F0 C:\WINDOWS\System32\drivers\fltmgr.sys B2CF4B0786F8212CB92ED2B50C6DB6B0 C:\WINDOWS\system32\Drivers\Fs_Rec.sys 3E1E2BD4F39B0E2B7DC4F4D2BCC2779A C:\WINDOWS\System32\DRIVERS\ftdisk.sys 6AC26732762483366C3969C9E4D2259D C:\WINDOWS\System32\giveio.sys 77EBF3E9386DAA51551AF429052D88D0 C:\WINDOWS\System32\DRIVERS\msgpc.sys 0A02C63C8B144BD8C86B103DEE7C86A2 C:\WINDOWS\System32\DRIVERS\hidusb.sys CCF82C5EC8A7326C3066DE870C06DAF1 C:\WINDOWS\System32\DRIVERS\hpn.sys B028377DEA0546A5FCFBA928A8AEFAE0 C:\WINDOWS\System32\Drivers\HTTP.sys F6AACF5BCE2893E0C1754AFEB672E5C9 C:\WINDOWS\system32\Drivers\i2omgmt.sys 9368670BD426EBEA5E8B18A62416EC28 C:\WINDOWS\System32\DRIVERS\i2omp.sys F10863BF1CCC290BABD1A09188AE49E0 C:\WINDOWS\System32\DRIVERS\i8042prt.sys 4A0B06AA8943C1E332520F7440C0AA30 C:\WINDOWS\System32\DRIVERS\imapi.sys 083A052659F5310DD8B6A6CB05EDCF8E C:\WINDOWS\System32\DRIVERS\ini910u.sys 4A40E045FAEE58631FD8D91AFC620719 C:\WINDOWS\System32\DRIVERS\intelide.sys B5466A9250342A7AA0CD1FBA13420678 C:\WINDOWS\System32\DRIVERS\intelppm.sys 8C953733D8F36EB2133F5BB58808B66B C:\WINDOWS\System32\drivers\ip6fw.sys 3BB22519A194418D5FEC05D800A19AD0 C:\WINDOWS\System32\DRIVERS\ipfltdrv.sys 731F22BA402EE4B62748ADAF6363C182 C:\WINDOWS\System32\DRIVERS\ipinip.sys B87AB476DCF76E72010632B5550955F5 C:\WINDOWS\System32\DRIVERS\ipnat.sys CC748EA12C6EFFDE940EE98098BF96BB C:\WINDOWS\System32\DRIVERS\ipsec.sys 23C74D75E36E7158768DD63D92789A91 C:\WINDOWS\System32\DRIVERS\irenum.sys C93C9FF7B04D772627A3646D89F7BF89 C:\WINDOWS\System32\DRIVERS\isapnp.sys 05A299EC56E52649B1CF2FC52D20F2D7 C:\WINDOWS\System32\DRIVERS\kbdclass.sys 463C1EC80CD17420A542B7F36A36F128 C:\WINDOWS\System32\DRIVERS\kbdhid.sys 9EF487A186DEA361AA06913A75B3FA99 C:\WINDOWS\System32\DRIVERS\kl1.sys 2AD446E7A867C48099227415DD66FB34 C:\WINDOWS\System32\DRIVERS\klif.sys 2A7A628CF5F2B255A8D82BF897903B89 C:\WINDOWS\System32\drivers\kmixer.sys 692BCF44383D056AED41B045A323D378 C:\WINDOWS\system32\Drivers\KSecDD.sys 1705745D900DABF2D89F90EBADDC7517 C:\WINDOWS\system32\Drivers\mnmdd.sys 4AE068242760A1FB6E1A44BF4E16AFA6 C:\WINDOWS\system32\Drivers\Modem.sys DFCBAD3CEC1C5F964962AE10E0BCC8E1 C:\WINDOWS\System32\DRIVERS\mouclass.sys 35C9E97194C8CFB8430125F8DBC34D04 C:\WINDOWS\System32\DRIVERS\mouhid.sys B1C303E17FB9D46E87A98E4BA6769685 C:\WINDOWS\system32\Drivers\MountMgr.sys A80B9A0BAD1B73637DBCBBA7DF72D3FD C:\WINDOWS\System32\DRIVERS\mraid35x.sys 3F4BB95E5A44F3BE34824E8E7CAF0737 C:\WINDOWS\System32\DRIVERS\mrxdav.sys 11D42BB6206F33FBB3BA0288D3EF81BD C:\WINDOWS\System32\DRIVERS\mrxsmb.sys 68755F0FF16070178B54674FE5B847B0 C:\WINDOWS\system32\Drivers\Msfs.sys C941EA2454BA8350021D774DAF0F1027 C:\WINDOWS\System32\drivers\MSKSSRV.sys D1575E71568F4D9E14CA56B7B0453BF1 C:\WINDOWS\System32\drivers\MSPCLOCK.sys 325BB26842FC7CCC1FCCE2C457317F3E C:\WINDOWS\System32\drivers\MSPQM.sys BAD59648BA099DA4A17680B39730CB3D C:\WINDOWS\System32\DRIVERS\mssmbios.sys AF5F4F3F14A8EA2C26DE30F7A1E17136 C:\WINDOWS\System32\drivers\msmpu401.sys CA3E22598F411199ADC2DFEE76CD0AE0 C:\WINDOWS\system32\Drivers\Mup.sys 2F625D11385B1A94360BFC70AAEFDEE1 C:\WINDOWS\system32\Drivers\NDIS.sys 1DF7F42665C94B825322FAE71721130D C:\WINDOWS\System32\DRIVERS\ndistapi.sys 1AB3D00C991AB086E69DB84B6C0ED78F C:\WINDOWS\System32\DRIVERS\ndisuio.sys F927A4434C5028758A842943EF1A3849 C:\WINDOWS\System32\DRIVERS\ndiswan.sys EDC1531A49C80614B2CFDA43CA8659AB C:\WINDOWS\system32\Drivers\NDProxy.sys 6215023940CFD3702B46ABC304E1D45A C:\WINDOWS\System32\DRIVERS\netbios.sys 5D81CF9A2F1A3A756B66CF684911CDF0 C:\WINDOWS\System32\DRIVERS\netbt.sys 74B2B2F5BEA5E9A3DC021D685551BD3D C:\WINDOWS\system32\Drivers\Npfs.sys 3182D64AE053D6FB034F44B6DEF8034A C:\WINDOWS\system32\Drivers\Ntfs.sys 78A08DD6A8D65E697C18E1DB01C5CDCA C:\WINDOWS\system32\Drivers\Null.sys 73C1E1F395918BC2C6DD67AF7591A3AD C:\WINDOWS\System32\DRIVERS\nwlnkflt.sys B305F3FAD35083837EF46A0BBCE2FC57 C:\WINDOWS\System32\DRIVERS\nwlnkfwd.sys C99B3415198D1AAB7227F2C88FD664B9 C:\WINDOWS\System32\DRIVERS\parport.sys 5575FAF8F97CE5E713D108C2A58D7C7C C:\WINDOWS\system32\Drivers\PartMgr.sys BEB3BA25197665D82EC7065B724171C6 C:\WINDOWS\system32\Drivers\ParVdm.sys 70E98B3FD8E963A6A46A2E6247E0BEA1 C:\WINDOWS\System32\DRIVERS\pci.sys A219903CCF74233761D92BEF471A07B1 C:\WINDOWS\System32\DRIVERS\pciide.sys CCF5F451BB1A5A2A522A76E670000FF0 C:\WINDOWS\system32\Drivers\Pcmcia.sys 9E89EF60E9EE05E3F2EEF2DA7397F1C1 C:\WINDOWS\System32\DRIVERS\perc2.sys 6C14B9C19BA84F73D3A86DBA11133101 C:\WINDOWS\System32\DRIVERS\perc2hib.sys F50F7C27F131AFE7BEBA13E14A3B9416 C:\WINDOWS\System32\DRIVERS\raspptp.sys EFEEC01B1D3CF84F16DDD24D9D9D8F99 C:\WINDOWS\System32\DRIVERS\ptilink.sys 80D317BD1C3DBC5D4FE7B1678C60CADD C:\WINDOWS\System32\DRIVERS\ql1080.sys 0A63FB54039EB5662433CABA3B26DBA7 C:\WINDOWS\System32\DRIVERS\ql10wnt.sys 6503449E1D43A0FF0201AD5CB1B8C706 C:\WINDOWS\System32\DRIVERS\ql12160.sys 156ED0EF20C15114CA097A34A30D8A01 C:\WINDOWS\System32\DRIVERS\ql1240.sys 70F016BEBDE6D29E864C1230A07CC5E6 C:\WINDOWS\System32\DRIVERS\ql1280.sys 907F0AEEA6BC451011611E732BD31FCF C:\WINDOWS\System32\DRIVERS\rasacd.sys FE0D99D6F31E4FAD8159F690D68DED9C C:\WINDOWS\System32\DRIVERS\rasl2tp.sys 11B4A627BC9614B885C4969BFA5FF8A6 C:\WINDOWS\System32\DRIVERS\raspppoe.sys 5BC962F2654137C9909C3D4603587DEE C:\WINDOWS\System32\DRIVERS\raspti.sys FDBB1D60066FCFBB7452FD8F9829B242 C:\WINDOWS\System32\DRIVERS\rdbss.sys 7AD224AD1A1437FE28D89CF22B17780A C:\WINDOWS\System32\DRIVERS\RDPCDD.sys 4912D5B403614CE99C28420F75353332 C:\WINDOWS\System32\DRIVERS\rdpdr.sys 15CABD0F7C00C47C70124907916AF3F1 C:\WINDOWS\system32\Drivers\RDPWD.sys 6728E45B66F93C08F11DE2E316FC70DD C:\WINDOWS\System32\DRIVERS\redbook.sys F828DD7E1419B6653894A8F97A0094C5 C:\WINDOWS\System32\DRIVERS\rt73.sys D40E3CEC0813F6B812BB556F809DEE49 C:\WINDOWS\System32\DRIVERS\secdrv.sys ==> MD5 is legit C:\WINDOWS\System32\DRIVERS\serenum.sys 0F29512CCD6BEAD730039FB4BD2C85CE C:\WINDOWS\System32\DRIVERS\serial.sys CCA207A8896D4C6A0C9CE29A4AE411A7 C:\WINDOWS\System32\DRIVERS\sfloppy.sys 8E6B8C671615D126FDC553D1E2DE5562 