asmodeuszz utworzono 20 lutego 2010 utworzono 20 lutego 2010 Witam, podłączyłem zawirusowanego laptopa do sieci ( żeby przekopiować Combofix bo się nie da ściągnąć z neta, z płyty, OTL natychmiast się sam wyłącza, nie wiem jak go ruszyć ) Podczas dołączania do sieci na laptopie moim wystąpił błąd z opisu, natychmiast Combofix i log OTL COMBOFIX laptop mój [log]ComboFix 10-02-19.04 - Cyprian 2010-02-20 10:54:27.1.1 - FAT32x86 Microsoft Windows XP Professional 5.1.2600.3.1250.48.1045.18.958.639 [GMT 1:00] Uruchomiony z: C:\Documents and Settings\Cyprian\Pulpit\ComboFix.exe AV: AVG Anti-Virus Free *On-access scanning enabled* (Updated) {17DDD097-36FF-435F-9E1B-52D74245D6BF} UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !! . ((((((((((((((((((((((((( Pliki utworzone od 2010-01-20 do 2010-02-20 ))))))))))))))))))))))))))))))) . 2010-02-08 16:18:06 . 2010-02-08 16:18:06 -------- d-----w- C:\FOUND.005 2010-02-05 20:40:58 . 2010-02-05 20:40:58 -------- d-----w- C:\FOUND.004 2010-02-05 20:39:34 . 2010-02-05 20:39:34 -------- d-----w- C:\FOUND.003 2010-02-04 20:18:56 . 2010-02-04 20:18:58 -------- d-----w- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Adobe 2010-02-03 18:47:02 . 2010-02-03 18:47:02 -------- d-----w- C:\FOUND.002 2010-02-03 17:13:51 . 2010-02-03 17:13:52 -------- d-----w- C:\Program Files\SpeedFan 2010-02-03 16:04:36 . 2010-02-03 16:04:38 12328 ----a-w- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT 2010-02-03 16:04:31 . 2010-02-03 16:04:32 -------- d-----w- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\vdownloader 2010-02-03 16:04:12 . 2010-02-03 16:04:14 -------- d-----w- C:\Program Files\VDOWNLOADER 2010-02-03 16:04:12 . 2010-02-03 16:04:14 -------- d-----w- C:\Program Files\Common Files\eBay 2010-02-03 14:30:02 . 2001-10-26 17:29:42 77824 ----a-w- C:\WINDOWS\system32\dllcache\spcommon.dll 2010-02-03 14:30:02 . 2001-10-26 17:28:46 61440 ----a-w- C:\WINDOWS\system32\dllcache\spcplui.dll 2010-02-03 14:30:01 . 2001-10-26 17:30:02 36864 ----a-w- C:\WINDOWS\system32\dllcache\sapisvr.exe 2010-02-03 14:30:01 . 2001-10-26 17:29:42 774144 ----a-w- C:\WINDOWS\system32\dllcache\spttseng.dll 2010-02-03 14:30:00 . 2008-04-14 20:50:46 741376 ----a-w- C:\WINDOWS\system32\dllcache\sapi.dll 2010-02-03 14:29:59 . 2007-04-02 21:56:02 22016 ----a-w- C:\WINDOWS\system32\dllcache\agt0408.dll 2010-02-03 14:29:59 . 2007-04-02 21:56:02 19456 ----a-w- C:\WINDOWS\system32\dllcache\agt041f.dll 2010-02-03 14:29:59 . 2007-04-02 21:56:02 19456 ----a-w- C:\WINDOWS\system32\dllcache\agt0419.dll 2010-02-03 14:29:46 . 2007-04-02 21:56:02 19968 ----a-w- C:\WINDOWS\system32\dllcache\agt040e.dll 2010-02-03 14:29:46 . 2007-04-02 21:56:02 19456 ----a-w- C:\WINDOWS\system32\dllcache\agt0415.dll 2010-02-03 14:29:46 . 2007-04-02 21:56:00 19456 ----a-w- C:\WINDOWS\system32\dllcache\agt0405.dll 2010-02-03 14:29:42 . 2008-04-14 20:50:06 8704 ----a-w- C:\WINDOWS\system32\dllcache\batt.dll 2010-02-03 14:25:06 . 2010-02-03 14:17:58 3777280 ----a-w- C:\Documents and Settings\All Users\Dane aplikacji\avg9\update\backup\setup.exe 2010-02-03 14:25:06 . 2010-02-03 14:17:56 1260800 ----a-w- C:\Documents and Settings\All Users\Dane aplikacji\avg9\update\backup\avgfrw.exe 2010-02-03 14:19:32 . 2010-02-03 14:19:32 -------- d-----w- C:\FOUND.001 2010-02-03 14:18:09 . 2010-02-03 14:18:10 360584 ----a-w- C:\WINDOWS\system32\drivers\avgtdix.sys 2010-02-03 14:18:00 . 2010-02-03 14:18:02 333192 ----a-w- C:\WINDOWS\system32\drivers\avgldx86.sys 2010-02-03 14:18:00 . 2010-02-03 14:18:02 28424 ----a-w- C:\WINDOWS\system32\drivers\avgmfx86.sys 2010-02-03 14:17:59 . 2010-02-03 14:18:00 -------- d-----w- C:\WINDOWS\system32\drivers\Avg 2010-02-03 14:17:53 . 2010-02-03 14:17:54 -------- d-----w- C:\Program Files\AVG 2010-02-03 14:17:53 . 2010-02-03 14:17:54 -------- d-----w- C:\Documents and Settings\All Users\Dane aplikacji\avg9 2010-02-03 14:15:13 . 2010-02-03 14:15:14 -------- d-----w- C:\Documents and Settings\Cyprian\Dane aplikacji\Gadu-Gadu 2010-02-03 14:14:25 . 2010-02-03 14:14:26 -------- d-----w- C:\Documents and Settings\Cyprian\Gadu-Gadu 2010-02-03 14:14:22 . 2010-02-03 14:14:24 -------- d-----w- C:\Program Files\Gadu-Gadu 2010-02-03 14:12:20 . 2010-02-03 14:12:22 -------- d-----w- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Opera 2010-02-03 14:12:13 . 2010-02-03 14:12:14 -------- d-----w- C:\Program Files\Opera 2010-02-03 14:11:34 . 2009-08-16 15:08:36 178176 ----a-w- C:\WINDOWS\system32\unrar.dll 2010-02-03 14:11:32 . 2009-05-29 21:37:40 205824 ----a-w- C:\WINDOWS\system32\xvidvfw.dll 2010-02-03 14:11:32 . 2004-01-25 16:18:44 217088 ----a-w- C:\WINDOWS\system32\yv12vfw.dll 2010-02-03 14:11:30 . 2009-12-11 18:00:00 85504 ----a-w- C:\WINDOWS\system32\ff_vfw.dll 2010-02-03 14:11:28 . 2010-02-03 14:11:30 -------- d-----w- C:\Program Files\K-Lite Codec Pack 2010-02-03 14:08:24 . 2010-02-03 14:08:26 233243 ----a-w- C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_8812.exe 2010-02-03 14:08:23 . 2010-02-03 14:08:24 -------- d-----w- C:\Program Files\Burn4Free Toolbar 2010-02-03 14:08:19 . 2010-02-03 14:08:20 -------- d-----w- C:\Program Files\Burn4Free 2010-02-03 14:07:44 . 2010-02-03 14:07:46 -------- d-----w- C:\Program Files\NAPI-PROJEKT 2010-02-03 14:07:44 . 2009-06-11 21:52:12 892928 ----a-w- C:\WINDOWS\system32\iconv.dll 2010-02-03 14:07:44 . 2009-05-29 21:31:52 881664 ----a-w- C:\WINDOWS\system32\xvidcore.dll 2010-02-03 14:07:41 . 2010-02-03 14:07:42 -------- d-----w- C:\Program Files\ALLPlayer 2010-02-03 14:06:28 . 2010-02-03 14:06:30 -------- d-----w- C:\Program Files\Common Files\Adobe . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-11 14:15:38 . 2001-10-26 15:15:16 49910 ----a-w- C:\WINDOWS\system32\perfc015.dat 2010-02-11 14:15:38 . 2001-10-26 15:15:16 356068 ----a-w- C:\WINDOWS\system32\perfh015.dat 2010-02-03 14:13:16 . 2010-02-03 14:13:15 -------- d-----w- C:\Program Files\Winamp Detect 2010-02-03 14:13:12 . 2010-02-03 14:13:11 -------- d-----w- C:\Program Files\Winamp 2010-02-03 14:13:12 . 2010-02-03 14:13:11 -------- d-----w- C:\Documents and Settings\Cyprian\Dane aplikacji\Winamp 2010-02-03 14:04:22 . 2010-02-03 14:04:20 -------- d-----w- C:\Program Files\Realtek Sound Manager 2010-02-03 14:04:20 . 2010-02-03 14:04:19 -------- d-----w- C:\Program Files\AvRack 2010-02-03 13:58:44 . 2010-02-03 13:58:42 -------- d--h--w- C:\Program Files\InstallShield Installation Information 2010-02-03 13:58:44 . 2010-02-03 13:58:42 -------- d-----w- C:\Program Files\S3 2010-02-03 13:57:04 . 2010-02-03 13:57:03 17801 ----a-w- C:\WINDOWS\system32\drivers\AegisP.sys 2010-02-03 13:56:46 . 2010-02-03 13:56:44 -------- d-----w- C:\Program Files\Common Files\InstallShield 2010-02-03 13:39:02 . 2010-02-03 13:39:01 -------- d-----w- C:\Program Files\microsoft frontpage 2010-02-03 13:38:04 . 2010-02-03 13:37:55 86327 ----a-w- C:\WINDOWS\pchealth\helpctr\OfflineCache\index.dat 2010-02-03 13:37:28 . 2010-02-03 13:37:27 -------- d-----w- C:\Program Files\Usługi online 2010-02-03 13:35:22 . 2010-02-03 13:35:20 21856 ----a-w- C:\WINDOWS\system32\emptyregdb.dat 2010-02-03 13:34:56 . 2010-02-03 13:34:55 -------- d-----w- C:\Program Files\Windows Media Connect 2 . ------- Sigcheck ------- [-] 2008-05-08 17:02:02 . ACCF5A9A1FFAA490F33DBA1C632B95E1 . 361344 . . [5.1.2600.5512 (xpsp.080413-0852)] . . C:\WINDOWS\system32\drivers\tcpip.sys [-] 2008-05-08 17:02:06 . 9F02C1CF7C3100E4AEA7DD8B6A86A01B . 1571840 . . [5.1.2600.5512 (xpsp.080413-2111)] . . C:\WINDOWS\system32\sfcfiles.dll . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{D187A56B-A33F-4CBE-9D77-459FC0BAE012}] 2010-02-03 14:08:24 815104 ----a-w- C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{4F11ACBB-393F-4C86-A214-FF3D0D155CC3}"= "C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll" [2010-02-03 14:08:24 815104] [HKEY_CLASSES_ROOT\clsid\{4f11acbb-393f-4c86-a214-ff3d0d155cc3}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{4F11ACBB-393F-4C86-A214-FF3D0D155CC3}"= "C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll" [2010-02-03 14:08:24 815104] [HKEY_CLASSES_ROOT\clsid\{4f11acbb-393f-4c86-a214-ff3d0d155cc3}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Gadu-Gadu"="C:\Program Files\Gadu-Gadu\gg.exe" [2007-04-17 11:12:28 2113536] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="C:\WINDOWS\system32\CTFMON.EXE" [2008-04-14 19:51:12 15360] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\RunOnce] "nltide_2"="shell32" [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Broadcom Wireless Manager UI] C:\WINDOWS\system32\WLTRAY [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VModes] VModes AttachToDesktop [X] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2009-12-11 14:57:56 948672 ----a-r- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-12-22 00:57:28 35760 ----a-w- C:\Program Files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\ALLUpdate] 2009-11-11 15:18:00 870400 ----a-w- C:\Program Files\ALLPlayer\ALLUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE] 2008-04-14 19:51:12 15360 ------w- C:\WINDOWS\system32\ctfmon.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SMSERIAL] 2005-04-07 11:33:20 544768 ----a-w- C:\WINDOWS\sm56hlpr.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SoundMan] 2005-05-17 10:48:32 77824 ----a-w- C:\WINDOWS\SOUNDMAN.EXE [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTimer] 2005-03-08 02:33:28 53248 ----a-w- C:\WINDOWS\system32\VTTimer.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\VTTrayp] 2005-11-01 03:15:12 163840 ----a-w- C:\WINDOWS\system32\VTTrayp.exe [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "%windir%\\system32\\sessmgr.exe"= "C:\\Program Files\\Opera\\opera.exe"= "C:\\Program Files\\Gadu-Gadu\\gg.exe"= "C:\\Program Files\\AVG\\AVG9\\avgemc.exe"= "C:\\Program Files\\AVG\\AVG9\\avgupd.exe"= "C:\\Program Files\\AVG\\AVG9\\avgnsx.exe"= R1 AvgLdx86;AVG Free AVI Loader Driver x86;C:\WINDOWS\system32\drivers\avgldx86.sys [2010-02-03 15:18:00 333192] R1 AvgTdiX;AVG Free Network Redirector;C:\WINDOWS\system32\drivers\avgtdix.sys [2010-02-03 15:18:09 360584] R2 avg9emc;AVG Free E-mail Scanner;C:\Program Files\AVG\AVG9\avgemc.exe [2010-02-03 15:17:55 906520] R2 avg9wd;AVG Free WatchDog;C:\Program Files\AVG\AVG9\avgwdsvc.exe [2010-02-03 15:17:53 285392] . . ------- Skan uzupełniający ------- . uInternet Connection Wizard,ShellNext = hxxp://www.allplayer.org/thankyou.php?ver=V4.2 . - - - - USUNIĘTO PUSTE WPISY - - - - Notify-avgrsstarter - avgrsstx.dll ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-02-20 10:58:03 Windows 5.1.2600 Dodatek Service Pack 3 FAT NTAPI skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** . [/log] OTL mój laptop [log] OTL logfile created on: 2010-02-20 11:03:12 - Run 1 OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Cyprian\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 7.0.5730.13) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 958,00 Mb Total Physical Memory | 610,00 Mb Available Physical Memory | 64,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 1440 2880 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 8,00 Gb Total Space | 3,12 Gb Free Space | 39,07% Space Free | Partition Type: FAT32 Drive D: | 47,88 Gb Total Space | 43,52 Gb Free Space | 90,90% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive Y: | 10,03 Gb Total Space | 1,76 Gb Free Space | 17,57% Space Free | Partition Type: NTFS Drive Z: | 232,88 Gb Total Space | 86,55 Gb Free Space | 37,16% Space Free | Partition Type: NTFS Computer Name: LAPTOP Current User Name: Cyprian Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-20 10:51:42 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprian\Pulpit\OTL.exe PRC - [2010-02-03 15:17:58 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2010-02-03 15:17:58 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2010-02-03 15:17:58 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2010-02-03 15:17:58 | 000,503,576 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2010-02-03 15:17:56 | 002,033,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2010-02-03 15:17:56 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe PRC - [2010-02-03 15:17:54 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2009-11-20 19:01:18 | 000,832,296 | ---- | M] (Opera Software) -- C:\Program Files\Opera\opera.exe PRC - [2008-04-14 20:51:52 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2008-04-14 20:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2007-04-17 12:12:28 | 002,113,536 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe PRC - [2005-02-17 17:51:20 | 000,847,983 | ---- | M] (Broadcom Corporation) -- C:\WINDOWS\system32\BCMWLTRY.EXE [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-20 10:51:42 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprian\Pulpit\OTL.exe MOD - [2006-12-21 13:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-02-03 15:17:56 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2010-02-03 15:17:54 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2005-02-17 17:51:22 | 000,065,536 | ---- | M] () [Auto | Stopped] -- C:\WINDOWS\System32\wltrysvc.exe -- (wltrysvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-02-03 15:18:10 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2010-02-03 15:18:02 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2010-02-03 15:18:02 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2010-02-03 14:57:04 | 000,017,801 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x) DRV - [2009-04-28 21:20:06 | 000,044,944 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2008-04-13 20:09:18 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2005-12-27 11:06:22 | 000,247,040 | ---- | M] (Copyright (C) VIA/S3 Graphics Co, Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\vtmini.sys -- (viagfx) DRV - [2005-05-18 10:50:30 | 002,319,680 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-04-07 12:34:30 | 000,923,826 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smserial.sys -- (smserial) DRV - [2005-03-18 09:39:04 | 000,042,496 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\fetnd5bv.sys -- (FETND5BV) DRV - [2005-02-11 14:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2003-07-01 21:42:00 | 000,027,904 | ---- | M] (VIA Technologies, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\viaagp1.sys -- (viaagp1) DRV - [2001-08-17 21:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2001-08-17 20:13:08 | 000,027,165 | ---- | M] (VIA Technologies, Inc. ) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\fetnd5.sys -- (FETNDIS) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 O1 HOSTS File: ([2001-10-26 15:45:16 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Burn4Free Toolbar Helper) - {D187A56B-A33F-4CBE-9D77-459FC0BAE012} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll () O3 - HKLM\..\Toolbar: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (Burn4Free Toolbar) - {4F11ACBB-393F-4C86-A214-FF3D0D155CC3} - C:\Program Files\Burn4Free Toolbar\v3.3.0.3\Burn4Free_Toolbar.dll () O4 - HKCU..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - File not found O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-02-03 14:38:38 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ FAT32 ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - Z:\autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-20 10:57:57 | 000,000,000 | ---D | C] -- C:\WINDOWS\temp [2010-02-20 10:53:27 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-02-20 10:53:26 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-02-20 10:53:26 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-02-20 10:53:26 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-02-20 10:53:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-02-20 10:53:20 | 000,000,000 | ---D | C] -- C:\ComboFix [2010-02-20 10:52:59 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-02-20 10:51:36 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cyprian\Pulpit\OTL.exe [2010-02-20 10:13:01 | 004,975,528 | ---- | C] (Hewlett-Packard Company ) -- C:\Documents and Settings\Cyprian\Pulpit\sp22996.exe [2010-02-14 11:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2010-02-14 11:35:59 | 000,000,000 | ---D | C] -- C:\Config.Msi [2010-02-08 17:18:06 | 000,000,000 | ---D | C] -- C:\FOUND.005 [2010-02-05 21:40:58 | 000,000,000 | ---D | C] -- C:\FOUND.004 [2010-02-05 21:39:34 | 000,000,000 | ---D | C] -- C:\FOUND.003 [2010-02-04 21:18:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Adobe [2010-02-04 14:57:34 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2010-02-03 19:47:02 | 000,000,000 | ---D | C] -- C:\FOUND.002 [2010-02-03 18:13:51 | 000,000,000 | ---D | C] -- C:\Program Files\SpeedFan [2010-02-03 17:04:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\vdownloader [2010-02-03 17:04:12 | 000,000,000 | ---D | C] -- C:\Program Files\VDOWNLOADER [2010-02-03 17:04:12 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\eBay [2010-02-03 17:03:27 | 005,505,230 | ---- | C] (Enrique Puertas ) -- C:\Documents and Settings\Cyprian\Pulpit\vdownloader_setup.exe [2010-02-03 15:30:02 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcommon.dll [2010-02-03 15:30:02 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spcplui.dll [2010-02-03 15:30:01 | 000,774,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spttseng.dll [2010-02-03 15:30:01 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapisvr.exe [2010-02-03 15:30:00 | 000,741,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.dll [2010-02-03 15:30:00 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sapi.cpl [2010-02-03 15:29:59 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0408.dll [2010-02-03 15:29:59 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt041f.dll [2010-02-03 15:29:59 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0419.dll [2010-02-03 15:29:46 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040e.dll [2010-02-03 15:29:46 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0415.dll [2010-02-03 15:29:46 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0405.dll [2010-02-03 15:29:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\batt.dll [2010-02-03 15:26:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Macromedia [2010-02-03 15:26:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Adobe [2010-02-03 15:19:32 | 000,000,000 | ---D | C] -- C:\FOUND.001 [2010-02-03 15:18:09 | 000,360,584 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010-02-03 15:18:00 | 000,333,192 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-02-03 15:18:00 | 000,028,424 | ---- | C] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010-02-03 15:17:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\Avg [2010-02-03 15:17:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\avg9 [2010-02-03 15:17:53 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2010-02-03 15:15:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Gadu-Gadu [2010-02-03 15:14:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Gadu-Gadu [2010-02-03 15:14:22 | 000,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu [2010-02-03 15:13:15 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp Detect [2010-02-03 15:13:12 | 001,858,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxsfs.dll [2010-02-03 15:13:12 | 000,670,192 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\px.dll [2010-02-03 15:13:12 | 000,551,408 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxdrv.dll [2010-02-03 15:13:12 | 000,436,720 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxwave.dll [2010-02-03 15:13:12 | 000,219,632 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxmas.dll [2010-02-03 15:13:12 | 000,129,520 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxafs.dll [2010-02-03 15:13:12 | 000,096,752 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\vxblock.dll [2010-02-03 15:13:12 | 000,072,176 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxhpinst.exe [2010-02-03 15:13:12 | 000,066,544 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxcpya64.exe [2010-02-03 15:13:12 | 000,066,032 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\pxinsa64.exe [2010-02-03 15:13:12 | 000,044,944 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\PxHelp20.sys [2010-02-03 15:13:12 | 000,009,200 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdralw2k.sys [2010-02-03 15:13:12 | 000,009,072 | ---- | C] (Sonic Solutions) -- C:\WINDOWS\System32\drivers\cdr4_xp.sys [2010-02-03 15:13:11 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2010-02-03 15:13:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Winamp [2010-02-03 15:12:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Opera [2010-02-03 15:12:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Opera [2010-02-03 15:12:13 | 000,000,000 | ---D | C] -- C:\Program Files\Opera [2010-02-03 15:11:32 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm [2010-02-03 15:11:32 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll [2010-02-03 15:11:32 | 000,118,784 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm [2010-02-03 15:11:28 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2010-02-03 15:10:34 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_41.dll [2010-02-03 15:10:34 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_41.dll [2010-02-03 15:10:33 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_41.dll [2010-02-03 15:10:33 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_4.dll [2010-02-03 15:10:33 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_4.dll [2010-02-03 15:10:33 | 000,069,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_3.dll [2010-02-03 15:10:32 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_40.dll [2010-02-03 15:10:32 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_40.dll [2010-02-03 15:10:32 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_40.dll [2010-02-03 15:10:32 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_6.dll [2010-02-03 15:10:31 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_3.dll [2010-02-03 15:10:31 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_2.dll [2010-02-03 15:10:31 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_3.dll [2010-02-03 15:10:31 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_2.dll [2010-02-03 15:10:31 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_1.dll [2010-02-03 15:10:31 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_5.dll [2010-02-03 15:10:30 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_39.dll [2010-02-03 15:10:30 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_39.dll [2010-02-03 15:10:30 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_39.dll [2010-02-03 15:10:30 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_2.dll [2010-02-03 15:10:29 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_38.dll [2010-02-03 15:10:29 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_38.dll [2010-02-03 15:10:29 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_1.dll [2010-02-03 15:10:29 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_38.dll [2010-02-03 15:10:29 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_1.dll [2010-02-03 15:10:29 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAPOFX1_0.dll [2010-02-03 15:10:29 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_4.dll [2010-02-03 15:10:28 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\XAudio2_0.dll [2010-02-03 15:10:28 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine3_0.dll [2010-02-03 15:10:28 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_3.dll [2010-02-03 15:10:27 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DX9_37.dll [2010-02-03 15:10:27 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_37.dll [2010-02-03 15:10:27 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_37.dll [2010-02-03 15:10:27 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_10.dll [2010-02-03 15:10:26 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_36.dll [2010-02-03 15:10:26 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_36.dll [2010-02-03 15:10:26 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_35.dll [2010-02-03 15:10:26 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_36.dll [2010-02-03 15:10:26 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_35.dll [2010-02-03 15:10:26 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_9.dll [2010-02-03 15:10:25 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_35.dll [2010-02-03 15:10:25 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_8.dll [2010-02-03 15:10:25 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\X3DAudio1_2.dll [2010-02-03 15:10:24 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_34.dll [2010-02-03 15:10:24 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_34.dll [2010-02-03 15:10:24 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_34.dll [2010-02-03 15:10:24 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_3.dll [2010-02-03 15:10:23 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\D3DCompiler_33.dll [2010-02-03 15:10:23 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx10_33.dll [2010-02-03 15:10:23 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_7.dll [2010-02-03 15:10:21 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_33.dll [2010-02-03 15:10:21 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_6.dll [2010-02-03 15:10:21 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_5.dll [2010-02-03 15:10:20 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_32.dll [2010-02-03 15:10:20 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_31.dll [2010-02-03 15:10:20 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_4.dll [2010-02-03 15:10:20 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_3.dll [2010-02-03 15:10:20 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_2.dll [2010-02-03 15:10:20 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_1.dll [2010-02-03 15:10:19 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_30.dll [2010-02-03 15:10:19 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_2.dll [2010-02-03 15:10:19 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_1.dll [2010-02-03 15:10:19 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput1_1.dll [2010-02-03 15:10:18 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_29.dll [2010-02-03 15:10:18 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_28.dll [2010-02-03 15:10:18 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xactengine2_0.dll [2010-02-03 15:10:18 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\x3daudio1_0.dll [2010-02-03 15:10:17 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_27.dll [2010-02-03 15:10:17 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_26.dll [2010-02-03 15:10:17 | 000,061,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xinput9_1_0.dll [2010-02-03 15:10:16 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_25.dll [2010-02-03 15:10:16 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\d3dx9_24.dll [2010-02-03 15:10:08 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2010-02-03 15:08:24 | 000,233,243 | ---- | C] (Burn4Free) -- C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_8812.exe [2010-02-03 15:08:23 | 000,000,000 | ---D | C] -- C:\Program Files\Burn4Free Toolbar [2010-02-03 15:08:19 | 000,000,000 | ---D | C] -- C:\Program Files\Burn4Free [2010-02-03 15:07:44 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll [2010-02-03 15:07:44 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT [2010-02-03 15:07:41 | 000,000,000 | ---D | C] -- C:\Program Files\ALLPlayer [2010-02-03 15:06:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2010-02-03 15:06:28 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-02-03 15:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2010-02-03 15:04:46 | 000,006,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\splitter.sys [2010-02-03 15:04:44 | 000,083,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wdmaud.sys [2010-02-03 15:04:43 | 000,052,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.sys [2010-02-03 15:04:41 | 000,056,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\swmidi.sys [2010-02-03 15:04:40 | 000,142,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aec.sys [2010-02-03 15:04:39 | 000,172,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kmixer.sys [2010-02-03 15:04:38 | 000,002,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmkaud.sys [2010-02-03 15:04:37 | 000,060,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sysaudio.sys [2010-02-03 15:04:35 | 000,007,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mskssrv.sys [2010-02-03 15:04:34 | 000,004,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspqm.sys [2010-02-03 15:04:32 | 000,005,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspclock.sys [2010-02-03 15:04:25 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\portcls.sys [2010-02-03 15:04:25 | 000,146,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\portcls.sys [2010-02-03 15:04:25 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksuser.dll [2010-02-03 15:04:25 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksuser.dll [2010-02-03 15:04:24 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksproxy.ax [2010-02-03 15:04:24 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ksproxy.ax [2010-02-03 15:04:24 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\drmk.sys [2010-02-03 15:04:24 | 000,060,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\drmk.sys [2010-02-03 15:04:20 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2010-02-03 15:04:19 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2010-02-03 15:04:18 | 002,319,680 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\drivers\ALCXWDM.SYS [2010-02-03 15:04:18 | 000,077,824 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [2010-02-03 15:04:17 | 009,389,568 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\RTLCPL.EXE [2010-02-03 15:04:16 | 018,726,912 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\System32\ALSNDMGR.CPL [2010-02-03 15:04:16 | 000,294,912 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcupd.exe [2010-02-03 15:04:16 | 000,200,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\WINDOWS\alcrmv.exe [2010-02-03 15:01:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2010-02-03 14:59:05 | 000,042,496 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\drivers\fetnd5bv.sys [2010-02-03 14:59:05 | 000,000,000 | ---D | C] -- C:\WINDOWS\vnDrvBas [2010-02-03 14:58:45 | 000,028,672 | R--- | C] (VIA) -- C:\WINDOWS\System32\VModes.exe [2010-02-03 14:58:42 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2010-02-03 14:58:42 | 000,000,000 | ---D | C] -- C:\Program Files\S3 [2010-02-03 14:58:26 | 000,027,904 | ---- | C] (VIA Technologies, Inc.) -- C:\WINDOWS\System32\drivers\VIAAGP1.SYS [2010-02-03 14:58:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2010-02-03 14:58:04 | 000,306,688 | ---- | C] (InstallShield Software Corporation) -- C:\WINDOWS\IsUninst.exe [2010-02-03 14:57:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Motorola [2010-02-03 14:57:03 | 000,017,801 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\AegisP.sys [2010-02-03 14:57:02 | 001,396,831 | ---- | C] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\AegisE5.dll [2010-02-03 14:57:02 | 000,847,983 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\BCMWLTRY.EXE [2010-02-03 14:57:02 | 000,667,756 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\WLTRAY.EXE [2010-02-03 14:57:02 | 000,172,032 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\BCMLogon.dll [2010-02-03 14:57:02 | 000,086,016 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\wltrynt.dll [2010-02-03 14:57:01 | 001,433,712 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\BCMWLCPL.CPL [2010-02-03 14:56:52 | 000,371,712 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\drivers\BCMWL5.SYS [2010-02-03 14:56:52 | 000,184,320 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\BCMWLU00.EXE [2010-02-03 14:56:52 | 000,069,632 | ---- | C] (Broadcom Corporation) -- C:\WINDOWS\System32\bcmwlD2K.EXE [2010-02-03 14:56:44 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2010-02-03 14:54:58 | 000,000,000 | ---D | C] -- C:\FOUND.000 [2010-02-03 14:48:39 | 000,026,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbstor.sys [2010-02-03 14:44:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Identities [2010-02-03 14:44:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Cyprian\Moje dokumenty\Moje obrazy [2010-02-03 14:44:49 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Cyprian\Moje dokumenty\Moja muzyka [2010-02-03 14:44:49 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2010-02-03 14:44:46 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-02-03 14:44:46 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji\Microsoft [2010-02-03 14:44:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Cyprian\SendTo [2010-02-03 14:44:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Cyprian\Recent [2010-02-03 14:44:46 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Cyprian\Dane aplikacji [2010-02-03 14:44:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Cyprian\Ulubione [2010-02-03 14:44:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Cyprian\Moje dokumenty [2010-02-03 14:44:46 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Cyprian\Menu Start [2010-02-03 14:44:46 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Cyprian\Cookies [2010-02-03 14:44:46 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Cyprian\Ustawienia lokalne [2010-02-03 14:44:46 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Cyprian\Szablony [2010-02-03 14:44:46 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Cyprian\PrintHood [2010-02-03 14:44:46 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Cyprian\NetHood [2010-02-03 14:44:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprian\Pulpit [2010-02-03 14:43:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2010-02-03 14:43:51 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2010-02-03 14:43:50 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2010-02-03 14:43:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-02-03 14:42:40 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010-02-03 14:42:39 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010-02-03 14:42:39 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010-02-03 14:42:38 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010-02-03 14:42:38 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010-02-03 14:42:37 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010-02-03 14:42:37 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010-02-03 14:42:36 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010-02-03 14:42:35 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2010-02-03 14:42:35 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2010-02-03 14:42:35 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2010-02-03 14:42:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2010-02-03 14:42:34 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2010-02-03 14:42:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2010-02-03 14:42:34 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2010-02-03 14:42:33 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010-02-03 14:42:33 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010-02-03 14:42:32 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010-02-03 14:42:31 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010-02-03 14:42:31 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010-02-03 14:42:30 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2010-02-03 14:42:30 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010-02-03 14:42:29 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2010-02-03 14:42:29 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010-02-03 14:42:28 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010-02-03 14:42:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010-02-03 14:42:27 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010-02-03 14:42:27 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010-02-03 14:42:26 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010-02-03 14:42:26 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010-02-03 14:42:25 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010-02-03 14:42:24 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2010-02-03 14:42:24 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2010-02-03 14:42:23 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010-02-03 14:42:23 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2010-02-03 14:42:23 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2010-02-03 14:42:21 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010-02-03 14:42:20 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2010-02-03 14:42:20 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2010-02-03 14:42:20 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010-02-03 14:42:19 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2010-02-03 14:42:19 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010-02-03 14:42:18 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2010-02-03 14:42:18 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2010-02-03 14:42:17 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2010-02-03 14:42:17 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2010-02-03 14:42:16 | 000,463,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2010-02-03 14:42:15 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010-02-03 14:42:15 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2010-02-03 14:42:15 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010-02-03 14:42:14 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010-02-03 14:42:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010-02-03 14:42:13 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2010-02-03 14:42:13 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010-02-03 14:42:12 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010-02-03 14:42:12 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010-02-03 14:42:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010-02-03 14:42:11 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010-02-03 14:42:11 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010-02-03 14:42:10 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010-02-03 14:42:10 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010-02-03 14:42:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010-02-03 14:42:09 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010-02-03 14:42:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010-02-03 14:42:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010-02-03 14:42:07 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010-02-03 14:42:07 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010-02-03 14:42:04 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2010-02-03 14:42:04 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010-02-03 14:42:03 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010-02-03 14:42:03 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2010-02-03 14:42:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-02-03 14:42:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-02-03 14:42:02 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-02-03 14:42:01 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2010-02-03 14:42:00 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010-02-03 14:42:00 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2010-02-03 14:41:59 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010-02-03 14:41:59 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010-02-03 14:41:58 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2010-02-03 14:41:58 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010-02-03 14:41:57 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010-02-03 14:41:57 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010-02-03 14:41:56 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2010-02-03 14:41:54 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010-02-03 14:41:54 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010-02-03 14:41:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010-02-03 14:41:53 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010-02-03 14:41:53 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010-02-03 14:41:52 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010-02-03 14:41:52 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010-02-03 14:41:51 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010-02-03 14:41:50 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2010-02-03 14:41:50 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2010-02-03 14:41:50 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010-02-03 14:41:49 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010-02-03 14:41:49 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010-02-03 14:41:49 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010-02-03 14:41:47 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010-02-03 14:41:46 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2010-02-03 14:41:45 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2010-02-03 14:41:44 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010-02-03 14:41:44 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2010-02-03 14:41:41 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010-02-03 14:41:41 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiregmv.exe [2010-02-03 14:41:40 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010-02-03 14:41:36 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010-02-03 14:41:36 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2010-02-03 14:41:35 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010-02-03 14:41:35 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2010-02-03 14:41:34 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2010-02-03 14:41:34 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2010-02-03 14:41:33 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010-02-03 14:41:33 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2010-02-03 14:41:32 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2010-02-03 14:41:32 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2010-02-03 14:41:32 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2010-02-03 14:41:31 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2010-02-03 14:41:29 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010-02-03 14:41:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010-02-03 14:41:28 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010-02-03 14:41:27 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010-02-03 14:41:27 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010-02-03 14:41:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010-02-03 14:41:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010-02-03 14:41:26 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010-02-03 14:41:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010-02-03 14:41:25 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2010-02-03 14:41:24 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010-02-03 14:41:24 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010-02-03 14:41:23 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010-02-03 14:41:23 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2010-02-03 14:41:22 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2010-02-03 14:41:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010-02-03 14:41:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010-02-03 14:41:21 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010-02-03 14:41:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010-02-03 14:41:20 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010-02-03 14:41:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010-02-03 14:41:19 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010-02-03 14:41:18 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2010-02-03 14:41:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010-02-03 14:41:18 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010-02-03 14:41:17 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010-02-03 14:41:17 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010-02-03 14:41:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010-02-03 14:41:16 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010-02-03 14:41:15 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2010-02-03 14:41:15 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010-02-03 14:41:14 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010-02-03 14:41:14 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010-02-03 14:41:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010-02-03 14:41:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010-02-03 14:41:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2010-02-03 14:41:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010-02-03 14:41:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2010-02-03 14:41:11 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010-02-03 14:41:10 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2010-02-03 14:41:10 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2010-02-03 14:41:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2010-02-03 14:41:09 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2010-02-03 14:41:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2010-02-03 14:41:08 | 000,315,455 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010-02-03 14:41:08 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2010-02-03 14:41:08 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2010-02-03 14:41:07 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010-02-03 14:41:06 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010-02-03 14:41:06 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010-02-03 14:41:05 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010-02-03 14:41:05 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010-02-03 14:41:04 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010-02-03 14:41:04 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010-02-03 14:41:03 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010-02-03 14:41:02 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010-02-03 14:41:02 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010-02-03 14:41:01 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010-02-03 14:41:01 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010-02-03 14:41:00 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010-02-03 14:41:00 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010-02-03 14:40:59 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010-02-03 14:40:59 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010-02-03 14:40:58 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010-02-03 14:40:58 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010-02-03 14:40:57 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010-02-03 14:40:57 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010-02-03 14:40:56 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010-02-03 14:40:56 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010-02-03 14:40:55 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2010-02-03 14:40:54 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2010-02-03 14:40:54 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2010-02-03 14:40:54 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2010-02-03 14:40:54 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2010-02-03 14:40:53 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2010-02-03 14:40:53 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2010-02-03 14:40:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2010-02-03 14:40:49 