x-kom hosting

Windows Defender Apps Control -Wielki problem

krystian_db
komentarz
komentarz

mam to przekopiowac t
do otl, i run fix, :>??

Mateusz J.
komentarz
komentarz

Tak.

krystian_db
komentarz
komentarz

zrobilem to co zapisales wyżej,

[log]OTL logfile created on: 2010-04-10 10:53:39 - Run 3
OTL by OldTimer - Version 3.2.1.1 Folder = C:\Users\User\Downloads
Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation
Internet Explorer (Version = 7.0.6000.17037)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 67,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 139,74 Gb Total Space | 88,35 Gb Free Space | 63,22% Space Free | Partition Type: NTFS
D: Drive not present or media not loaded
E: Drive not present or media not loaded
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: USER-PC
Current User Name: User
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-04-09 16:10:23 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
PRC - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010-04-07 21:07:04 | 002,145,000 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010-04-07 16:36:48 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe
PRC - [2010-04-07 16:02:36 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2010-04-07 15:55:29 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe
PRC - [2010-04-07 15:51:40 | 002,605,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe
PRC - [2010-04-07 15:44:45 | 001,232,896 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe
PRC - [2010-04-01 20:05:59 | 000,910,296 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2006-11-02 14:35:32 | 000,125,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehtray.exe
PRC - [2006-11-02 14:35:32 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehmsas.exe
PRC - [2006-11-02 14:34:46 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe
PRC - [2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe
PRC - [2006-11-02 11:45:57 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe
PRC - [2006-11-02 11:45:48 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch]
PRC - [2006-11-02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe
PRC - [2006-11-02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe
PRC - [2006-11-02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe
PRC - [2006-11-02 11:45:37 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe
PRC - [2006-11-02 11:45:21 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe
PRC - [2006-11-02 11:45:04 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe
PRC - [2006-11-02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-04-09 16:10:23 | 000,561,664 | ---- | M] (OldTimer Tools) -- C:\Users\User\Downloads\OTL.exe
MOD - [2010-04-07 16:50:10 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll
MOD - [2010-04-07 16:36:49 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll
MOD - [2010-04-07 16:29:44 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll
MOD - [2010-04-07 16:28:12 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll
MOD - [2010-04-07 16:15:33 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll
MOD - [2010-04-07 16:09:43 | 011,315,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll
MOD - [2010-04-07 15:57:06 | 001,585,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll
MOD - [2010-04-07 15:56:46 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll
MOD - [2010-04-07 15:56:43 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll
MOD - [2010-04-07 14:56:15 | 000,788,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll
MOD - [2010-04-07 14:53:07 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll
MOD - [2006-11-02 14:36:16 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll
MOD - [2006-11-02 11:47:26 | 001,162,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll
MOD - [2006-11-02 11:46:16 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll
MOD - [2006-11-02 11:46:14 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll
MOD - [2006-11-02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll
MOD - [2006-11-02 11:46:13 | 001,064,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll
MOD - [2006-11-02 11:46:13 | 000,994,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll
MOD - [2006-11-02 11:46:13 | 000,502,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll
MOD - [2006-11-02 11:46:13 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll
MOD - [2006-11-02 11:46:13 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll
MOD - [2006-11-02 11:46:13 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll
MOD - [2006-11-02 11:46:13 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll
MOD - [2006-11-02 11:46:13 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll
MOD - [2006-11-02 11:46:12 | 001,314,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll
MOD - [2006-11-02 11:46:12 | 000,733,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll
MOD - [2006-11-02 11:46:12 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll
MOD - [2006-11-02 11:46:12 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll
MOD - [2006-11-02 11:46:12 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll
MOD - [2006-11-02 11:46:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll
MOD - [2006-11-02 11:46:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll
MOD - [2006-11-02 11:46:10 | 000,681,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll
MOD - [2006-11-02 11:46:06 | 000,805,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll
MOD - [2006-11-02 11:46:05 | 000,874,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll
MOD - [2006-11-02 11:46:05 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll
MOD - [2006-11-02 11:46:05 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll
MOD - [2006-11-02 11:46:03 | 000,454,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll
MOD - [2006-11-02 11:46:02 | 000,770,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll
MOD - [2006-11-02 11:46:02 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll
MOD - [2006-11-02 11:46:02 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll
MOD - [2006-11-02 11:46:02 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll
MOD - [2006-11-02 11:44:42 | 000,255,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv
MOD - [2006-11-02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-04-07 21:10:38 | 000,033,560 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010-04-07 21:07:24 | 000,810,120 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - [2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\epfw.sys -- (epfw)
DRV - [2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) [Kernel | System | Running] -- C:\Windows\System32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010-04-07 21:03:46 | 000,133,512 | ---- | M] (ESET) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\eamonm.sys -- (eamonm)
DRV - [2010-01-29 11:40:04 | 000,082,320 | ---- | M] (EZB Systems, Inc.) [File_System | System | Running] -- C:\Program Files\UltraISO\drivers\ISODrive.sys -- (ISODrive)
DRV - [2007-09-12 05:28:00 | 007,623,968 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2006-11-02 11:51:45 | 000,900,712 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql2300.sys -- (ql2300)
DRV - [2006-11-02 11:51:38 | 000,420,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adp94xx.sys -- (adp94xx)
DRV - [2006-11-02 11:51:34 | 000,316,520 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\elxstor.sys -- (elxstor)
DRV - [2006-11-02 11:51:32 | 000,297,576 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpahci.sys -- (adpahci)
DRV - [2006-11-02 11:51:25 | 000,235,112 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\uliahci.sys -- (uliahci)
DRV - [2006-11-02 11:51:25 | 000,232,040 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iastorv.sys -- (iaStorV)
DRV - [2006-11-02 11:51:00 | 000,147,048 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu320.sys -- (adpu320)
DRV - [2006-11-02 11:50:45 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata2.sys -- (ulsata2)
DRV - [2006-11-02 11:50:41 | 000,112,232 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\vsmraid.sys -- (vsmraid)
DRV - [2006-11-02 11:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ql40xx.sys -- (ql40xx)
DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ulsata.sys -- (UlSata)
DRV - [2006-11-02 11:50:35 | 000,098,408 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\adpu160m.sys -- (adpu160m)
DRV - [2006-11-02 11:50:24 | 000,088,680 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvraid.sys -- (nvraid)
DRV - [2006-11-02 11:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nfrd960.sys -- (nfrd960)
DRV - [2006-11-02 11:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iirsp.sys -- (iirsp)
DRV - [2006-11-02 11:50:16 | 000,071,784 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4)
DRV - [2006-11-02 11:50:13 | 000,040,040 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\nvstor.sys -- (nvstor)
DRV - [2006-11-02 11:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\djsvs.sys -- (aic78xx)
DRV - [2006-11-02 11:50:10 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arcsas.sys -- (arcsas)
DRV - [2006-11-02 11:50:10 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2006-11-02 11:50:10 | 000,038,504 | ---- | M] (Silicon Integrated Systems Corp.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sisraid2.sys -- (SiSRaid2)
DRV - [2006-11-02 11:50:10 | 000,037,480 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs)
DRV - [2006-11-02 11:50:09 | 000,067,688 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\arc.sys -- (arc)
DRV - [2006-11-02 11:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteraid.sys -- (iteraid)
DRV - [2006-11-02 11:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\iteatapi.sys -- (iteatapi)
DRV - [2006-11-02 11:50:05 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS)
DRV - [2006-11-02 11:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx)
DRV - [2006-11-02 11:50:04 | 000,065,640 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC)
DRV - [2006-11-02 11:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3)
DRV - [2006-11-02 11:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x)
DRV - [2006-11-02 11:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi)
DRV - [2006-11-02 11:49:53 | 000,028,776 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\megasas.sys -- (megasas)
DRV - [2006-11-02 11:49:30 | 000,017,512 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\viaide.sys -- (viaide)
DRV - [2006-11-02 11:49:28 | 000,016,488 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\cmdide.sys -- (cmdide)
DRV - [2006-11-02 11:49:20 | 000,014,952 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\aliide.sys -- (aliide)
DRV - [2006-11-02 10:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 10:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer)
DRV - [2006-11-02 10:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp)
DRV - [2006-11-02 10:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo)
DRV - [2006-11-02 10:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm)
DRV - [2006-11-02 10:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006-11-02 09:41:50 | 000,987,648 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTDPV3.SYS -- (HSF_DPV)
DRV - [2006-11-02 09:41:49 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTAZL3.SYS -- (HSFHWAZL)
DRV - [2006-11-02 09:41:48 | 000,654,336 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\VSTCNXT3.SYS -- (winachsf)
DRV - [2006-11-02 09:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006-11-02 09:30:54 | 001,781,760 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\NETw3v32.sys -- (NETw3v32) Sterownik karty Intel(R)
DRV - [2006-11-02 09:30:54 | 000,117,760 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm






IE - HKU\S-1-5-21-1190139761-1799830871-2034501062-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/
IE - HKU\S-1-5-21-1190139761-1799830871-2034501062-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1
IE - HKU\S-1-5-21-1190139761-1799830871-2034501062-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]


FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-04-10 09:18:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.3\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-04-10 09:18:12 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2010-04-09 17:40:21 | 000,000,000 | ---D | M]

