Boski4 utworzono 20 grudnia 2009 utworzono 20 grudnia 2009 (edytowane) Witam Mam taki mały problem, kiedyś chciałem oglądnąć film w 3D i zainstalowałem GAMEZTAR takie coś jak Adobe Flash po od instalowaniu tego pojawiają się co chwilę reklamy i prosiłbym o sprawdzenie logów. P.S. Jeżeli zły dział to przepraszam. [log]Logfile of Trend Micro HijackThis v2.0.2 Scan saved at 20:57:35, on 2009-12-20 Platform: Unknown Windows (WinNT 6.01.3504) MSIE: Internet Explorer v8.00 (8.00.7600.16385) Boot mode: Normal Running processes: C:\Windows\System32\spool\drivers\x64\3\WrtMon.exe D:\Programy (x86)\WapSter\WapSter AQQ\AQQ.exe C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe C:\Windows\System32\spool\drivers\x64\3\WrtProc.exe C:\Program Files (x86)\Java\jre6\bin\jusched.exe C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe D:\Programy (x86)\DAEMON Tools Lite\DTLiteShellHlp.exe C:\Program Files (x86)\Mozilla Firefox\firefox.exe D:\Programy (x86)\Trend Micro\HijackThis\HijackThis.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://home.myquickfinder.com R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = http://go.microsoft.com/fwlink/?LinkId=69157 R0 - HKLM\Software\Microsoft\Internet Explorer\Search,SearchAssistant = R0 - HKLM\Software\Microsoft\Internet Explorer\Search,CustomizeSearch = R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = F2 - REG:system.ini: UserInit=userinit.exe O2 - BHO: Automated Content Enhancer - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll O2 - BHO: BitComet ClickCapture - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll O2 - BHO: Customized Platform Advancer - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\PROGRA~1\MICROS~1\Office12\GR469A~1.DLL O2 - BHO: Pomocnik rejestracji usługi Windows Live - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll O2 - BHO: Content Management Wizard - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files (x86)\Content Management Wizard\1.1.0.1990\CMWIE.dll O2 - BHO: Textual Content Provider - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files (x86)\Textual Content Provider\1.1.0.1810\TCPIE.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll O2 - BHO: Web Search Operator - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files (x86)\Web Search Operator\4.1.0.2080\wso.dll O3 - Toolbar: DAEMON Tools Toolbar - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [QuickTime Task] "D:\Programy (x86)\QuickTime\QTTask.exe" -atboottime O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files (x86)\Java\jre6\bin\jusched.exe" O4 - HKLM\..\Run: [GrooveMonitor] "D:\Programy (x86)\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [SSBkgdUpdate] "C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe" -Embedding -boot O4 - HKLM\..\Run: [OpwareSE4] "C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe" O4 - HKLM\..\Run: [avgnt] "C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe" /min O4 - HKLM\..\Run: [Internet Today Task] "C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe" O4 - HKCU\..\Run: [AQQ] D:\PROGRA~1\WapSter\WAPSTE~1\AQQ.exe O4 - HKCU\..\Run: [Sidebar] C:\Program Files\Windows Sidebar\sidebar.exe /autoRun O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [DAEMON Tools Lite] "D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-19\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [Sidebar] %ProgramFiles%\Windows Sidebar\Sidebar.exe /autoRun (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (User 'USŁUGA SIECIOWA') O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://D:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - res://D:\Programy (x86)\BitComet\BitComet.exe/AddVideo.htm O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - res://D:\Programy (x86)\BitComet\BitComet.exe/AddAllLink.htm O8 - Extra context menu item: Pobierz za pomocą BitComet - res://D:\Programy (x86)\BitComet\BitComet.exe/AddLink.htm O9 - Extra button: (no name) - {2670000A-7350-4f3c-8081-5663EE0C6C49} - (no file) O9 - Extra button: (no name) - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - (no file) O9 - Extra button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - res://D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll/206 (file missing) O13 - Gopher Prefix: O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} - http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\PROGRA~1\MICROS~1\Office12\GRA32A~1.DLL O23 - Service: @%SystemRoot%\system32\Alg.exe,-112 (ALG) - Unknown owner - C:\Windows\System32\alg.exe (file missing) O23 - Service: Avira AntiVir Scheduler (AntiVirSchedulerService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe O23 - Service: Avira AntiVir Guard (AntiVirService) - Avira GmbH - C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe O23 - Service: Dragon Age: Początek - Aktualizator zawartości (DAUpdaterSvc) - BioWare - D:\Gry (x86)\Dragon Age\bin_ship\DAUpdaterSvc.Service.exe O23 - Service: @%SystemRoot%\system32\efssvc.dll,-100 (EFS) - Unknown owner - C:\Windows\System32\lsass.exe (file missing) O23 - Service: @%systemroot%\system32\fxsresm.dll,-118 (Fax) - Unknown owner - C:\Windows\system32\fxssvc.exe (file missing) O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: FLEXnet Licensing Service 64 - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe O23 - Service: @keyiso.dll,-100 (KeyIso) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe O23 - Service: @comres.dll,-2797 (MSDTC) - Unknown owner - C:\Windows\System32\msdtc.exe (file missing) O23 - Service: @%SystemRoot%\System32\netlogon.dll,-102 (Netlogon) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: PnkBstrA - Unknown owner - C:\Windows\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\Windows\system32\PnkBstrB.exe O23 - Service: @%systemroot%\system32\psbase.dll,-300 (ProtectedStorage) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: QuestService Service - Unknown owner - C:\ProgramData\QuestService\questservice111.exe O23 - Service: @%systemroot%\system32\Locator.exe,-2 (RpcLocator) - Unknown owner - C:\Windows\system32\locator.exe (file missing) O23 - Service: @%SystemRoot%\system32\samsrv.dll,-1 (SamSs) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\snmptrap.exe,-3 (SNMPTRAP) - Unknown owner - C:\Windows\System32\snmptrap.exe (file missing) O23 - Service: @%systemroot%\system32\spoolsv.exe,-1 (Spooler) - Unknown owner - C:\Windows\System32\spoolsv.exe (file missing) O23 - Service: @%SystemRoot%\system32\sppsvc.exe,-101 (sppsvc) - Unknown owner - C:\Windows\system32\sppsvc.exe (file missing) O23 - Service: @%SystemRoot%\system32\ui0detect.exe,-101 (UI0Detect) - Unknown owner - C:\Windows\system32\UI0Detect.exe (file missing) O23 - Service: @%SystemRoot%\system32\vaultsvc.dll,-1003 (VaultSvc) - Unknown owner - C:\Windows\system32\lsass.exe (file missing) O23 - Service: @%SystemRoot%\system32\vds.exe,-100 (vds) - Unknown owner - C:\Windows\System32\vds.exe (file missing) O23 - Service: @%systemroot%\system32\vssvc.exe,-102 (VSS) - Unknown owner - C:\Windows\system32\vssvc.exe (file missing) O23 - Service: @%systemroot%\system32\wbengine.exe,-104 (wbengine) - Unknown owner - C:\Windows\system32\wbengine.exe (file missing) O23 - Service: @%Systemroot%\system32\wbem\wmiapsrv.exe,-110 (wmiApSrv) - Unknown owner - C:\Windows\system32\wbem\WmiApSrv.exe (file missing) O23 - Service: @%PROGRAMFILES%\Windows Media Player\wmpnetwk.exe,-101 (WMPNetworkSvc) - Unknown owner - C:\Program Files (x86)\Windows Media Player\wmpnetwk.exe (file missing) -- End of file - 9849 bytes [/log]
Mateusz J. komentarz 21 grudnia 2009 komentarz 21 grudnia 2009 Pokaz log z OTL: http://www.forumpc.pl/index.php?showtopic=104338
Boski4 komentarz 21 grudnia 2009 Autor komentarz 21 grudnia 2009 (edytowane) [log]OTL logfile created on: 2009-12-21 19:35:14 - Run 1 OTL by OldTimer - Version 3.1.19.0 Folder = C:\Users\Boski\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 67,00% Memory free 6,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 31,51 Gb Total Space | 14,36 Gb Free Space | 45,58% Space Free | Partition Type: NTFS Drive D: | 300,00 Gb Total Space | 72,61 Gb Free Space | 24,20% Space Free | Partition Type: NTFS Drive E: | 300,00 Gb Total Space | 155,65 Gb Free Space | 51,88% Space Free | Partition Type: NTFS Drive F: | 300,00 Gb Total Space | 5,63 Gb Free Space | 1,88% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BOSKI-KOMPUTER Current User Name: Boski Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Include 64bit Scans Company Name Whitelist: On Skip Microsoft Files: On File Age = 30 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - File not found -- C:\Windows\SysWow64\spool\drivers\x64\3\WrtProc.exe PRC - File not found -- C:\Windows\SysWow64\spool\drivers\x64\3\WrtMon.exe PRC - [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe PRC - [2009-12-15 17:22:38 | 00,348,160 | ---- | M] () -- C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\ProgramData\QuestService\questservice111.exe PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.exe PRC - [2009-12-02 15:26:07 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2009-11-27 12:48:02 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe PRC - [2009-11-19 15:39:58 | 00,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2009-10-30 12:57:08 | 00,369,200 | ---- | M] (DT Soft Ltd) -- D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe PRC - [2009-09-29 20:47:20 | 06,585,856 | ---- | M] (Creative Team S.A.) -- D:\Programy (x86)\WapSter\WapSter AQQ\AQQ.exe PRC - [2009-09-24 13:39:26 | 02,768,696 | ---- | M] (www.BitComet.com) -- D:\Programy (x86)\BitComet\BitComet.exe PRC - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2009-05-18 18:04:44 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe PRC - [2009-05-18 17:56:12 | 02,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe PRC - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2009-03-02 12:08:47 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2007-02-04 12:02:14 | 00,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe MOD - [2009-12-09 14:06:34 | 00,598,016 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.dll MOD - [2009-07-14 02:17:51 | 01,289,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll MOD - [2009-07-14 02:16:21 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\xmllite.dll MOD - [2009-07-14 02:16:20 | 00,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll MOD - [2009-07-14 02:16:19 | 00,977,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll MOD - [2009-07-14 02:16:19 | 00,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll MOD - [2009-07-14 02:16:19 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll MOD - [2009-07-14 02:16:17 | 01,224,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll MOD - [2009-07-14 02:16:17 | 01,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll MOD - [2009-07-14 02:16:17 | 00,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll MOD - [2009-07-14 02:16:17 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll MOD - [2009-07-14 02:16:17 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll MOD - [2009-07-14 02:16:15 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll MOD - [2009-07-14 02:16:15 | 00,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll MOD - [2009-07-14 02:16:14 | 12,866,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll MOD - [2009-07-14 02:16:14 | 