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010-02-03 14:40:42 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010-02-03 14:40:41 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2010-02-03 14:40:41 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2010-02-03 14:40:40 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2010-02-03 14:40:40 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2010-02-03 14:40:39 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010-02-03 14:40:38 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2010-02-03 14:40:37 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2010-02-03 14:40:37 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2010-02-03 14:40:36 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2010-02-03 14:40:36 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2010-02-03 14:40:35 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2010-02-03 14:40:35 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2010-02-03 14:40:34 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2010-02-03 14:40:34 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010-02-03 14:40:34 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010-02-03 14:40:33 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2010-02-03 14:40:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2010-02-03 14:40:32 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2010-02-03 14:40:32 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2010-02-03 14:40:31 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2010-02-03 14:40:31 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2010-02-03 14:40:30 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2010-02-03 14:40:30 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2010-02-03 14:40:29 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010-02-03 14:40:29 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2010-02-03 14:40:28 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2010-02-03 14:40:28 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010-02-03 14:40:27 | 000,451,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2010-02-03 14:40:27 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2010-02-03 14:40:27 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2010-02-03 14:40:26 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2010-02-03 14:40:26 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010-02-03 14:40:25 | 000,618,605 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4autl.dll [2010-02-03 14:40:25 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2010-02-03 14:40:25 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2010-02-03 14:40:24 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010-02-03 14:40:23 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010-02-03 14:40:23 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2010-02-03 14:40:23 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2010-02-03 14:40:22 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2010-02-03 14:40:22 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2010-02-03 14:40:21 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2010-02-03 14:40:21 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010-02-03 14:40:20 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010-02-03 14:40:20 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010-02-03 14:40:19 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010-02-03 14:40:18 | 000,514,587 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\edb500.dll [2010-02-03 14:40:15 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010-02-03 14:40:15 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2010-02-03 14:40:14 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010-02-03 14:40:13 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010-02-03 14:40:13 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2010-02-03 14:40:12 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2010-02-03 14:40:12 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2010-02-03 14:40:12 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2010-02-03 14:40:11 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010-02-03 14:40:10 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010-02-03 14:40:10 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010-02-03 14:40:09 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010-02-03 14:40:08 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010-02-03 14:40:08 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010-02-03 14:40:07 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010-02-03 14:40:06 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010-02-03 14:40:06 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010-02-03 14:40:05 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010-02-03 14:40:05 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010-02-03 14:40:04 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010-02-03 14:40:03 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-02-03 14:40:03 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010-02-03 14:40:02 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2010-02-03 14:40:02 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010-02-03 14:39:36 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2010-02-03 14:39:34 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2010-02-03 14:39:34 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2010-02-03 14:39:33 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2010-02-03 14:39:33 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2010-02-03 14:39:33 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2010-02-03 14:39:32 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2010-02-03 14:39:32 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010-02-03 14:39:32 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2010-02-03 14:39:31 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2010-02-03 14:39:31 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2010-02-03 14:39:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2010-02-03 14:39:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2010-02-03 14:39:30 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2010-02-03 14:39:29 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2010-02-03 14:39:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010-02-03 14:39:28 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2010-02-03 14:39:28 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2010-02-03 14:39:26 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2010-02-03 14:39:25 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2010-02-03 14:39:25 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010-02-03 14:39:25 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2010-02-03 14:39:24 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2010-02-03 14:39:24 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2010-02-03 14:39:23 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2010-02-03 14:39:23 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2010-02-03 14:39:20 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2010-02-03 14:39:20 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2010-02-03 14:39:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2010-02-03 14:39:19 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2010-02-03 14:39:15 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2010-02-03 14:39:14 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2010-02-03 14:39:13 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2010-02-03 14:39:13 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2010-02-03 14:39:13 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2010-02-03 14:39:13 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2010-02-03 14:39:12 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2010-02-03 14:39:12 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2010-02-03 14:39:12 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2010-02-03 14:39:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2010-02-03 14:39:11 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2010-02-03 14:39:11 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010-02-03 14:39:11 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2010-02-03 14:39:10 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2010-02-03 14:39:10 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2010-02-03 14:39:10 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2010-02-03 14:39:10 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2010-02-03 14:39:09 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2010-02-03 14:39:09 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2010-02-03 14:39:09 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2010-02-03 14:39:09 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2010-02-03 14:39:08 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2010-02-03 14:39:08 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2010-02-03 14:39:08 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2010-02-03 14:39:08 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2010-02-03 14:39:07 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2010-02-03 14:39:07 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2010-02-03 14:39:07 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2010-02-03 14:39:06 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2010-02-03 14:39:06 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2010-02-03 14:39:06 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2010-02-03 14:39:05 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2010-02-03 14:39:05 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2010-02-03 14:39:05 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2010-02-03 14:39:05 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2010-02-03 14:39:04 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2010-02-03 14:39:03 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2010-02-03 14:39:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2010-02-03 14:39:01 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2010-02-03 14:39:01 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2010-02-03 14:38:47 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg.dll [2010-02-03 14:38:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2010-02-03 14:38:22 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mapi32.dll [2010-02-03 14:38:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-02-03 14:38:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-02-03 14:37:45 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2010-02-03 14:37:29 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2010-02-03 14:37:27 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2010-02-03 14:37:13 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2010-02-03 14:37:04 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helphost.exe [2010-02-03 14:37:04 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\notiflag.exe [2010-02-03 14:37:04 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\brpinfo.dll [2010-02-03 14:37:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\atrace.dll [2010-02-03 14:37:04 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\atrace.dll [2010-02-03 14:37:04 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hcappres.dll [2010-02-03 14:36:55 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srdiag.exe [2010-02-03 14:36:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wb32.exe [2010-02-03 14:36:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmevtmsg.dll [2010-02-03 14:36:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmevtmsg.dll [2010-02-03 14:36:53 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cb32.exe [2010-02-03 14:36:52 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\acctres.dll [2010-02-03 14:36:52 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\acctres.dll [2010-02-03 14:36:52 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msinfo32.exe [2010-02-03 14:36:51 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2010-02-03 14:36:49 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwtutor.exe [2010-02-03 14:36:49 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwres.dll [2010-02-03 14:36:49 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trialoc.dll [2010-02-03 14:36:49 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoapr.dll [2010-02-03 14:36:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010-02-03 14:36:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icfgnt5.dll [2010-02-03 14:36:49 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icfgnt5.dll [2010-02-03 14:36:49 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2010-02-03 14:36:48 | 000,235,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mssoap1.dll [2010-02-03 14:36:48 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieinfo5.ocx [2010-02-03 14:36:48 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wisc10.dll [2010-02-03 14:36:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2010-02-03 14:36:42 | 000,726,590 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchui.dll [2010-02-03 14:36:42 | 000,058,434 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srchctls.dll [2010-02-03 14:36:41 | 003,166,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msgr3en.dll [2010-02-03 14:36:41 | 000,765,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\vgx.dll [2010-02-03 14:36:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2010-02-03 14:36:40 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup_wm.exe [2010-02-03 14:36:40 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpband.dll [2010-02-03 14:36:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2010-02-03 14:36:39 | 000,786,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migrate.exe [2010-02-03 14:36:39 | 000,244,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mpvis.dll [2010-02-03 14:36:39 | 000,226,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npdrmv2.dll [2010-02-03 14:36:39 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmpns.dll [2010-02-03 14:36:39 | 000,064,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmplayer.exe [2010-02-03 14:36:39 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\custsat.dll [2010-02-03 14:36:38 | 001,929,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng.dll [2010-02-03 14:36:38 | 000,364,544 | ---- | C] (Microsoft Corporation (written by Digital Renaissance Inc.)) -- C:\WINDOWS\System32\dllcache\npdsplay.dll [2010-02-03 14:36:38 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2010-02-03 14:36:38 | 000,327,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wucltui.dll [2010-02-03 14:36:38 | 000,217,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaucpl.cpl [2010-02-03 14:36:38 | 000,209,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuweb.dll [2010-02-03 14:36:38 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuaueng1.dll [2010-02-03 14:36:38 | 000,184,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuaueng1.dll [2010-02-03 14:36:38 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2010-02-03 14:36:38 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wups.dll [2010-02-03 14:36:38 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\npwmsdrm.dll [2010-02-03 14:36:38 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauserv.dll [2010-02-03 14:36:38 | 000,004,639 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplayer2.exe [2010-02-03 14:36:37 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2010-02-03 14:36:37 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuapi.dll [2010-02-03 14:36:37 | 000,409,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgr.dll [2010-02-03 14:36:37 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wuauclt1.exe [2010-02-03 14:36:37 | 000,168,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt1.exe [2010-02-03 14:36:37 | 000,053,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wuauclt.exe [2010-02-03 14:36:37 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qmgrprxy.dll [2010-02-03 14:36:37 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qmgrprxy.dll [2010-02-03 14:36:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx2.dll [2010-02-03 14:36:37 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx2.dll [2010-02-03 14:36:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx4.dll [2010-02-03 14:36:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx4.dll [2010-02-03 14:36:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bitsprx3.dll [2010-02-03 14:36:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bitsprx3.dll [2010-02-03 14:36:35 | 004,275,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res.dll [2010-02-03 14:36:35 | 000,502,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxa.dll [2010-02-03 14:36:35 | 000,402,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2filt.dll [2010-02-03 14:36:35 | 000,325,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2fxb.dll [2010-02-03 14:36:35 | 000,167,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ae.dll [2010-02-03 14:36:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2ext.dll [2010-02-03 14:36:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2res2.dll [2010-02-03 14:36:35 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmm2eres.dll [2010-02-03 14:36:34 | 003,558,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\moviemk.exe [2010-02-03 14:36:34 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2010-02-03 14:36:22 | 000,566,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobmain.dll [2010-02-03 14:36:22 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobdl.dll [2010-02-03 14:36:21 | 000,122,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobcomm.dll [2010-02-03 14:36:21 | 000,051,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oobebaln.exe [2010-02-03 14:36:21 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobshel.dll [2010-02-03 14:36:21 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoobe.exe [2010-02-03 14:36:21 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msobweb.dll [2010-02-03 14:36:19 | 000,151,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uploadm.exe [2010-02-03 14:36:19 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrslv.dll [2010-02-03 14:36:19 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrslv.dll [2010-02-03 14:36:19 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrcdlg.dll [2010-02-03 14:36:19 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrcdlg.dll [2010-02-03 14:36:19 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\safrdm.dll [2010-02-03 14:36:19 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\safrdm.dll [2010-02-03 14:36:18 | 000,102,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchshell.dll [2010-02-03 14:36:18 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\racpldlg.dll [2010-02-03 14:36:18 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\racpldlg.dll [2010-02-03 14:36:18 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pchsvc.dll [2010-02-03 14:36:16 | 000,769,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpctr.exe [2010-02-03 14:36:16 | 000,744,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\helpsvc.exe [2010-02-03 14:36:16 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconfig.exe [2010-02-03 14:36:16 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hscupd.exe [2010-02-03 14:36:15 | 000,129,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmgr.sys [2010-02-03 14:36:15 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\fltMc.exe [2010-02-03 14:36:15 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltmc.exe [2010-02-03 14:36:15 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fltlib.dll [2010-02-03 14:36:14 | 000,382,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rstrui.exe [2010-02-03 14:36:14 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\srrstr.dll [2010-02-03 14:36:14 | 000,240,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srrstr.dll [2010-02-03 14:36:14 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srsvc.dll [2010-02-03 14:36:14 | 000,073,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sr.sys [2010-02-03 14:36:14 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srclient.dll [2010-02-03 14:36:14 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2010-02-03 14:36:13 | 000,229,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmas.dll [2010-02-03 14:36:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ils.dll [2010-02-03 14:36:13 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ils.dll [2010-02-03 14:36:13 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msconf.dll [2010-02-03 14:36:13 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msconf.dll [2010-02-03 14:36:13 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcap32.dll [2010-02-03 14:36:13 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mnmdd.dll [2010-02-03 14:36:13 | 000,034,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmdd.dll [2010-02-03 14:36:13 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mnmsrvc.exe [2010-02-03 14:36:13 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\isrdbg32.dll [2010-02-03 14:36:13 | 000,032,768 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\dllcache\isrdbg32.dll [2010-02-03 14:36:13 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\nmmkcert.dll [2010-02-03 14:36:13 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmmkcert.dll [2010-02-03 14:36:12 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\callcont.dll [2010-02-03 14:36:12 | 000,221,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nac.dll [2010-02-03 14:36:12 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rrcm.dll [2010-02-03 14:36:12 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\h323cc.dll [2010-02-03 14:36:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\confmrsl.dll [2010-02-03 14:36:12 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmasnt.dll [2010-02-03 14:36:11 | 001,036,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\conf.exe [2010-02-03 14:36:11 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst120.dll [2010-02-03 14:36:11 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmwb.dll [2010-02-03 14:36:11 | 000,172,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmoldwb.dll [2010-02-03 14:36:11 | 000,151,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmft.dll [2010-02-03 14:36:11 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmchat.dll [2010-02-03 14:36:11 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nmcom.dll [2010-02-03 14:36:11 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mst123.dll [2010-02-03 14:36:10 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoeacct.dll [2010-02-03 14:36:10 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeacct.dll [2010-02-03 14:36:10 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msoert2.dll [2010-02-03 14:36:10 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoert2.dll [2010-02-03 14:36:10 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabimp.dll [2010-02-03 14:36:10 | 000,046,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab.exe [2010-02-03 14:36:10 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabfind.dll [2010-02-03 14:36:10 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wabmig.exe [2010-02-03 14:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2010-02-03 14:36:09 | 000,691,712 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2010-02-03 14:36:09 | 000,510,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32.dll [2010-02-03 14:36:09 | 000,255,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wab32res.dll [2010-02-03 14:36:09 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\directdb.dll [2010-02-03 14:36:09 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetres.dll [2010-02-03 14:36:09 