C:\WINDOWS\System32\DRIVERS\sparrow.sys 83C0F71F86D3BDAF915685F3D568B20E C:\WINDOWS\System32\speedfan.sys DC8D2952FB6FFBAEC67BD1B93A34DF11 C:\WINDOWS\System32\drivers\splitter.sys AB8B92451ECB048A4D1DE7C3FFCB4A9F C:\WINDOWS\System32\DRIVERS\sr.sys 76BB022C2FB6902FD5BDD4F78FC13A5D C:\WINDOWS\System32\DRIVERS\srv.sys 5252605079810904E31C332E241CD59B C:\WINDOWS\System32\DRIVERS\SWDUMon.sys 62F0888F8E04FF8CA18C284237F2E447 C:\WINDOWS\System32\DRIVERS\swenum.sys 3941D127AEF12E93ADDF6FE6EE027E0F C:\WINDOWS\System32\drivers\swmidi.sys 8CE882BCC6CF8A62F2B2323D95CB3D01 C:\WINDOWS\System32\DRIVERS\symc810.sys 1FF3217614018630D0A6758630FC698C C:\WINDOWS\System32\DRIVERS\symc8xx.sys 070E001D95CF725186EF8B20335F933C C:\WINDOWS\System32\DRIVERS\sym_hi.sys 80AC1C4ABBE2DF3B738BF15517A51F2C C:\WINDOWS\System32\DRIVERS\sym_u3.sys BF4FAB949A382A8E105F46EBB4937058 C:\WINDOWS\System32\drivers\sysaudio.sys 8B83F3ED0F1688B4958F77CD6D2BF290 C:\WINDOWS\System32\DRIVERS\tcpip.sys 93EA8D04EC73A85DB02EB8805988F733 C:\WINDOWS\system32\Drivers\TDPIPE.sys 6471A66807F5E104E4885F5B67349397 C:\WINDOWS\system32\Drivers\TDTCP.sys C56B6D0402371CF3700EB322EF3AAF61 C:\WINDOWS\System32\DRIVERS\termdd.sys 88155247177638048422893737429D9E C:\WINDOWS\System32\DRIVERS\toside.sys F2790F6AF01321B172AA62F8E1E187D9 C:\WINDOWS\System32\DRIVERS\uac4pdt.sys 81713EB831FA8A79126141C6C1E4E9F9 C:\WINDOWS\System32\DRIVERS\uagp35.sys D85938F272D1BCF3DB3A31FC0A048928 C:\WINDOWS\system32\Drivers\Udfs.sys 5787B80C2E3C5E2F56C2A233D91FA2C9 C:\WINDOWS\System32\DRIVERS\ultra.sys 1B698A51CD528D8DA4FFAED66DFC51B9 C:\WINDOWS\System32\DRIVERS\update.sys 402DDC88356B1BAC0EE3DD1580C76A31 C:\WINDOWS\System32\drivers\usbaudio.sys E919708DB44ED8543A7C017953148330 C:\WINDOWS\System32\DRIVERS\usbccgp.sys 173F317CE0DB8E21322E71B7E60A27E8 C:\WINDOWS\System32\DRIVERS\usbehci.sys 65DCF09D0E37D4C6B11B5B0B76D470A7 C:\WINDOWS\System32\DRIVERS\usbhub.sys 1AB3CDDE553B6E064D2E754EFE20285C C:\WINDOWS\System32\DRIVERS\usbprint.sys A717C8721046828520C9EDF31288FC00 C:\WINDOWS\System32\DRIVERS\USBSTOR.SYS A32426D9B14A089EAA1D922E0C5801A9 C:\WINDOWS\System32\DRIVERS\usbuhci.sys 26496F9DEE2D787FC3E61AD54821FFE6 C:\WINDOWS\System32\drivers\vga.sys 0D3A8FAFCEACD8B7625CD549757A7DF1 C:\WINDOWS\System32\DRIVERS\viaagp.sys 754292CE5848B3738281B4F3607EAEF4 C:\WINDOWS\System32\DRIVERS\vtmini.sys 6DCF1FE651984EF808844E19F22DF1FA C:\WINDOWS\System32\DRIVERS\viaide.sys 3B3EFCDA263B8AC14FDF9CBDD0791B2E C:\WINDOWS\System32\DRIVERS\videX32.sys C147AFA614B9925479D47CD173329789 C:\WINDOWS\system32\Drivers\VolSnap.sys 4C8FCB5CC53AAB716D810740FE59D025 C:\WINDOWS\System32\DRIVERS\wanarp.sys E20B95BAEDB550F32DD489265C1DA1F6 C:\WINDOWS\System32\Drivers\wdf01000.sys D918617B46457B9AC28027722E30F647 C:\WINDOWS\System32\drivers\wdmaud.sys 6768ACF64B18196494413695F0C3A00F C:\WINDOWS\System32\DRIVERS\WinUSB.sys 30FC6E5448D0CBAAA95280EEEF7FEDAE C:\WINDOWS\System32\Drivers\wpdusb.sys C1B3D9D75C3FB735F5FA3A5806ADED57 ==================== NetSvcs (Whitelisted) =================== (If an item is included in the fixlist, it will be removed from the registry. Any associated file could be listed separately to be moved.) ==================== One Month Created Files and Folders ======== (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-07 13:40 - 2014-09-29 18:19 - 01100288 _____ (Farbar) C:\Program Files\FRST.exe 2014-10-05 20:56 - 2014-10-05 20:56 - 00000041 _____ () C:\WINDOWS\setupact.log 2014-10-05 20:56 - 2014-10-05 20:56 - 00000000 _____ () C:\WINDOWS\setuperr.log 2014-10-04 18:45 - 2014-10-04 18:45 - 00001864 _____ () C:\Documents and Settings\All Users\Desktop\TL-WN321G Wireless Utility.lnk 2014-10-04 18:45 - 2014-10-04 18:45 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TP-LINK 2014-10-04 18:45 - 2014-10-04 18:45 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\TP-LINK Driver 2014-10-04 18:45 - 2008-10-21 11:16 - 00465152 _____ (Ralink Technology, Corp.) C:\WINDOWS\system32\Drivers\rt73.sys 2014-10-04 18:13 - 2014-10-04 18:35 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\CoStmin 2014-10-04 18:13 - 2014-10-04 18:30 - 00000000 ____D () C:\Program Files\CoStmin 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Google 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Comodo 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0\Local Settings\Application Data\Chromatic Browser 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\SUPPORT_388945a0 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Chromatic Browser 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Google 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Comodo 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\HelpAssistant\Local Settings\Application Data\Chromatic Browser 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\HelpAssistant 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Google 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Comodo 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Guest\Local Settings\Application Data\Chromatic Browser 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Guest 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Google 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Comodo 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\ASPNET\Local Settings\Application Data\Chromatic Browser 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\ASPNET 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\dad4c07ce57f4fbd 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Torch 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Google 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Comodo 2014-10-04 18:13 - 2014-10-04 18:13 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Chromatic Browser 2014-10-04 17:37 - 2014-10-04 17:37 - 00000000 ____D () C:\WINDOWS\{9CA05E9B-68D2-4EEC-8569-8C474416B082} 2014-10-04 15:17 - 2014-06-11 10:09 - 00483936 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klif.sys 2014-10-04 15:17 - 2014-06-11 10:09 - 00135776 