[2010-04-07 18:01:31 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\mozilla\Extensions
[2010-04-09 14:02:25 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\mozilla\Firefox\Profiles\39gtp1rv.default\extensions
[2010-04-07 18:01:07 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-04-01 19:33:11 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-04-01 19:33:11 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-04-01 19:33:11 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-04-01 19:33:11 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-04-01 19:33:11 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-04-01 19:33:11 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O1 - Hosts: ::1 localhost
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvSvc] C:\Windows\System32\nvsvc.DLL (NVIDIA Corporation)
O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation)
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.1 0.0.0.0
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-04-10 09:18:10 | 000,499,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcp71.dll
[2010-04-10 09:18:10 | 000,348,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvcr71.dll
[2010-04-10 09:18:10 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010-04-10 09:18:10 | 000,185,920 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010-04-10 09:18:10 | 000,006,656 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010-04-10 09:18:10 | 000,005,632 | ---- | C] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010-04-10 09:18:09 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2010-04-09 17:40:16 | 000,000,000 | ---D | C] -- C:\ProgramData\ESET
[2010-04-09 17:40:16 | 000,000,000 | ---D | C] -- C:\Program Files\ESET
[2010-04-09 16:11:26 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-04-09 15:58:24 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2010-04-09 14:49:54 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\ESET
[2010-04-08 17:13:04 | 000,000,000 | ---D | C] -- C:\Python26
[2010-04-07 22:06:31 | 000,000,000 | ---D | C] -- C:\Users\User\python_lab1
[2010-04-07 22:06:31 | 000,000,000 | ---D | C] -- C:\Users\User\106HP740
[2010-04-07 22:06:30 | 000,000,000 | ---D | C] -- C:\Users\User\python
[2010-04-07 22:06:30 | 000,000,000 | ---D | C] -- C:\Users\User\Nowy folder
[2010-04-07 22:06:30 | 000,000,000 | ---D | C] -- C:\Users\User\New Folder
[2010-04-07 22:02:32 | 000,000,000 | ---D | C] -- C:\Users\User\kasia
[2010-04-07 21:57:00 | 000,000,000 | ---D | C] -- C:\Users\User\karolina
[2010-04-07 21:50:10 | 000,000,000 | ---D | C] -- C:\Users\User\anka
[2010-04-07 21:49:04 | 000,000,000 | ---D | C] -- C:\Users\User\107HP740
[2010-04-07 21:08:08 | 000,055,232 | ---- | C] (ESET) -- C:\Windows\System32\drivers\epfwtdi.sys
[2010-04-07 21:08:06 | 000,032,584 | ---- | C] (ESET) -- C:\Windows\System32\drivers\epfwndis.sys
[2010-04-07 21:08:04 | 000,134,488 | ---- | C] (ESET) -- C:\Windows\System32\drivers\epfw.sys
[2010-04-07 21:07:08 | 000,114,984 | ---- | C] (ESET) -- C:\Windows\System32\drivers\ehdrv.sys
[2010-04-07 21:03:46 | 000,133,512 | ---- | C] (ESET) -- C:\Windows\System32\drivers\eamonm.sys
[2010-04-07 18:59:27 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Media Player Classic
[2010-04-07 18:58:53 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\Windows\System32\lameACM.acm
[2010-04-07 18:58:53 | 000,217,088 | ---- | C] (www.helixcommunity.org) -- C:\Windows\System32\yv12vfw.dll
[2010-04-07 18:58:53 | 000,151,552 | ---- | C] (fccHandler) -- C:\Windows\System32\ac3acm.acm
[2010-04-07 18:58:49 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack
[2010-04-07 18:09:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2010-04-07 18:06:44 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee
[2010-04-07 18:01:19 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Mozilla
[2010-04-07 18:01:19 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Mozilla
[2010-04-07 18:01:01 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2010-04-07 17:54:02 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2010-04-07 17:35:59 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mdimon.dll
[2010-04-07 17:34:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2010-04-07 17:33:30 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH
[2010-04-07 17:33:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2010-04-07 17:33:30 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2010-04-07 17:31:16 | 000,000,000 | -HSD | C] -- C:\Windows\Installer
[2010-04-07 17:31:12 | 000,000,000 | RH-D | C] -- C:\MSOCache
[2010-04-07 17:15:14 | 000,000,000 | ---D | C] -- C:\Program Files\UltraISO
[2010-04-07 17:15:14 | 000,000,000 | ---D | C] -- C:\Users\User\Documents\My ISO Files
[2010-04-07 17:15:14 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\EZB Systems
[2010-04-07 17:14:54 | 000,000,000 | ---D | C] -- C:\Program Files\My applications
[2010-04-07 17:14:51 | 000,000,000 | ---D | C] -- C:\Program Files\Temp
[2010-04-07 17:08:23 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\WinBatch
[2010-04-07 17:05:34 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Macromedia
[2010-04-07 17:04:25 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Adobe
[2010-04-07 17:04:13 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2010-04-07 17:00:15 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA
[2010-04-07 16:50:10 | 000,289,792 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010-04-07 16:50:10 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010-04-07 16:50:10 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010-04-07 16:50:10 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010-04-07 16:50:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2010-04-07 16:49:14 | 000,272,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2010-04-07 16:49:14 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2010-04-07 16:49:14 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2010-04-07 16:48:21 | 000,467,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2010-04-07 16:48:21 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2010-04-07 16:48:20 | 000,038,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kmddsp.tsp
[2010-04-07 16:48:19 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2010-04-07 16:48:19 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2010-04-07 16:48:19 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ndptsp.tsp
[2010-04-07 16:48:19 | 000,032,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2010-04-07 16:48:19 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2010-04-07 16:48:18 | 000,564,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2010-04-07 16:48:18 | 000,384,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfgx.dll
[2010-04-07 16:48:18 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2010-04-07 16:48:17 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2010-04-07 16:48:17 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2010-04-07 16:48:17 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2010-04-07 16:48:16 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010-04-07 16:46:46 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Microsoft Games
[2010-04-07 16:46:30 | 000,241,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2010-04-07 16:46:29 | 000,160,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2010-04-07 16:46:29 | 000,095,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2010-04-07 16:45:38 | 000,205,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2010-04-07 16:45:38 | 000,087,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2010-04-07 16:45:38 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2010-04-07 16:44:25 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010-04-07 16:44:25 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2010-04-07 16:44:25 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2010-04-07 16:44:25 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2010-04-07 16:44:24 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2010-04-07 16:44:24 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2010-04-07 16:44:24 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2010-04-07 16:44:24 | 000,017,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2010-04-07 16:44:24 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2010-04-07 16:42:43 | 000,704,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2010-04-07 16:42:41 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
[2010-04-07 16:42:39 | 000,028,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2010-04-07 16:40:14 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2010-04-07 16:40:13 | 000,297,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2010-04-07 16:40:13 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2010-04-07 16:40:13 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2010-04-07 16:40:13 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2010-04-07 16:38:19 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2010-04-07 16:38:18 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2010-04-07 16:36:48 | 001,233,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010-04-07 16:35:36 | 000,376,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2010-04-07 16:35:36 | 000,049,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2010-04-07 16:34:28 | 002,855,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2010-04-07 16:34:28 | 000,098,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2010-04-07 16:34:28 | 000,052,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2010-04-07 16:34:28 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2010-04-07 16:34:28 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2010-04-07 16:34:26 | 002,433,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2010-04-07 16:25:43 | 000,374,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2010-04-07 16:25:02 | 000,500,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2010-04-07 16:25:02 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2010-04-07 16:23:14 | 000,116,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2010-04-07 16:23:14 | 000,036,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2010-04-07 16:21:59 | 000,303,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2010-04-07 16:19:50 | 000,414,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2010-04-07 16:18:50 | 000,713,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2010-04-07 16:17:39 | 000,356,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2010-04-07 16:16:34 | 000,392,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2010-04-07 16:16:33 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2010-04-07 16:16:33 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2010-04-07 16:16:32 | 000,061,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2010-04-07 16:11:56 | 001,244,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2010-04-07 16:11:56 | 000,177,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010-04-07 16:11:55 | 000,428,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2010-04-07 16:11:55 | 000,292,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010-04-07 16:11:55 | 000,217,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2010-04-07 16:11:55 | 000,080,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010-04-07 16:11:55 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2010-04-07 16:11:55 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2010-04-07 16:08:40 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010-04-07 16:07:48 | 000,696,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2010-04-07 16:06:25 | 000,045,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2010-04-07 16:06:24 | 000,109,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2010-04-07 16:05:11 | 000,104,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2010-04-07 16:04:09 | 002,452,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2010-04-07 16:04:09 | 000,385,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-04-07 16:04:09 | 000,380,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010-04-07 16:04:09 | 000,230,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2010-04-07 16:04:09 | 000,161,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2010-04-07 16:04:09 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2010-04-07 16:04:08 | 000,192,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010-04-07 16:04:08 | 000,027,648 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010-04-07 16:04:07 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2010-04-07 16:04:07 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2010-04-07 16:04:06 | 000,459,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010-04-07 16:04:06 | 000,180,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010-04-07 16:04:03 | 000,389,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010-04-07 16:04:03 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010-04-07 16:04:03 | 000,048,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2010-04-07 16:04:02 | 001,383,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010-04-07 16:04:00 | 000,671,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010-04-07 16:03:59 | 001,830,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010-04-07 16:03:58 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010-04-07 16:03:57 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2010-04-07 16:03:56 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010-04-07 16:03:56 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010-04-07 16:03:56 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010-04-07 16:02:36 | 002,923,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010-04-07 16:02:10 | 000,224,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2010-04-07 16:02:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll
[2010-04-07 16:02:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll