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetres.dll [2010-02-03 14:36:08 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oeimport.dll [2010-02-03 14:36:08 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msimn.exe [2010-02-03 14:36:07 | 002,512,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msoeres.dll [2010-02-03 14:36:07 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstask.dll [2010-02-03 14:36:07 | 000,193,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\schedsvc.dll [2010-02-03 14:36:07 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\setup50.exe [2010-02-03 14:36:07 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemig50.exe [2010-02-03 14:36:07 | 000,035,840 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oemiglib.dll [2010-02-03 14:36:07 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstinit.exe [2010-02-03 14:36:07 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstinit.exe [2010-02-03 14:36:07 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2010-02-03 14:36:06 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcfg.dll [2010-02-03 14:36:06 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcfg.dll [2010-02-03 14:36:06 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\isign32.dll [2010-02-03 14:36:06 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isign32.dll [2010-02-03 14:36:06 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwdial.dll [2010-02-03 14:36:06 | 000,073,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdial.dll [2010-02-03 14:36:06 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icwphbk.dll [2010-02-03 14:36:06 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwphbk.dll [2010-02-03 14:36:05 | 000,554,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dao360.dll [2010-02-03 14:36:05 | 000,216,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn1.exe [2010-02-03 14:36:05 | 000,176,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwhelp.dll [2010-02-03 14:36:05 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn2.exe [2010-02-03 14:36:05 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwconn.dll [2010-02-03 14:36:05 | 000,049,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwutil.dll [2010-02-03 14:36:05 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwdl.dll [2010-02-03 14:36:05 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icwrmind.exe [2010-02-03 14:36:05 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetwiz.exe [2010-02-03 14:36:04 | 000,487,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32.dll [2010-02-03 14:36:04 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sqlxmlx.dll [2010-02-03 14:36:04 | 000,094,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatl3.dll [2010-02-03 14:36:04 | 000,069,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oledb32r.dll [2010-02-03 14:36:03 | 000,315,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasql.dll [2010-02-03 14:36:03 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaora.dll [2010-02-03 14:36:03 | 000,204,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaps.dll [2010-02-03 14:36:03 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadox.dll [2010-02-03 14:36:03 | 000,180,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadomd.dll [2010-02-03 14:36:03 | 000,102,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msjro.dll [2010-02-03 14:36:03 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado27.tlb [2010-02-03 14:36:03 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado26.tlb [2010-02-03 14:36:03 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado25.tlb [2010-02-03 14:36:03 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaosp.dll [2010-02-03 14:36:03 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado21.tlb [2010-02-03 14:36:03 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadrh15.dll [2010-02-03 14:36:03 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msador15.dll [2010-02-03 14:36:03 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msxactps.dll [2010-02-03 14:36:03 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdatt.dll [2010-02-03 14:36:03 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaorar.dll [2010-02-03 14:36:03 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasqlr.dll [2010-02-03 14:36:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaurl.dll [2010-02-03 14:36:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdasc.dll [2010-02-03 14:36:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaer.dll [2010-02-03 14:36:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaenum.dll [2010-02-03 14:36:03 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdadc.dll [2010-02-03 14:36:02 | 000,536,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado15.dll [2010-02-03 14:36:02 | 000,200,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprst.dll [2010-02-03 14:36:02 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadds.dll [2010-02-03 14:36:02 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadco.dll [2010-02-03 14:36:02 | 000,118,784 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdarem.dll [2010-02-03 14:36:02 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msado20.tlb [2010-02-03 14:36:02 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcs.dll [2010-02-03 14:36:02 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdfmap.dll [2010-02-03 14:36:02 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msader15.dll [2010-02-03 14:36:02 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msaddsr.dll [2010-02-03 14:36:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaremr.dll [2010-02-03 14:36:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdaprsr.dll [2010-02-03 14:36:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcor.dll [2010-02-03 14:36:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcfr.dll [2010-02-03 14:36:01 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadce.dll [2010-02-03 14:36:01 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcf.dll [2010-02-03 14:36:01 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msadcer.dll [2010-02-03 14:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2010-02-03 14:36:00 | 000,622,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iexplore.exe [2010-02-03 14:36:00 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedw.exe [2010-02-03 14:36:00 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hmmapi.dll [2010-02-03 14:35:54 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2010-02-03 14:35:50 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2010-02-03 14:35:13 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2010-02-03 14:35:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2010-02-03 14:34:55 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2010-02-03 14:34:54 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2010-02-03 14:34:52 | 000,042,577 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgzm.exe [2010-02-03 14:34:52 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2010-02-03 14:34:51 | 001,817,687 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckgres.dll [2010-02-03 14:34:51 | 000,781,397 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrres.dll [2010-02-03 14:34:51 | 000,753,236 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvseres.dll [2010-02-03 14:34:51 | 000,082,501 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bckg.dll [2010-02-03 14:34:51 | 000,048,706 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvse.dll [2010-02-03 14:34:51 | 000,042,575 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkrzm.exe [2010-02-03 14:34:51 | 000,042,574 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rvsezm.exe [2010-02-03 14:34:51 | 000,040,515 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chkr.dll [2010-02-03 14:34:50 | 002,178,131 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlres.dll [2010-02-03 14:34:50 | 001,175,635 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzres.dll [2010-02-03 14:34:50 | 000,066,113 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvl.dll [2010-02-03 14:34:50 | 000,057,409 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtz.dll [2010-02-03 14:34:50 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shvlzm.exe [2010-02-03 14:34:50 | 000,042,573 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hrtzzm.exe [2010-02-03 14:34:50 | 000,041,029 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zcorem.dll [2010-02-03 14:34:50 | 000,032,339 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniansi.dll [2010-02-03 14:34:50 | 000,013,894 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zonelibm.dll [2010-02-03 14:34:50 | 000,004,677 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zeeverm.dll [2010-02-03 14:34:49 | 001,041,491 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnresm.dll [2010-02-03 14:34:49 | 000,217,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmnclim.dll [2010-02-03 14:34:49 | 000,113,222 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zoneclim.dll [2010-02-03 14:34:49 | 000,036,937 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\zclientm.exe [2010-02-03 14:34:49 | 000,029,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\znetm.dll [2010-02-03 14:34:48 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\write.exe [2010-02-03 14:34:48 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\write.exe [2010-02-03 14:34:48 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2010-02-03 14:34:41 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avtapi.dll [2010-02-03 14:34:41 | 000,231,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avtapi.dll [2010-02-03 14:34:41 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndvol32.exe [2010-02-03 14:34:41 | 000,139,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndvol32.exe [2010-02-03 14:34:41 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avwav.dll [2010-02-03 14:34:41 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avwav.dll [2010-02-03 14:34:41 | 000,044,544 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hticons.dll [2010-02-03 14:34:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\avmeter.dll [2010-02-03 14:34:41 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\avmeter.dll [2010-02-03 14:34:41 | 000,013,312 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\dllcache\htrn_jis.dll [2010-02-03 14:34:40 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winchat.exe [2010-02-03 14:34:40 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winchat.exe [2010-02-03 14:34:35 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\getuname.dll [2010-02-03 14:34:35 | 000,605,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\getuname.dll [2010-02-03 14:34:35 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\calc.exe [2010-02-03 14:34:35 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\calc.exe [2010-02-03 14:34:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\charmap.exe [2010-02-03 14:34:35 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\charmap.exe [2010-02-03 14:34:35 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sol.exe [2010-02-03 14:34:35 | 000,057,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sol.exe [2010-02-03 14:34:34 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mshearts.exe [2010-02-03 14:34:34 | 000,128,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshearts.exe [2010-02-03 14:34:34 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\winmine.exe [2010-02-03 14:34:34 | 000,119,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmine.exe [2010-02-03 14:34:34 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\freecell.exe [2010-02-03 14:34:34 | 000,055,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\freecell.exe [2010-02-03 14:34:34 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsshutdn.exe [2010-02-03 14:34:34 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsshutdn.exe [2010-02-03 14:34:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tskill.exe [2010-02-03 14:34:34 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tskill.exe [2010-02-03 14:34:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsdiscon.exe [2010-02-03 14:34:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsdiscon.exe [2010-02-03 14:34:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscon.exe [2010-02-03 14:34:34 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscon.exe [2010-02-03 14:34:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\reset.exe [2010-02-03 14:34:34 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\reset.exe [2010-02-03 14:34:33 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\regini.exe [2010-02-03 14:34:33 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\regini.exe [2010-02-03 14:34:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qwinsta.exe [2010-02-03 14:34:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qwinsta.exe [2010-02-03 14:34:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msg.exe [2010-02-03 14:34:33 | 000,022,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msg.exe [2010-02-03 14:34:33 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qappsrv.exe [2010-02-03 14:34:33 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qappsrv.exe [2010-02-03 14:34:33 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rwinsta.exe [2010-02-03 14:34:33 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwinsta.exe [2010-02-03 14:34:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\logoff.exe [2010-02-03 14:34:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logoff.exe [2010-02-03 14:34:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cdmodem.dll [2010-02-03 14:34:33 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cdmodem.dll [2010-02-03 14:34:33 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\shadow.exe [2010-02-03 14:34:33 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shadow.exe [2010-02-03 14:34:33 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpcfgex.dll [2010-02-03 14:34:33 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpcfgex.dll [2010-02-03 14:34:32 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmi2xml.dll [2010-02-03 14:34:32 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtsadmin.tlb [2010-02-03 14:34:30 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipicmp.dll [2010-02-03 14:34:30 | 000,052,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmitimep.dll [2010-02-03 14:34:29 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msiprov.dll [2010-02-03 14:34:29 | 000,116,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\updprov.dll [2010-02-03 14:34:29 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmplprov.dll [2010-02-03 14:34:29 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmimsg.dll [2010-02-03 14:34:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.tlb [2010-02-03 14:34:29 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\trnsprov.dll [2010-02-03 14:34:29 | 000,040,960 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpcons.dll [2010-02-03 14:34:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.tlb [2010-02-03 14:34:29 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmtr.dll [2010-02-03 14:34:29 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unsecapp.exe [2010-02-03 14:34:29 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winmgmt.exe [2010-02-03 14:34:29 | 000,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemads.dll [2010-02-03 14:34:28 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsprov.dll [2010-02-03 14:34:28 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fwdprov.dll [2010-02-03 14:34:27 | 000,351,744 | ---- | C] (Hilgraeve, Inc.) -- C:\WINDOWS\System32\hypertrm.dll [2010-02-03 14:34:27 | 000,283,136 | ---- | C] (Cinematronics) -- C:\WINDOWS\System32\dllcache\pinball.exe [2010-02-03 14:34:27 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\accwiz.exe [2010-02-03 14:34:27 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\accwiz.exe [2010-02-03 14:34:27 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\sndrec32.exe [2010-02-03 14:34:27 | 000,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sndrec32.exe [2010-02-03 14:34:27 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mplay32.exe [2010-02-03 14:34:27 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mplay32.exe [2010-02-03 14:34:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\access.cpl [2010-02-03 14:34:27 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\access.cpl [2010-02-03 14:34:26 | 000,545,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dialer.exe [2010-02-03 14:34:26 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spider.exe [2010-02-03 14:34:26 | 000,538,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\spider.exe [2010-02-03 14:34:26 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mspaint.exe [2010-02-03 14:34:26 | 000,345,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mspaint.exe [2010-02-03 14:34:26 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clipbrd.exe [2010-02-03 14:34:26 | 000,103,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clipbrd.exe [2010-02-03 14:34:26 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2010-02-03 14:34:25 | 000,139,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwd.sys [2010-02-03 14:34:25 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscfgwmi.dll [2010-02-03 14:34:25 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscfgwmi.dll [2010-02-03 14:34:25 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tsgqec.dll [2010-02-03 14:34:25 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsgqec.dll [2010-02-03 14:34:25 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdtcp.sys [2010-02-03 14:34:25 | 000,012,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdpipe.sys [2010-02-03 14:34:24 | 002,061,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstscx.dll [2010-02-03 14:34:24 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rhttpaa.dll [2010-02-03 14:34:24 | 000,290,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rhttpaa.dll [2010-02-03 14:34:24 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aaclient.dll [2010-02-03 14:34:24 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\aaclient.dll [2010-02-03 14:34:23 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mstsc.exe [2010-02-03 14:34:23 | 000,677,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lhmstsc.exe [2010-02-03 14:34:23 | 000,296,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\termsrv.dll [2010-02-03 14:34:23 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdchost.dll [2010-02-03 14:34:23 | 000,147,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdchost.dll [2010-02-03 14:34:23 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sessmgr.exe [2010-02-03 14:34:23 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpwsx.dll [2010-02-03 14:34:23 | 000,087,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpwsx.dll [2010-02-03 14:34:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdshost.exe [2010-02-03 14:34:23 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdshost.exe [2010-02-03 14:34:23 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpclip.exe [2010-02-03 14:34:23 | 000,062,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpclip.exe [2010-02-03 14:34:23 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\remotepg.dll [2010-02-03 14:34:23 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\qprocess.exe [2010-02-03 14:34:23 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qprocess.exe [2010-02-03 14:34:23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdpsnd.dll [2010-02-03 14:34:23 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdpsnd.dll [2010-02-03 14:34:23 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\rdsaddin.exe [2010-02-03 14:34:23 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rdsaddin.exe [2010-02-03 14:34:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtctm.dll [2010-02-03 14:34:22 | 000,956,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtctm.dll [2010-02-03 14:34:22 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcprx.dll [2010-02-03 14:34:22 | 000,427,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcprx.dll [2010-02-03 14:34:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtcuiu.dll [2010-02-03 14:34:22 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtcuiu.dll [2010-02-03 14:34:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxoci.dll [2010-02-03 14:34:22 | 000,091,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxoci.dll [2010-02-03 14:34:22 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgbkend.dll [2010-02-03 14:34:22 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cfgbkend.dll [2010-02-03 14:34:22 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\icaapi.dll [2010-02-03 14:34:22 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\icaapi.dll [2010-02-03 14:34:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2010-02-03 14:34:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msdtclog.dll [2010-02-03 14:34:21 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtclog.dll [2010-02-03 14:34:21 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xolehlp.dll [2010-02-03 14:34:21 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xolehlp.dll [2010-02-03 14:34:21 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msdtc.exe [2010-02-03 14:34:20 | 000,195,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comadmin.dll [2010-02-03 14:34:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.dll [2010-02-03 14:34:20 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comrepl.dll [2010-02-03 14:34:20 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\colbact.dll [2010-02-03 14:34:20 | 000,060,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\colbact.dll [2010-02-03 14:34:20 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\stclient.dll [2010-02-03 14:34:20 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stclient.dll [2010-02-03 14:34:20 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxlegih.dll [2010-02-03 14:34:20 | 000,034,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxlegih.dll [2010-02-03 14:34:20 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxdm.dll [2010-02-03 14:34:20 | 000,030,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxdm.dll [2010-02-03 14:34:20 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comaddin.dll [2010-02-03 14:34:20 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comaddin.dll [2010-02-03 14:34:20 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrepl.exe [2010-02-03 14:34:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dcomcnfg.exe [2010-02-03 14:34:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dcomcnfg.exe [2010-02-03 14:34:20 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comrereg.exe [2010-02-03 14:34:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mtxex.dll [2010-02-03 14:34:20 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtxex.dll [2010-02-03 14:34:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2010-02-03 14:34:19 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvut.dll [2010-02-03 14:34:19 | 000,625,664 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvut.dll [2010-02-03 14:34:19 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrv.dll [2010-02-03 14:34:19 | 000,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrv.dll [2010-02-03 14:34:19 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatex.dll [2010-02-03 14:34:19 | 000,110,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\clbcatex.dll [2010-02-03 14:34:19 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\catsrvps.dll [2010-02-03 14:34:19 | 000,085,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\catsrvps.dll [2010-02-03 14:34:18 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsvcs.dll [2010-02-03 14:34:18 | 001,267,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsvcs.dll [2010-02-03 