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\kl1.sys 2014-10-04 15:17 - 2014-06-11 10:09 - 00074336 _____ (Kaspersky Lab ZAO) C:\WINDOWS\system32\Drivers\klflt.sys 2014-10-04 15:07 - 2014-10-04 15:07 - 00093016 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\FontCache3.0.0.0.dat 2014-10-04 15:06 - 2014-10-04 15:13 - 00002016 _____ () C:\WINDOWS\spupdsvc.log 2014-10-04 15:06 - 2014-10-04 15:07 - 00000000 ____D () C:\98230073425ccf9e81 2014-10-04 15:06 - 2014-10-04 15:06 - 00000532 _____ () C:\WINDOWS\updspapi.log 2014-10-04 14:58 - 2014-10-04 14:58 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\CheckPoint 2014-10-04 14:39 - 2014-10-05 20:56 - 00029535 _____ () C:\WINDOWS\setupapi.log 2014-10-04 14:11 - 2014-10-04 14:11 - 00000000 ____D () C:\WINDOWS\system32\LogFiles 2014-10-03 23:41 - 2014-10-05 17:34 - 00000216 _____ () C:\WINDOWS\wiadebug.log 2014-10-03 23:41 - 2014-10-05 17:10 - 00000050 _____ () C:\WINDOWS\wiaservc.log 2014-10-03 23:41 - 2014-10-03 23:41 - 00000000 _____ () C:\WINDOWS\Sti_Trace.log 2014-10-03 20:06 - 2014-10-03 20:07 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\WiseUpdate 2014-10-03 19:38 - 2014-10-03 20:00 - 00000000 ____D () C:\Program Files\SupTab 2014-10-03 19:38 - 2014-10-03 19:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\WindowsMangerProtect 2014-10-03 19:38 - 2014-10-03 19:38 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\IePluginServices 2014-10-03 19:37 - 2014-10-03 19:41 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\sweet-page 2014-10-03 18:31 - 2014-10-03 19:41 - 00000767 _____ () C:\Documents and Settings\Rupert Legge\Start Menu\Programs\Internet Explorer.lnk 2014-10-03 18:29 - 2014-10-03 18:29 - 00000090 _____ () C:\WINDOWS\system32\spupdwxp.log 2014-10-03 18:25 - 2008-04-14 05:42 - 01737856 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\mtxparhd.dll 2014-10-03 18:25 - 2008-04-14 05:42 - 01306624 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6.dll 2014-10-03 18:25 - 2008-04-14 05:42 - 00193024 ____N (Microsoft Corporation) C:\WINDOWS\system32\napmontr.dll 2014-10-03 18:25 - 2008-04-14 05:42 - 00176640 ____N (Microsoft Corporation) C:\WINDOWS\system32\napstat.exe 2014-10-03 18:25 - 2008-04-14 05:42 - 00155136 ____N (Microsoft Corporation) C:\WINDOWS\system32\mssha.dll 2014-10-03 18:25 - 2008-04-14 05:42 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcperf.exe 2014-10-03 18:25 - 2008-04-14 05:42 - 00030208 ____N (Microsoft Corporation) C:\WINDOWS\system32\napipsec.dll 2014-10-03 18:25 - 2008-04-14 05:42 - 00023040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativmvxx.ax 2014-10-03 18:25 - 2008-04-14 05:42 - 00009728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativdaxx.ax 2014-10-03 18:25 - 2008-04-14 05:41 - 01888992 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3duag.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00870784 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ati3d1ag.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00650752 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3ui.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00516768 ____N (ATI Technologies Inc. ) C:\WINDOWS\system32\ativvaxx.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00397312 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcex.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00377984 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvaa.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00233472 ____N (Microsoft Corporation) C:\WINDOWS\system32\azroles.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00229376 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2cqag.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00201728 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ati2dvag.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00184832 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapp3hst.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00184320 ____N (Microsoft Corporation) C:\WINDOWS\system32\microsoft.managementconsole.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00180224 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapphost.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00136192 ____N (Microsoft Corporation) C:\WINDOWS\system32\aaclient.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00132096 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3svc.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00126976 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappcfg.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00106496 ____N (Microsoft Corporation) C:\WINDOWS\system32\mmcfxcommon.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00094208 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappgnui.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00086016 ____N (Conexant) C:\WINDOWS\system32\mdmxsdk.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00061440 ____N (Microsoft Corporation) C:\WINDOWS\system32\kmsvc.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00059392 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapqec.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00057856 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3cfg.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00056320 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3msm.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00048640 ____N (Microsoft Corporation) C:\WINDOWS\system32\dhcpqec.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00040960 ____N (Microsoft Corporation) C:\WINDOWS\system32\eappprxy.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3gpclnt.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00039936 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsroam.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00037376 ____N (Microsoft Corporation) C:\WINDOWS\system32\l2gpstore.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00033792 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapsvc.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00032768 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\ativtmxx.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00032285 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\hsfcisp2.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00030720 ____N (Microsoft Corporation) C:\WINDOWS\system32\eapolqec.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00026112 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3api.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00019456 ____N (Microsoft Corporation) C:\WINDOWS\system32\dimsntfy.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\credssp.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00009216 ____N (Microsoft Corporation) C:\WINDOWS\system32\dot3dlg.dll 2014-10-03 18:25 - 2008-04-14 05:41 - 00007168 ____N (Microsoft Corporation) C:\WINDOWS\system32\bitsprx4.dll 2014-10-03 18:25 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdpash.dll 2014-10-03 18:25 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdnepr.dll 2014-10-03 18:25 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdiultn.dll 2014-10-03 18:25 - 2008-04-14 05:39 - 00006144 ____N (Microsoft Corporation) C:\WINDOWS\system32\kbdbhc.dll 2014-10-03 18:25 - 2008-04-13 23:45 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\msshavmsg.dll 2014-10-03 18:25 - 2008-04-13 22:57 - 00079872 ____C (Microsoft Corporation) C:\WINDOWS\system32\dllcache\msxml6r.dll 2014-10-03 18:24 - 2014-10-03 18:24 - 00000000 ____D () C:\WINDOWS\system32\scripting 2014-10-03 18:24 - 2014-10-03 18:24 - 00000000 ____D () C:\WINDOWS\system32\bits 2014-10-03 18:24 - 2014-10-03 18:24 - 00000000 ____D () C:\WINDOWS\l2schemas 2014-10-03 18:24 - 2008-04-14 05:42 - 04274816 ____N (NVIDIA Corporation) C:\WINDOWS\system32\nv4_disp.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00397056 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\s3gnb.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00291328 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagentrt.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00290304 ____N (Microsoft Corporation) C:\WINDOWS\system32\rhttpaa.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00286792 ____N (Smart Link) C:\WINDOWS\system32\slextspk.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00188508 ____N (Smart Link) C:\WINDOWS\system32\slgen.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00150528 ____N (Microsoft Corporation) C:\WINDOWS\system32\qagent.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00144384 ____N (Microsoft Corporation) C:\WINDOWS\system32\onex.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00076800 ____N (Microsoft Corporation) C:\WINDOWS\system32\qutil.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00073832 ____N (Smart Link) C:\WINDOWS\system32\slcoinst.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00073796 ____N (Smart Link) C:\WINDOWS\system32\slserv.exe 2014-10-03 18:24 - 2008-04-14 05:42 - 00069120 ____N (Microsoft Corporation) C:\WINDOWS\system32\wlanapi.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00062464 ____N (Microsoft Corporation) C:\WINDOWS\system32\qcliprov.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00061952 ____N (Microsoft Corporation) C:\WINDOWS\system32\rasqec.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00060416 ____N (Microsoft Corporation) C:\WINDOWS\system32\tzchange.exe 2014-10-03 18:24 - 2008-04-14 05:42 - 00053248 ____N (Microsoft Corporation) C:\WINDOWS\system32\tsgqec.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00050688 ____N (Microsoft Corporation) C:\WINDOWS\system32\tspkg.dll 2014-10-03 18:24 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\system32\slrundll.exe 2014-10-03 18:24 - 2008-04-14 05:42 - 00032866 ____N (Smart Link) C:\WINDOWS\slrundll.exe 2014-10-03 18:24 - 2008-04-14 05:42 - 00032768 ____N (Microsoft Corporation) C:\WINDOWS\system32\setupn.exe 2014-10-03 18:24 - 2008-04-14 05:42 - 00028672 ____N (Microsoft Corporation) C:\WINDOWS\system32\vidcap.ax 2014-10-03 18:23 - 2014-10-03 18:23 - 00000000 ____D () C:\WINDOWS\ServicePackFiles 2014-10-03 18:21 - 2008-04-14 05:42 - 00011325 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\vchnt5.dll 2014-10-03 18:21 - 2008-04-14 05:42 - 00003901 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\siint5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv04nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00021183 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv01nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00017279 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv10nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00015423 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\ch7xxnt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00014143 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv06nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00011359 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\atv02nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00004255 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv01nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003967 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv02nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003775 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv11nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003711 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv09nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003647 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv07nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003615 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv05nt5.dll 2014-10-03 18:21 - 2008-04-14 05:41 - 00003135 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\adv08nt5.dll 2014-10-03 18:21 - 2008-04-14 00:26 - 00030592 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rndismpx.sys 2014-10-03 18:21 - 2008-04-14 00:26 - 00012800 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usb8023x.sys 2014-10-03 18:21 - 2008-04-14 00:21 - 00101120 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthpan.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00273024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthport.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00121984 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\usbvideo.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00059136 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\rfcomm.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00037888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthmodem.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00036480 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthprint.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00025600 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidbth.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00018944 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthusb.sys 2014-10-03 18:21 - 2008-04-14 00:16 - 00017024 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\bthenum.sys 2014-10-03 18:21 - 2008-04-14 00:15 - 00019200 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\hidir.sys 2014-10-03 18:21 - 2008-04-14 00:13 - 00014208 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\wacompen.sys 2014-10-03 18:21 - 2008-04-14 00:13 - 00012672 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\mutohpen.sys 2014-10-03 18:21 - 2008-04-14 00:10 - 00010240 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\sffp_mmc.sys 2014-10-03 18:21 - 2008-04-14 00:06 - 00046464 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\gagp30kx.sys 2014-10-03 18:21 - 2008-04-14 00:06 - 00005888 ____N (Microsoft Corporation) C:\WINDOWS\system32\Drivers\smbali.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 01309184 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlstrm.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 01041536 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfdpsp2.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00685056 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfcxts2.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00404990 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slntamr.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00220032 ____N (Conexant Systems, Inc.) C:\WINDOWS\system32\Drivers\hsfbs2s2.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00180360 ____N (Smart Link) C:\WINDOWS\system32\Drivers\ntmtlfax.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00129535 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnt7554.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00126686 ____N (Smart Link) C:\WINDOWS\system32\Drivers\mtlmnt5.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00095424 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slnthal.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00013776 ____N (Smart Link) C:\WINDOWS\system32\Drivers\recagent.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00013240 ____N (Smart Link) C:\WINDOWS\system32\Drivers\slwdmsup.sys 2014-10-03 18:21 - 2008-04-13 23:53 - 00011868 ____N (Conexant) C:\WINDOWS\system32\Drivers\mdmxsdk.sys 2014-10-03 18:21 - 2008-04-13 22:06 - 00144384 ____N (Windows (R) Server 2003 DDK provider) C:\WINDOWS\system32\Drivers\hdaudbus.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 01897408 ____N (NVIDIA Corporation) C:\WINDOWS\system32\Drivers\nv4_mini.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00701440 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtag.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00452736 ____N (Matrox Graphics Inc.) C:\WINDOWS\system32\Drivers\mtxparhm.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00327040 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati2mtaa.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00166912 ____N (S3 Graphics, Inc.) C:\WINDOWS\system32\Drivers\s3gnbm.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00104960 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinrvxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00073216 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atintuxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00063663 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1rvxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00063488 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxsxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00057856 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinbtxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00056623 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1btxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00052224 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinraxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00036463 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1tuxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00034735 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xsxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00031744 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinxbxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00030671 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1raxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00029455 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1xbxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00028672 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinsnxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00026367 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1snxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00025471 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv10nt.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00022271 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\watv06nt.