[2010-04-07 16:02:10 | 000,005,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2010-04-07 16:01:26 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2010-04-07 16:01:00 | 001,808,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2010-04-07 16:01:00 | 001,793,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2010-04-07 16:00:59 | 001,782,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2010-04-07 16:00:59 | 001,558,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2010-04-07 16:00:59 | 001,411,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2010-04-07 16:00:59 | 001,236,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2010-04-07 16:00:58 | 005,499,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2010-04-07 16:00:58 | 002,136,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2010-04-07 16:00:57 | 007,964,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2010-04-07 16:00:56 | 005,791,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2010-04-07 16:00:55 | 006,224,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2010-04-07 16:00:55 | 004,175,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2010-04-07 16:00:54 | 004,981,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2010-04-07 16:00:54 | 003,331,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2010-04-07 16:00:54 | 002,466,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2010-04-07 16:00:53 | 006,781,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2010-04-07 16:00:52 | 011,722,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2010-04-07 16:00:52 | 004,164,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2010-04-07 16:00:51 | 001,452,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2010-04-07 16:00:50 | 012,240,896 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2010-04-07 16:00:50 | 002,644,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2010-04-07 16:00:49 | 003,419,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2010-04-07 16:00:49 | 001,702,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2010-04-07 16:00:48 | 004,093,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2010-04-07 16:00:48 | 004,045,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2010-04-07 16:00:48 | 001,972,736 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2010-04-07 16:00:48 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2010-04-07 16:00:47 | 006,585,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2010-04-07 16:00:47 | 006,014,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2010-04-07 16:00:46 | 006,346,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2010-04-07 16:00:45 | 009,892,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2010-04-07 16:00:44 | 006,237,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2010-04-07 16:00:44 | 001,722,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2010-04-07 16:00:43 | 005,654,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2010-04-07 16:00:43 | 005,090,816 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2010-04-07 16:00:43 | 004,616,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2010-04-07 16:00:42 | 005,031,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2010-04-07 16:00:41 | 007,042,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2010-04-07 16:00:41 | 005,071,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2010-04-07 16:00:41 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2010-04-07 16:00:40 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2010-04-07 16:00:40 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2010-04-07 16:00:39 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2010-04-07 16:00:39 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2010-04-07 16:00:39 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2010-04-07 16:00:39 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2010-04-07 16:00:38 | 001,965,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2010-04-07 16:00:38 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2010-04-07 16:00:38 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2010-04-07 16:00:38 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2010-04-07 16:00:37 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2010-04-07 16:00:37 | 003,464,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2010-04-07 16:00:37 | 002,655,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2010-04-07 16:00:36 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2010-04-07 16:00:36 | 001,523,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2010-04-07 16:00:35 | 004,495,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2010-04-07 16:00:35 | 002,597,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2010-04-07 16:00:34 | 002,241,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2010-04-07 16:00:34 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2010-04-07 16:00:34 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2010-04-07 16:00:33 | 004,874,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2010-04-07 16:00:33 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2010-04-07 16:00:33 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2010-04-07 16:00:32 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2010-04-07 16:00:32 | 003,102,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2010-04-07 16:00:32 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2010-04-07 16:00:32 | 001,799,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2010-04-07 16:00:31 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2010-04-07 16:00:31 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2010-04-07 16:00:31 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2010-04-07 16:00:30 | 009,845,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2010-04-07 16:00:30 | 002,641,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2010-04-07 16:00:29 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2010-04-07 16:00:29 | 002,340,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2010-04-07 16:00:29 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2010-04-07 16:00:28 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2010-04-07 16:00:28 | 004,493,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2010-04-07 16:00:28 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2010-04-07 16:00:28 | 000,797,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2010-04-07 16:00:27 | 006,917,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2010-04-07 16:00:27 | 001,963,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2010-04-07 15:56:46 | 000,371,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2010-04-07 15:56:46 | 000,313,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2010-04-07 15:56:46 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2010-04-07 15:56:45 | 000,944,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010-04-07 15:56:45 | 000,905,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010-04-07 15:56:45 | 000,620,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2010-04-07 15:56:45 | 000,613,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2010-04-07 15:56:45 | 000,019,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2010-04-07 15:56:44 | 000,101,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2010-04-07 15:56:44 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
[2010-04-07 15:56:43 | 000,260,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2010-04-07 15:56:43 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2010-04-07 15:56:42 | 000,115,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2010-04-07 15:56:42 | 000,039,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2010-04-07 15:56:42 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2010-04-07 15:56:42 | 000,017,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2010-04-07 15:56:41 | 000,035,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2010-04-07 15:56:41 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2010-04-07 15:56:41 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2010-04-07 15:56:41 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2010-04-07 15:55:31 | 003,503,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010-04-07 15:55:30 | 003,469,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010-04-07 15:55:30 | 000,654,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2010-04-07 15:55:30 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2010-04-07 15:55:28 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2010-04-07 15:55:28 | 000,097,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2010-04-07 15:55:28 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2010-04-07 15:55:28 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2010-04-07 15:54:47 | 000,512,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010-04-07 15:52:44 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2010-04-07 15:52:44 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2010-04-07 15:52:43 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2010-04-07 15:51:41 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2010-04-07 15:51:41 | 000,223,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
[2010-04-07 15:51:41 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2010-04-07 15:51:40 | 000,566,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2010-04-07 15:51:40 | 000,351,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2010-04-07 15:51:40 | 000,186,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2010-04-07 15:51:39 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2010-04-07 15:51:08 | 000,712,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2010-04-07 15:51:08 | 000,425,472 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2010-04-07 15:51:07 | 000,347,136 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2010-04-07 15:50:00 | 000,220,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2010-04-07 15:50:00 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe
[2010-04-07 15:49:59 | 001,984,512 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2010-04-07 15:49:59 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2010-04-07 15:49:59 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2010-04-07 15:49:56 | 008,138,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2010-04-07 15:49:32 | 000,441,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2010-04-07 15:49:32 | 000,037,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2010-04-07 15:49:13 | 002,031,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010-04-07 15:47:21 | 001,073,152 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpluir.dll
[2010-04-07 15:47:21 | 000,753,664 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcplui.exe
[2010-04-07 15:47:21 | 000,413,696 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvcpl.cpl
[2010-04-07 15:47:21 | 000,307,200 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvexpbar.dll
[2010-04-07 15:46:09 | 000,113,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2010-04-07 15:46:09 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2010-04-07 15:45:47 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2010-04-07 15:45:46 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2010-04-07 15:45:09 | 000,312,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010-04-07 15:45:08 | 000,523,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010-04-07 15:45:08 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010-04-07 15:45:08 | 000,473,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010-04-07 15:45:08 | 000,472,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010-04-07 15:45:08 | 000,435,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010-04-07 15:45:08 | 000,431,104 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010-04-07 15:45:08 | 000,154,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010-04-07 15:45:08 | 000,154,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010-04-07 15:44:45 | 000,011,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2010-04-07 15:44:26 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2010-04-07 15:44:07 | 000,213,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2010-04-07 15:44:07 | 000,167,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2010-04-07 15:44:07 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2010-04-07 15:40:40 | 000,041,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2010-04-07 15:40:39 | 000,158,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2010-04-07 15:40:39 | 000,083,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2010-04-07 15:23:01 | 008,147,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010-04-07 15:23:00 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2010-04-07 15:22:59 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2010-04-07 15:22:58 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2010-04-07 15:22:55 | 000,311,296 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2010-04-07 15:13:56 | 000,181,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010-04-07 14:58:45 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010-04-07 14:58:43 | 004,247,552 | ---- | C] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010-04-07 14:58:43 | 001,686,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010-04-07 14:58:08 | 000,996,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2010-04-07 14:58:08 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2010-04-07 14:57:26 | 000,084,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2010-04-07 14:56:47 | 001,645,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2010-04-07 14:56:30 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2010-04-07 14:55:37 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2010-04-07 14:55:37 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010-04-07 14:53:45 | 000,274,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2010-04-07 14:53:45 | 000,232,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010-04-07 14:53:26 | 000,321,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2010-04-07 14:52:00 | 001,327,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010-04-07 14:51:59 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010-04-07 14:51:59 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010-04-07 14:51:59 | 000,082,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010-04-07 14:51:59 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2010-04-07 14:50:56 | 000,604,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2010-04-07 14:17:56 | 000,000,000 | ---D | C] -- C:\Windows\Panther
[2010-04-07 14:17:41 | 000,000,000 | -HSD | C] -- C:\Boot
[2010-04-07 13:35:39 | 002,421,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2010-04-07 13:35:39 | 000,044,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2010-04-07 13:35:10 | 000,575,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2010-04-07 13:35:10 | 000,087,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2010-04-07 13:35:10 | 000,035,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2010-04-07 13:34:48 | 000,171,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2010-04-07 13:34:48 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2010-04-07 13:30:36 | 000,000,000 | R--D | C] -- C:\Users\User\Searches
[2010-04-07 13:30:25 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Identities
[2010-04-07 13:30:23 | 000,000,000 | R--D | C] -- C:\Users\User\Contacts
[2010-04-07 13:30:22 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\VirtualStore
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Ustawienia lokalne
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\AppData\Local\Temporary Internet Files
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Szablony
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\SendTo
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Recent
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\PrintHood
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\NetHood
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Documents\Moje wideo
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Documents\Moje obrazy
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Moje dokumenty
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Documents\Moja muzyka
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Menu Start
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\AppData\Local\Historia
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Dane aplikacji
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\AppData\Local\Dane aplikacji
[2010-04-07 13:30:18 | 000,000,000 | -HSD | C] -- C:\Users\User\Cookies
[2010-04-07 13:30:18 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Temp
[2010-04-07 13:30:18 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Local\Microsoft
[2010-04-07 13:30:17 | 000,000,000 | --SD | C] -- C:\Users\User\AppData\Roaming\Microsoft
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Videos
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Saved Games
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Pictures
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Music
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Links
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Favorites
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Downloads
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Documents
[2010-04-07 13:30:17 | 000,000,000 | R--D | C] -- C:\Users\User\Desktop
[2010-04-07 13:30:17 | 000,000,000 | -H-D | C] -- C:\Users\User\AppData
[2010-04-07 13:30:17 | 000,000,000 | ---D | C] -- C:\Users\User\AppData\Roaming\Media Center Programs
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2010-04-07 13:28:25 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2010-04-07 13:23:38 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2010-04-07 13:21:48 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2
[2010-04-07 13:21:30 | 000,000,000 | ---D | C] -- C:\Windows\Debug
[2010-04-07 13:19:19 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch
[2010-04-07 13:18:56 | 000,000,000 | -HSD | C] -- C:\System Volume Information