14:34:18 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comuid.dll [2010-02-03 14:34:18 | 000,539,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comuid.dll [2010-02-03 14:34:18 | 000,498,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\clbcatq.dll [2010-02-03 14:34:18 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\comsnap.dll [2010-02-03 14:34:18 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comsnap.dll [2010-02-03 14:34:16 | 000,367,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmic.exe [2010-02-03 14:34:16 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipcima.dll [2010-02-03 14:34:16 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmisvc.dll [2010-02-03 14:34:16 | 000,144,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiprov.dll [2010-02-03 14:34:16 | 000,140,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmidcprv.dll [2010-02-03 14:34:16 | 000,132,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipdskq.dll [2010-02-03 14:34:16 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiutils.dll [2010-02-03 14:34:16 | 000,062,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipjobj.dll [2010-02-03 14:34:16 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipiprt.dll [2010-02-03 14:34:16 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmicookr.dll [2010-02-03 14:34:16 | 000,041,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmipsess.dll [2010-02-03 14:34:15 | 000,531,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcore.dll [2010-02-03 14:34:15 | 000,273,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemess.dll [2010-02-03 14:34:15 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcomn.dll [2010-02-03 14:34:15 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcntl.dll [2010-02-03 14:34:15 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemupgd.dll [2010-02-03 14:34:15 | 000,196,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiadap.exe [2010-02-03 14:34:15 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemdisp.dll [2010-02-03 14:34:15 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\viewprov.dll [2010-02-03 14:34:15 | 000,126,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapsrv.exe [2010-02-03 14:34:15 | 000,118,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemtest.exe [2010-02-03 14:34:15 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiaprpl.dll [2010-02-03 14:34:15 | 000,071,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemcons.dll [2010-02-03 14:34:15 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemsvc.dll [2010-02-03 14:34:15 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wbemprox.dll [2010-02-03 14:34:15 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wmiapres.dll [2010-02-03 14:34:14 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\provthrd.dll [2010-02-03 14:34:14 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ntevt.dll [2010-02-03 14:34:14 | 000,178,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\repdrvfs.dll [2010-02-03 14:34:14 | 000,124,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofd.dll [2010-02-03 14:34:14 | 000,092,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\policman.dll [2010-02-03 14:34:14 | 000,086,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\stdprov.dll [2010-02-03 14:34:14 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ncprov.dll [2010-02-03 14:34:14 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\scrcons.exe [2010-02-03 14:34:14 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\krnlprov.dll [2010-02-03 14:34:14 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mofcomp.exe [2010-02-03 14:34:13 | 000,247,808 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\esscli.dll [2010-02-03 14:34:13 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\framedyn.dll [2010-02-03 14:34:12 | 001,359,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cimwin32.dll [2010-02-03 14:34:12 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cmprops.dll [2010-02-03 14:34:12 | 000,187,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\cmprops.dll [2010-02-03 14:34:12 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\licwmi.dll [2010-02-03 14:34:12 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licwmi.dll [2010-02-03 14:34:12 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\servdeps.dll [2010-02-03 14:34:12 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\servdeps.dll [2010-02-03 14:34:12 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\mmfutil.dll [2010-02-03 14:34:12 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mmfutil.dll [2010-02-03 14:34:04 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2010-02-03 14:31:14 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys [2010-02-03 14:31:02 | 000,027,165 | ---- | C] (VIA Technologies, Inc. ) -- C:\WINDOWS\System32\drivers\fetnd5.sys [2010-02-03 14:31:00 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\usbui.dll [2010-02-03 14:30:51 | 000,014,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\battc.sys [2010-02-03 14:30:16 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2010-02-03 14:30:04 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2010-02-03 14:30:04 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2010-02-03 14:30:01 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2010-02-03 14:30:00 | 000,000,000 | R--D | C] -- C:\Program Files [2010-02-03 14:30:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2010-02-03 14:30:00 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2010-02-03 14:29:57 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuq.dll [2010-02-03 14:29:57 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtuf.dll [2010-02-03 14:29:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuq.dll [2010-02-03 14:29:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtuf.dll [2010-02-03 14:29:57 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdazel.dll [2010-02-03 14:29:57 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdazel.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycc.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbduzb.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdur.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdtat.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdmon.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkyr.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkaz.dll [2010-02-03 14:29:56 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdaze.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycc.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbduzb.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdur.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdtat.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdmon.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkyr.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkaz.dll [2010-02-03 14:29:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdaze.dll [2010-02-03 14:29:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru1.dll [2010-02-03 14:29:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdru.dll [2010-02-03 14:29:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdbu.dll [2010-02-03 14:29:55 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdblr.dll [2010-02-03 14:29:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru1.dll [2010-02-03 14:29:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdru.dll [2010-02-03 14:29:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdbu.dll [2010-02-03 14:29:55 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdblr.dll [2010-02-03 14:29:54 | 000,008,192 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhept.dll [2010-02-03 14:29:54 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhept.dll [2010-02-03 14:29:54 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela3.dll [2010-02-03 14:29:54 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela3.dll [2010-02-03 14:29:54 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhela2.dll [2010-02-03 14:29:54 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdgkl.dll [2010-02-03 14:29:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhela2.dll [2010-02-03 14:29:54 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgkl.dll [2010-02-03 14:29:54 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe319.dll [2010-02-03 14:29:54 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe220.dll [2010-02-03 14:29:54 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhe.dll [2010-02-03 14:29:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe319.dll [2010-02-03 14:29:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe220.dll [2010-02-03 14:29:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhe.dll [2010-02-03 14:29:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv1.dll [2010-02-03 14:29:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlv.dll [2010-02-03 14:29:53 | 000,006,144 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdest.dll [2010-02-03 14:29:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv1.dll [2010-02-03 14:29:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlv.dll [2010-02-03 14:29:53 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdest.dll [2010-02-03 14:29:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt1.dll [2010-02-03 14:29:53 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdlt.dll [2010-02-03 14:29:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt1.dll [2010-02-03 14:29:53 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlt.dll [2010-02-03 14:29:47 | 000,007,168 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz.dll [2010-02-03 14:29:47 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdycl.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl1.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdsl.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz2.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcz1.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdcr.dll [2010-02-03 14:29:47 | 000,006,656 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\KBDAL.DLL [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdycl.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl1.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsl.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz2.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcz1.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdcr.dll [2010-02-03 14:29:47 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdal.dll [2010-02-03 14:29:47 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdro.dll [2010-02-03 14:29:47 | 000,005,632 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdhu1.dll [2010-02-03 14:29:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdro.dll [2010-02-03 14:29:47 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhu1.dll [2010-02-03 14:29:45 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2010-02-03 14:29:45 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2010-02-03 14:29:45 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2010-02-03 14:29:45 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2010-02-03 14:29:45 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dllcache\dgsetup.dll [2010-02-03 14:29:45 | 000,085,532 | ---- | C] (Digi International) -- C:\WINDOWS\System32\dgsetup.dll [2010-02-03 14:29:45 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010-02-03 14:29:45 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010-02-03 14:29:45 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010-02-03 14:29:45 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010-02-03 14:29:44 | 000,127,008 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MSVIDEO.DLL [2010-02-03 14:29:44 | 000,083,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLECLI.DLL [2010-02-03 14:29:44 | 000,073,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIAVI.DRV [2010-02-03 14:29:44 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCIWAVE.DRV [2010-02-03 14:29:44 | 000,025,296 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MCISEQ.DRV [2010-02-03 14:29:44 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\OLESVR.DLL [2010-02-03 14:29:44 | 000,019,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TAPI.DLL [2010-02-03 14:29:44 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2010-02-03 14:29:44 | 000,009,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VER.DLL [2010-02-03 14:29:44 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SHELL.DLL [2010-02-03 14:29:44 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2010-02-03 14:29:44 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2010-02-03 14:29:44 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2010-02-03 14:29:44 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2010-02-03 14:29:44 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2010-02-03 14:29:44 | 000,001,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMTASK.TSK [2010-02-03 14:29:43 | 000,109,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVIFILE.DLL [2010-02-03 14:29:43 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2010-02-03 14:29:43 | 000,033,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\COMMDLG.DLL [2010-02-03 14:29:43 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\TASKMAN.EXE [2010-02-03 14:29:43 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\taskman.exe [2010-02-03 14:29:43 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2010-02-03 14:29:43 | 000,009,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\LZEXPAND.DLL [2010-02-03 14:29:43 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2010-02-03 14:29:42 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2010-02-03 14:29:42 | 000,069,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MMSYSTEM.DLL [2010-02-03 14:29:42 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\batt.dll [2010-02-03 14:29:41 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\storprop.dll [2010-02-03 14:29:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2010-02-03 14:29:34 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2010-02-03 14:29:34 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2010-02-03 14:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2010-02-03 14:29:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2010-02-03 14:29:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2010-02-03 14:29:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2010-02-03 14:29:18 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2010-02-03 14:29:18 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2010-02-03 14:29:16 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2010-02-03 14:29:16 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2010-02-03 14:28:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2010-02-03 14:24:59 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2010-02-03 14:24:59 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2010-02-03 14:24:59 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2010-02-03 14:24:59 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2010-02-03 14:24:59 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Offline Web Pages [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Network Diagnostic [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\L2Schemas [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\ehome [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2010-02-03 14:24:59 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2010-01-27 20:06:54 | 001,875,968 | ---- | C] (VIA/S3 Graphics, Inc.) -- C:\WINDOWS\System32\vticd.dll [2010-01-27 20:06:54 | 000,540,672 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\VTovrlay.dll [2010-01-27 20:06:54 | 000,319,488 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\VTInfo2.dll [2010-01-27 20:06:54 | 000,247,040 | ---- | C] (Copyright (C) VIA/S3 Graphics Co, Ltd.) -- C:\WINDOWS\System32\drivers\vtmini.sys [2010-01-27 20:06:54 | 000,163,840 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\VTTrayp.exe [2010-01-27 20:06:54 | 000,053,248 | ---- | C] (S3 Graphics, Inc.) -- C:\WINDOWS\System32\VTTimer.exe [2010-01-27 20:06:53 | 003,490,432 | ---- | C] (VIA/S3 Graphics Co, Ltd.) -- C:\WINDOWS\System32\vtdisp.dll [2010-01-27 20:06:53 | 000,581,632 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\VTDisply.dll [2010-01-27 20:06:53 | 000,446,464 | ---- | C] (S3 Graphics Co., Ltd.) -- C:\WINDOWS\System32\VTGamma2.dll [2010-01-27 20:06:47 | 000,923,826 | ---- | C] (Motorola Inc.) -- C:\WINDOWS\System32\drivers\smserial.sys [2010-01-27 20:06:47 | 000,544,768 | ---- | C] (Motorola Inc.) -- C:\WINDOWS\sm56hlpr.exe [2010-01-27 20:06:47 | 000,073,728 | ---- | C] (Motorola Inc.) -- C:\WINDOWS\System32\sm56co.dll [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-20 10:58:08 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-02-20 10:54:54 | 000,000,528 | ---- | M] () -- C:\WINDOWS\win.ini [2010-02-20 10:54:54 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-02-20 10:53:36 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-20 10:51:42 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprian\Pulpit\OTL.exe [2010-02-20 10:41:28 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-02-20 10:40:46 | 001,835,008 | -H-- | M] () -- C:\Documents and Settings\Cyprian\NTUSER.DAT [2010-02-20 10:40:42 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Cyprian\ntuser.ini [2010-02-20 10:40:36 | 004,819,484 | -H-- | M] () -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-02-20 10:14:10 | 004,975,528 | ---- | M] (Hewlett-Packard Company ) -- C:\Documents and Settings\Cyprian\Pulpit\sp22996.exe [2010-02-20 10:13:26 | 003,857,304 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\sp18914.exe [2010-02-20 10:00:38 | 003,866,199 | R--- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\ComboFix.exe [2010-02-20 09:37:10 | 000,144,643 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\kicko.JPG [2010-02-19 22:59:22 | 055,938,014 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-02-16 20:17:50 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-15 21:31:46 | 000,057,895 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\66744a2ea5.jpeg [2010-02-14 11:36:20 | 000,001,667 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-02-14 11:30:10 | 000,112,640 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\EX021107K.pdf [2010-02-14 11:27:08 | 003,596,489 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\2010-02-10_Express_Ilustrowany.pdf [2010-02-11 15:15:38 | 000,763,990 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-02-11 15:15:38 | 000,356,068 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-02-11 15:15:38 | 000,311,938 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-02-11 15:15:38 | 000,049,910 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-02-11 15:15:38 | 000,040,326 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-02-09 18:18:12 | 002,344,427 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Jackson- mod.mp3 [2010-02-09 18:10:26 | 005,720,220 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\michael jackson - thriller (instrumental).mp3 [2010-02-09 17:51:26 | 003,969,045 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Always Look On The Bright Side of Life.mp3 [2010-02-09 17:38:10 | 003,667,069 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Pink Panther Theme Song.mp3 [2010-02-09 17:35:40 | 003,717,225 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Star Wars- The Imperial March (Darth Vader_s Theme).mp3 [2010-02-09 17:32:34 | 005,440,261 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Benny Hill Theme.mp3 [2010-02-07 15:08:20 | 000,005,120 | ---- | M] () -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-02-07 15:05:34 | 732,848,128 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Up.2009.PLDUB.DVDRiP.XviD-BRiLLANT.(osloskop.net).avi [2010-02-03 18:13:54 | 000,000,620 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\SpeedFan.lnk [2010-02-03 18:13:52 | 000,000,045 | ---- | M] () -- C:\WINDOWS\System32\initdebug.nfo [2010-02-03 17:13:16 | 061,513,852 | ---- | M] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\ALESHA DIXON - HD - The Boy Does Nothing_HD_1 [2010-02-03 17:13:16 | 061,513,852 | ---- | M] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\ALESHA DIXON - HD - The Boy Does Nothing_HD_0 [2010-02-03 17:12:40 | 005,315,396 | ---- | M] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\_Titanic_ Theme Song.mp3 [2010-02-03 17:08:54 | 004,034,351 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Alesha Dixon - The Boy Does Nothing _Full_ _ Lyrics.mp3 [2010-02-03 17:04:38 | 000,012,328 | ---- | M] () -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-02-03 15:56:36 | 000,000,373 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\Skrót do Muzyka.lnk [2010-02-03 15:24:30 | 000,142,495 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg [2010-02-03 15:18:10 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgtdix.sys [2010-02-03 15:18:02 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgldx86.sys [2010-02-03 15:18:02 | 000,113,461 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm [2010-02-03 15:18:02 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\WINDOWS\System32\drivers\avgmfx86.sys [2010-02-03 15:18:00 | 006,061,540 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg [2010-02-03 15:18:00 | 000,492,629 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg [2010-02-03 15:13:18 | 000,000,558 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-02-03 15:12:18 | 000,000,496 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-02-03 15:08:26 | 000,233,243 | ---- | M] (Burn4Free) -- C:\WINDOWS\Burn4Free_Toolbar_Uninstaller_8812.exe [2010-02-03 15:07:48 | 000,000,544 | ---- | M] () -- C:\Documents and Settings\Cyprian\Pulpit\ALLPlayer V4.2.lnk [2010-02-03 14:57:04 | 000,017,801 | ---- | M] (Meetinghouse Data Communications) -- C:\WINDOWS\System32\drivers\AegisP.sys [2010-02-03 14:43:40 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2010-02-03 14:43:30 | 000,093,480 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-02-03 14:42:54 | 000,000,672 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-02-03 14:38:38 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-02-03 14:38:38 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2010-02-03 14:38:38 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2010-02-03 14:38:38 | 000,000,000 | ---- | M] () -- C:\WINDOWS\control.ini [2010-02-03 14:38:38 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2010-02-03 14:38:38 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2010-02-03 14:38:32 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-02-03 14:38:32 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-02-03 14:38:30 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-02-03 14:38:24 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-02-03 14:37:38 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-02-03 14:37:38 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-02-03 14:37:36 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-02-03 14:35:22 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-02-03 14:35:14 | 000,000,037 | ---- | M] () -- C:\WINDOWS\vbaddin.ini [2010-02-03 14:35:14 | 000,000,036 | ---- | M] () -- C:\WINDOWS\vb.ini [2010-02-03 14:30:10 | 000,004,444 | ---- | M] () -- C:\WINDOWS\System32\pid.PNF [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-20 10:53:27 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-02-20 10:53:26 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-02-20 10:53:26 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-02-20 10:53:26 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-02-20 10:53:26 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-02-20 10:12:32 | 003,857,304 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\sp18914.exe [2010-02-20 10:00:00 | 003,866,199 | R--- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\ComboFix.exe [2010-02-20 09:37:08 | 000,144,643 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\kicko.JPG [2010-02-15 21:31:44 | 000,057,895 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\66744a2ea5.jpeg [2010-02-14 11:36:18 | 000,001,667 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-02-14 11:30:09 | 000,112,640 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\EX021107K.pdf [2010-02-14 11:26:37 | 003,596,489 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\2010-02-10_Express_Ilustrowany.pdf [2010-02-09 18:21:48 | 002,344,427 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Jackson- mod.mp3 [2010-02-09 18:05:40 | 005,720,220 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\michael jackson - thriller (instrumental).mp3 [2010-02-09 17:51:02 | 003,969,045 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Always Look On The Bright Side of Life.mp3 [2010-02-09 17:37:47 | 003,667,069 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Pink Panther Theme Song.mp3 [2010-02-09 17:35:00 | 003,717,225 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Star Wars- The Imperial March (Darth Vader_s Theme).mp3 [2010-02-09 17:31:51 | 005,440,261 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Benny Hill Theme.mp3 [2010-02-07 15:08:27 | 732,848,128 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Up.2009.PLDUB.DVDRiP.XviD-BRiLLANT.