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00021343 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1ttxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00014336 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinpdxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinttxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00013824 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\atinmdxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00012047 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1pdxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00011935 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv11nt.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00011871 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv09nt.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00011807 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv07nt.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00011615 ____N (ATI Technologies Inc.) C:\WINDOWS\system32\Drivers\ati1mdxx.sys 2014-10-03 18:21 - 2008-04-13 22:04 - 00011295 ____N (Intel(R) Corporation) C:\WINDOWS\system32\Drivers\wadv08nt.sys 2014-10-03 18:21 - 2007-04-02 21:36 - 00129045 ____N () C:\WINDOWS\system32\Drivers\cxthsfs2.cty 2014-10-03 18:21 - 2006-12-29 20:21 - 00064352 ____N () C:\WINDOWS\system32\Drivers\ativmc20.cod 2014-10-03 18:21 - 2006-12-29 20:02 - 00067866 ____N () C:\WINDOWS\system32\Drivers\netwlan5.img 2014-10-03 18:20 - 2006-12-29 00:31 - 00019569 _____ () C:\WINDOWS\002849_.tmp 2014-10-03 18:18 - 2014-10-03 18:20 - 00000000 __HDC () C:\WINDOWS\$NtServicePackUninstall$ 2014-10-03 17:47 - 2014-10-03 17:47 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\CrashRpt 2014-10-03 17:47 - 2014-10-03 17:47 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\WebExtend 2014-10-03 17:45 - 2014-10-03 17:45 - 01497060 _____ () C:\Program Files\wsusoffline72.zip 2014-10-02 17:07 - 2014-10-02 17:07 - 00000920 _____ () C:\Documents and Settings\Rupert Legge\My Documents\Wynik testu procka.TXT 2014-10-01 20:50 - 2014-10-01 20:47 - 00735496 _____ ( ) C:\Program Files\hot-cpu-tester-pro-4.4.1.exe 2014-10-01 18:59 - 2014-10-01 18:59 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\HD Tune Pro 2014-10-01 18:59 - 2014-10-01 18:52 - 02195900 _____ (EFD Software ) C:\Program Files\hdtunepro_550_trial.exe 2014-10-01 17:39 - 2001-08-17 12:11 - 00153631 ____C (3Com Corporation) C:\WINDOWS\system32\dllcache\el90xnd5.sys 2014-10-01 17:39 - 2001-08-17 12:11 - 00153631 _____ (3Com Corporation) C:\WINDOWS\system32\Drivers\el90xnd5.sys 2014-10-01 15:11 - 2014-10-02 08:58 - 00000000 ____D () C:\Program Files\SpeedFan 2014-10-01 15:11 - 2014-10-01 15:11 - 00000682 _____ () C:\Documents and Settings\Rupert Legge\Desktop\SpeedFan.lnk 2014-10-01 15:11 - 2014-10-01 15:11 - 00000045 _____ () C:\WINDOWS\system32\initdebug.nfo 2014-10-01 15:11 - 2014-10-01 15:11 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Start Menu\Programs\SpeedFan 2014-10-01 14:41 - 2014-10-01 14:40 - 00961360 _____ (Chip Digital GmbH) C:\Program Files\speedfan.exe.exe 2014-10-01 14:08 - 2014-10-01 14:20 - 00000000 ____D () C:\Program Files\MyPC Backup 2014-10-01 14:08 - 2014-10-01 14:08 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\RegClean Pro 2014-10-01 14:08 - 2014-08-29 17:02 - 00018248 _____ () C:\WINDOWS\system32\roboot.exe 2014-10-01 14:07 - 2014-10-01 14:06 - 00747456 _____ ( ) C:\Program Files\SpeedFan(13166)-dp.exe 2014-10-01 11:09 - 2014-10-01 11:29 - 00000000 ____D () C:\AdwCleaner 2014-09-30 21:40 - 2014-10-07 13:48 - 00082307 _____ () C:\WINDOWS\WindowsUpdate.log 2014-09-30 21:27 - 2014-09-30 21:30 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Wise Registry Cleaner 2014-09-30 21:26 - 2014-09-30 21:26 - 00000880 _____ () C:\Documents and Settings\All Users\Desktop\Wise Registry Cleaner.lnk 2014-09-30 21:26 - 2014-09-30 21:26 - 00000000 ____D () C:\Program Files\Wise 2014-09-30 21:26 - 2014-09-30 21:26 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\Wise Registry Cleaner 2014-09-30 21:11 - 2014-09-30 21:11 - 00000682 _____ () C:\Documents and Settings\All Users\Desktop\CCleaner.lnk 2014-09-30 21:11 - 2014-09-30 21:11 - 00000000 ____D () C:\Program Files\CCleaner 2014-09-30 21:11 - 2014-09-30 21:11 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\CCleaner 2014-09-30 21:07 - 2014-07-26 21:33 - 00977312 _____ (SlimWare Utilities, Inc.) C:\Program Files\SlimCleanerPlus-setup.exe 2014-09-30 21:07 - 2014-04-28 08:58 - 03224200 _____ (WiseCleaner.com ) C:\Program Files\WRCFree.exe 2014-09-30 21:06 - 2014-07-26 08:49 - 00683784 _____ ( ) C:\Program Files\Everything 1.2.1.371.exe 2014-09-30 20:37 - 2014-09-30 20:46 - 00000000 ____D () C:\Program Files\Common Files\Symantec Shared 2014-09-30 20:37 - 2014-09-30 20:37 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Norton 2014-09-30 20:29 - 2014-09-30 20:30 - 82837504 _____ () C:\Program Files\msert.exe.exe 2014-09-30 17:50 - 2014-09-30 17:50 - 00221505 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-S-1-5-21-1430662889-353329016-294800167-1007-0.dat 2014-09-30 17:50 - 2014-09-30 17:50 - 00136822 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\WPFFontCache_v0400-System.dat 2014-09-30 17:22 - 2014-09-30 17:22 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\FreshDiagnose 2014-09-30 16:46 - 2014-09-30 16:46 - 00029920 _____ () C:\Documents and Settings\LocalService\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2014-09-30 16:36 - 2014-09-30 16:36 - 00000000 ____D () C:\Program Files\Microsoft.NET 2014-09-30 16:34 - 2014-10-03 17:24 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Package Cache 2014-09-30 16:30 - 2014-09-30 16:32 - 00000000 ____D () C:\Program Files\3DMark-v1-3-708 2014-09-30 14:11 - 2014-09-30 14:07 - 02448286 _____ () C:\Program Files\crystalmark-0.9.126.452b [1].exe 2014-09-30 14:01 - 2014-09-30 14:01 - 00000000 ____D () C:\Program Files\Common Files\McAfee 2014-09-30 14:00 - 2014-09-30 14:01 - 00000000 ____D () C:\Program Files\McAfee 2014-09-30 14:00 - 2014-09-30 14:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\McAfee 2014-09-30 13:53 - 2014-09-30 13:53 - 00000523 _____ () C:\Documents and Settings\Rupert Legge\Desktop\BGEye.lnk 2014-09-30 11:48 - 2014-09-30 11:48 - 00000000 ____D () C:\Program Files\Aidav4.00.2752_Beta_ 2014-09-29 18:20 - 2014-10-07 13:58 - 00000000 ____D () C:\FRST 2014-09-29 17:24 - 2014-09-29 17:24 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\DriverEasy 2014-09-29 17:16 - 2014-09-29 17:16 - 00000000 ____D () C:\Program Files\Realtek AC97 2014-09-29 17:03 - 2009-11-03 09:36 - 00473600 _____ (S3 Graphics Co., Ltd.) C:\WINDOWS\system32\s3iset32_2_00_107.dll 2014-09-29 16:55 - 2014-09-29 17:24 - 00000815 _____ () C:\Documents and Settings\All Users\Desktop\DriverEasy.lnk 2014-09-29 16:55 - 2014-09-29 16:55 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Easeware 2014-09-29 16:54 - 2014-09-29 16:54 - 00000000 ____D () C:\Program Files\Easeware 2014-09-29 16:48 - 2014-09-29 16:48 - 00023456 _____ (Phoenix Technologies) C:\WINDOWS\system32\Drivers\DrvAgent32.sys 2014-09-24 20:19 - 2014-09-24 20:19 - 00000000 ____D () C:\Program Files\Mozilla Firefox 2014-09-21 17:24 - 2014-10-03 23:47 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\My Documents\Dokumenty Julka 2014-09-21 17:22 - 2014-09-21 17:22 - 00000650 _____ () C:\Documents and Settings\Rupert Legge\Start Menu\Programs\TextPad.lnk 2014-09-21 17:22 - 2014-09-21 17:22 - 00000000 ____D () C:\Program Files\TextPad 7 2014-09-21 17:22 - 2014-09-21 17:22 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Helios 2014-09-21 17:22 - 2014-09-21 17:22 - 00000000 ____D () C:\Documents and Settings\All Users\Start Menu\Programs\TextPad 2014-09-21 17:13 - 2014-09-21 17:13 - 00008192 ___SH () C:\Documents and Settings\Rupert Legge\Desktop\Thumbs.db 2014-09-21 16:46 - 2014-09-21 16:46 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Thinstall 2014-09-21 12:14 - 2014-10-03 19:41 - 00000724 _____ () C:\Documents and Settings\All Users\Desktop\Mozilla Firefox.lnk 2014-09-21 11:37 - 2014-09-21 11:37 - 00029920 _____ () C:\Documents and Settings\Administrator\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2014-09-21 11:35 - 2014-09-21 11:40 - 00000000 ___SD () C:\Documents and Settings\Administrator 2014-09-21 11:35 - 2014-09-21 11:40 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Temp 2014-09-21 11:35 - 2014-09-21 11:40 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\CyberLink 2014-09-21 11:35 - 2006-07-13 12:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Local Settings\Application Data\Adobe 2014-09-21 11:35 - 2006-07-13 12:45 - 00000000 ____D () C:\Documents and Settings\Administrator\Application Data\Adobe 2014-09-21 10:49 - 2014-09-21 11:40 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Application Data\COMODO(2) 2014-09-21 10:45 - 2014-09-21 11:40 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\COMODO 2014-09-21 10:30 - 2014-09-21 10:30 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\MFAData 2014-09-20 20:23 - 2014-09-20 20:23 - 00000694 _____ () C:\Documents and Settings\Rupert Legge\Desktop\BleachBit.lnk 2014-09-20 20:23 - 2014-09-20 20:23 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Start Menu\Programs\BleachBit 2014-09-20 20:21 - 2014-09-20 20:21 - 06353936 _____ () C:\Program Files\BleachBit-1.4-setup.exe 2014-09-20 19:27 - 2014-09-20 19:38 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\STGU 2014-09-20 19:27 - 2014-09-20 19:27 - 00000000 ____D () C:\Program Files\MSXML 6.0 2014-09-20 19:27 - 2014-09-20 19:27 - 00000000 ____D () C:\Program Files\MSXML 4.0 2014-09-20 19:27 - 2014-09-20 19:27 - 00000000 ____D () C:\Program Files\Common Files\Adobe 2014-09-20 19:26 - 2014-09-20 19:53 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\BitTorrent 2014-09-20 19:26 - 2014-09-20 19:26 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Colasoft Capsa 7.4 - Free Edition 2014-09-20 19:26 - 2014-09-20 19:26 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Adobe ==================== One Month Modified Files and Folders ======= (If an entry is included in the fixlist, the file\folder will be moved.) 2014-10-07 13:58 - 2006-10-12 18:45 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Temp 2014-10-07 13:53 - 2012-04-18 15:36 - 00000000 ____D () C:\Program Files\PDT 2014-10-07 13:42 - 2013-06-22 10:51 - 00000316 ____H () C:\WINDOWS\Tasks\avast! Emergency Update.job 2014-10-07 13:42 - 2005-12-05 13:58 - 00000006 ____H () C:\WINDOWS\Tasks\SA.DAT 2014-10-06 18:47 - 2013-06-23 10:39 - 00032200 _____ () C:\WINDOWS\SchedLgU.Txt 2014-10-06 18:47 - 2006-10-12 18:45 - 00000178 ___SH () C:\Documents and Settings\Rupert Legge\ntuser.ini 2014-10-06 18:47 - 2006-10-12 18:45 - 00000000 ____D () C:\Documents and Settings\Rupert Legge 2014-10-04 18:48 - 2005-12-05 05:49 - 00559250 _____ () C:\WINDOWS\system32\PerfStringBackup.INI 2014-10-04 18:45 - 2006-10-19 21:01 - 00021361 _____ (Cisco Systems, Inc.) C:\WINDOWS\system32\Drivers\AegisP.sys 2014-10-04 18:34 - 2005-12-05 12:42 - 00000210 __RSH () C:\boot.ini 2014-10-04 18:34 - 2005-12-05 12:41 - 00000477 _____ () C:\WINDOWS\win.ini 2014-10-04 18:34 - 2005-12-05 12:41 - 00000227 _____ () C:\WINDOWS\system.ini 2014-10-04 18:13 - 2006-11-13 22:48 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Google 2014-10-04 18:13 - 2006-11-13 22:47 - 00000000 ____D () C:\Program Files\Google 2014-10-04 18:04 - 2005-12-05 15:42 - 00000000 ___HD () C:\Program Files\InstallShield Installation Information 2014-10-04 16:56 - 2006-10-12 19:29 - 00030696 _____ () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\GDIPFONTCACHEV1.DAT 2014-10-04 16:10 - 2005-12-05 13:59 - 00000000 ____D () C:\WINDOWS\Microsoft.NET 2014-10-04 15:10 - 2011-12-15 23:08 - 00524288 _____ () C:\WINDOWS\system32\config\ACS.evt 2014-10-04 15:10 - 2005-12-05 05:48 - 00147608 _____ () C:\WINDOWS\system32\FNTCACHE.DAT 2014-10-04 15:07 - 2011-12-19 15:47 - 00000000 ____D () C:\WINDOWS\system32\XPSViewer 2014-10-04 14:39 - 2011-12-15 23:07 - 00000000 ____D () C:\Program