01,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll MOD - [2009-07-14 02:16:14 | 00,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll MOD - [2009-07-14 02:16:14 | 00,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll MOD - [2009-07-14 02:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll MOD - [2009-07-14 02:16:13 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll MOD - [2009-07-14 02:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll MOD - [2009-07-14 02:16:13 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll MOD - [2009-07-14 02:16:12 | 01,412,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll MOD - [2009-07-14 02:16:12 | 00,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll MOD - [2009-07-14 02:16:12 | 00,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll MOD - [2009-07-14 02:16:12 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll MOD - [2009-07-14 02:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll MOD - [2009-07-14 02:16:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll MOD - [2009-07-14 02:16:11 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll MOD - [2009-07-14 02:16:11 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll MOD - [2009-07-14 02:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll MOD - [2009-07-14 02:15:52 | 01,233,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll MOD - [2009-07-14 02:15:50 | 00,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll MOD - [2009-07-14 02:15:43 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll MOD - [2009-07-14 02:15:42 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll MOD - [2009-07-14 02:15:41 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll MOD - [2009-07-14 02:15:28 | 02,058,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll MOD - [2009-07-14 02:15:21 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontext.dll MOD - [2009-07-14 02:15:21 | 00,093,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWOW64\fms.dll MOD - [2009-07-14 02:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll MOD - [2009-07-14 02:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll MOD - [2009-07-14 02:15:07 | 01,151,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll MOD - [2009-07-14 02:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll MOD - [2009-07-14 02:15:03 | 00,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll MOD - [2009-07-14 02:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll MOD - [2009-07-14 02:14:57 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll MOD - [2009-07-14 02:14:53 | 00,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll MOD - [2009-07-14 02:14:53 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll MOD - [2009-07-14 02:14:08 | 00,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv MOD - [2009-07-14 02:11:24 | 00,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll MOD - [2009-07-14 02:11:24 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll MOD - [2009-07-14 02:11:24 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll MOD - [2009-07-14 02:11:23 | 00,836,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll MOD - [2009-07-14 02:11:23 | 00,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll MOD - [2009-07-14 02:11:23 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll MOD - [2009-07-14 02:11:23 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll MOD - [2009-07-14 02:11:21 | 00,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll MOD - [2009-07-14 02:11:21 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll MOD - [2009-07-14 02:09:00 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll MOD - [2009-07-14 02:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2009-11-18 07:40:24 | 01,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2009-07-14 02:41:59 | 00,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power) SRV:[b]64bit:[/b] - [2009-07-14 02:41:55 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes) SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify) SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 01,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 01,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 02:41:18 | 00,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener) SRV:[b]64bit:[/b] - [2009-07-14 02:40:54 | 01,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache) SRV:[b]64bit:[/b] - [2009-07-14 02:40:28 | 00,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp) SRV:[b]64bit:[/b] - [2009-07-14 02:40:28 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:40:24 | 00,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService) SRV:[b]64bit:[/b] - [2009-07-14 02:40:13 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv) SRV:[b]64bit:[/b] - [2009-07-14 02:40:10 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC) SRV:[b]64bit:[/b] - [2009-07-14 02:40:05 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 00,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:39:51 | 01,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine) SRV:[b]64bit:[/b] - [2009-07-14 02:39:28 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:39:11 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax) SRV - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\QuestService\questservice111.exe -- (QuestService Service) SRV - [2009-11-19 15:39:58 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2009-11-18 07:40:19 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-07-26 06:43:14 | 00,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- D:\Gry (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc) SRV - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-07-14 04:20:14 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS) SRV - [2009-07-14 04:20:14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC) SRV - [2009-07-14 02:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider) SRV - [2009-07-14 02:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp) SRV - [2009-07-13 21:30:11 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds) SRV - [2009-06-10 21:39:58 | 00,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64) SRV - [2009-05-18 18:04:44 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService) SRV - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy (x86)\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:[b]64bit:[/b] - [2009-11-19 22:16:06 | 00,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 00,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 00,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 00,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy) DRV:[b]64bit:[/b] - [2009-07-14 02:47:49 | 00,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends) DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 00,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 02:45:56 | 00,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 02:45:46 | 00,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost) DRV:[b]64bit:[/b] - [2009-07-14 02:45:45 | 00,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw) DRV:[b]64bit:[/b] - [2009-07-14 02:43:14 | 00,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG) DRV:[b]64bit:[/b] - [2009-07-14 02:43:13 | 00,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol) DRV:[b]64bit:[/b] - [2009-07-14 01:17:46 | 00,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus) DRV:[b]64bit:[/b] - [2009-07-14 01:16:35 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP) DRV:[b]64bit:[/b] - [2009-07-14 01:10:24 | 00,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2) DRV:[b]64bit:[/b] - [2009-07-14 01:09:26 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf) DRV:[b]64bit:[/b] - [2009-07-14 01:08:13 | 00,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap) DRV:[b]64bit:[/b] - [2009-07-14 01:07:21 | 00,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus) DRV:[b]64bit:[/b] - [2009-07-14 01:07:13 | 00,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci) DRV:[b]64bit:[/b] - [2009-07-14 01:07:00 | 00,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService) DRV:[b]64bit:[/b] - [2009-07-14 01:06:52 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass) DRV:[b]64bit:[/b] - [2009-07-14 01:06:28 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winusb.sys -- (WinUsb) DRV:[b]64bit:[/b] - [2009-07-14 01:06:24 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf) DRV:[b]64bit:[/b] - [2009-07-14 01:05:37 | 00,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf) DRV:[b]64bit:[/b] - [2009-07-14 01:02:08 | 00,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig) DRV:[b]64bit:[/b] - [2009-07-14 01:00:34 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus) DRV:[b]64bit:[/b] - [2009-07-14 01:00:13 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep) DRV:[b]64bit:[/b] - [2009-07-14 00:52:39 | 00,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID) DRV:[b]64bit:[/b] - [2009-07-14 00:50:17 | 00,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter) DRV:[b]64bit:[/b] - [2009-07-14 00:42:58 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap) DRV:[b]64bit:[/b] - [2009-07-14 00:42:44 | 00,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID) DRV:[b]64bit:[/b] - [2009-07-14 00:37:18 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache) DRV:[b]64bit:[/b] - [2009-07-14 00:31:06 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt) DRV:[b]64bit:[/b] - [2009-07-14 00:31:03 | 00,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt) DRV:[b]64bit:[/b] - [2009-07-14 00:27:17 | 00,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi) DRV:[b]64bit:[/b] - [2009-07-14 00:24:27 | 00,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC) DRV:[b]64bit:[/b] - [2009-07-14 00:19:25 | 00,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM) DRV:[b]64bit:[/b] - [2009-06-10 21:35:33 | 00,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 03,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 00,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 00,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2008-06-27 07:51:10 | 00,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs) DRV:[b]64bit:[/b] - [2006-12-22 20:05:52 | 00,559,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrxusb.sys -- (athrusb) DRV - [2009-11-16 10:26:48 | 00,000,000 | ---D | M] [Kernel | System | Running] -- C:\Windows\CSC -- (CSC) DRV - [2009-07-14 02:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2009-07-14 02:16:19 | 00,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\winusb.dll -- (WinUsb) DRV - [2009-07-14 02:16:02 | 00,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS) DRV - [2009-06-10 22:28:14 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv) DRV - [2009-06-10 22:15:18 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip) DRV - [2008-08-14 07:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\drivers\adfs.sys -- (adfs) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.myquickfinder.com IE - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\S-1-5-21-665221634-4083437449-3806565127-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: {E63605FC-D583-4C81-867F-9457BDB3EA1B}:4.1.0.2080 FF - prefs.js..extensions.enabledItems: {8141440E-08F0-4339-9959-5C31C6A69F23}:4.1.0.5290 FF - prefs.js..extensions.enabledItems: {E889F097-B0BE-471B-89AD-B86B6F04B506}:4.1.0.1960 