(osloskop.net).avi [2010-02-03 18:13:52 | 000,000,620 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\SpeedFan.lnk [2010-02-03 18:13:50 | 000,000,045 | ---- | C] () -- C:\WINDOWS\System32\initdebug.nfo [2010-02-03 17:12:06 | 005,315,396 | ---- | C] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\_Titanic_ Theme Song.mp3 [2010-02-03 17:08:35 | 004,034,351 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Alesha Dixon - The Boy Does Nothing _Full_ _ Lyrics.mp3 [2010-02-03 17:05:11 | 061,513,852 | ---- | C] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\ALESHA DIXON - HD - The Boy Does Nothing_HD_1 [2010-02-03 17:04:49 | 061,513,852 | ---- | C] () -- C:\Documents and Settings\Cyprian\Moje dokumenty\ALESHA DIXON - HD - The Boy Does Nothing_HD_0 [2010-02-03 15:56:35 | 000,000,373 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\Skrót do Muzyka.lnk [2010-02-03 15:30:02 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2010-02-03 15:30:02 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2010-02-03 15:30:01 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2010-02-03 15:30:01 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2010-02-03 15:29:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28603.nls [2010-02-03 15:29:57 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_857.nls [2010-02-03 15:29:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28599.nls [2010-02-03 15:29:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10081.nls [2010-02-03 15:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10017.nls [2010-02-03 15:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10007.nls [2010-02-03 15:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10006.nls [2010-02-03 15:18:00 | 000,113,461 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\iavichjw.avm [2010-02-03 15:17:59 | 055,938,014 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-02-03 15:17:59 | 006,061,540 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\avi7.avg [2010-02-03 15:17:59 | 000,492,629 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\miniavi.avg [2010-02-03 15:17:59 | 000,142,495 | ---- | C] () -- C:\WINDOWS\System32\drivers\Avg\microavi.avg [2010-02-03 15:13:16 | 000,000,558 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Winamp.lnk [2010-02-03 15:12:17 | 000,000,496 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Opera.lnk [2010-02-03 15:11:34 | 000,178,176 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-02-03 15:11:33 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml [2010-02-03 15:11:33 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-02-03 15:11:32 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-02-03 15:11:30 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2010-02-03 15:11:30 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2010-02-03 15:07:45 | 000,000,544 | ---- | C] () -- C:\Documents and Settings\Cyprian\Pulpit\ALLPlayer V4.2.lnk [2010-02-03 15:07:44 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-02-03 15:07:44 | 000,797,184 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax [2010-02-03 15:04:19 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2010-02-03 15:04:18 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RtlCPAPI.dll [2010-02-03 15:04:18 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2010-02-03 15:04:17 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV [2010-02-03 14:59:05 | 000,061,440 | ---- | C] () -- C:\WINDOWS\System32\vuins32.dll [2010-02-03 14:57:02 | 000,192,512 | ---- | C] () -- C:\WINDOWS\System32\AegisI5.exe [2010-02-03 14:57:02 | 000,065,536 | ---- | C] () -- C:\WINDOWS\System32\WLTRYSVC.EXE [2010-02-03 14:49:55 | 000,005,120 | ---- | C] () -- C:\Documents and Settings\Cyprian\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-02-03 14:44:47 | 000,000,188 | -HS- | C] () -- C:\Documents and Settings\Cyprian\ntuser.ini [2010-02-03 14:44:46 | 001,835,008 | -H-- | C] () -- C:\Documents and Settings\Cyprian\NTUSER.DAT [2010-02-03 14:43:38 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2010-02-03 14:42:52 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2010-02-03 14:42:45 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-02-03 14:41:55 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-02-03 14:41:55 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-02-03 14:41:51 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-02-03 14:41:31 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-02-03 14:41:29 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-02-03 14:41:06 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-02-03 14:41:03 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-02-03 14:40:55 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-02-03 14:40:45 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-02-03 14:40:39 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-02-03 14:40:26 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-02-03 14:40:09 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-02-03 14:40:01 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-02-03 14:40:01 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-02-03 14:40:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-02-03 14:40:00 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-02-03 14:39:59 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-02-03 14:39:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-02-03 14:39:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-02-03 14:39:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-02-03 14:39:58 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-02-03 14:39:57 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-02-03 14:39:57 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-02-03 14:39:56 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-02-03 14:39:56 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-02-03 14:39:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-02-03 14:39:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-02-03 14:39:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-02-03 14:39:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-02-03 14:39:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-02-03 14:39:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-02-03 14:39:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-02-03 14:39:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-02-03 14:39:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-02-03 14:39:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-02-03 14:39:51 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-02-03 14:39:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-02-03 14:39:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-02-03 14:39:50 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-02-03 14:39:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-02-03 14:39:49 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-02-03 14:39:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-02-03 14:39:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-02-03 14:39:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-02-03 14:39:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-02-03 14:39:46 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-02-03 14:39:46 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-02-03 14:39:45 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-02-03 14:39:45 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-02-03 14:39:45 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-02-03 14:39:44 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-02-03 14:39:44 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-02-03 14:39:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-02-03 14:39:43 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-02-03 14:39:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-02-03 14:39:42 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-02-03 14:39:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-02-03 14:39:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-02-03 14:39:41 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-02-03 14:39:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-02-03 14:39:40 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-02-03 14:39:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-02-03 14:39:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-02-03 14:39:39 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-02-03 14:39:38 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-02-03 14:39:38 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-02-03 14:39:37 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-02-03 14:39:37 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-02-03 14:39:37 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-02-03 14:39:36 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-02-03 14:39:35 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-02-03 14:39:35 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-02-03 14:38:36 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2010-02-03 14:38:36 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2010-02-03 14:38:36 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2010-02-03 14:38:36 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2010-02-03 14:38:36 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2010-02-03 14:38:30 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2010-02-03 14:38:30 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2010-02-03 14:38:29 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2010-02-03 14:37:37 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-02-03 14:37:37 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-02-03 14:37:34 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-02-03 14:37:20 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2010-02-03 14:37:02 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2010-02-03 14:37:02 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2010-02-03 14:36:54 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2010-02-03 14:36:17 | 000,380,416 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msinfo.dll [2010-02-03 14:35:20 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-02-03 14:34:37 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2010-02-03 14:34:37 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2010-02-03 14:34:37 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2010-02-03 14:34:37 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2010-02-03 14:34:37 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2010-02-03 14:34:36 | 000,093,702 | ---- | C] () -- C:\WINDOWS\System32\subrange.uce [2010-02-03 14:34:36 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2010-02-03 14:34:36 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2010-02-03 14:34:36 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2010-02-03 14:34:36 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2010-02-03 14:34:36 | 000,016,740 | ---- | C] () -- C:\WINDOWS\System32\shiftjis.uce [2010-02-03 14:34:36 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2010-02-03 14:34:36 | 000,012,876 | ---- | C] () -- C:\WINDOWS\System32\korean.uce [2010-02-03 14:34:36 | 000,008,484 | ---- | C] () -- C:\WINDOWS\System32\kanji_2.uce [2010-02-03 14:34:36 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2010-02-03 14:34:35 | 000,060,458 | ---- | C] () -- C:\WINDOWS\System32\ideograf.uce [2010-02-03 14:34:35 | 000,024,006 | ---- | C] () -- C:\WINDOWS\System32\gb2312.uce [2010-02-03 14:34:35 | 000,022,984 | ---- | C] () -- C:\WINDOWS\System32\bopomofo.uce [2010-02-03 14:34:35 | 000,006,948 | ---- | C] () -- C:\WINDOWS\System32\kanji_1.uce [2010-02-03 14:34:34 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2010-02-03 14:34:34 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2010-02-03 14:34:33 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2010-02-03 14:34:28 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [2010-02-03 14:30:09 | 000,004,444 | ---- | C] () -- C:\WINDOWS\System32\pid.PNF [2010-02-03 14:29:59 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28603.nls [2010-02-03 14:29:57 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_857.nls [2010-02-03 14:29:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_28599.nls [2010-02-03 14:29:57 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10081.nls [2010-02-03 14:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28595.nls [2010-02-03 14:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28595.NLS [2010-02-03 14:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10017.nls [2010-02-03 14:29:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10007.nls [2010-02-03 14:29:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_869.nls [2010-02-03 14:29:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_869.nls [2010-02-03 14:29:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_737.nls [2010-02-03 14:29:54 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_737.nls [2010-02-03 14:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_875.nls [2010-02-03 14:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_875.nls [2010-02-03 14:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28597.nls [2010-02-03 14:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28597.NLS [2010-02-03 14:29:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10006.nls [2010-02-03 14:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_866.nls [2010-02-03 14:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_866.nls [2010-02-03 14:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_855.nls [2010-02-03 14:29:53 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\c_855.nls [2010-02-03 14:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28594.nls [2010-02-03 14:29:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\C_28594.NLS [2010-02-03 14:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20127.nls [2010-02-03 14:29:48 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_20127.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10082.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10082.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10029.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10029.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10010.nls [2010-02-03 14:29:47 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\c_10010.nls [2010-02-03 14:29:43 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2010-02-03 14:29:33 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-02-03 14:29:33 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-02-03 14:29:33 | 000,144,484 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-02-03 14:29:33 | 000,105,628 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-02-03 14:29:33 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-02-03 14:29:33 | 000,034,747 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-02-03 14:29:33 | 000,033,765 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-02-03 14:29:33 | 000,016,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-02-03 14:29:33 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-02-03 14:29:33 | 000,012,363 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-02-03 14:29:33 | 000,010,027 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-02-03 14:29:33 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-02-03 14:29:33 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-02-03 14:29:33 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2010-02-03 14:29:32 | 002,033,887 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-02-03 14:29:32 | 001,246,357 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP3.CAT [2010-02-03 14:29:32 | 000,634,012 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-02-03 14:28:55 | 000,093,480 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-02-03 14:28:34 | 000,000,211 | -HS- | C] () -- C:\boot.ini [2010-02-03 14:28:31 | 000,000,672 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2010-01-27 20:06:54 | 000,059,327 | ---- | C] () -- C:\WINDOWS\System32\VTovrlay.cfg [2010-01-27 20:06:54 | 000,051,124 | ---- | C] () -- C:\WINDOWS\System32\VTTrayp.cfg [2010-01-27 20:06:54 | 000,044,076 | ---- | C] () -- C:\WINDOWS\System32\VTInfo2.cfg [2010-01-27 20:06:54 | 000,037,162 | ---- | C] () -- C:\WINDOWS\System32\VTTrayP2.cfg [2010-01-27 20:06:54 | 000,034,375 | ---- | C] () -- C:\WINDOWS\System32\VTOvrly2.cfg [2010-01-27 20:06:53 | 000,063,489 | ---- | C] () -- C:\WINDOWS\System32\VTDisply.cfg [2010-01-27 20:06:53 | 000,056,619 | ---- | C] () -- C:\WINDOWS\System32\VTDispl2.cfg [2010-01-27 20:06:53 | 000,052,037 | ---- | C] () -- C:\WINDOWS\System32\VTDispl3.cfg [2010-01-27 20:06:53 | 000,050,104 | ---- | C] () -- C:\WINDOWS\System32\VTGamma2.cfg [2010-01-27 20:06:53 | 000,036,546 | ---- | C] () -- C:\WINDOWS\System32\VTGama_2.cfg [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56spn.dll [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56itl.dll [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56ger.dll [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56fra.dll [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56eng.dll [2010-01-27 20:06:47 | 000,065,536 | ---- | C] () -- C:\WINDOWS\sm56brz.dll [2010-01-27 20:06:47 | 000,049,152 | ---- | C] () -- C:\WINDOWS\sm56jpn.dll [2010-01-27 20:06:47 | 000,045,056 | ---- | C] () -- C:\WINDOWS\sm56cht.dll [2010-01-27 20:06:47 | 000,045,056 | ---- | C] () -- C:\WINDOWS\sm56chs.dll [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys < End of report > [/log] OTL mój stacjonarny [log] OTL logfile created on: 2010-02-20 10:56:21 - Run 2 OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Cyprek\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 636,00 Mb Available Physical Memory | 62,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): c:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 10,03 Gb Total Space | 1,79 Gb Free Space | 17,82% Space Free | Partition Type: NTFS Drive D: | 2,00 Gb Total Space | 1,98 Gb Free Space | 98,86% Space Free | Partition Type: NTFS Drive E: | 25,23 Gb Total Space | 12,54 Gb Free Space | 49,71% Space Free | Partition Type: FAT32 F: Drive not present or media not loaded Drive G: | 43,95 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 232,88 Gb Total Space | 86,55 Gb Free Space | 37,16% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: HOUSE Current User Name: Cyprek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe PRC - [2009-12-31 19:13:44 | 002,033,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2009-12-19 13:31:40 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2009-12-19 13:31:40 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2009-12-19 13:31:40 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2009-12-19 13:31:40 | 000,503,576 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2009-12-19 13:31:37 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe PRC - [2009-12-19 13:31:36 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2009-11-20 19:01:18 | 000,832,296 | ---- | M] (Opera Software) -- H:\Program Files\Opera\opera.exe PRC - [2009-07-17 14:32:00 | 003,576,320 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe PRC - [2006-11-10 16:12:30 | 000,099,936 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe PRC - [2004-08-23 12:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe PRC - [2004-08-03 23:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe MOD - [2004-08-03 23:42:34 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (UserAccess) SRV - File not found [Disabled | Stopped] -- -- (ummeaq192zuj) SRV - File not found [Disabled | Stopped] -- -- (a8a2oqeana5y6tn1) SRV - [2009-12-19 13:31:37 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2009-12-19 13:31:36 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2009-10-19 15:57:41 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Disabled | Stopped] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-10-07 10:47:58 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2009-07-17 14:32:00 | 003,576,320 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV - [2009-02-09 13:18:00 | 000,163,908 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) SRV - [2006-11-10 16:12:30 | 000,099,936 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) SRV - [2005-04-04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004-08-23 12:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC) SRV - [2003-07-28 20:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-12-19 13:31:51 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2009-12-19 13:31:51 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2009-12-19 13:31:51 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2009-03-27 00:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132) DRV - [2009-02-09 13:18:00 | 006,307,328 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2007-08-04 13:26:55 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2007-08-04 13:26:53 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2006-11-10 14:08:50 | 000,024,064 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ATITool.sys -- (ATITool) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2006-09-19 10:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw) DRV - [2006-09-15 10:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys) DRV - [2005-11-30 16:12:22 | 000,029,440 | ---- | M] (Siemens AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\actser.sys -- (actser) DRV - [2005-11-30 16:12:20 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial) DRV - [2005-11-30 16:12:20 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus) DRV - [2005-05-18 10:50:30 | 002,319,680 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-05-17 10:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\nvata.sys -- (nvata) DRV - [2005-04-05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-09 14:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-03-03 18:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-02-23 16:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [2004-12-03 11:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x) DRV - [2004-07-17 10:36:38 | 000,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2004-06-20 03:28:00 | 000,025,600 | R--- | M] (TwinHan Provide) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DtvVideo.sys -- (DtvVideo) DRV - [2004-06-20 03:28:00 | 000,010,330 | R--- | M] (TwinHan Provide) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DtvAudio.sys -- (DtvAudio) DRV - [2004-05-02 09:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv) DRV - [2003-12-23 01:15:42 