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-04-10 10:53:29 | 001,048,576 | -HS- | M] () -- C:\Users\User\NTUSER.DAT
[2010-04-10 10:51:00 | 000,066,216 | ---- | M] () -- C:\Users\User\AppData\Roaming\nvModes.001
[2010-04-10 10:50:51 | 000,003,952 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2010-04-10 10:50:51 | 000,003,952 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2010-04-10 10:50:47 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2010-04-10 10:50:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2010-04-10 10:50:35 | 2145,574,912 | -HS- | M] () -- C:\hiberfil.sys
[2010-04-10 10:32:13 | 000,610,142 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2010-04-10 10:32:13 | 000,535,568 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2010-04-10 10:32:13 | 000,103,924 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2010-04-10 10:32:13 | 000,086,416 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2010-04-10 10:32:07 | 001,326,240 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2010-04-10 10:27:10 | 000,066,216 | ---- | M] () -- C:\Users\User\AppData\Roaming\nvModes.dat
[2010-04-09 23:14:33 | 003,054,081 | -H-- | M] () -- C:\Users\User\AppData\Local\IconCache.db
[2010-04-09 16:06:10 | 000,079,008 | ---- | M] () -- C:\Users\User\AppData\Local\GDIPFONTCACHEV1.DAT
[2010-04-09 16:05:57 | 000,317,816 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2010-04-07 21:08:08 | 000,055,232 | ---- | M] (ESET) -- C:\Windows\System32\drivers\epfwtdi.sys
[2010-04-07 21:08:06 | 000,032,584 | ---- | M] (ESET) -- C:\Windows\System32\drivers\epfwndis.sys
[2010-04-07 21:08:04 | 000,134,488 | ---- | M] (ESET) -- C:\Windows\System32\drivers\epfw.sys
[2010-04-07 21:07:08 | 000,114,984 | ---- | M] (ESET) -- C:\Windows\System32\drivers\ehdrv.sys
[2010-04-07 21:03:46 | 000,133,512 | ---- | M] (ESET) -- C:\Windows\System32\drivers\eamonm.sys
[2010-04-07 18:59:26 | 000,003,584 | ---- | M] () -- C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-07 17:36:06 | 000,000,412 | ---- | M] () -- C:\Windows\ODBC.INI
[2010-04-07 17:35:30 | 000,000,240 | ---- | M] () -- C:\Windows\win.ini
[2010-04-07 17:14:24 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdFs_01_00_00.Wdf
[2010-04-07 16:58:57 | 000,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest
[2010-04-07 16:50:10 | 000,289,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\atmfd.dll
[2010-04-07 16:50:10 | 000,156,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\t2embed.dll
[2010-04-07 16:50:10 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fontsub.dll
[2010-04-07 16:50:10 | 000,034,304 | ---- | M] (Adobe Systems) -- C:\Windows\System32\atmlib.dll
[2010-04-07 16:50:10 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll
[2010-04-07 16:49:14 | 000,272,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\polstore.dll
[2010-04-07 16:49:14 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winipsec.dll
[2010-04-07 16:49:14 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FwRemoteSvr.dll
[2010-04-07 16:48:21 | 000,467,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll
[2010-04-07 16:48:21 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched32.dll
[2010-04-07 16:48:20 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kmddsp.tsp
[2010-04-07 16:48:19 | 000,384,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfgx.dll
[2010-04-07 16:48:19 | 000,077,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rascfg.dll
[2010-04-07 16:48:19 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasdiag.dll
[2010-04-07 16:48:19 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ndptsp.tsp
[2010-04-07 16:48:19 | 000,032,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasmxs.dll
[2010-04-07 16:48:19 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasser.dll
[2010-04-07 16:48:19 | 000,001,820 | ---- | M] () -- C:\Windows\System32\rasctrnm.h
[2010-04-07 16:48:18 | 000,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll
[2010-04-07 16:48:18 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icsunattend.exe
[2010-04-07 16:48:17 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\traffic.dll
[2010-04-07 16:48:17 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pacerprf.dll
[2010-04-07 16:48:17 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshqos.dll
[2010-04-07 16:48:16 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cdd.dll
[2010-04-07 16:46:46 | 000,000,680 | ---- | M] () -- C:\Users\User\AppData\Local\d3d9caps.dat
[2010-04-07 16:46:30 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll
[2010-04-07 16:46:29 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll
[2010-04-07 16:46:29 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceClassExtension.dll
[2010-04-07 16:45:38 | 000,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoeacct.dll
[2010-04-07 16:45:38 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msoert2.dll
[2010-04-07 16:45:38 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ACCTRES.dll
[2010-04-07 16:44:25 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netevent.dll
[2010-04-07 16:44:25 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MRINFO.EXE
[2010-04-07 16:44:25 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TCPSVCS.EXE
[2010-04-07 16:44:25 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HOSTNAME.EXE
[2010-04-07 16:44:24 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiohlp.dll
[2010-04-07 16:44:24 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NETSTAT.EXE
[2010-04-07 16:44:24 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ARP.EXE
[2010-04-07 16:44:24 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ROUTE.EXE
[2010-04-07 16:44:24 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\finger.exe
[2010-04-07 16:42:43 | 000,704,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoScreensaver.scr
[2010-04-07 16:42:41 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll
[2010-04-07 16:42:39 | 000,028,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\battc.sys
[2010-04-07 16:40:14 | 001,657,350 | ---- | M] () -- C:\Windows\System32\wlan.tmf
[2010-04-07 16:40:14 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\L2SecHC.dll
[2010-04-07 16:40:13 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlansec.dll
[2010-04-07 16:40:13 | 000,290,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanmsm.dll
[2010-04-07 16:40:13 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanhlp.dll
[2010-04-07 16:40:13 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll
[2010-04-07 16:38:19 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3r.dll
[2010-04-07 16:38:18 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml6r.dll
[2010-04-07 16:36:48 | 001,233,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsasrv.dll
[2010-04-07 16:35:36 | 000,376,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll
[2010-04-07 16:35:36 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll
[2010-04-07 16:34:28 | 002,855,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mf.dll
[2010-04-07 16:34:28 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfps.dll
[2010-04-07 16:34:28 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rrinstaller.exe
[2010-04-07 16:34:28 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfpmp.exe
[2010-04-07 16:34:28 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mferror.dll
[2010-04-07 16:34:26 | 002,433,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMVCORE.DLL
[2010-04-07 16:25:43 | 000,374,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcupdate_GenuineIntel.dll
[2010-04-07 16:25:02 | 000,500,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdtcprx.dll
[2010-04-07 16:25:02 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xolehlp.dll
[2010-04-07 16:23:14 | 000,116,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\aaclient.dll
[2010-04-07 16:23:14 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tsgqec.dll
[2010-04-07 16:22:00 | 000,303,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmpeffects.dll
[2010-04-07 16:19:50 | 000,414,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscp.dll
[2010-04-07 16:18:50 | 000,713,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl
[2010-04-07 16:17:39 | 000,356,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MediaMetadataHandler.dll
[2010-04-07 16:16:34 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll
[2010-04-07 16:16:33 | 000,086,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icfupgd.dll
[2010-04-07 16:16:33 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wfapigp.dll
[2010-04-07 16:16:32 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cmifw.dll
[2010-04-07 16:11:56 | 001,244,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcmde.dll
[2010-04-07 16:11:56 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll
[2010-04-07 16:11:56 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpg2splt.ax
[2010-04-07 16:11:55 | 000,292,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll
[2010-04-07 16:11:55 | 000,217,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax
[2010-04-07 16:11:55 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSNP.ax
[2010-04-07 16:11:55 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Mpeg2Data.ax
[2010-04-07 16:11:55 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MSDvbNP.ax
[2010-04-07 16:08:40 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll
[2010-04-07 16:07:48 | 000,696,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\localspl.dll
[2010-04-07 16:06:25 | 000,045,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pciidex.sys
[2010-04-07 16:06:24 | 000,109,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ataport.sys
[2010-04-07 16:05:11 | 000,104,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\DWWIN.EXE
[2010-04-07 16:04:09 | 002,452,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dat
[2010-04-07 16:04:09 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iedkcs32.dll
[2010-04-07 16:04:09 | 000,380,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieapfltr.dll
[2010-04-07 16:04:09 | 000,230,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieaksie.dll
[2010-04-07 16:04:09 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieakui.dll
[2010-04-07 16:04:09 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\admparse.dll
[2010-04-07 16:04:08 | 000,192,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iepeers.dll
[2010-04-07 16:04:08 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll
[2010-04-07 16:04:07 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll
[2010-04-07 16:04:07 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll
[2010-04-07 16:04:06 | 000,459,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msfeeds.dll
[2010-04-07 16:04:06 | 000,180,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll
[2010-04-07 16:04:03 | 000,389,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\html.iec
[2010-04-07 16:04:03 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieencode.dll
[2010-04-07 16:04:03 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtmler.dll
[2010-04-07 16:04:02 | 001,383,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb
[2010-04-07 16:04:00 | 001,830,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl
[2010-04-07 16:04:00 | 000,671,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstime.dll
[2010-04-07 16:03:58 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe
[2010-04-07 16:03:57 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll
[2010-04-07 16:03:56 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ie4uinit.exe
[2010-04-07 16:03:56 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iesetup.dll
[2010-04-07 16:03:56 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iernonce.dll
[2010-04-07 16:02:36 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2010-04-07 16:02:10 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbport.sys
[2010-04-07 16:02:10 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hcrstco.dll
[2010-04-07 16:02:10 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hccoin.dll
[2010-04-07 16:02:10 | 000,005,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\usbd.sys
[2010-04-07 16:01:26 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netcfg.exe
[2010-04-07 16:01:00 | 001,808,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0046.dll
[2010-04-07 16:01:00 | 001,793,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0045.dll
[2010-04-07 16:00:59 | 002,136,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0021.dll
[2010-04-07 16:00:59 | 001,782,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0039.dll
[2010-04-07 16:00:59 | 001,558,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0049.dll
[2010-04-07 16:00:59 | 001,411,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0047.dll
[2010-04-07 16:00:59 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0020.dll
[2010-04-07 16:00:58 | 005,499,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0022.dll
[2010-04-07 16:00:57 | 007,964,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0024.dll
[2010-04-07 16:00:57 | 005,791,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0026.dll
[2010-04-07 16:00:56 | 006,224,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0027.dll
[2010-04-07 16:00:55 | 004,175,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0010.dll
[2010-04-07 16:00:54 | 004,981,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0013.dll
[2010-04-07 16:00:54 | 003,331,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0018.dll
[2010-04-07 16:00:54 | 002,466,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0011.dll
[2010-04-07 16:00:53 | 011,722,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0001.dll
[2010-04-07 16:00:53 | 006,781,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0019.dll
[2010-04-07 16:00:52 | 004,164,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0002.dll
[2010-04-07 16:00:52 | 001,452,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0003.dll
[2010-04-07 16:00:51 | 012,240,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0007.dll
[2010-04-07 16:00:50 | 002,644,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0009.dll
[2010-04-07 16:00:49 | 004,093,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004c.dll
[2010-04-07 16:00:49 | 003,419,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004a.dll
[2010-04-07 16:00:49 | 001,702,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004b.dll
[2010-04-07 16:00:48 | 006,014,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001a.dll
[2010-04-07 16:00:48 | 004,045,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons003e.dll
[2010-04-07 16:00:48 | 001,972,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons004e.dll
[2010-04-07 16:00:48 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons002a.dll
[2010-04-07 16:00:47 | 006,585,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001b.dll
[2010-04-07 16:00:46 | 006,346,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons001d.dll
[2010-04-07 16:00:45 | 009,892,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000a.dll
[2010-04-07 16:00:45 | 006,237,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000c.dll