FF - HKLM\software\mozilla\Firefox\Extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files (x86)\Web Search Operator\4.1.0.2080\FF [2009-12-15 17:25:22 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\FF [2009-12-15 17:25:30 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\FF [2009-12-15 17:25:41 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2009-12-20 20:49:44 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2009-12-20 20:49:43 | 00,000,000 | ---D | M] [2009-12-20 20:49:51 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\mozilla\Extensions [2009-12-20 20:49:51 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\mozilla\Firefox\Profiles\ndqixf8o.default\extensions [2009-12-20 20:49:43 | 00,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2009-12-02 09:23:35 | 00,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2009-12-02 09:23:35 | 00,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2009-12-02 09:23:35 | 00,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2009-12-02 09:23:35 | 00,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2009-12-02 09:23:35 | 00,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-12-02 09:23:35 | 00,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: (854 bytes) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll () O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet) O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll () O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Pomocnik rejestracji usługi Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files (x86)\Content Management Wizard\1.1.0.1990\CMWIE.dll () O2 - BHO: (Textual Content Provider) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files (x86)\Textual Content Provider\1.1.0.1810\TCPIE.dll () O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files (x86)\Web Search Operator\4.1.0.2080\wso.dll () O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O3:[b]64bit:[/b] - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O4:[b]64bit:[/b] - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe () O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [GrooveMonitor] D:\Programy (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [Internet Today Task] C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe () O4 - HKLM..\Run: [OpwareSE4] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [QuickTime Task] D:\Programy (x86)\QuickTime\QTTask.exe (Apple Inc.) O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [AQQ] D:\Programy (x86)\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [DAEMON Tools Lite] D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8:[b]64bit:[/b] - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8:[b]64bit:[/b] - Extra context menu item: Pobierz wszystko za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8:[b]64bit:[/b] - Extra context menu item: Pobierz za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation) O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-10-15 17:11:14 | 00,000,024 | ---- | M] () - F:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found [b]64bit:[/b] O35 - comfile [open] -- "%1" %* File not found [b]64bit:[/b] O35 - exefile [open] -- "%1" %* File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs:[b]64bit:[/b] Ias - C:\Windows\SysNative\ias [2009-07-14 04:20:14 | 00,000,000 | ---D | M] NetSvcs:[b]64bit:[/b] Irmon - C:\Windows\SysNative\irmon.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] Wmi - C:\Windows\SysNative\wmi.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] Themes - C:\Windows\SysNative\themeservice.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] BDESVC - C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) NetSvcs: Ias - C:\Windows\SysWOW64\ias.dll (Microsoft Corporation) NetSvcs: Wmi - C:\Windows\SysWOW64\wmi.dll (Microsoft Corporation) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2009-12-21 19:30:55 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-20 20:57:04 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:47 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Mozilla [2009-12-20 20:49:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2009-12-20 20:18:51 | 08,794,216 | ---- | C] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-15 17:27:11 | 00,000,000 | ---D | C] -- C:\ProgramData\QuestService [2009-12-15 17:27:11 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\QuestService [2009-12-15 17:26:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Textual Content Provider [2009-12-15 17:26:17 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Content Management Wizard [2009-12-15 17:26:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Internet Today [2009-12-15 17:26:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Today [2009-12-15 17:25:41 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Customized Platform Advancer [2009-12-15 17:25:40 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Customized Platform Advancer [2009-12-15 17:25:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Automated Content Enhancer [2009-12-15 17:25:22 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Web Search Operator [2009-12-15 17:25:07 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Gameztar Toolbar [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Symantec [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSSx64 [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Security Scan [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Norton [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSSx64\0207000.034 [2009-12-15 17:00:00 | 00,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller [2009-12-15 17:00:00 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller [2009-12-15 16:58:10 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-15 16:58:08 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\My PageManager [2009-12-15 16:57:42 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\NewSoft [2009-12-15 08:35:32 | 00,000,000 | ---D | C] -- C:\Pulpit [2009-12-15 08:34:57 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe [2009-12-14 16:18:15 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-12-14 16:14:13 | 00,421,346 | ---- | C] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-14 15:59:28 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\Electronic Arts [2009-12-13 08:44:37 | 00,074,880 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-13 08:44:37 | 00,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\SysWow64\drivers\ssmdrv.sys [2009-12-13 08:44:35 | 00,000,000 | ---D | C] -- C:\ProgramData\Avira [2009-12-13 08:44:35 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2009-12-12 16:41:16 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\Eidos [2009-12-10 18:30:30 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-10 17:08:50 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\BioWare [2009-12-10 17:04:45 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts [2009-12-10 17:04:37 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR [2009-12-10 17:04:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2009-12-10 17:04:04 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA [2009-12-10 17:03:57 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard [2009-12-10 17:03:56 | 00,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs [2009-12-09 21:29:58 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare [2009-12-06 03:16:12 | 00,000,000 | ---D | C] -- C:\ProgramData\TEMP [2009-12-06 03:16:12 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-12-06 00:59:32 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Scansoft [2009-12-04 12:31:08 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewSoft [2009-12-04 12:30:55 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PDFView [2009-12-04 12:30:54 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NewSoft [2009-12-04 12:30:54 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Color [2009-12-04 12:30:20 | 00,000,000 | ---D | C] -- C:\ProgramData\InstallShield [2009-12-04 12:30:15 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-04 12:30:12 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ScanSoft Shared [2009-12-04 12:30:12 | 00,000,000 | ---D | C] -- C:\ProgramData\ScanSoft [2009-12-04 12:29:51 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\ScanSoft [2009-12-04 12:29:21 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2009-12-04 12:24:17 | 00,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ [2009-11-30 14:28:02 | 04,547,793 | ---- | C] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 16:12:31 | 00,000,000 | ---D | C] -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl [2009-11-28 12:28:11 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works [2009-11-28 12:27:53 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio [2009-11-28 12:27:53 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2009-11-28 12:27:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2009-11-28 12:26:23 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2009-11-28 12:26:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8 [2009-11-28 12:25:57 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Microsoft Help [2009-11-28 12:25:56 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2009-11-28 12:12:24 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2009-11-27 12:48:01 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2009-11-26 16:12:30 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Diagnostics [2009-11-25 16:15:27 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\WDSetup [2009-11-25 16:13:16 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PC SOFT [2009-11-25 16:10:12 | 00,394,488 | ---- | C] (PC SOFT) -- C:\Users\Boski\Desktop\INSTALL.EXE [2009-11-23 20:46:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\VirtualDJ [2009-11-23 19:52:18 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-22 19:33:37 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2009-11-22 19:33:08 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple [2009-11-22 19:33:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Apple [2009-11-22 19:33:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update [2009-11-22 19:33:02 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple [2004-11-24 19:25:52 | 00,335,872 | ---- | C] ( ) -- C:\Windows\SysWow64\drvc.