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\xmasscsi.sys -- (xmasscsi) DRV - [2003-12-21 16:24:22 | 000,140,800 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xmasbus.sys -- (xmasbus) DRV - [2003-08-04 12:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2002-08-16 10:10:04 | 000,019,171 | R--- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DstVideo.sys -- (DstVideo) DRV - [2002-08-16 10:10:04 | 000,008,506 | R--- | M] (Dst provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DstAudio.sys -- (DstAudio) DRV - [2002-01-12 16:30:34 | 000,003,567 | ---- | M] (Beyond Logic http://www.beyondlogic.org) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PortTalk.sys -- (PortTalk) DRV - [2001-08-17 20:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/ IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/" FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.716 FF - prefs.js..extensions.enabledItems: {a0faa0a4-f1a7-4098-9a74-21efc3a92372}:3.5.4 FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.16 FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.0.6 FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2009-12-19 13:31:36 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2010-02-19 17:31:37 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2010-02-19 17:31:37 | 000,000,000 | ---D | M] [2008-12-19 22:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Extensions [2010-02-18 21:03:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions [2009-06-13 09:25:26 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (DictionarySearch) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372} O1 HOSTS File: ([2002-09-28 23:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.) O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O8 - Extra context menu item: E&ksport do programu Microsoft Excel - H:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-07-20 10:14:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 14:57:18 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2006-11-19 13:43:54 | 000,000,033 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{06ce6d72-8c6c-11dd-a96f-4d6564696130}\Shell\AutoRun\command - "" = RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\sys32.exe O33 - MountPoints2\{06ce6d72-8c6c-11dd-a96f-4d6564696130}\Shell\open\command - "" = RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\sys32.exe O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-20 10:55:55 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe [2010-02-18 01:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2010-02-18 01:40:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Last.fm [2010-02-18 01:40:04 | 000,000,000 | ---D | C] -- C:\Program Files\Last.fm [2009-12-19 13:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-12-19 13:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-09-07 22:02:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2007-07-23 12:51:37 | 000,140,800 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasbus.sys [2007-07-23 12:51:37 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasscsi.sys [2007-07-20 16:17:55 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe [2010-02-20 10:35:39 | 106,159,642 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part3.rar [2010-02-20 09:52:55 | 200,000,000 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part2.rar [2010-02-20 09:12:58 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-20 09:12:57 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-20 09:12:56 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-02-20 00:12:17 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\Cyprek\NTUSER.DAT [2010-02-20 00:12:17 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Cyprek\ntuser.ini [2010-02-19 23:40:42 | 200,000,000 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part1.rar [2010-02-19 18:54:56 | 055,899,862 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-02-19 08:29:52 | 000,199,168 | ---- | M] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-02-18 01:40:06 | 000,000,611 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-02-14 23:17:12 | 000,000,130 | ---- | M] () -- C:\WINDOWS\EurekaLog.ini [2010-02-14 14:26:25 | 000,002,259 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\Skype.lnk [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-20 10:35:39 | 104,862,240 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part3.rar [2010-02-20 09:15:04 | 200,000,000 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part2.rar [2010-02-19 22:22:38 | 200,000,000 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni_Brzeg_IIcz_2000.part1.rar [2010-02-19 21:29:26 | 734,097,388 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni Brzeg_2000.avi [2010-02-18 01:40:06 | 000,000,611 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-01-31 14:17:57 | 000,000,130 | ---- | C] () -- C:\WINDOWS\EurekaLog.ini [2009-10-27 17:56:23 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\msvcsv60.dll [2009-09-07 21:49:10 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Cyprek\Dane aplikacji\wiaserva.log [2009-04-13 09:38:49 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2009-03-12 10:53:15 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-03-12 10:53:15 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-03-12 10:53:14 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-03-12 10:53:12 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-02-27 15:28:18 | 000,074,952 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-02-04 13:18:18 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini [2008-11-29 08:06:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-10-07 08:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 08:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-10-05 13:06:40 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-09-04 18:10:36 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI [2008-06-29 19:48:48 | 000,311,128 | ---- | C] () -- C:\WINDOWS\System32\libssl32.dll [2008-06-29 19:48:46 | 001,526,468 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll [2007-11-26 21:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2007-09-30 16:32:42 | 000,000,952 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys [2007-09-13 11:26:56 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2007-09-13 11:17:00 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll [2007-09-13 11:17:00 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll [2007-09-13 11:17:00 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll [2007-09-08 10:46:08 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2007-09-05 16:52:02 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\winitn.dll [2007-09-05 16:52:01 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\kakle.dll [2007-09-05 16:51:55 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2007-09-05 16:51:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\subtot.dll [2007-08-04 15:02:00 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2007-08-04 15:01:57 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll [2007-08-04 15:01:46 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2007-08-04 15:01:44 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [2007-08-04 15:01:21 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2007-08-04 15:00:49 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2007-08-04 13:26:55 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2007-08-04 13:26:53 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2007-07-20 15:52:30 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini [2007-07-20 15:19:30 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini [2007-07-20 15:19:30 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini [2007-07-20 15:19:25 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll [2007-07-20 15:19:24 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL [2007-07-20 14:54:36 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2007-07-20 14:54:17 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2007-07-20 11:36:05 | 000,199,168 | ---- | C] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007-07-20 11:08:00 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2007-07-20 10:29:14 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2007-07-20 10:29:03 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2007-07-20 10:26:26 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007-07-20 10:20:03 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys [2006-11-10 14:08:50 | 000,024,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATITool.sys [2005-11-30 16:12:20 | 000,047,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\vserial.sys [2005-11-30 16:12:20 | 000,015,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\vsb.sys [2004-08-04 01:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys < End of report > [/log] Udało mi się uruchomić OTL na tym zasyfionym laptopie - log: [log] OTL logfile created on: 2010-02-20 10:08:36 - Run 1 OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Mariusz\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 255,00 Mb Total Physical Memory | 136,00 Mb Available Physical Memory | 53,00% Memory free 618,00 Mb Paging File | 533,00 Mb Available in Paging File | 86,00% Paging File free Paging file location(s): C:\pagefile.sys 384 768 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 9,77 Gb Total Space | 6,12 Gb Free Space | 62,63% Space Free | Partition Type: NTFS Drive D: | 18,18 Gb Total Space | 16,94 Gb Free Space | 93,21% Space Free | Partition Type: NTFS Drive E: | 7,73 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: TATA Current User Name: Mariusz Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mariusz\Pulpit\OTL.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mariusz\Pulpit\OTL.exe MOD - [2004-08-03 23:42:34 | 001,050,624 | R--- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2005-04-04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004-08-04 01:44:02 | 000,027,648 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\WINDOWS\system32\irmon.dll -- (Irmon) SRV - [2003-07-28 20:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2010-02-16 22:53:04 | 000,040,128 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\ollfdgji.sys -- (ollfdgji) DRV - [2008-09-26 18:01:00 | 000,101,376 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2007-03-08 00:51:00 | 000,043,528 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\PxHelp20.sys -- (PxHelp20) DRV - [2005-02-23 19:46:46 | 000,228,992 | ---- | M] (Ralink Technology Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\RT2500.sys -- (RT2500) DRV - [2004-08-04 01:38:40 | 000,607,068 | ---- | M] (LT) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ltmdmnt.sys -- (ltmodem5) DRV - [2004-08-04 00:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-03 23:32:28 | 000,137,088 | ---- | M] (ESS Technology, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\essm2e.sys -- (Maestro) Sterownik audio ESS Maestro2E (WDM) DRV - [2004-07-17 10:36:38 | 000,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2001-10-26 18:07:38 | 000,036,425 | ---- | M] (SMC) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA) DRV - [2001-10-26 17:50:42 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\e100b325.sys -- (E100B) Sterownik karty Intel(R) DRV - [2001-10-26 17:49:56 | 000,289,664 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\atimpab.sys -- (atimpab) DRV - [2001-08-18 00:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2001-08-17 23:00:04 | 000,002,944 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\msmpu401.sys -- (ms_mpu401) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-02-20 08:20:54 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-02-20 08:20:21 | 000,000,000 | ---D | M] [2010-02-20 08:21:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mariusz\Dane aplikacji\Mozilla\Extensions [2010-02-20 08:21:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Mariusz\Dane aplikacji\Mozilla\Firefox\Profiles\7k4biddb.default\extensions [2010-02-20 08:20:22 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-01-16 02:08:36 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-16 02:08:36 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-01-16 02:08:36 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-01-16 02:08:36 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-01-16 02:08:36 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-01-16 02:08:36 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-02-20 10:00:33 | 004,080,047 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 47.65.234.69 msnfix.changelog.fr O1 - Hosts: 47.65.234.69 www.incodesolutions.com O1 - Hosts: 47.65.234.69 virusinfo.prevx.com O1 - Hosts: 47.65.234.69 download.bleepingcomputer.com O1 - Hosts: 47.65.234.69 www.dazhizhu.cn O1 - Hosts: 47.65.234.69 foro.noticias3d.com O1 - Hosts: 47.65.234.69 www.spybotupdates.com O1 - Hosts: 47.65.234.69 club.myce.com O1 - Hosts: 47.65.234.69 www.k7computing.com O1 - Hosts: 47.65.234.69 softwaresecuritysolutions.com O1 - Hosts: 47.65.234.69 www.nabble.com O1 - Hosts: 47.65.234.69 lurker.clamav.net O1 - Hosts: 47.65.234.69 lexikon.ikarus.at O1 - Hosts: 47.65.234.69 research.sunbelt-software.com O1 - Hosts: 47.65.234.69 www.virusdoctor.jp O1 - Hosts: 47.65.234.69 www.elitepvpers.de O1 - Hosts: 47.65.234.69 guru.avg.com O1 - Hosts: 47.65.234.69 downloads.sophos.com O1 - Hosts: 47.65.234.69 share.skype.com O1 - Hosts: 47.65.234.69 myantispyware.com O1 - Hosts: 47.65.234.69 www.computerhilfen.de O1 - Hosts: 47.65.234.69 www.superuser.co.kr O1 - Hosts: 47.65.234.69 ntfaq.co.kr O1 - Hosts: 47.65.234.69 v.dreamwiz.com O1 - Hosts: 47.65.234.69 cit.kookmin.ac.kr O1 - Hosts: 13867 more lines... O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O27 - HKLM IFEO\conime.exe: Debugger - wmxperk.exe () O27 - HKLM IFEO\ctfmon.exe: Debugger - wiacmfgr.exe () O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-12-01 16:40:54 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{7a576400-1a23-11df-94cf-00d0591267c8}\Shell - "" = AutoRun O33 - MountPoints2\{7a576400-1a23-11df-94cf-00d0591267c8}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\{7a576403-1a23-11df-94cf-00d0591267c8}\Shell - "" = AutoRun O33 - MountPoints2\{7a576403-1a23-11df-94cf-00d0591267c8}\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O33 - MountPoints2\F\Shell - "" = AutoRun O33 - MountPoints2\F\Shell\AutoRun\command - "" = F:\AutoRun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-20 09:57:17 | 000,000,000 | --SD | C] -- C:\12373621 [2010-02-20 09:44:02 | 000,000,000 | --SD | C] -- C:\12366051 [2010-02-20 09:35:30 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-02-20 09:35:30 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-02-20 09:35:30 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-02-20 09:35:30 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-02-20 09:35:20 | 000,000,000 | --SD | C] -- C:\123 [2010-02-20 09:35:20 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-02-20 09:34:48 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-02-20 09:14:10 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Mariusz\Pulpit\OTL.exe [2010-02-20 08:48:44 | 000,000,000 | ---D | C] -- C:\SWSetup [2010-02-20 08:22:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mariusz\Moje dokumenty\Pobieranie [2010-02-20 08:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-02-20 08:20:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mariusz\Dane aplikacji\Mozilla [2010-02-20 08:18:17 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2010-02-20 08:17:48 | 009,035,208 | ---- | C] (Mozilla) -- C:\Documents and Settings\Mariusz\Pulpit\Firefox Setup 3.6.exe [2010-02-17 13:53:50 | 000,042,496 | -H-- | C] (NirSoft) -- C:\Documents and Settings\Mariusz\Dane aplikacji\iepv.exe [2010-02-17 13:53:42 | 000,064,000 | -H-- | C] (NirSoft) -- C:\Documents and Settings\Mariusz\Dane aplikacji\mspass.exe [2010-02-17 11:29:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\Help [2010-02-16 23:04:53 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdjpn.dll [2010-02-16 23:04:53 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdjpn.dll [2010-02-16 23:04:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbdkor.dll [2010-02-16 23:04:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdkor.dll [2010-02-16 23:04:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd106.dll [2010-02-16 23:04:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106.dll [2010-02-16 23:04:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101c.dll [2010-02-16 23:04:51 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101c.dll [2010-02-16 23:04:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd103.dll [2010-02-16 23:04:51 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd103.dll [2010-02-16 23:04:50 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kbd101b.dll [2010-02-16 23:04:50 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101b.dll [2010-02-16 22:52:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Application Data [2010-02-16 22:52:29 | 000,109,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSWINSCK.OCX [2010-02-16 22:52:21 | 000,212,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\RICHTX32.OCX [2010-02-16 22:52:17 | 000,212,992 | ---- | C] (Dart Communications) -- C:\WINDOWS\System32\DartSock.dll [2010-02-16 22:52:13 | 000,147,456 | ---- | C] (Dart Communications) -- C:\WINDOWS\System32\DartSecure2.dll [2010-02-16 22:52:08 | 000,139,264 | ---- | C] (Dart Communications) -- C:\WINDOWS\System32\DartCertificate.dll [2010-02-15 22:39:02 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Mariusz\UserData [2010-02-15 12:20:01 | 000,031,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys [2010-02-15 12:19:08 | 000,621,056 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys [2010-02-15 12:19:08 | 000,113,664 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [2010-02-15 12:19:08 | 000,101,376 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [2010-02-15 12:19:08 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [2010-02-15 12:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\PLAY ONLINE [2010-02-08 19:54:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\Identities [2008-12-01 16:56:20 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2008-12-01 16:56:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2008-12-01 16:56:04 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2008-12-01 16:56:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Mariusz\Pulpit\OTL.exe [2010-02-20 10:08:07 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-20 10:08:02 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-02-20 10:08:00 | 267,964,416 | -HS- | M] () -- C:\hiberfil.sys [2010-02-20 10:07:09 | 003,145,728 | -H-- | M] () -- C:\Documents and Settings\Mariusz\NTUSER.DAT [2010-02-20 10:07:09 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Mariusz\ntuser.ini [2010-02-20 10:07:05 | 000,000,477 | ---- | M] () -- C:\WINDOWS\win.ini [2010-02-20 10:07:05 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-02-20 10:07:05 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2010-02-20 10:00:38 | 003,866,199 | R--- | M] () -- C:\Documents and Settings\Mariusz\Pulpit\123.com [2010-02-20 09:07:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svchost.exe [2010-02-20 08:20:58 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2010-02-20 08:20:29 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-02-20 08:17:48 | 009,035,208 | ---- | M] (Mozilla) -- C:\Documents and Settings\Mariusz\Pulpit\Firefox Setup 3.6.exe [2010-02-19 11:10:52 | 006,380,740 | -H-- | M] () -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-02-18 15:08:44 | 000,047,104 | -H-- | M] () -- C:\WINDOWS\System32\secupdat.dat [2010-02-18 15:08:44 | 000,047,104 | -H-- | M] () -- C:\Documents and Settings\Mariusz\secupdat.dat [2010-02-18 10:35:57 | 000,257,031 | ---- | M] () -- C:\WINDOWS\System32\qxzv8.exe [2010-02-18 10:31:03 | 000,257,031 | ---- | M] () -- C:\WINDOWS\System32\qxzv7.exe [2010-02-18 10:26:40 | 000,257,031 | ---- | M] () -- C:\WINDOWS\System32\qxzv5.exe [2010-02-18 09:51:47 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-17 13:53:50 | 000,042,496 | -H-- | M] (NirSoft) -- C:\Documents and Settings\Mariusz\Dane aplikacji\iepv.exe [2010-02-17 13:53:42 | 000,064,000 | -H-- | M] (NirSoft) -- C:\Documents and Settings\Mariusz\Dane aplikacji\mspass.exe [2010-02-16 22:53:04 | 000,040,128 | ---- | M] () -- C:\WINDOWS\System32\drivers\ollfdgji.sys [2010-02-16 22:52:52 | 000,188,935 | ---- | M] () -- C:\WINDOWS\System32\9aec5f.exe [2010-02-16 22:52:52 | 000,102,625 | ---- | M] () -- C:\WINDOWS\System32\msvcrt2.dll [2010-02-16 22:52:31 | 000,109,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\MSWINSCK.OCX [2010-02-16 22:52:24 | 000,212,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\RICHTX32.OCX [2010-02-16 22:52:19 | 000,212,992 | ---- | M] (Dart Communications) -- C:\WINDOWS\System32\DartSock.dll [2010-02-16 22:52:15 | 000,147,456 | ---- | M] (Dart Communications) -- C:\WINDOWS\System32\DartSecure2.dll [2010-02-16 22:52:10 | 000,139,264 | ---- | M] (Dart Communications) -- C:\WINDOWS\System32\DartCertificate.dll [2010-02-16 22:50:21 | 000,261,127 | RHS- | M] () -- C:\WINDOWS\System32\wiacmfgr.exe [2010-02-16 17:25:04 | 000,261,639 | RHS- | M] () -- C:\WINDOWS\System32\wmxperk.exe [2010-02-15 23:13:45 | 000,265,223 | ---- | M] () -- C:\WINDOWS\System32\qxzv2.exe [2010-02-15 16:23:59 | 000,269,319 | RHS- | M] () -- C:\WINDOWS\System32\wcoredt.exe [2010-02-15 12:19:27 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2010-02-11 18:18:51 | 000,016,896 | ---- | M] () -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [3 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-20 09:35:30 | 000,261,632 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-02-20 09:35:30 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-02-20 09:35:30 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-02-20 09:35:30 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-02-20 09:35:30 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-02-20 09:29:52 | 003,866,199 | R--- | C] () -- C:\Documents and Settings\Mariusz\Pulpit\123.com [2010-02-20 08:20:58 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2010-02-20 08:20:29 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2010-02-18 10:31:03 | 000,257,031 | ---- | C] () -- C:\WINDOWS\System32\qxzv7.exe [2010-02-16 22:53:04 | 000,040,128 | ---- | C] () -- C:\WINDOWS\System32\drivers\ollfdgji.sys [2010-02-16 22:52:52 | 000,188,935 | ---- | C] () -- C:\WINDOWS\System32\9aec5f.exe [2010-02-16 22:52:51 | 000,102,625 | ---- | C] () -- C:\WINDOWS\System32\msvcrt2.dll [2010-02-16 22:52:12 | 000,047,104 | -H-- | C] () -- C:\WINDOWS\System32\secupdat.dat [2010-02-16 22:52:12 | 000,047,104 | -H-- | C] () -- C:\Documents and Settings\Mariusz\secupdat.dat [2010-02-16 22:50:31 | 000,261,127 | RHS- | C] () -- C:\WINDOWS\System32\wiacmfgr.exe [2010-02-16 17:29:41 | 000,257,031 | ---- | C] () -- C:\WINDOWS\System32\qxzv5.exe [2010-02-16 17:25:17 | 000,261,639 | RHS- | C] () -- C:\WINDOWS\System32\wmxperk.exe [2010-02-15 23:18:27 | 000,257,031 | ---- | C] () -- C:\WINDOWS\System32\qxzv8.exe [2010-02-15 23:08:42 | 000,265,223 | ---- | C] () -- C:\WINDOWS\System32\qxzv2.exe [2010-02-15 16:24:12 | 000,269,319 | RHS- | C] () -- C:\WINDOWS\System32\wcoredt.exe [2010-02-15 12:19:27 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2008-12-01 17:54:30 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-12-01 17:24:59 | 000,016,896 | ---- | C] () -- C:\Documents and Settings\Mariusz\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-12-01 17:17:33 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-12-01 17:17:31 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2008-12-01 17:17:21 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-12-01 17:17:21 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-12-01 17:17:18 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-12-01 17:17:13 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-12-01 17:17:13 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2004-08-03 23:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 39424 bytes -> C:\WINDOWS\System32\svchost.exe:exe.exe @Alternate Data Stream - 356028 bytes -> C:\WINDOWS\Temp:temp < End of report > [/log]