[2010-04-07 16:00:44 | 005,654,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000f.dll
[2010-04-07 16:00:44 | 001,722,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons000d.dll
[2010-04-07 16:00:43 | 005,090,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0416.dll
[2010-04-07 16:00:43 | 004,616,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0414.dll
[2010-04-07 16:00:42 | 007,042,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons081a.dll
[2010-04-07 16:00:42 | 005,031,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0816.dll
[2010-04-07 16:00:41 | 005,071,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsModels0011.dll
[2010-04-07 16:00:41 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0045.dll
[2010-04-07 16:00:40 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0049.dll
[2010-04-07 16:00:40 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0047.dll
[2010-04-07 16:00:40 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0046.dll
[2010-04-07 16:00:39 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0039.dll
[2010-04-07 16:00:39 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0020.dll
[2010-04-07 16:00:39 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0021.dll
[2010-04-07 16:00:38 | 001,965,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0027.dll
[2010-04-07 16:00:38 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0026.dll
[2010-04-07 16:00:38 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0024.dll
[2010-04-07 16:00:38 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0022.dll
[2010-04-07 16:00:37 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0010.dll
[2010-04-07 16:00:37 | 003,464,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0013.dll
[2010-04-07 16:00:37 | 002,655,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0011.dll
[2010-04-07 16:00:36 | 004,495,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0019.dll
[2010-04-07 16:00:36 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0018.dll
[2010-04-07 16:00:36 | 001,523,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll
[2010-04-07 16:00:35 | 002,597,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0001.dll
[2010-04-07 16:00:35 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0002.dll
[2010-04-07 16:00:34 | 004,874,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0009.dll
[2010-04-07 16:00:34 | 002,241,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0007.dll
[2010-04-07 16:00:34 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0003.dll
[2010-04-07 16:00:33 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004c.dll
[2010-04-07 16:00:33 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004b.dll
[2010-04-07 16:00:33 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004a.dll
[2010-04-07 16:00:32 | 003,102,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData004e.dll
[2010-04-07 16:00:32 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001a.dll
[2010-04-07 16:00:32 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData003e.dll
[2010-04-07 16:00:32 | 001,799,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData002a.dll
[2010-04-07 16:00:31 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001d.dll
[2010-04-07 16:00:31 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData001b.dll
[2010-04-07 16:00:30 | 009,845,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000a.dll
[2010-04-07 16:00:30 | 002,641,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000c.dll
[2010-04-07 16:00:30 | 002,340,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000d.dll
[2010-04-07 16:00:29 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0416.dll
[2010-04-07 16:00:29 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0414.dll
[2010-04-07 16:00:29 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData000f.dll
[2010-04-07 16:00:28 | 004,493,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0816.dll
[2010-04-07 16:00:28 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData081a.dll
[2010-04-07 16:00:28 | 000,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll
[2010-04-07 16:00:27 | 006,917,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsLexicons0c1a.dll
[2010-04-07 16:00:27 | 001,963,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0c1a.dll
[2010-04-07 15:57:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\i8042prt.sys.mui
[2010-04-07 15:57:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\sermouse.sys.mui
[2010-04-07 15:57:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\mouclass.sys.mui
[2010-04-07 15:57:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\kbdclass.sys.mui
[2010-04-07 15:57:00 | 000,003,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\mouhid.sys.mui
[2010-04-07 15:57:00 | 000,003,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pl-PL\kbdhid.sys.mui
[2010-04-07 15:56:46 | 000,371,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srcore.dll
[2010-04-07 15:56:46 | 000,313,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rstrui.exe
[2010-04-07 15:56:46 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srdelayed.exe
[2010-04-07 15:56:45 | 000,944,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winload.exe
[2010-04-07 15:56:45 | 000,905,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winresume.exe
[2010-04-07 15:56:45 | 000,620,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ci.dll
[2010-04-07 15:56:45 | 000,613,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpd_ci.dll
[2010-04-07 15:56:45 | 000,019,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kd1394.dll
[2010-04-07 15:56:44 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drvinst.exe
[2010-04-07 15:56:44 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
[2010-04-07 15:56:43 | 000,260,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dpx.dll
[2010-04-07 15:56:43 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kbd106n.dll
[2010-04-07 15:56:42 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\loadperf.dll
[2010-04-07 15:56:42 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lodctr.exe
[2010-04-07 15:56:42 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unlodctr.exe
[2010-04-07 15:56:42 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\prflbmsg.dll
[2010-04-07 15:56:41 | 000,035,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\WdfLdr.sys
[2010-04-07 15:56:41 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dispci.dll
[2010-04-07 15:56:41 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batt.dll
[2010-04-07 15:56:41 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\f3ahvoas.dll
[2010-04-07 15:55:31 | 003,503,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe
[2010-04-07 15:55:30 | 003,469,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe
[2010-04-07 15:55:30 | 000,654,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelinesvc.exe
[2010-04-07 15:55:30 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printfilterpipelineprxy.dll
[2010-04-07 15:55:28 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sdohlp.dll
[2010-04-07 15:55:28 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasrecst.dll
[2010-04-07 15:55:28 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasads.dll
[2010-04-07 15:55:28 | 000,037,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iasdatastore.dll
[2010-04-07 15:54:47 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll
[2010-04-07 15:52:44 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMASF.DLL
[2010-04-07 15:52:44 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\LAPRXY.DLL
[2010-04-07 15:52:44 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\asferror.dll
[2010-04-07 15:51:41 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mcbuilder.exe
[2010-04-07 15:51:41 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll
[2010-04-07 15:51:41 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwmi.dll
[2010-04-07 15:51:40 | 000,566,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLCommDlg.dll
[2010-04-07 15:51:40 | 000,351,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLUI.exe
[2010-04-07 15:51:40 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLLUA.exe
[2010-04-07 15:51:39 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slcinst.dll
[2010-04-07 15:51:08 | 000,712,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll
[2010-04-07 15:51:08 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PhotoMetadataHandler.dll
[2010-04-07 15:51:07 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecsExt.dll
[2010-04-07 15:50:00 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.dll
[2010-04-07 15:50:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntprint.exe
[2010-04-07 15:49:59 | 001,984,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll
[2010-04-07 15:49:59 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll
[2010-04-07 15:49:59 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcmonitor.dll
[2010-04-07 15:49:56 | 008,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ssBranded.scr
[2010-04-07 15:49:32 | 000,441,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32spl.dll
[2010-04-07 15:49:32 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\printcom.dll
[2010-04-07 15:49:13 | 002,031,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys
[2010-04-07 15:46:09 | 000,113,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rmcast.sys
[2010-04-07 15:46:09 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshrm.dll
[2010-04-07 15:45:47 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\amcompat.tlb
[2010-04-07 15:45:46 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.tlb
[2010-04-07 15:45:09 | 000,435,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp.exe
[2010-04-07 15:45:09 | 000,312,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdrm.dll
[2010-04-07 15:45:08 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_isv.exe
[2010-04-07 15:45:08 | 000,515,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate.exe
[2010-04-07 15:45:08 | 000,473,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_isv.dll
[2010-04-07 15:45:08 | 000,472,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc.dll
[2010-04-07 15:45:08 | 000,431,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RMActivate_ssp_isv.exe
[2010-04-07 15:45:08 | 000,154,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp_isv.dll
[2010-04-07 15:45:08 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secproc_ssp.dll
[2010-04-07 15:44:45 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sbunattend.exe
[2010-04-07 15:44:26 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnscacheugc.exe
[2010-04-07 15:44:07 | 000,213,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\netio.sys
[2010-04-07 15:44:07 | 000,167,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tcpipcfg.dll
[2010-04-07 15:44:07 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netiougc.exe
[2010-04-07 15:40:40 | 000,041,984 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netfxperf.dll
[2010-04-07 15:40:39 | 000,158,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscorier.dll
[2010-04-07 15:40:39 | 000,083,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscories.dll
[2010-04-07 15:23:01 | 008,147,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmploc.DLL
[2010-04-07 15:23:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spwmp.dll
[2010-04-07 15:22:59 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxmasf.dll
[2010-04-07 15:22:58 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdxm.ocx
[2010-04-07 15:22:55 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\unregmp2.exe
[2010-04-07 14:58:46 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Apphlpdm.dll
[2010-04-07 14:58:43 | 004,247,552 | ---- | M] (Microsoft) -- C:\Windows\System32\GameUXLegacyGDFs.dll
[2010-04-07 14:58:43 | 001,686,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gameux.dll
[2010-04-07 14:58:08 | 000,996,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMNetMgr.dll
[2010-04-07 14:58:08 | 000,094,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\logagent.exe
[2010-04-07 14:57:26 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\INETRES.dll
[2010-04-07 14:56:47 | 001,645,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\connect.dll
[2010-04-07 14:56:30 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wmi.dll
[2010-04-07 14:55:37 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\httpapi.dll
[2010-04-07 14:55:37 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nshhttp.dll
[2010-04-07 14:53:46 | 000,274,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\raschap.dll
[2010-04-07 14:53:45 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rastls.dll
[2010-04-07 14:53:26 | 000,321,536 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSDApi.dll
[2010-04-07 14:52:00 | 001,327,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll
[2010-04-07 14:51:59 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvfw32.dll
[2010-04-07 14:51:59 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avifil32.dll
[2010-04-07 14:51:59 | 000,082,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mciavi32.dll
[2010-04-07 14:51:59 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avicap32.dll
[2010-04-07 14:50:56 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WMSPDMOD.DLL
[2010-04-07 14:17:43 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK
[2010-04-07 13:35:39 | 002,421,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll
[2010-04-07 13:35:39 | 000,044,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll
[2010-04-07 13:35:10 | 000,575,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll
[2010-04-07 13:35:10 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll
[2010-04-07 13:35:10 | 000,035,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll
[2010-04-07 13:34:48 | 000,171,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll
[2010-04-07 13:34:48 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe
[2010-04-07 13:30:18 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010-04-07 13:30:18 | 000,524,288 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010-04-07 13:30:18 | 000,065,536 | -HS- | M] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010-04-07 13:30:18 | 000,000,020 | -HS- | M] () -- C:\Users\User\ntuser.ini
[2010-04-07 13:24:33 | 000,065,369 | ---- | M] () -- C:\Windows\System32\license.rtf
[2010-03-14 20:00:00 | 000,085,504 | ---- | M] () -- C:\Windows\System32\ff_vfw.dll
[2010-03-14 20:00:00 | 000,000,038 | ---- | M] () -- C:\Windows\avisplitter.ini
[2010-02-24 10:16:06 | 000,181,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2010-02-15 20:00:00 | 000,278,528 | ---- | M] (Real Networks, Inc) -- C:\Windows\System32\pncrt.dll
[2010-02-15 20:00:00 | 000,185,920 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\rmoc3260.dll
[2010-02-15 20:00:00 | 000,006,656 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5016.dll
[2010-02-15 20:00:00 | 000,005,632 | ---- | M] (RealNetworks, Inc.) -- C:\Windows\System32\pndx5032.dll
[2010-02-10 19:13:48 | 000,165,376 | ---- | M] () -- C:\Windows\System32\unrar.dll