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:35:59 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2009-12-20 20:57:27 | 00,000,943 | ---- | C] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:49:44 | 00,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-19 09:29:26 | 00,015,550 | ---- | C] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:57 | 00,354,896 | ---- | C] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-16 07:32:01 | 00,073,872 | ---- | C] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:03 | 00,000,498 | ---- | C] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-15 17:00:01 | 00,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-14 18:38:19 | 07,560,913 | ---- | C] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:41 | 05,210,729 | ---- | C] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | C] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | C] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:01 | 03,422,281 | ---- | C] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | C] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:26:13 | 00,114,622 | ---- | C] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | C] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-13 08:44:49 | 00,001,994 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:39 | 00,041,556 | ---- | C] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:41:17 | 00,015,055 | ---- | C] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | C] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | C] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | C] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:41:05 | 01,146,132 | ---- | C] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-06 01:41:04 | 01,152,428 | ---- | C] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-12-06 01:41:04 | 00,916,961 | ---- | C] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-06 01:40:11 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | C] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:35 | 00,009,606 | ---- | C] () -- C:\Windows\SysNative\NEWSOFT [2009-12-04 12:31:24 | 00,000,264 | ---- | C] () -- C:\Windows\setup.iss [2009-12-04 12:31:16 | 00,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll [2009-12-04 12:30:21 | 00,000,424 | ---- | C] () -- C:\Windows\MAXLINK.INI [2009-11-30 14:36:19 | 00,000,762 | ---- | C] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:36:18 | 00,421,888 | ---- | C] () -- C:\Windows\SysNative\ac3filter.acm [2009-11-30 14:34:11 | 07,855,400 | ---- | C] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:49 | 00,050,688 | ---- | C] () -- C:\Windows\SysWow64\ff_acm.acm [2009-11-28 15:41:00 | 04,977,929 | ---- | C] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | C] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | C] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 08:57:03 | 00,591,360 | ---- | C] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-28 08:57:03 | 00,036,398 | ---- | C] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-28 08:57:03 | 00,003,584 | ---- | C] () -- C:\Users\Boski\Desktop\DLPORTIO.sys [2009-11-28 08:57:02 | 01,818,579 | ---- | C] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-28 08:57:02 | 01,304,576 | ---- | C] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-28 08:56:18 | 03,663,962 | ---- | C] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 17:41:35 | 00,294,151 | ---- | C] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-26 06:49:49 | 00,002,643 | ---- | C] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:29:18 | 00,000,749 | ---- | C] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:16:08 | 87,167,236 | ---- | C] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:09:08 | 00,293,983 | ---- | C] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 06:44:09 | 00,018,231 | ---- | C] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:43:59 | 00,040,176 | ---- | C] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | C] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:21 | 03,489,155 | ---- | C] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [2009-11-18 15:06:29 | 00,000,321 | ---- | C] () -- C:\Windows\game.ini [2009-07-14 00:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 22:03:59 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2008-12-19 15:15:58 | 04,338,246 | ---- | C] () -- C:\Windows\SysWow64\libavcodec.dll [2008-12-17 17:41:18 | 00,884,237 | ---- | C] () -- C:\Windows\SysWow64\ff_x264.dll [2008-12-17 17:22:58 | 00,093,184 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll [2008-12-17 17:22:48 | 00,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2008-12-17 17:17:34 | 00,239,247 | ---- | C] () -- C:\Windows\SysWow64\ff_theora.dll [2008-12-17 16:59:54 | 00,560,802 | ---- | C] () -- C:\Windows\SysWow64\libmplayer.dll [2008-12-11 11:27:02 | 00,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest [2008-10-07 09:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2008-10-07 09:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll [2004-10-03 17:50:54 | 00,129,024 | ---- | C] () -- C:\Windows\SysWow64\ff_mpeg2enc.dll [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [2009-11-28 12:27:02 | 00,000,000 | ---D | M] -- C:\Program Files\Common Files\Microsoft Shared [2009-11-28 12:26:23 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:36:50 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-11-28 12:27:02 | 00,000,000 | ---D | M] -- C:\Program Files\Common Files\Microsoft Shared [2009-11-28 12:26:23 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:37:39 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [/log]
Boski4 komentarz 21 grudnia 2009 Autor komentarz 21 grudnia 2009 (edytowane) [log]OTL logfile created on: 2009-12-21 19:35:14 - Run 1 OTL by OldTimer - Version 3.1.19.0 Folder = C:\Users\Boski\Desktop 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 67,00% Memory free 6,00 Gb Paging File | 5,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 31,51 Gb Total Space | 14,36 Gb Free Space | 45,58% Space Free | Partition Type: NTFS Drive D: | 300,00 Gb Total Space | 72,61 Gb Free Space | 24,20% Space Free | Partition Type: NTFS Drive E: | 300,00 Gb Total Space | 155,65 Gb Free Space | 51,88% Space Free | Partition Type: NTFS Drive F: | 300,00 Gb Total Space | 5,63 Gb Free Space | 1,88% Space Free | Partition Type: NTFS G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: BOSKI-KOMPUTER Current User Name: Boski Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Include 64bit Scans Company Name Whitelist: On Skip Microsoft Files: On File Age = 30 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - File not found -- C:\Windows\SysWow64\spool\drivers\x64\3\WrtProc.exe PRC - File not found -- C:\Windows\SysWow64\spool\drivers\x64\3\WrtMon.exe PRC - [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe PRC - [2009-12-15 17:22:38 | 00,348,160 | ---- | M] () -- C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\ProgramData\QuestService\questservice111.exe PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.exe PRC - [2009-12-02 15:26:07 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe PRC - [2009-11-27 12:48:02 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files (x86)\Java\jre6\bin\jusched.exe PRC - [2009-11-19 15:39:58 | 00,075,064 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe PRC - [2009-10-30 12:57:08 | 00,369,200 | ---- | M] (DT Soft Ltd) -- D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe PRC - [2009-09-29 20:47:20 | 06,585,856 | ---- | M] (Creative Team S.A.) -- D:\Programy (x86)\WapSter\WapSter AQQ\AQQ.exe PRC - [2009-09-24 13:39:26 | 02,768,696 | ---- | M] (www.BitComet.com) -- D:\Programy (x86)\BitComet\BitComet.exe PRC - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe PRC - [2009-05-18 18:04:44 | 00,073,728 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe PRC - [2009-05-18 17:56:12 | 02,363,392 | ---- | M] (Hewlett-Packard Company) -- C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe PRC - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe PRC - [2009-03-02 12:08:47 | 00,209,153 | ---- | M] (Avira GmbH) -- C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe PRC - [2007-02-04 12:02:14 | 00,079,400 | ---- | M] (Nuance Communications, Inc.) -- C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpWareSE4.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe MOD - [2009-12-09 14:06:34 | 00,598,016 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.dll MOD - [2009-07-14 02:17:51 | 01,289,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll MOD - [2009-07-14 02:16:21 | 00,180,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\xmllite.dll MOD - [2009-07-14 02:16:20 | 00,206,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll MOD - [2009-07-14 02:16:19 | 00,977,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll MOD - [2009-07-14 02:16:19 | 00,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll MOD - [2009-07-14 02:16:19 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll MOD - [2009-07-14 02:16:17 | 01,224,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll MOD - [2009-07-14 02:16:17 | 01,123,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vssapi.dll MOD - [2009-07-14 02:16:17 | 00,627,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll MOD - [2009-07-14 02:16:17 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\vsstrace.dll MOD - [2009-07-14 02:16:17 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll MOD - [2009-07-14 02:16:15 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\spp.dll MOD - [2009-07-14 02:16:15 | 00,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srclient.dll MOD - [2009-07-14 02:16:14 | 12,866,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll MOD - [2009-07-14 02:16:14 | 01,668,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll MOD - [2009-07-14 02:16:14 | 00,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll MOD - [2009-07-14 02:16:14 | 00,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll MOD - [2009-07-14 02:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll MOD - [2009-07-14 02:16:13 | 00,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll MOD - [2009-07-14 02:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll MOD - [2009-07-14 02:16:13 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll MOD - [2009-07-14 02:16:12 | 01,412,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll MOD - [2009-07-14 02:16:12 | 00,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll MOD - [2009-07-14 02:16:12 | 00,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll MOD - [2009-07-14 02:16:12 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll MOD - [2009-07-14 02:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll MOD - [2009-07-14 02:16:12 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll MOD - [2009-07-14 02:16:11 | 00,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll MOD - [2009-07-14 02:16:11 | 00,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll MOD - [2009-07-14 02:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll MOD - [2009-07-14 02:15:52 | 01,233,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll MOD - [2009-07-14 02:15:50 | 00,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll MOD - [2009-07-14 02:15:43 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll MOD - [2009-07-14 02:15:42 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll MOD - [2009-07-14 02:15:41 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll MOD - [2009-07-14 02:15:28 | 02,058,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll MOD - [2009-07-14 02:15:21 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\fontext.dll MOD - [2009-07-14 02:15:21 | 00,093,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C:\Windows\SysWOW64\fms.dll MOD - [2009-07-14 02:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll MOD - [2009-07-14 02:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll MOD - [2009-07-14 02:15:07 | 01,151,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll MOD - [2009-07-14 02:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll MOD - [2009-07-14 02:15:03 | 00,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll MOD - [2009-07-14 02:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll MOD - [2009-07-14 02:14:57 | 00,070,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\atl.dll MOD - [2009-07-14 02:14:53 | 00,640,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll MOD - [2009-07-14 02:14:53 | 00,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll MOD - [2009-07-14 02:14:08 | 00,319,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv MOD - [2009-07-14 02:11:24 | 00,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll MOD - [2009-07-14 02:11:24 | 00,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll MOD - [2009-07-14 02:11:24 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll MOD - [2009-07-14 02:11:23 | 00,836,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll MOD - [2009-07-14 02:11:23 | 00,662,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll MOD - [2009-07-14 02:11:23 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll MOD - [2009-07-14 02:11:23 | 00,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll MOD - [2009-07-14 02:11:21 | 00,310,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll MOD - [2009-07-14 02:11:21 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll MOD - [2009-07-14 02:09:00 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll MOD - [2009-07-14 02:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV:[b]64bit:[/b] - [2009-11-18 07:40:24 | 01,038,088 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService64.exe -- (FLEXnet Licensing Service 64) SRV:[b]64bit:[/b] - [2009-07-14 02:41:59 | 00,229,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wwansvc.dll -- (WwanSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbiosrvc.dll -- (WbioSrvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,195,072 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\umrdp.dll -- (UmRdpService) SRV:[b]64bit:[/b] - [2009-07-14 02:41:56 | 00,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\umpo.dll -- (Power) SRV:[b]64bit:[/b] - [2009-07-14 02:41:55 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\themeservice.dll -- (Themes) SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sppuinotify.dll -- (sppuinotify) SRV:[b]64bit:[/b] - [2009-07-14 02:41:54 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sensrsvc.dll -- (SensrSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 01,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (PNRPsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\pnrpsvc.dll -- (p2pimsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\provsvc.dll -- (HomeGroupProvider) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C:\Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper) SRV:[b]64bit:[/b] - [2009-07-14 02:41:53 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg) SRV:[b]64bit:[/b] - [2009-07-14 02:41:27 | 01,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV:[b]64bit:[/b] - [2009-07-14 02:41:18 | 00,231,936 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysNative\ListSvc.dll -- (HomeGroupListener) SRV:[b]64bit:[/b] - [2009-07-14 02:40:54 | 01,127,936 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FntCache.dll -- (FontCache) SRV:[b]64bit:[/b] - [2009-07-14 02:40:28 | 00,314,368 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\dhcpcore.dll -- (Dhcp) SRV:[b]64bit:[/b] - [2009-07-14 02:40:28 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\defragsvc.dll -- (defragsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:40:24 | 00,689,152 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysNative\cscsvc.dll -- (CscService) SRV:[b]64bit:[/b] - [2009-07-14 02:40:13 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\bthserv.dll -- (bthserv) SRV:[b]64bit:[/b] - [2009-07-14 02:40:10 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C:\Windows\SysNative\bdesvc.dll -- (BDESVC) SRV:[b]64bit:[/b] - [2009-07-14 02:40:05 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\AxInstSv.dll -- (AxInstSV) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 00,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt) SRV:[b]64bit:[/b] - [2009-07-14 02:40:01 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appidsvc.dll -- (AppIDSvc) SRV:[b]64bit:[/b] - [2009-07-14 02:39:51 | 01,503,744 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\wbengine.exe -- (wbengine) SRV:[b]64bit:[/b] - [2009-07-14 02:39:28 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\SysNative\sppsvc.exe -- (sppsvc) SRV:[b]64bit:[/b] - [2009-07-14 02:39:11 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FXSSVC.exe -- (Fax) SRV - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\QuestService\questservice111.exe -- (QuestService Service) SRV - [2009-11-19 15:39:58 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA) SRV - [2009-11-18 07:40:19 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-07-26 06:43:14 | 00,025,832 | ---- | M] (BioWare) [On_Demand | Stopped] -- D:\Gry (x86)\Dragon Age\bin_ship\daupdatersvc.service.exe -- (DAUpdaterSvc) SRV - [2009-07-21 13:34:33 | 00,185,089 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService) SRV - [2009-07-14 04:20:14 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C:\Windows\Vss -- (VSS) SRV - [2009-07-14 04:20:14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C:\Windows\SysWOW64\Msdtc -- (MSDTC) SRV - [2009-07-14 02:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider) SRV - [2009-07-14 02:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\dhcpcore.dll -- (Dhcp) SRV - [2009-07-13 21:30:11 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C:\Windows\SysWOW64\wbem\vds.mof -- (vds) SRV - [2009-06-10 21:39:58 | 00,089,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64) SRV - [2009-05-18 18:04:44 | 00,073,728 | ---- | M] (Hewlett-Packard Company) [Auto | Running] -- C:\Program Files (x86)\Common Files\LightScribe\LSSrvc.exe -- (LightScribeService) SRV - [2009-05-13 15:48:22 | 00,108,289 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files (x86)\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\Programy (x86)\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV:[b]64bit:[/b] - [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\avgntflt.sys -- (avgntflt) DRV:[b]64bit:[/b] - [2009-11-19 22:16:06 | 00,834,544 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\sptd.sys -- (sptd) DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 00,106,576 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata) DRV:[b]64bit:[/b] - [2009-07-14 02:52:21 | 00,028,752 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata) DRV:[b]64bit:[/b] - [2009-07-14 02:52:20 | 00,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,153,152 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2) DRV:[b]64bit:[/b] - [2009-07-14 02:48:04 | 00,014,416 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy) DRV:[b]64bit:[/b] - [2009-07-14 02:47:49 | 00,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\fsdepends.sys -- (FsDepends) DRV:[b]64bit:[/b] - [2009-07-14 02:47:48 | 00,077,888 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD) DRV:[b]64bit:[/b] - [2009-07-14 02:45:56 | 00,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\wimmount.sys -- (WIMMount) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,217,680 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vhdmp.sys -- (vhdmp) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,200,272 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vmbus.sys -- (vmbus) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,046,672 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vmstorfl.sys -- (storflt) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,034,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsc.sys -- (storvsc) DRV:[b]64bit:[/b] - [2009-07-14 02:45:55 | 00,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor) DRV:[b]64bit:[/b] - [2009-07-14 02:45:46 | 00,214,096 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\rdyboost.sys -- (rdyboost) DRV:[b]64bit:[/b] - [2009-07-14 02:45:45 | 00,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\pcw.sys -- (pcw) DRV:[b]64bit:[/b] - [2009-07-14 02:43:14 | 00,460,504 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\cng.sys -- (CNG) DRV:[b]64bit:[/b] - [2009-07-14 02:43:13 | 00,223,448 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\fvevol.sys -- (fvevol) DRV:[b]64bit:[/b] - [2009-07-14 01:17:46 | 00,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\rdpbus.sys -- (rdpbus) DRV:[b]64bit:[/b] - [2009-07-14 01:16:35 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP) DRV:[b]64bit:[/b] - [2009-07-14 01:10:24 | 00,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2) DRV:[b]64bit:[/b] - [2009-07-14 01:09:26 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf) DRV:[b]64bit:[/b] - [2009-07-14 01:08:13 | 00,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ndiscap.sys -- (NdisCap) DRV:[b]64bit:[/b] - [2009-07-14 01:07:21 | 00,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vwifibus.sys -- (vwifibus) DRV:[b]64bit:[/b] - [2009-07-14 01:07:13 | 00,227,840 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\1394ohci.sys -- (1394ohci) DRV:[b]64bit:[/b] - [2009-07-14 01:07:00 | 00,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService) DRV:[b]64bit:[/b] - [2009-07-14 01:06:52 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\umpass.sys -- (UmPass) DRV:[b]64bit:[/b] - [2009-07-14 01:06:28 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\winusb.sys -- (WinUsb) DRV:[b]64bit:[/b] - [2009-07-14 01:06:24 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf) DRV:[b]64bit:[/b] - [2009-07-14 01:05:37 | 00,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf) DRV:[b]64bit:[/b] - [2009-07-14 01:02:08 | 00,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\MTConfig.sys -- (MTConfig) DRV:[b]64bit:[/b] - [2009-07-14 01:00:34 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus) DRV:[b]64bit:[/b] - [2009-07-14 01:00:13 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\beep.sys -- (Beep) DRV:[b]64bit:[/b] - [2009-07-14 00:52:39 | 00,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\appid.sys -- (AppID) DRV:[b]64bit:[/b] - [2009-07-14 00:50:17 | 00,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C:\Windows\SysNative\drivers\scfilter.sys -- (scfilter) DRV:[b]64bit:[/b] - [2009-07-14 00:42:58 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\vms3cap.sys -- (s3cap) DRV:[b]64bit:[/b] - [2009-07-14 00:42:44 | 00,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID) DRV:[b]64bit:[/b] - [2009-07-14 00:37:18 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\discache.sys -- (discache) DRV:[b]64bit:[/b] - [2009-07-14 00:31:06 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hidbatt.sys -- (HidBatt) DRV:[b]64bit:[/b] - [2009-07-14 00:31:03 | 00,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\CmBatt.sys -- (CmBatt) DRV:[b]64bit:[/b] - [2009-07-14 00:27:17 | 00,012,288 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi) DRV:[b]64bit:[/b] - [2009-07-14 00:24:27 | 00,514,048 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\csc.sys -- (CSC) DRV:[b]64bit:[/b] - [2009-07-14 00:19:25 | 00,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdppm.sys -- (AmdPPM) DRV:[b]64bit:[/b] - [2009-06-10 21:35:33 | 00,389,120 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\yk62x64.sys -- (yukonw7) DRV:[b]64bit:[/b] - [2009-06-10 21:34:33 | 