Files\TP-LINK 2014-10-03 19:45 - 2006-08-17 17:28 - 00000000 ____D () C:\WINDOWS\Minidump 2014-10-03 19:41 - 2011-12-16 12:03 - 00000730 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Mozilla Firefox.lnk 2014-10-03 19:41 - 2006-07-13 12:59 - 00001029 _____ () C:\Documents and Settings\All Users\Desktop\mypixmania Photo Storage.lnk 2014-10-03 18:44 - 2011-12-16 00:54 - 00000000 ____D () C:\Program Files\Belkin 2014-10-03 18:31 - 2006-10-12 18:45 - 00000738 _____ () C:\Documents and Settings\Rupert Legge\Start Menu\Programs\Outlook Express.lnk 2014-10-03 18:29 - 2005-12-05 13:55 - 00316640 _____ () C:\WINDOWS\WMSysPr9.prx 2014-10-03 18:29 - 2005-12-05 13:54 - 00000000 ____D () C:\WINDOWS\srchasst 2014-10-03 18:29 - 2005-12-05 12:41 - 00001170 _____ () C:\WINDOWS\system32\wpa.dbl 2014-10-03 18:28 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\security 2014-10-03 18:25 - 2005-12-05 13:56 - 00001563 _____ () C:\Documents and Settings\All Users\Start Menu\Set Program Access and Defaults.lnk 2014-10-03 18:25 - 2005-12-05 13:53 - 00000000 ____D () C:\Program Files\Messenger 2014-10-03 18:25 - 2005-12-05 13:52 - 00000000 ___RD () C:\Documents and Settings\All Users\Start Menu\Programs\Accessories 2014-10-03 18:25 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\ime 2014-10-03 18:25 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\Help 2014-10-03 18:24 - 2005-12-05 13:54 - 00000000 ____D () C:\Program Files\Movie Maker 2014-10-03 18:24 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\system32\usmt 2014-10-03 18:24 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\PeerNet 2014-10-03 18:23 - 2005-12-05 13:54 - 00000000 ____D () C:\WINDOWS\system32\Restore 2014-10-03 18:23 - 2005-12-05 13:54 - 00000000 ____D () C:\Program Files\Outlook Express 2014-10-03 18:23 - 2005-12-05 13:54 - 00000000 ____D () C:\Program Files\NetMeeting 2014-10-03 18:23 - 2005-12-05 13:54 - 00000000 ____D () C:\Program Files\Common Files\System 2014-10-03 18:23 - 2005-12-05 13:52 - 00000000 ____D () C:\WINDOWS\system32\Com 2014-10-03 18:23 - 2005-12-05 13:52 - 00000000 ____D () C:\Program Files\Windows NT 2014-10-03 18:23 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\system32\npp 2014-10-03 18:23 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\msagent 2014-10-03 18:22 - 2005-12-05 05:43 - 00000000 ____D () C:\WINDOWS\system 2014-10-03 18:21 - 2005-12-05 12:41 - 00250048 __RSH () C:\ntldr 2014-10-03 17:22 - 2012-02-14 16:09 - 00000664 _____ () C:\WINDOWS\system32\d3d9caps.dat 2014-10-01 11:00 - 2005-12-05 13:58 - 00000000 ____D () C:\Documents and Settings\LocalService\Local Settings\Temp 2014-10-01 11:00 - 2005-12-05 05:48 - 00000000 ____D () C:\Documents and Settings\Default User\Local Settings\Temp 2014-09-30 20:01 - 2012-02-09 13:58 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\TempDIR 2014-09-30 09:32 - 2005-12-05 13:53 - 00000609 _____ () C:\Documents and Settings\All Users\Start Menu\Programs\Windows Messenger.lnk 2014-09-29 20:02 - 2011-12-16 13:37 - 00000000 ____D () C:\WINDOWS\pss 2014-09-29 17:16 - 2006-07-12 20:08 - 00000000 ____D () C:\WINDOWS\system32\ReinstallBackups 2014-09-21 11:53 - 2011-12-16 10:42 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\AVAST Software 2014-09-21 11:53 - 2006-07-13 02:37 - 00002577 _____ () C:\WINDOWS\system32\CONFIG.NT 2014-09-21 11:43 - 2005-12-05 13:58 - 00000000 __SHD () C:\Documents and Settings\NetworkService 2014-09-21 11:43 - 2005-12-05 13:58 - 00000000 __SHD () C:\Documents and Settings\LocalService 2014-09-21 11:43 - 2005-12-05 13:53 - 00000000 ____D () C:\WINDOWS\Registration 2014-09-21 11:33 - 2011-12-15 20:05 - 00743457 _____ () C:\WINDOWS\system32\Drivers\sfi.dat 2014-09-21 10:49 - 2011-12-15 20:04 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Comodo 2014-09-21 10:44 - 2011-12-16 00:54 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\Comodo Downloader 2014-09-21 10:33 - 2011-12-15 20:01 - 00000000 ____D () C:\Documents and Settings\All Users\Application Data\MFAData 2014-09-20 20:26 - 2012-10-21 12:06 - 00000000 ____D () C:\Program Files\SRWare Iron 2014-09-20 20:25 - 2005-12-05 13:59 - 00000000 ____D () C:\WINDOWS\system32\URTTemp 2014-09-20 20:23 - 2012-11-25 16:36 - 00000000 ____D () C:\Program Files\BleachBit 2014-09-20 19:52 - 2013-01-18 16:42 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\uTorrent 2014-09-20 19:32 - 2012-11-25 13:49 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\BleachBit 2014-09-20 19:23 - 2014-03-11 20:49 - 00000000 ____D () C:\WINDOWS\system32\wIShld 2014-09-20 19:23 - 2011-12-16 12:03 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Application Data\Mozilla 2014-09-20 19:22 - 2012-04-02 19:42 - 00000000 ____D () C:\Documents and Settings\Rupert Legge\Local Settings\Application Data\Temp Files to move or delete: ==================== C:\Documents and Settings\Rupert Legge\UnityWebPlayer.exe Some content of TEMP: ==================== C:\Documents and Settings\Rupert Legge\Local Settings\Temp\044pEVkyxx.exe C:\Documents and Settings\Rupert Legge\Local Settings\Temp\294823_.exe C:\Documents and Settings\Rupert Legge\Local Settings\Temp\ICReinstall_Online-Armor-Free(15780)-dp.exe C:\Documents and Settings\Rupert Legge\Local Settings\Temp\SimBundD.exe C:\Documents and Settings\Rupert Legge\Local Settings\Temp\Softonic_PL_1-5-11_PL-Production_10_CleanRelease.exe C:\Documents and Settings\Rupert Legge\Local Settings\Temp\_is11.exe ==================== Bamital & volsnap Check ================= (There is no automatic fix for files that do not pass verification.) C:\WINDOWS\explorer.exe => MD5 is legit C:\WINDOWS\system32\winlogon.exe => MD5 is legit C:\WINDOWS\system32\svchost.exe => MD5 is legit C:\WINDOWS\system32\services.exe => MD5 is legit C:\WINDOWS\system32\User32.dll => MD5 is legit C:\WINDOWS\system32\userinit.exe => MD5 is legit C:\WINDOWS\system32\rpcss.dll => MD5 is legit C:\WINDOWS\system32\Drivers\volsnap.sys => MD5 is legit ==================== End Of Log ============================