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-04-07 18:59:26 | 000,003,584 | ---- | C] () -- C:\Users\User\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-04-07 18:58:54 | 000,165,376 | ---- | C] () -- C:\Windows\System32\unrar.dll
[2010-04-07 18:58:54 | 000,000,038 | ---- | C] () -- C:\Windows\avisplitter.ini
[2010-04-07 18:58:53 | 000,881,664 | ---- | C] () -- C:\Windows\System32\xvidcore.dll
[2010-04-07 18:58:53 | 000,205,824 | ---- | C] () -- C:\Windows\System32\xvidvfw.dll
[2010-04-07 18:58:53 | 000,000,414 | ---- | C] () -- C:\Windows\System32\lame_acm.xml
[2010-04-07 18:58:51 | 000,085,504 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll
[2010-04-07 18:58:51 | 000,000,547 | ---- | C] () -- C:\Windows\System32\ff_vfw.dll.manifest
[2010-04-07 17:36:06 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI
[2010-04-07 17:29:53 | 000,066,216 | ---- | C] () -- C:\Users\User\AppData\Roaming\nvModes.001
[2010-04-07 17:25:05 | 000,027,136 | ---- | C] () -- C:\Users\User\Documents\karolina lista wesele.doc
[2010-04-07 17:01:10 | 000,066,216 | ---- | C] () -- C:\Users\User\AppData\Roaming\nvModes.dat
[2010-04-07 16:48:19 | 000,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h
[2010-04-07 16:40:14 | 001,657,350 | ---- | C] () -- C:\Windows\System32\wlan.tmf
[2010-04-07 14:17:43 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK
[2010-04-07 14:17:41 | 000,438,840 | RHS- | C] () -- C:\bootmgr
[2010-04-07 13:30:20 | 000,000,680 | ---- | C] () -- C:\Users\User\AppData\Local\d3d9caps.dat
[2010-04-07 13:30:18 | 000,524,288 | -HS- | C] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms
[2010-04-07 13:30:18 | 000,524,288 | -HS- | C] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2010-04-07 13:30:18 | 000,262,144 | -H-- | C] () -- C:\Users\User\ntuser.dat.LOG1
[2010-04-07 13:30:18 | 000,065,536 | -HS- | C] () -- C:\Users\User\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2010-04-07 13:30:18 | 000,000,020 | -HS- | C] () -- C:\Users\User\ntuser.ini
[2010-04-07 13:30:18 | 000,000,000 | -H-- | C] () -- C:\Users\User\ntuser.dat.LOG2
[2010-04-07 13:30:17 | 001,048,576 | -HS- | C] () -- C:\Users\User\NTUSER.DAT
[2010-04-07 13:26:39 | 2145,574,912 | -HS- | C] () -- C:\hiberfil.sys
[2006-11-02 14:35:32 | 000,005,632 | ---- | C] () -- C:\Windows\System32\sysprepMCE.dll
[2006-11-02 09:40:29 | 000,013,750 | ---- | C] () -- C:\Windows\System32\pacerprf.ini
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\Windows\System32\OUTLPERF.INI