03,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:28 | 00,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv) DRV:[b]64bit:[/b] - [2009-06-10 21:34:23 | 00,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a) DRV:[b]64bit:[/b] - [2009-06-10 21:31:59 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir) DRV:[b]64bit:[/b] - [2008-06-27 07:51:10 | 00,088,632 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysNative\drivers\adfs.sys -- (adfs) DRV:[b]64bit:[/b] - [2006-12-22 20:05:52 | 00,559,104 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\athrxusb.sys -- (athrusb) DRV - [2009-11-16 10:26:48 | 00,000,000 | ---D | M] [Kernel | System | Running] -- C:\Windows\CSC -- (CSC) DRV - [2009-07-14 02:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount) DRV - [2009-07-14 02:16:19 | 00,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\winusb.dll -- (WinUsb) DRV - [2009-07-14 02:16:02 | 00,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C:\Windows\SysWOW64\netbios.dll -- (NetBIOS) DRV - [2009-06-10 22:28:14 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv) DRV - [2009-06-10 22:15:18 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C:\Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip) DRV - [2008-08-14 07:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\Windows\SysWOW64\drivers\adfs.sys -- (adfs) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://home.myquickfinder.com IE - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\S-1-5-21-665221634-4083437449-3806565127-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/firefox?client=firefox-a&rls=org.mozilla:pl:official" FF - prefs.js..extensions.enabledItems: {E63605FC-D583-4C81-867F-9457BDB3EA1B}:4.1.0.2080 FF - prefs.js..extensions.enabledItems: {8141440E-08F0-4339-9959-5C31C6A69F23}:4.1.0.5290 FF - prefs.js..extensions.enabledItems: {E889F097-B0BE-471B-89AD-B86B6F04B506}:4.1.0.1960 FF - HKLM\software\mozilla\Firefox\Extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files (x86)\Web Search Operator\4.1.0.2080\FF [2009-12-15 17:25:22 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\FF [2009-12-15 17:25:30 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\FF [2009-12-15 17:25:41 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components [2009-12-20 20:49:44 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.6\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins [2009-12-20 20:49:43 | 00,000,000 | ---D | M] [2009-12-20 20:49:51 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\mozilla\Extensions [2009-12-20 20:49:51 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\mozilla\Firefox\Profiles\ndqixf8o.default\extensions [2009-12-20 20:49:43 | 00,000,000 | ---D | M] -- C:\Program Files (x86)\mozilla firefox\extensions [2009-12-02 09:23:35 | 00,002,767 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\allegro-pl.xml [2009-12-02 09:23:35 | 00,001,406 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\fbc-pl.xml [2009-12-02 09:23:35 | 00,000,917 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\merlin-pl.xml [2009-12-02 09:23:35 | 00,000,858 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\pwn-pl.xml [2009-12-02 09:23:35 | 00,001,183 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wikipedia-pl.xml [2009-12-02 09:23:35 | 00,001,683 | ---- | M] () -- C:\Program Files (x86)\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: (854 bytes) - C:\Windows\SysNative\drivers\etc\hosts O1 - Hosts: 127.0.0.1 activate.adobe.com O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll () O2 - BHO: (BitComet Helper) - {39F7E362-828A-4B5A-BCAF-5B79BFDFEA60} - D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet) O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll () O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - D:\Programy (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Pomocnik rejestracji usługi Windows Live) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files (x86)\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation) O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files (x86)\Content Management Wizard\1.1.0.1990\CMWIE.dll () O2 - BHO: (Textual Content Provider) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files (x86)\Textual Content Provider\1.1.0.1810\TCPIE.dll () O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files (x86)\Web Search Operator\4.1.0.2080\wso.dll () O3:[b]64bit:[/b] - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O3:[b]64bit:[/b] - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar64.dll () O3 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files (x86)\DAEMON Tools Toolbar\DTToolbar.dll () O4:[b]64bit:[/b] - HKLM..\Run: [WrtMon.exe] C:\Windows\SysNative\spool\drivers\x64\3\WrtMon.exe () O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files (x86)\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [avgnt] C:\Program Files (x86)\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH) O4 - HKLM..\Run: [GrooveMonitor] D:\Programy (x86)\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [Internet Today Task] C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe () O4 - HKLM..\Run: [OpwareSE4] C:\Program Files (x86)\ScanSoft\OmniPageSE4\OpwareSE4.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [QuickTime Task] D:\Programy (x86)\QuickTime\QTTask.exe (Apple Inc.) O4 - HKLM..\Run: [SSBkgdUpdate] C:\Program Files (x86)\Common Files\Scansoft Shared\SSBkgdUpdate\SSBkgdupdate.exe (Nuance Communications, Inc.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files (x86)\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.) O4 - HKU\S-1-5-19..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [Sidebar] C:\Program Files (x86)\Windows Sidebar\Sidebar.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [AQQ] D:\Programy (x86)\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [DAEMON Tools Lite] D:\Programy (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-665221634-4083437449-3806565127-1000..\Run: [LightScribe Control Panel] C:\Program Files (x86)\Common Files\LightScribe\LightScribeControlPanel.exe (Hewlett-Packard Company) O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3 O8:[b]64bit:[/b] - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8:[b]64bit:[/b] - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8:[b]64bit:[/b] - Extra context menu item: Pobierz wszystko za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8:[b]64bit:[/b] - Extra context menu item: Pobierz za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - D:\Programy (x86)\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O8 - Extra context menu item: Pobierz wszystkie VIdeo za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz wszystko za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O8 - Extra context menu item: Pobierz za pomocą BitComet - D:\Programy (x86)\BitComet\BitComet.exe (www.BitComet.com) O9 - Extra Button: BitComet - {D18A0B52-D63C-4ed0-AFC6-C1E3DC1AF43A} - D:\Programy (x86)\BitComet\tools\BitCometBHO_1.3.7.16.dll (BitComet) O13 - gopher Prefix: missing O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 O18:[b]64bit:[/b] - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - Reg Error: Key error. File not found O18:[b]64bit:[/b] - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - Reg Error: Key error. File not found O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - D:\Programy (x86)\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\wlmailhtml {03C514A3-1EFB-4856-9F99-10D7BE1653C0} - C:\Program Files (x86)\Windows Live\Mail\mailcomm.dll (Microsoft Corporation) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\PROGRA~2\COMMON~1\MICROS~1\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation) O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation) O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found. O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - D:\Programy (x86)\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O30:[b]64bit:[/b] - LSA: Security Packages - (pku2u) - C:\Windows\SysNative\pku2u.dll (Microsoft Corporation) O30 - LSA: Security Packages - (pku2u) - C:\Windows\SysWow64\pku2u.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-10-15 17:11:14 | 00,000,024 | ---- | M] () - F:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found [b]64bit:[/b] O35 - comfile [open] -- "%1" %* File not found [b]64bit:[/b] O35 - exefile [open] -- "%1" %* File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs:[b]64bit:[/b] Ias - C:\Windows\SysNative\ias [2009-07-14 04:20:14 | 00,000,000 | ---D | M] NetSvcs:[b]64bit:[/b] Irmon - C:\Windows\SysNative\irmon.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] Wmi - C:\Windows\SysNative\wmi.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] Themes - C:\Windows\SysNative\themeservice.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] BDESVC - C:\Windows\SysNative\bdesvc.dll (Microsoft Corporation) NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation) NetSvcs: Ias - C:\Windows\SysWOW64\ias.dll (Microsoft Corporation) NetSvcs: Wmi - C:\Windows\SysWOW64\wmi.dll (Microsoft Corporation) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2009-12-21 19:30:55 | 00,513,536 | ---- | C] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-20 20:57:04 | 00,812,344 | ---- | C] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:47 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Mozilla [2009-12-20 20:49:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox [2009-12-20 20:18:51 | 08,794,216 | ---- | C] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-15 17:27:11 | 00,000,000 | ---D | C] -- C:\ProgramData\QuestService [2009-12-15 17:27:11 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\QuestService [2009-12-15 17:26:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Textual Content Provider [2009-12-15 17:26:17 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Content Management Wizard [2009-12-15 17:26:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Internet Today [2009-12-15 17:26:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Internet Today [2009-12-15 17:25:41 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Customized Platform Advancer [2009-12-15 17:25:40 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Customized Platform Advancer [2009-12-15 17:25:30 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Automated Content Enhancer [2009-12-15 17:25:22 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Web Search Operator [2009-12-15 17:25:07 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Gameztar Toolbar [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Symantec [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSSx64 [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Norton Security Scan [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\ProgramData\Norton [2009-12-15 17:00:01 | 00,000,000 | ---D | C] -- C:\Windows\SysNative\drivers\NSSx64\0207000.034 [2009-12-15 17:00:00 | 00,000,000 | ---D | C] -- C:\ProgramData\NortonInstaller [2009-12-15 17:00:00 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NortonInstaller [2009-12-15 16:58:10 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-15 16:58:08 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\My PageManager [2009-12-15 16:57:42 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\NewSoft [2009-12-15 08:35:32 | 00,000,000 | ---D | C] -- C:\Pulpit [2009-12-15 08:34:57 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Adobe [2009-12-14 16:18:15 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-12-14 16:14:13 | 00,421,346 | ---- | C] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-14 15:59:28 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\Electronic Arts [2009-12-13 08:44:37 | 00,074,880 | ---- | C] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-13 08:44:37 | 00,028,520 | ---- | C] (Avira GmbH) -- C:\Windows\SysWow64\drivers\ssmdrv.sys [2009-12-13 08:44:35 | 00,000,000 | ---D | C] -- C:\ProgramData\Avira [2009-12-13 08:44:35 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Avira [2009-12-12 16:41:16 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\Eidos [2009-12-10 18:30:30 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-10 17:08:50 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\BioWare [2009-12-10 17:04:45 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts [2009-12-10 17:04:37 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe AIR [2009-12-10 17:04:04 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\AGEIA Technologies [2009-12-10 17:04:04 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\AGEIA [2009-12-10 17:03:57 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Wise Installation Wizard [2009-12-10 17:03:56 | 00,000,000 | ---D | C] -- C:\ProgramData\Media Center Programs [2009-12-09 21:29:58 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\BioWare [2009-12-06 03:16:12 | 00,000,000 | ---D | C] -- C:\ProgramData\TEMP [2009-12-06 03:16:12 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-12-06 00:59:32 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Scansoft [2009-12-04 12:31:08 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\NewSoft [2009-12-04 12:30:55 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PDFView [2009-12-04 12:30:54 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\NewSoft [2009-12-04 12:30:54 | 00,000,000 | ---D | C] -- C:\Windows\SysWow64\Color [2009-12-04 12:30:20 | 00,000,000 | ---D | C] -- C:\ProgramData\InstallShield [2009-12-04 12:30:15 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-04 12:30:12 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\ScanSoft Shared [2009-12-04 12:30:12 | 00,000,000 | ---D | C] -- C:\ProgramData\ScanSoft [2009-12-04 12:29:51 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\ScanSoft [2009-12-04 12:29:21 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\InstallShield [2009-12-04 12:24:17 | 00,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ [2009-11-30 14:28:02 | 04,547,793 | ---- | C] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 16:12:31 | 00,000,000 | ---D | C] -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl [2009-11-28 12:28:11 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Works [2009-11-28 12:27:53 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio [2009-11-28 12:27:53 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\DESIGNER [2009-11-28 12:27:42 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft.NET [2009-11-28 12:26:23 | 00,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2009-11-28 12:26:20 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 8 [2009-11-28 12:25:57 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Microsoft Help [2009-11-28 12:25:56 | 00,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help [2009-11-28 12:12:24 | 00,000,000 | ---D | C] -- C:\Users\Public\Documents\DAEMON Tools Images [2009-11-27 12:48:01 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Java [2009-11-26 16:12:30 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Diagnostics [2009-11-25 16:15:27 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\WDSetup [2009-11-25 16:13:16 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\PC SOFT [2009-11-25 16:10:12 | 00,394,488 | ---- | C] (PC SOFT) -- C:\Users\Boski\Desktop\INSTALL.EXE [2009-11-23 20:46:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\Documents\VirtualDJ [2009-11-23 19:52:18 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-22 19:33:37 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple Computer [2009-11-22 19:33:08 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Apple [2009-11-22 19:33:03 | 00,000,000 | ---D | C] -- C:\Users\Boski\AppData\Local\Apple [2009-11-22 19:33:02 | 00,000,000 | ---D | C] -- C:\Program Files (x86)\Apple Software Update [2009-11-22 19:33:02 | 00,000,000 | ---D | C] -- C:\ProgramData\Apple [2004-11-24 19:25:52 | 00,335,872 | ---- | C] ( ) -- C:\Windows\SysWow64\drvc.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:35:59 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2009-12-20 20:57:27 | 00,000,943 | ---- | C] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:49:44 | 00,001,939 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-19 09:29:26 | 00,015,550 | ---- | C] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:57 | 00,354,896 | ---- | C] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-16 07:32:01 | 00,073,872 | ---- | C] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | C] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:03 | 00,000,498 | ---- | C] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-15 17:00:01 | 00,000,172 | ---- | C] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-14 18:38:19 | 07,560,913 | ---- | C] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:41 | 05,210,729 | ---- | C] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | C] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | C] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:01 | 03,422,281 | ---- | C] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | C] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:26:13 | 00,114,622 | ---- | C] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | C] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-13 08:44:49 | 00,001,994 | ---- | C] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:39 | 00,041,556 | ---- | C] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:41:17 | 00,015,055 | ---- | C] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | C] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | C] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | C] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:41:05 | 01,146,132 | ---- | C] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-06 01:41:04 | 01,152,428 | ---- | C] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-12-06 01:41:04 | 00,916,961 | ---- | C] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-06 01:40:11 | 00,000,000 | -H-- | C] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | C] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:35 | 00,009,606 | ---- | C] () -- C:\Windows\SysNative\NEWSOFT [2009-12-04 12:31:24 | 00,000,264 | ---- | C] () -- C:\Windows\setup.iss [2009-12-04 12:31:16 | 00,011,776 | ---- | C] () -- C:\Windows\SysWow64\pmsbfn32.dll [2009-12-04 12:30:21 | 00,000,424 | ---- | C] () -- C:\Windows\MAXLINK.INI [2009-11-30 14:36:19 | 00,000,762 | ---- | C] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:36:18 | 00,421,888 | ---- | C] () -- C:\Windows\SysNative\ac3filter.acm [2009-11-30 14:34:11 | 07,855,400 | ---- | C] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:49 | 00,050,688 | ---- | C] () -- C:\Windows\SysWow64\ff_acm.acm [2009-11-28 15:41:00 | 04,977,929 | ---- | C] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | C] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | C] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 08:57:03 | 00,591,360 | ---- | C] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-28 08:57:03 | 00,036,398 | ---- | C] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-28 08:57:03 | 00,003,584 | ---- | C] () -- C:\Users\Boski\Desktop\DLPORTIO.sys [2009-11-28 08:57:02 | 01,818,579 | ---- | C] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-28 08:57:02 | 01,304,576 | ---- | C] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-28 08:56:18 | 03,663,962 | ---- | C] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 17:41:35 | 00,294,151 | ---- | C] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-26 06:49:49 | 00,002,643 | ---- | C] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:29:18 | 00,000,749 | ---- | C] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:16:08 | 87,167,236 | ---- | C] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:09:08 | 00,293,983 | ---- | C] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 06:44:09 | 00,018,231 | ---- | C] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:43:59 | 00,040,176 | ---- | C] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | C] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:21 | 03,489,155 | ---- | C] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | C] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [2009-11-18 15:06:29 | 00,000,321 | ---- | C] () -- C:\Windows\game.ini [2009-07-14 00:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll [2009-07-13 22:03:59 | 00,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll [2008-12-19 15:15:58 | 04,338,246 | ---- | C] () -- C:\Windows\SysWow64\libavcodec.dll [2008-12-17 17:41:18 | 00,884,237 | ---- | C] () -- C:\Windows\SysWow64\ff_x264.dll [2008-12-17 17:22:58 | 00,093,184 | ---- | C] () -- C:\Windows\SysWow64\ff_wmv9.dll [2008-12-17 17:22:48 | 00,057,344 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll [2008-12-17 17:17:34 | 00,239,247 | ---- | C] () -- C:\Windows\SysWow64\ff_theora.dll [2008-12-17 16:59:54 | 00,560,802 | ---- | C] () -- C:\Windows\SysWow64\libmplayer.dll [2008-12-11 11:27:02 | 00,000,547 | ---- | C] () -- C:\Windows\SysWow64\ff_vfw.dll.manifest [2008-10-07 09:13:30 | 00,197,912 | ---- | C] () -- C:\Windows\SysWow64\physxcudart_20.dll [2008-10-07 09:13:22 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelTraditionalChinese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSwedish.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSpanish.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelSimplifiedChinese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelPortugese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelKorean.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelJapanese.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelGerman.dll [2008-10-07 09:13:20 | 00,058,648 | ---- | C] () -- C:\Windows\SysWow64\AgCPanelFrench.dll [2004-10-03 17:50:54 | 00,129,024 | ---- | C] () -- C:\Windows\SysWow64\ff_mpeg2enc.dll [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [2009-11-28 12:27:02 | 00,000,000 | ---D | M] -- C:\Program Files\Common Files\Microsoft Shared [2009-11-28 12:26:23 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:36:50 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-11-28 12:27:02 | 00,000,000 | ---D | M] -- C:\Program Files\Common Files\Microsoft Shared [2009-11-28 12:26:23 | 00,000,000 | ---D | M] -- C:\Program Files\Microsoft Office [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2009-12-21 19:37:39 | 03,407,872 | -HS- | M] () -- C:\Users\Boski\NTUSER.DAT [2009-12-21 19:31:29 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\Users\Boski\Desktop\OTL.exe [2009-12-21 15:11:24 | 00,103,736 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:09:10 | 00,016,944 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0 [2009-12-21 15:06:58 | 01,523,412 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI [2009-12-21 15:06:58 | 00,687,590 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat [2009-12-21 15:06:58 | 00,606,992 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat [2009-12-21 15:06:58 | 00,131,176 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat [2009-12-21 15:06:58 | 00,103,370 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat [2009-12-21 15:02:00 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2009-12-21 15:01:57 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 09:05:41 | 03,909,148 | -H-- | M] () -- C:\Users\Boski\AppData\Local\IconCache.db [2009-12-20 21:33:52 | 00,215,104 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr [2009-12-20 20:57:27 | 00,000,943 | ---- | M] () -- C:\Users\Boski\Desktop\HijackThis.lnk [2009-12-20 20:57:10 | 00,812,344 | ---- | M] (Trend Micro Inc.) -- C:\Users\Boski\Desktop\HJTInstall.exe [2009-12-20 20:49:44 | 00,001,939 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk [2009-12-20 20:20:08 | 08,794,216 | ---- | M] (Mozilla) -- C:\Users\Boski\Desktop\Firefox Setup 3.5.6.exe [2009-12-19 09:29:27 | 00,015,550 | ---- | M] () -- C:\Users\Boski\Desktop\U_Pana_Boga_za_miedza_ 2009 _[DVDRip]_[RMVB]_[PL][Torrenty.org].torrent [2009-12-18 20:51:58 | 00,354,896 | ---- | M] () -- C:\Users\Boski\Desktop\pl.jpg [2009-12-17 15:02:02 | 00,000,498 | ---- | M] () -- C:\Windows\tasks\Norton Security Scan for Boski.job [2009-12-16 07:32:15 | 00,073,872 | ---- | M] () -- C:\Users\Boski\Desktop\Halo_3_ODST.X360.Allstars.ShareReactor.torrent [2009-12-15 17:00:03 | 00,001,085 | ---- | M] () -- C:\Users\Public\Desktop\Norton Security Scan.lnk [2009-12-15 17:00:01 | 00,000,172 | ---- | M] () -- C:\Windows\SysNative\drivers\NSSx64\0207000.034\isolate.ini [2009-12-15 12:34:12 | 00,074,880 | ---- | M] (Avira GmbH) -- C:\Windows\SysNative\drivers\avgntflt.sys [2009-12-14 18:38:20 | 07,560,913 | ---- | M] () -- C:\Users\Boski\Desktop\the hitmen - like i love you (vocal club mix).mp3 [2009-12-14 18:08:42 | 05,210,729 | ---- | M] () -- C:\Users\Boski\Desktop\the real booty babes - poker face (club mix).mp3 [2009-12-14 18:04:07 | 03,007,248 | ---- | M] () -- C:\Users\Boski\Desktop\paffendorf - bring it back (the hitmen radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 18:01:21 | 02,912,371 | ---- | M] () -- C:\Users\Boski\Desktop\mallancia - move your body (radio mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:58:02 | 03,422,281 | ---- | M] () -- C:\Users\Boski\Desktop\pakito - harmony (radio edit)_www.clubmp3.prv.pl.mp3 [2009-12-14 17:54:48 | 05,733,596 | ---- | M] () -- C:\Users\Boski\Desktop\komodo - i'm not missing (extended mix)_www.clubmp3.prv.pl.mp3 [2009-12-14 16:32:49 | 00,114,622 | ---- | M] () -- C:\Users\Boski\Desktop\coca_cola_sms.mp3 [2009-12-14 16:16:41 | 00,000,694 | ---- | M] () -- C:\Users\Boski\Desktop\Audacity 1.3 Beta (Unicode).lnk [2009-12-14 16:15:37 | 00,421,346 | ---- | M] ( ) -- C:\Users\Boski\Desktop\Lame_v3.98.2_for_Audacity_on_Windows.exe [2009-12-13 08:44:49 | 00,001,994 | ---- | M] () -- C:\Users\Public\Desktop\Avira AntiVir Control Center.lnk [2009-12-11 22:27:40 | 00,041,556 | ---- | M] () -- C:\Users\Boski\Desktop\2012_(NAPiSY-112694).NS.zip [2009-12-10 18:42:29 | 00,015,055 | ---- | M] () -- C:\Users\Boski\Desktop\Trening mięśni.docx [2009-12-10 17:03:53 | 00,000,699 | ---- | M] () -- C:\Users\Public\Desktop\Dragon Age Początek.lnk [2009-12-07 21:08:45 | 00,000,830 | ---- | M] () -- C:\Users\Boski\Desktop\The Settlers III.lnk [2009-12-06 03:23:08 | 00,000,902 | ---- | M] () -- C:\Users\Boski\Desktop\Tutu FLV to AVI Converter.lnk [2009-12-06 01:40:11 | 00,000,000 | -H-- | M] () -- C:\Windows\SysNative\drivers\Msft_User_WpdMtpDr_01_09_00.Wdf [2009-12-04 12:31:50 | 00,002,169 | ---- | M] () -- C:\Users\Public\Desktop\Presto! PageManager 7.15.lnk [2009-12-04 12:31:36 | 00,000,264 | ---- | M] () -- C:\Windows\setup.iss [2009-12-04 12:30:21 | 00,000,424 | ---- | M] () -- C:\Windows\MAXLINK.INI [2009-12-04 08:16:08 | 00,916,961 | ---- | M] () -- C:\Users\Boski\Desktop\20091204201.jpg [2009-12-04 08:15:58 | 01,146,132 | ---- | M] () -- C:\Users\Boski\Desktop\20091204200.jpg [2009-12-04 08:15:44 | 01,152,428 | ---- | M] () -- C:\Users\Boski\Desktop\20091204199.jpg [2009-11-30 14:36:19 | 00,000,762 | ---- | M] () -- C:\Users\Boski\Desktop\Media Player Classic.lnk [2009-11-30 14:35:53 | 07,855,400 | ---- | M] () -- C:\Users\Boski\Desktop\XP-Codec-Pack-2.5.0.exe [2009-11-30 14:29:18 | 04,547,793 | ---- | M] (ffdshow ) -- C:\Users\Boski\Desktop\ffdshow_rev3136_20091125_clsid(dobreprogramy.pl).exe [2009-11-28 21:24:56 | 03,055,248 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT [2009-11-28 15:41:49 | 04,977,929 | ---- | M] () -- C:\Users\Boski\Desktop\nfk070-www.arpegio.pl.rar [2009-11-28 12:47:27 | 00,042,360 | ---- | M] () -- C:\Users\Boski\Desktop\assassin_s_creed_ii_-pc-okladka_2d_cz-400x564[1].jpg [2009-11-28 12:46:15 | 00,068,913 | ---- | M] () -- C:\Users\Boski\Desktop\1247598932877898.jpg [2009-11-28 12:38:38 | 00,124,200 | ---- | M] () -- C:\Users\Boski\AppData\Local\GDIPFONTCACHEV1.DAT [2009-11-28 12:26:07 | 00,000,478 | ---- | M] () -- C:\Windows\win.ini [2009-11-28 08:56:50 | 03,663,962 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox360HDDupdated.rar [2009-11-27 18:19:45 | 01,304,576 | ---- | M] () -- C:\Users\Boski\Desktop\Przywrócenie możliwości instalacji gier na HDD Xboxa 360.doc [2009-11-27 17:41:39 | 00,294,151 | ---- | M] () -- C:\Users\Boski\Desktop\Xbox_Image_Browser_v1.0.zip [2009-11-27 17:25:47 | 00,591,360 | ---- | M] () -- C:\Users\Boski\Desktop\XBOX-LPT.doc [2009-11-26 20:39:27 | 00,036,398 | ---- | M] () -- C:\Users\Boski\Desktop\FindSecDatav0_4.zip [2009-11-26 06:50:12 | 00,002,643 | ---- | M] () -- C:\Users\Boski\Desktop\Charakterystyka tartuffe.rtf [2009-11-25 16:34:13 | 87,167,236 | ---- | M] () -- C:\Users\Boski\Desktop\wavesdata1_3.rar [2009-11-25 16:29:18 | 00,000,749 | ---- | M] () -- C:\Users\Public\Desktop\360WavesPatcher.lnk [2009-11-25 16:09:12 | 00,293,983 | ---- | M] () -- C:\Users\Boski\Desktop\360-Waves-Patcher.zip [2009-11-24 17:50:10 | 01,818,579 | ---- | M] () -- C:\Users\Boski\Desktop\nandpro20b.rar [2009-11-24 06:44:09 | 00,018,231 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_-_Wszystkie_dodatki_-_DLC[Torrenty.org].torrent [2009-11-24 06:44:00 | 00,040,176 | ---- | M] () -- C:\Users\Boski\Desktop\Dragon_Age_Poczatek_[PL]_[PAL]_[XBOX360-SKAZA]_[iXreme_1 4-1 61][Torrenty.org].torrent [2009-11-23 20:46:06 | 00,000,713 | ---- | M] () -- C:\Users\Boski\Desktop\Virtual DJ Trial.lnk [2009-11-22 19:38:22 | 03,489,155 | ---- | M] () -- C:\Users\Boski\Desktop\monopol - zodiak na melanzu [hit lata 2009]Amor.mp3 [2009-11-22 19:33:44 | 00,001,591 | ---- | M] () -- C:\Users\Public\Desktop\QuickTime Player.lnk [color=#E56717]========== LOP Check ==========[/color] [2009-12-18 06:26:01 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\abgx360 [2009-12-10 18:30:30 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Ashampoo [2009-12-14 16:33:08 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Audacity [2009-11-19 22:20:04 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\DAEMON Tools Lite [2009-12-06 03:20:37 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\Eltima Software [2009-11-19 20:53:38 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GetRightToGo [2009-11-23 19:52:19 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\GHISLER [2009-11-19 00:07:24 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ImgBurn [2009-12-15 16:58:11 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\NewSoft [2009-12-04 12:30:15 | 00,000,000 | ---D | M] -- C:\Users\Boski\AppData\Roaming\ScanSoft [2009-12-13 14:23:33 | 00,000,000 | ---D | M] -- C:\Users\Gość\AppData\Roaming\Nowe Gadu-Gadu [2009-12-20 10:23:15 | 00,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2009-07-14 02:38:58 | 00,383,562 | RHS- | M] () -- C:\bootmgr [2009-11-16 10:25:25 | 00,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK [2009-11-16 11:10:14 | 00,204,868 | RHS- | M] () -- C:\grldr [2009-12-21 15:01:51 | 24,152,71936 | -HS- | M] () -- C:\hiberfil.sys [2009-12-21 15:01:54 | 32,203,65312 | -HS- | M] () -- C:\pagefile.sys [2009-11-16 10:40:44 | 00,000,159 | ---- | M] () -- C:\Setup.log [2009-11-16 11:10:14 | 00,000,000 | RHS- | M] () -- C:\winx.ld < End of report > [/log]
Mateusz J. komentarz 21 grudnia 2009 komentarz 21 grudnia 2009 Uruchom OTL i w oknie Custom Scans/Fixes wklej to:[code] :Processes Explorer.EXE :OTL PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\ProgramData\QuestService\questservice111.exe PRC - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.exe MOD - [2009-12-09 14:06:34 | 00,598,016 | ---- | M] () -- C:\Program Files (x86)\QuestService\questservice.dll SRV - [2009-12-09 14:06:42 | 00,046,456 | ---- | M] () [Auto | Running] -- C:\ProgramData\QuestService\questservice111.exe -- (QuestService Service) O2 - BHO: (Textual Content Provider) - {CAC89FF9-34A9-4431-8CFE-292A47F843BC} - C:\Program Files (x86)\Textual Content Provider\1.1.0.1810\TCPIE.dll () O2 - BHO: (Content Management Wizard) - {B72681C0-A222-4b21-A0E2-53A5A5CA3D41} - C:\Program Files (x86)\Content Management Wizard\1.1.0.1990\CMWIE.dll () PRC - [2009-12-15 17:22:38 | 00,348,160 | ---- | M] () -- C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe O4 - HKLM..\Run: [Internet Today Task] C:\Program Files (x86)\Internet Today\1.1.0.1260\InternetToday.exe () FF - HKLM\software\mozilla\Firefox\Extensions\\{E889F097-B0BE-471B-89AD-B86B6F04B506}: C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\FF [2009-12-15 17:25:41 | 00,000,000 | ---D | M] O2 - BHO: (Customized Platform Advancer) - {42C7C39F-3128-4a17-BDB7-91C46032B5B9} - C:\Program Files (x86)\Customized Platform Advancer\4.1.0.1960\CPAIEAddOn.dll () FF - HKLM\software\mozilla\Firefox\Extensions\\{8141440E-08F0-4339-9959-5C31C6A69F23}: C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\FF [2009-12-15 17:25:30 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\Extensions\\{E63605FC-D583-4C81-867F-9457BDB3EA1B}: C:\Program Files (x86)\Web Search Operator\4.1.0.2080\FF [2009-12-15 17:25:22 | 00,000,000 | ---D | M] O2 - BHO: (Automated Content Enhancer) - {1D74E9DD-8987-448b-B2CB-67FFF2B8A932} - C:\Program Files (x86)\Automated Content Enhancer\4.1.0.5290\ACEIEAddOn.dll () O2 - BHO: (Web Search Operator) - {EB4A577D-BCAD-4b1c-8AF2-9A74B8DD3431} - C:\Program Files (x86)\Web Search Operator\4.1.0.2080\wso.dll () O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\SysWow64\mctadmin.exe File not found :Files C:\ProgramData\QuestService C:\Program Files (x86)\QuestService C:\Program Files (x86)\Textual Content Provider C:\Program Files (x86)\Content Management Wizard C:\Users\Boski\AppData\Local\Internet Today C:\Program Files (x86)\Internet Today C:\Users\Boski\AppData\Local\Customized Platform Advancer C:\Program Files (x86)\Customized Platform Advancer C:\Program Files (x86)\Automated Content Enhancer C:\Program Files (x86)\Web Search Operator C:\Program Files (x86)\Gameztar Toolbar :Commands [emptytemp] [start explorer] [Reboot][/code]Kliknij w Run Fix i zatwierdź restart komputera. Następnie uruchom OTL ponownie, tym razem wywołaj opcję Run Scan. Pokaż nowy log OTL.txt oraz log z czyszczenia.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.