Psycholandia komentarz 20 lutego 2010 komentarz 20 lutego 2010 [u][b]OTL mój stacjonarny[/b][/u] W okienko OTL wklej poniższy skrypt i klik na Run Fix: [code]:Processes explorer.exe :OTL O20 - Winlogon\Notify\AtiExtEvent: DllName - Reg Error: Value error. - Reg Error: Value error. File not found O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 14:57:18 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2006-11-19 13:43:54 | 000,000,033 | R--- | M] () - G:\autorun.inf -- [ CDFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ] O33 - MountPoints2\{06ce6d72-8c6c-11dd-a96f-4d6564696130}\Shell\AutoRun\command - "" = RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\sys32.exe O33 - MountPoints2\{06ce6d72-8c6c-11dd-a96f-4d6564696130}\Shell\open\command - "" = RECYCLER\S-1-5-21-1482476501-1644491937-682003330-1013\sys32.exe :Commands [emptytemp] [start explorer] [Reboot] [/code] Otwórz notatnik tekstowy i wklej do niego poniższy tekst: [code]Windows Registry Editor Version 5.00 [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] [/code] Zapisz jako->Wybierz [b]Wszystkie pliki[/b]->wpisz [b]Fix.reg[/b]->Następnie kliknij na zapisany plik i uruchom komputer ponownie. Przeskanuj komputer tym: [url="http://www.programosy.pl/program,malwarebytes-anti-malware.html"]Malware[/url] usuń wszystko co znajdzie i daj loga po kasowaniu (loga z Malware) [b][u]COMBOFIX laptop mój[/u][/b] Wklej do notatnika: [code]Folder:: C:\FOUND.001 C:\FOUND.002 C:\FOUND.003 C:\FOUND.004 C:\FOUND.005[/code] Plik-> Zapisz jako-> [b]CFScript[/b] Przeciągnij i upuść plik [b]CFScript.txt[/b] na plik ComboFix.exe, jak tu: [img]http://files.myopera.com/balkon/albums/461534/CFScript3.gif[/img] [u][b]Udało mi się uruchomić OTL na tym zasyfionym laptopie [/b][/u] Sprawdź na stronie: http://www.virustotal.com/pl/ poniższe wpisy i daj z nich raporty, chcę się co do nich upewnić: [code]C:\WINDOWS\System32\wiacmfgr.exe C:\WINDOWS\System32\wmxperk.exe C:\WINDOWS\System32\qxzv2.exe C:\WINDOWS\System32\wcoredt.exe C:\WINDOWS\System32\wiacmfgr.exe C:\WINDOWS\System32\wmxperk.exe C:\WINDOWS\System32\wcoredt.exe[/code] Daj nowe logi z OTL z komputera stacjonarnego i laptopa. + wykonaj 3 post tego tematu: http://forum.dobreprogramy.pl/generic-host-process-for-win32-services-t37040.html 1
asmodeuszz komentarz 28 lutego 2010 Autor komentarz 28 lutego 2010 Mój stacjonarny: [log] OTL logfile created on: 2010-02-28 11:42:56 - Run 3 OTL by OldTimer - Version 3.1.30.1 Folder = C:\Documents and Settings\Cyprek\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1 023,00 Mb Total Physical Memory | 667,00 Mb Available Physical Memory | 65,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 84,00% Paging File free Paging file location(s): c:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 10,03 Gb Total Space | 1,70 Gb Free Space | 16,92% Space Free | Partition Type: NTFS Drive D: | 2,00 Gb Total Space | 1,98 Gb Free Space | 98,86% Space Free | Partition Type: NTFS Drive E: | 25,23 Gb Total Space | 12,55 Gb Free Space | 49,76% Space Free | Partition Type: FAT32 F: Drive not present or media not loaded G: Drive not present or media not loaded Drive H: | 232,88 Gb Total Space | 86,55 Gb Free Space | 37,16% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: HOUSE Current User Name: Cyprek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe PRC - [2009-12-31 19:13:44 | 002,033,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgtray.exe PRC - [2009-12-19 13:31:40 | 001,055,000 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgchsvx.exe PRC - [2009-12-19 13:31:40 | 000,702,744 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgcsrvx.exe PRC - [2009-12-19 13:31:40 | 000,600,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgnsx.exe PRC - [2009-12-19 13:31:40 | 000,503,576 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgrsx.exe PRC - [2009-12-19 13:31:37 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgemc.exe PRC - [2009-12-19 13:31:36 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG9\avgwdsvc.exe PRC - [2009-07-17 14:32:00 | 003,576,320 | ---- | M] (Native Instruments GmbH) -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe PRC - [2006-11-10 16:12:30 | 000,099,936 | ---- | M] () -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe PRC - [2004-08-23 12:49:56 | 000,040,960 | ---- | M] (France Telecom) -- C:\WINDOWS\system32\FTRTSVC.exe PRC - [2004-08-03 23:44:30 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscntfy.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe MOD - [2004-08-03 23:42:34 | 001,050,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.2180_x-ww_a84f1ff9\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (UserAccess) SRV - File not found [Disabled | Stopped] -- -- (ummeaq192zuj) SRV - File not found [Disabled | Stopped] -- -- (a8a2oqeana5y6tn1) SRV - [2009-12-19 13:31:37 | 000,906,520 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgemc.exe -- (avg9emc) SRV - [2009-12-19 13:31:36 | 000,285,392 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG9\avgwdsvc.exe -- (avg9wd) SRV - [2009-10-19 15:57:41 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Disabled | Stopped] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2009-10-07 10:47:58 | 000,072,704 | ---- | M] (Adobe Systems) [On_Demand | Stopped] -- C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe -- (Adobe LM Service) SRV - [2009-07-17 14:32:00 | 003,576,320 | ---- | M] (Native Instruments GmbH) [Auto | Running] -- C:\Program Files\Common Files\Native Instruments\Hardware\NIHardwareService.exe -- (NIHardwareService) SRV - [2009-02-09 13:18:00 | 000,163,908 | ---- | M] (NVIDIA Corporation) [Disabled | Stopped] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) SRV - [2006-11-10 16:12:30 | 000,099,936 | ---- | M] () [Auto | Running] -- C:\Program Files\Canon\IJPLM\ijplmsvc.exe -- (IJPLMSVC) SRV - [2005-04-04 00:41:10 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004-08-23 12:49:56 | 000,040,960 | ---- | M] (France Telecom) [Auto | Running] -- C:\WINDOWS\system32\FTRTSVC.exe -- (FTRTSVC) SRV - [2003-07-28 20:28:22 | 000,089,136 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-12-19 13:31:51 | 000,360,584 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgtdix.sys -- (AvgTdiX) DRV - [2009-12-19 13:31:51 | 000,333,192 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\avgldx86.sys -- (AvgLdx86) DRV - [2009-12-19 13:31:51 | 000,028,424 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\avgmfx86.sys -- (AvgMfx86) DRV - [2009-03-27 00:16:28 | 000,012,672 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\cpuz132_x32.sys -- (cpuz132) DRV - [2009-02-09 13:18:00 | 006,307,328 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2007-08-04 13:26:55 | 000,271,360 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2007-08-04 13:26:53 | 000,018,048 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2006-11-10 14:08:50 | 000,024,064 | ---- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ATITool.sys -- (ATITool) DRV - [2006-09-24 14:28:46 | 000,005,248 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | Boot | Running] -- C:\WINDOWS\system32\speedfan.sys -- (speedfan) DRV - [2006-09-19 10:03:28 | 000,116,992 | ---- | M] (Analog Devices Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\e4usbaw.sys -- (e4usbaw) DRV - [2006-09-15 10:07:54 | 000,064,000 | ---- | M] (Analog Deivces) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\e4ldr.sys -- (IKANLOADER2) General Purpose USB Driver (e4ldr.sys) DRV - [2005-11-30 16:12:22 | 000,029,440 | ---- | M] (Siemens AG) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\actser.sys -- (actser) DRV - [2005-11-30 16:12:20 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial) DRV - [2005-11-30 16:12:20 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus) DRV - [2005-05-18 10:50:30 | 002,319,680 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2005-05-17 10:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\System32\DRIVERS\nvata.sys -- (nvata) DRV - [2005-04-05 20:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 20:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-09 14:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2005-03-03 18:53:57 | 000,048,640 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfdrv01.sys -- (sfdrv01) StarForce Protection Environment Driver (version 1.x) DRV - [2005-02-23 16:59:54 | 000,006,656 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfhlp02.sys -- (sfhlp02) StarForce Protection Helper Driver (version 2.x) DRV - [2004-12-03 11:20:41 | 000,020,544 | ---- | M] (Protection Technology) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\sfsync02.sys -- (sfsync02) StarForce Protection Synchronization Driver (version 2.x) DRV - [2004-07-17 10:36:38 | 000,027,440 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2004-06-20 03:28:00 | 000,025,600 | R--- | M] (TwinHan Provide) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DtvVideo.sys -- (DtvVideo) DRV - [2004-06-20 03:28:00 | 000,010,330 | R--- | M] (TwinHan Provide) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\DtvAudio.sys -- (DtvAudio) DRV - [2004-05-02 09:47:08 | 000,023,040 | R--- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\GVCplDrv.sys -- (GVCplDrv) DRV - [2003-12-23 01:15:42 | 000,005,248 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\xmasscsi.sys -- (xmasscsi) DRV - [2003-12-21 16:24:22 | 000,140,800 | ---- | M] ( ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\xmasbus.sys -- (xmasbus) DRV - [2003-08-04 12:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\PCANDIS5.SYS -- (PCANDIS5) DRV - [2002-08-16 10:10:04 | 000,019,171 | R--- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DstVideo.sys -- (DstVideo) DRV - [2002-08-16 10:10:04 | 000,008,506 | R--- | M] (Dst provider) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\DstAudio.sys -- (DstAudio) DRV - [2002-01-12 16:30:34 | 000,003,567 | ---- | M] (Beyond Logic http://www.beyondlogic.org) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\PortTalk.sys -- (PortTalk) DRV - [2001-08-17 20:49:56 | 000,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [1996-04-03 20:33:26 | 000,005,248 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\system32\giveio.sys -- (giveio) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl/ IE - HKCU\..\URLSearchHook: {08C06D61-F1F3-4799-86F8-BE1A89362C85} - C:\Program Files\neostrada tp\SearchPageURL.dll () IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.onet.pl/" FF - prefs.js..extensions.enabledItems: {3f963a5b-e555-4543-90e2-c3908898db71}:9.0.0.716 FF - prefs.js..extensions.enabledItems: {a0faa0a4-f1a7-4098-9a74-21efc3a92372}:3.5.4 FF - prefs.js..extensions.enabledItems: {1018e4d6-728f-4b20-ad56-37578a4de76b}:3.3.16 FF - prefs.js..extensions.enabledItems: {19503e42-ca3c-4c27-b1e2-9cdb2170ee34}:1.2.0.6 FF - prefs.js..extensions.enabledItems: {0538E3E3-7E9B-4d49-8831-A227C80A7AD3}:0.9.10.1 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - HKLM\software\mozilla\Firefox\Extensions\\{3f963a5b-e555-4543-90e2-c3908898db71}: C:\Program Files\AVG\AVG9\Firefox [2009-12-19 13:31:36 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Components: H:\Program Files\Mozilla Firefox\components [2010-02-19 17:31:37 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.0.18\extensions\\Plugins: H:\Program Files\Mozilla Firefox\plugins [2010-02-19 17:31:37 | 000,000,000 | ---D | M] [2008-12-19 22:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Extensions [2010-02-26 18:36:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions [2009-06-13 09:25:26 | 000,000,000 | ---D | M] (Forecastfox) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{0538E3E3-7E9B-4d49-8831-A227C80A7AD3} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (Flagfox) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{1018e4d6-728f-4b20-ad56-37578a4de76b} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (FlashGot) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{19503e42-ca3c-4c27-b1e2-9cdb2170ee34} [2009-09-28 13:47:35 | 000,000,000 | ---D | M] (DictionarySearch) -- C:\Documents and Settings\Cyprek\Dane aplikacji\Mozilla\Firefox\Profiles\aztmm94b.default\extensions\{a0faa0a4-f1a7-4098-9a74-21efc3a92372} O1 HOSTS File: ([2002-09-28 23:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Adobe\Acrobat 6.0 CE\Reader\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [AVG9_TRAY] C:\Program Files\AVG\AVG9\avgtray.exe (AVG Technologies CZ, s.r.o.) O4 - HKLM..\Run: [Easy-PrintToolBox] C:\Program Files\Canon\Easy-PrintToolBox\BJPSMAIN.EXE (CANON INC.) O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 36 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = FF FF FF FF [binary data] O8 - Extra context menu item: E&ksport do programu Microsoft Excel - H:\Program Files\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - H:\Program Files\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab (Java Plug-in 1.4.0_03) O16 - DPF: {CAFEEFAC-0016-0000-0016-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_16-windows-i586.cab (Java Plug-in 1.6.0_16) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: DirectAnimation Java Classes file://C:\WINDOWS\Java\classes\dajava.cab (Reg Error: Key error.) O16 - DPF: Microsoft XML Parser for Java file://C:\WINDOWS\Java\classes\xmldso.cab (Reg Error: Key error.) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG9\avgpp.dll (AVG Technologies CZ, s.r.o.) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\vnd.ms.radio {3DA2AA3B-3D96-11D2-9BD2-204C4F4F5020} - C:\WINDOWS\system32\msdxm.ocx (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avgrsstarter: DllName - avgrsstx.dll - C:\WINDOWS\System32\avgrsstx.dll (AVG Technologies CZ, s.r.o.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2007-07-20 10:14:17 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 14:57:18 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-28 11:40:20 | 000,000,000 | ---D | C] -- C:\_OTL [2010-02-20 10:55:55 | 000,549,376 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe [2010-02-18 01:40:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Last.fm [2010-02-18 01:40:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\Last.fm [2010-02-18 01:40:04 | 000,000,000 | ---D | C] -- C:\Program Files\Last.fm [2009-12-19 13:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-12-19 13:30:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-09-07 22:02:12 | 000,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2007-07-23 12:51:37 | 000,140,800 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasbus.sys [2007-07-23 12:51:37 | 000,005,248 | ---- | C] ( ) -- C:\WINDOWS\System32\drivers\xmasscsi.sys [2007-07-20 16:17:55 | 000,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-28 11:41:26 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-02-28 11:41:25 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-02-28 11:40:32 | 006,291,456 | -H-- | M] () -- C:\Documents and Settings\Cyprek\NTUSER.DAT [2010-02-28 11:40:32 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Cyprek\ntuser.ini [2010-02-28 11:39:59 | 056,422,506 | ---- | M] () -- C:\WINDOWS\System32\drivers\Avg\incavi.avm [2010-02-28 11:38:01 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-02-25 21:48:56 | 000,002,259 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\Skype.lnk [2010-02-24 00:07:19 | 000,000,048 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\pi_rec.dat2 [2010-02-22 20:08:51 | 000,112,640 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\EX021107K.pdf [2010-02-22 15:38:11 | 000,006,705 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\jk;hjhgb.JPG [2010-02-20 21:09:33 | 000,155,733 | ---- | M] () -- C:\Documents and Settings\Cyprek\Pulpit\4344.jpg [2010-02-20 10:56:00 | 000,549,376 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Cyprek\Pulpit\OTL.exe [2010-02-19 08:29:52 | 000,199,168 | ---- | M] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-02-18 01:40:06 | 000,000,611 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-02-14 23:17:12 | 000,000,130 | ---- | M] () -- C:\WINDOWS\EurekaLog.ini [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-24 00:06:23 | 000,000,048 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\pi_rec.dat2 [2010-02-24 00:06:12 | 000,104,960 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\super_pi_mod.exe [2010-02-22 20:08:50 | 000,112,640 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\EX021107K.pdf [2010-02-22 15:38:11 | 000,006,705 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\jk;hjhgb.JPG [2010-02-20 21:09:33 | 000,155,733 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\4344.jpg [2010-02-20 13:38:03 | 733,868,656 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni Brzeg_IIcz_2000.avi [2010-02-19 21:29:26 | 734,097,388 | ---- | C] () -- C:\Documents and Settings\Cyprek\Pulpit\Ostatni Brzeg_2000.avi [2010-02-18 01:40:06 | 000,000,611 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Last.fm.lnk [2010-01-31 14:17:57 | 000,000,130 | ---- | C] () -- C:\WINDOWS\EurekaLog.ini [2009-10-27 17:56:23 | 000,000,016 | ---- | C] () -- C:\WINDOWS\System32\msvcsv60.dll [2009-09-07 21:49:10 | 000,000,012 | ---- | C] () -- C:\Documents and Settings\Cyprek\Dane aplikacji\wiaserva.log [2009-04-13 09:38:49 | 000,000,010 | ---- | C] () -- C:\WINDOWS\WININIT.INI [2009-03-12 10:53:15 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-03-12 10:53:15 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-03-12 10:53:14 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-03-12 10:53:12 | 001,507,328 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-02-27 15:28:18 | 000,074,952 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2009-02-04 13:18:18 | 000,000,023 | ---- | C] () -- C:\WINDOWS\BlendSettings.ini [2008-11-29 08:06:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-10-07 08:13:30 | 000,197,912 | ---- | C] () -- C:\WINDOWS\System32\physxcudart_20.dll [2008-10-07 08:13:22 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2008-10-07 08:13:20 | 000,058,648 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2008-10-05 13:06:40 | 000,159,839 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-09-04 18:10:36 | 000,000,083 | ---- | C] () -- C:\WINDOWS\wwp.INI [2008-06-29 19:48:48 | 000,311,128 | ---- | C] () -- C:\WINDOWS\System32\libssl32.dll [2008-06-29 19:48:46 | 001,526,468 | ---- | C] () -- C:\WINDOWS\System32\libeay32.dll [2007-11-26 21:56:28 | 000,151,415 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2007-09-30 16:32:42 | 000,000,952 | -HS- | C] () -- C:\WINDOWS\System32\KGyGaAvL.sys [2007-09-13 11:26:56 | 000,043,520 | ---- | C] () -- C:\WINDOWS\System32\CmdLineExt03.dll [2007-09-13 11:17:00 | 000,021,840 | ---- | C] () -- C:\WINDOWS\System32\SIntfNT.dll [2007-09-13 11:17:00 | 000,017,212 | ---- | C] () -- C:\WINDOWS\System32\SIntf32.dll [2007-09-13 11:17:00 | 000,012,067 | ---- | C] () -- C:\WINDOWS\System32\SIntf16.dll [2007-09-08 10:46:08 | 000,010,240 | ---- | C] () -- C:\WINDOWS\System32\vidx16.dll [2007-09-05 16:52:02 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\winitn.dll [2007-09-05 16:52:01 | 000,000,046 | ---- | C] () -- C:\WINDOWS\System32\kakle.dll [2007-09-05 16:51:55 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2007-09-05 16:51:55 | 000,000,005 | ---- | C] () -- C:\WINDOWS\subtot.dll [2007-08-04 15:02:00 | 000,237,568 | ---- | C] () -- C:\WINDOWS\System32\OggDS.dll [2007-08-04 15:01:57 | 000,921,600 | ---- | C] () -- C:\WINDOWS\System32\vorbisenc.dll [2007-08-04 15:01:46 | 000,188,416 | ---- | C] () -- C:\WINDOWS\System32\vorbis.dll [2007-08-04 15:01:44 | 000,045,056 | ---- | C] () -- C:\WINDOWS\System32\ogg.dll [2007-08-04 15:01:21 | 000,009,216 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2007-08-04 15:00:49 | 000,755,027 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2007-08-04 13:26:55 | 000,271,360 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2007-08-04 13:26:53 | 000,018,048 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2007-07-20 15:52:30 | 000,000,095 | ---- | C] () -- C:\WINDOWS\winamp.ini [2007-07-20 15:19:30 | 000,000,168 | ---- | C] () -- C:\WINDOWS\adidsl.ini [2007-07-20 15:19:30 | 000,000,021 | ---- | C] () -- C:\WINDOWS\Fast800.ini [2007-07-20 15:19:25 | 000,126,976 | ---- | C] () -- C:\WINDOWS\System32\coclassfast.dll [2007-07-20 15:19:24 | 000,046,892 | ---- | C] () -- C:\WINDOWS\System32\ADADIX16.DLL [2007-07-20 14:54:36 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2007-07-20 14:54:17 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2007-07-20 11:36:05 | 000,199,168 | ---- | C] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2007-07-20 11:08:00 | 000,041,068 | ---- | C] () -- C:\WINDOWS\System32\ActPanel.dll [2007-07-20 10:29:14 | 000,156,672 | R--- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2007-07-20 10:29:03 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2007-07-20 10:26:26 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\Cyprek\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2007-07-20 10:20:03 | 000,023,040 | R--- | C] () -- C:\WINDOWS\System32\drivers\GVCplDrv.sys [2006-11-10 14:08:50 | 000,024,064 | ---- | C] () -- C:\WINDOWS\System32\drivers\ATITool.sys [2005-11-30 16:12:20 | 000,047,744 | ---- | C] () -- C:\WINDOWS\System32\drivers\vserial.sys [2005-11-30 16:12:20 | 000,015,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\vsb.sys [2004-08-04 01:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [1996-04-03 20:33:26 | 000,005,248 | ---- | C] () -- C:\WINDOWS\System32\giveio.sys < End of report > [/log] Na laptopie z powodów sprzętowych ( zbliżająca się awaria dysku ) nie udało się dokończyć skanowania OTL ( freeze systemu ), ale Combo usunął wszystko. Po + za moje dwa komputery
Mateusz J. komentarz 28 lutego 2010 komentarz 28 lutego 2010 Uruchom OTL i w oknie Custom Scans/Fixes wklej[code] :OTL O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 14:57:18 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ] :Files C:\autorun.inf D:\autorun.inf E:\autorun.inf H:\autorun.inf :Reg [-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\mountpoints2] :Commands [emptytemp] [Reboot][/code]Kliknij Run Fix. Zatwierdź restart komputera. Po ponownym uruchomieniu komputera tworzysz nowy log i pokazujesz do kontroli. W pierwszym skrypcie zabrakło plików do usunięcia, co prawdopodobnie spowodowało ponowne pojawienie się szkodliwych wpisów w rejestrze.
asmodeuszz komentarz 28 lutego 2010 Autor komentarz 28 lutego 2010 Twój fix zawiesił mi PC i po restarcie miałem skaszanione ustawienia wyglądu interfejsu, zostawiam jak jest, gdyż nie daje żadnych objawów
Mateusz J. komentarz 28 lutego 2010 komentarz 28 lutego 2010 [quote]po restarcie miałem skaszanione ustawienia wyglądu interfejsu[/quote]tzn? możesz dokładniej Nie rozumiem czemu się tak stało...
asmodeuszz komentarz 28 lutego 2010 Autor komentarz 28 lutego 2010 W trakcie wykonywania fixa, gdy w polu pojawił się 2x [reboot] to OTL dostał (brak odpowiedzi) i okno programu stylizowane na Win98. Po kilku minutach dałem restart i po ponownym uruchomieniu Pasek Start, okna eksploratora i powiązania niektórych plików zostały zresetowane do defaultowych. Tak więc 10 minut i udało mi się to poprawić, gdyż wyłączyłem Przywracanie Systemu ( mój błąd ).
Psycholandia komentarz 1 marca 2010 komentarz 1 marca 2010 Spróbuj tak: [code]:OTL O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - D:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2009-04-01 14:57:18 | 000,000,000 | RHSD | M] - E:\autorun.inf -- [ FAT32 ] O32 - AutoRun File - [2009-04-01 13:57:17 | 000,000,000 | RHSD | M] - H:\autorun.inf -- [ NTFS ] :Files C:\autorun.inf D:\autorun.inf E:\autorun.inf H:\autorun.inf :Commands [emptytemp] [Reboot][/code]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.