[color=#E56717]========== LOP Check ==========[/color]

[2010-04-07 17:08:23 | 000,000,000 | ---D | M] -- C:\Users\User\AppData\Roaming\WinBatch
[2010-04-10 10:49:59 | 000,007,996 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]


< End of report >
[/log]

problem wciaz się powtarza, a log zrobiony tuż po ponownym uruchomieniu komputera.

Mateusz J.
komentarz
komentarz

Zainstaluj eset-a ponownie.

krystian_db
komentarz
komentarz (edytowane)

ok, odinstalowałem, potem po restarcie, na pulpicie pojawiłi mi się pliki : dwa takie same o nazwie desktop.ini, natomiast przy instalacji, pojawił się komunikat ze asministrator wprowadził zmiany ktore zapobiegly instalacji tego programu. tak wiec instalacja sie nie powiodla.

teraz masz jakies pomysły??

Mateusz J.
komentarz
komentarz

Hm...pokaż log z Combofix.

krystian_db
komentarz
komentarz

log z combo czego?? a jak go zrobic:>??

sebus1989
komentarz
komentarz

[url="http://www.forum.tweaks.pl/combofix-t35201.html"]Instukcja[/url]

krystian_db
komentarz
komentarz

[log]
ComboFix 10-04-09.06 - User 2010-04-10 15:57:29.1.2 - x86
Microsoft® Windows Vista™ Home Premium 6.0.6000.0.1250.48.1045.18.2046.1307 [GMT 2:00]
Uruchomiony z: c:\users\User\Downloads\ComboFix.exe
SP: Windows Defender *disabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46}
.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\$recycle.bin\S-1-5-21-2152478756-3922319563-605102323-500

.
((((((((((((((((((((((((( Pliki utworzone od 2010-03-10 do 2010-04-10 )))))))))))))))))))))))))))))))
.

2010-04-10 09:40 . 2010-04-10 09:40 -------- d-----w- c:\users\User\AppData\Roaming\skypePM
2010-04-10 09:23 . 2010-04-10 11:23 -------- d-----w- c:\users\User\AppData\Roaming\Skype
2010-04-10 09:23 . 2010-04-10 09:23 -------- d-----w- c:\program files\Common Files\Skype
2010-04-10 09:23 . 2010-04-10 09:23 -------- d-----r- c:\program files\Skype
2010-04-10 09:22 . 2010-04-10 09:23 -------- d-----w- c:\programdata\Skype
2010-04-10 07:18 . 2004-01-11 22:00 348160 ----a-w- c:\windows\system32\msvcr71.dll
2010-04-10 07:18 . 2003-03-19 03:14 499712 ----a-w- c:\windows\system32\msvcp71.dll
2010-04-10 07:18 . 2010-04-10 07:18 -------- d-----w- c:\program files\Real Alternative
2010-04-09 14:11 . 2010-04-09 14:11 -------- d-----w- C:\_OTL
2010-04-09 05:49 . 2010-04-09 05:49 268800 ----a-w- c:\windows\system32\es.dll
2010-04-08 15:13 . 2010-04-08 15:13 -------- d-----w- C:\Python26
2010-04-07 20:06 . 2010-04-07 20:06 -------- d-----w- c:\users\User\106HP740
2010-04-07 20:06 . 2010-04-07 20:06 -------- d-----w- c:\users\User\python_lab1
2010-04-07 20:06 . 2010-04-07 20:06 -------- d-----w- c:\users\User\python
2010-04-07 20:06 . 2010-04-07 20:06 -------- d-----w- c:\users\User\Nowy folder
2010-04-07 20:06 . 2010-04-07 20:06 -------- d-----w- c:\users\User\New Folder
2010-04-07 20:02 . 2010-04-07 20:05 -------- d-----w- c:\users\User\kasia
2010-04-07 19:57 . 2010-04-07 20:02 -------- d-----w- c:\users\User\karolina
2010-04-07 19:50 . 2010-04-07 19:57 -------- d-----w- c:\users\User\anka
2010-04-07 19:49 . 2010-04-07 19:50 -------- d-----w- c:\users\User\107HP740
2010-04-07 16:59 . 2010-04-07 16:59 -------- d-----w- c:\users\User\AppData\Roaming\Media Player Classic
2010-04-07 16:58 . 2010-02-10 17:13 165376 ----a-w- c:\windows\system32\unrar.dll
2010-04-07 16:58 . 2009-05-29 21:37 205824 ----a-w- c:\windows\system32\xvidvfw.dll
2010-04-07 16:58 . 2009-05-29 21:31 881664 ----a-w- c:\windows\system32\xvidcore.dll
2010-04-07 16:58 . 2004-01-25 16:18 217088 ----a-w- c:\windows\system32\yv12vfw.dll
2010-04-07 16:58 . 2010-03-14 18:00 85504 ----a-w- c:\windows\system32\ff_vfw.dll
2010-04-07 16:58 . 2010-04-07 16:59 -------- d-----w- c:\program files\K-Lite Codec Pack
2010-04-07 16:09 . 2010-04-07 16:09 -------- d-----w- c:\program files\Microsoft Silverlight
2010-04-07 16:06 . 2010-04-07 16:06 -------- d-----w- c:\programdata\McAfee
2010-04-07 16:01 . 2010-04-07 16:01 -------- d-----w- c:\users\User\AppData\Local\Mozilla
2010-04-07 15:36 . 2003-06-18 23:31 18944 ----a-w- c:\windows\system32\Spool\prtprocs\w32x86\mdippr.dll
2010-04-07 15:35 . 2003-06-18 23:31 17920 ----a-w- c:\windows\system32\mdimon.dll
2010-04-07 15:33 . 2010-04-07 15:33 -------- d-----w- c:\windows\PCHEALTH
2010-04-07 15:33 . 2010-04-07 15:33 -------- d-----w- c:\program files\Microsoft.NET
2010-04-07 15:31 . 2010-04-10 09:23 -------- d-sh--w- c:\windows\Installer
2010-04-07 15:31 . 2010-04-07 15:31 -------- d-----r- C:\MSOCache
2010-04-07 15:15 . 2010-04-07 15:15 -------- d-----w- c:\program files\UltraISO
2010-04-07 15:15 . 2010-04-07 15:15 -------- d-----w- c:\program files\Common Files\EZB Systems
2010-04-07 15:14 . 2010-04-09 13:58 -------- d-----w- c:\program files\My applications
2010-04-07 15:14 . 2010-04-07 15:14 -------- d-----w- c:\program files\Temp
2010-04-07 15:08 . 2010-04-07 15:08 -------- d-----w- c:\users\User\AppData\Roaming\WinBatch
2010-04-07 15:04 . 2010-04-07 15:04 -------- d-----w- c:\windows\system32\Macromed
2010-04-07 15:00 . 2010-04-07 15:29 -------- d-----w- c:\programdata\NVIDIA
2010-04-07 14:50 . 2010-04-07 14:50 72704 ----a-w- c:\windows\system32\fontsub.dll
2010-04-07 14:50 . 2010-04-07 14:50 34304 ----a-w- c:\windows\system32\atmlib.dll
2010-04-07 14:50 . 2010-04-07 14:50 289792 ----a-w- c:\windows\system32\atmfd.dll
2010-04-07 14:50 . 2010-04-07 14:50 24064 ----a-w- c:\windows\system32\lpk.dll
2010-04-07 14:50 . 2010-04-07 14:50 156672 ----a-w- c:\windows\system32\t2embed.dll
2010-04-07 14:50 . 2010-04-07 14:50 10240 ----a-w- c:\windows\system32\dciman32.dll
2010-04-07 14:49 . 2010-04-07 14:49 61440 ----a-w- c:\windows\system32\winipsec.dll
2010-04-07 14:49 . 2010-04-07 14:49 361984 ----a-w- c:\windows\system32\IPSECSVC.DLL
2010-04-07 14:49 . 2010-04-07 14:49 28672 ----a-w- c:\windows\system32\FwRemoteSvr.dll
2010-04-07 14:49 . 2010-04-07 14:49 272896 ----a-w- c:\windows\system32\polstore.dll
2010-04-07 14:47 . 2010-04-07 14:47 84992 ----a-w- c:\windows\system32\drivers\srvnet.sys
2010-04-07 14:47 . 2010-04-07 14:47 306688 ----a-w- c:\windows\system32\drivers\srv.sys
2010-04-07 14:46 . 2010-04-08 19:05 -------- d-----w- c:\users\User\AppData\Local\Microsoft Games
2010-04-07 14:46 . 2010-04-07 14:46 241152 ----a-w- c:\windows\system32\PortableDeviceApi.dll
2010-04-07 14:46 . 2010-04-07 14:46 95232 ----a-w- c:\windows\system32\PortableDeviceClassExtension.dll
2010-04-07 14:46 . 2010-04-07 14:46 160768 ----a-w- c:\windows\system32\PortableDeviceTypes.dll
2010-04-07 14:45 . 2010-04-07 14:45 87040 ----a-w- c:\windows\system32\msoert2.dll
2010-04-07 14:45 . 2010-04-07 14:45 39424 ----a-w- c:\windows\system32\ACCTRES.dll
2010-04-07 14:45 . 2010-04-07 14:45 205824 ----a-w- c:\windows\system32\msoeacct.dll
2010-04-07 14:44 . 2010-04-07 14:44 9728 ----a-w- c:\windows\system32\TCPSVCS.EXE
2010-04-07 14:44 . 2010-04-07 14:44 8704 ----a-w- c:\windows\system32\HOSTNAME.EXE
2010-04-07 14:44 . 2010-04-07 14:44 15360 ----a-w- c:\windows\system32\netevent.dll
2010-04-07 14:44 . 2010-04-07 14:44 11264 ----a-w- c:\windows\system32\MRINFO.EXE
2010-04-07 14:44 . 2010-04-07 14:44 27136 ----a-w- c:\windows\system32\NETSTAT.EXE
2010-04-07 14:44 . 2010-04-07 14:44 19968 ----a-w- c:\windows\system32\ARP.EXE
2010-04-07 14:44 . 2010-04-07 14:44 17920 ----a-w- c:\windows\system32\ROUTE.EXE
2010-04-07 14:44 . 2010-04-07 14:44 103936 ----a-w- c:\windows\system32\netiohlp.dll
2010-04-07 14:44 . 2010-04-07 14:44 10240 ----a-w- c:\windows\system32\finger.exe
2010-04-07 14:42 . 2010-04-07 14:42 704000 ----a-w- c:\windows\system32\PhotoScreensaver.scr
2010-04-07 14:42 . 2010-04-07 14:42 356352 ----a-w- c:\windows\system32\wbem\wbemcomn.dll
2010-04-07 14:42 . 2010-04-07 14:42 24064 ----a-w- c:\windows\system32\wtsapi32.dll
2010-04-07 14:42 . 2010-04-07 14:42 258232 ----a-w- c:\windows\system32\drivers\acpi.sys
2010-04-07 14:42 . 2010-04-07 14:42 20920 ----a-w- c:\windows\system32\drivers\compbatt.sys
2010-04-07 14:42 . 2010-04-07 14:42 14208 ----a-w- c:\windows\system32\drivers\CmBatt.sys
2010-04-07 14:42 . 2010-04-07 14:42 28344 ----a-w- c:\windows\system32\drivers\battc.sys
2010-04-07 14:42 . 2010-04-07 14:42 542720 ----a-w- c:\windows\system32\sysmain.dll
2010-04-07 14:41 . 2010-04-07 14:41 194560 ----a-w- c:\windows\system32\WebClnt.dll
2010-04-07 14:41 . 2010-04-07 14:41 110080 ----a-w- c:\windows\system32\drivers\mrxdav.sys
2010-04-07 14:40 . 2010-04-07 14:40 123904 ----a-w- c:\windows\system32\L2SecHC.dll
2010-04-07 14:40 . 2010-04-07 14:40 67584 ----a-w- c:\windows\system32\wlanhlp.dll
2010-04-07 14:40 . 2010-04-07 14:40 502272 ----a-w- c:\windows\system32\wlansvc.dll
2010-04-07 14:40 . 2010-04-07 14:40 47104 ----a-w- c:\windows\system32\wlanapi.dll
2010-04-07 14:40 . 2010-04-07 14:40 297984 ----a-w- c:\windows\system32\wlansec.dll
2010-04-07 14:40 . 2010-04-07 14:40 290816 ----a-w- c:\windows\system32\wlanmsm.dll
2010-04-07 14:38 . 2010-04-07 14:38 2048 ----a-w- c:\windows\system32\msxml3r.dll
2010-04-07 14:38 . 2010-04-07 14:38 1260032 ----a-w- c:\windows\system32\msxml3.dll
2010-04-07 14:38 . 2010-04-07 14:38 2048 ----a-w- c:\windows\system32\msxml6r.dll
2010-04-07 14:38 . 2010-04-07 14:38 1406464 ----a-w- c:\windows\system32\msxml6.dll
2010-04-07 14:36 . 2010-04-07 14:36 72704 ----a-w- c:\windows\system32\secur32.dll
2010-04-07 14:36 . 2010-04-07 14:36 408136 ----a-w- c:\windows\system32\drivers\ksecdd.sys
2010-04-07 14:36 . 2010-04-07 14:36 216576 ----a-w- c:\windows\system32\msv1_0.dll
2010-04-07 14:36 . 2010-04-07 14:36 175104 ----a-w- c:\windows\system32\wdigest.dll
2010-04-07 14:36 . 2010-04-07 14:36 7680 ----a-w- c:\windows\system32\lsass.exe
2010-04-07 14:36 . 2010-04-07 14:36 1233920 ----a-w- c:\windows\system32\lsasrv.dll
2010-04-07 14:35 . 2010-04-07 14:35 49664 ----a-w- c:\windows\system32\csrsrv.dll
2010-04-07 14:35 . 2010-04-07 14:35 376320 ----a-w- c:\windows\system32\winsrv.dll
2010-04-07 14:34 . 2010-04-07 14:34 98816 ----a-w- c:\windows\system32\mfps.dll
2010-04-07 14:34 . 2010-04-07 14:34 52736 ----a-w- c:\windows\system32\rrinstaller.exe
2010-04-07 14:34 . 2010-04-07 14:34 2855424 ----a-w- c:\windows\system32\mf.dll
2010-04-07 14:34 . 2010-04-07 14:34 24576 ----a-w- c:\windows\system32\mfpmp.exe
2010-04-07 14:34 . 2010-04-07 14:34 2048 ----a-w- c:\windows\system32\mferror.dll
2010-04-07 14:30 . 2010-04-07 14:30 376832 ----a-w- c:\windows\system32\winhttp.dll
2010-04-07 14:29 . 2010-04-07 14:29 71680 ----a-w- c:\windows\system32\atl.dll
2010-04-07 14:28 . 2010-04-07 14:28 297472 ----a-w- c:\windows\system32\gdi32.dll
2010-04-07 14:27 . 2010-04-07 14:27 41984 ----a-w- c:\windows\system32\drivers\monitor.sys
2010-04-07 14:27 . 2010-04-07 14:27 1060920 ----a-w- c:\windows\system32\drivers\ntfs.sys
2010-04-07 14:25 . 2010-04-07 14:25 374456 ----a-w- c:\windows\system32\mcupdate_GenuineIntel.dll
2010-04-07 14:25 . 2010-04-07 14:25 500736 ----a-w- c:\windows\system32\msdtcprx.dll
2010-04-07 14:25 . 2010-04-07 14:25 30208 ----a-w- c:\windows\system32\xolehlp.dll
2010-04-07 14:24 . 2010-04-07 14:24 156160 ----a-w- c:\windows\system32\wkssvc.dll
2010-04-07 14:23 . 2010-04-07 14:23 36352 ----a-w- c:\windows\system32\tsgqec.dll
2010-04-07 14:23 . 2010-04-07 14:23 1871872 ----a-w- c:\windows\system32\mstscax.dll
2010-04-07 14:23 . 2010-04-07 14:23 116736 ----a-w- c:\windows\system32\aaclient.dll
2010-04-07 14:21 . 2010-04-07 14:22 303616 ----a-w- c:\windows\system32\wmpeffects.dll
2010-04-07 14:19 . 2010-04-07 14:19 414208 ----a-w- c:\windows\system32\msscp.dll
2010-04-07 14:17 . 2010-04-07 14:17 356864 ----a-w- c:\windows\system32\MediaMetadataHandler.dll
2010-04-07 14:16 . 2010-04-07 14:16 392192 ----a-w- c:\windows\system32\FirewallAPI.dll
2010-04-07 14:16 . 2010-04-07 14:16 86016 ----a-w- c:\windows\system32\icfupgd.dll
2010-04-07 14:16 . 2010-04-07 14:16 63488 ----a-w- c:\windows\system32\drivers\mpsdrv.sys
2010-04-07 14:16 . 2010-04-07 14:16 396800 ----a-w- c:\windows\system32\MPSSVC.dll
2010-04-07 14:16 . 2010-04-07 14:16 16896 ----a-w- c:\windows\system32\wfapigp.dll
2010-04-07 14:16 . 2010-04-07 14:16 61952 ----a-w- c:\windows\system32\cmifw.dll

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-04-10 11:11 . 2006-12-05 05:22 86416 ----a-w- c:\windows\system32\perfc015.dat
2010-04-10 11:11 . 2006-12-05 05:22 535568 ----a-w- c:\windows\system32\perfh015.dat
2010-04-10 09:40 . 2010-04-10 09:40 56 ---ha-w- c:\programdata\ezsidmv.dat
2010-04-10 09:19 . 2010-04-07 15:01 66216 ----a-w- c:\users\User\AppData\Roaming\nvModes.dat
2010-04-09 14:11 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Defender
2010-04-09 14:06 . 2010-04-07 11:30 79008 ----a-w- c:\users\User\AppData\Local\GDIPFONTCACHEV1.DAT
2010-04-07 14:52 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Calendar
2010-04-07 14:52 . 2006-11-02 11:18 -------- d-----w- c:\program files\Windows Mail
2010-04-07 14:52 . 2006-11-02 12:37 -------- d-----w- c:\program files\Windows Sidebar
2010-04-07 14:52 . 2006-11-02 10:25 665600 ----a-w- c:\windows\inf\drvindex.dat
2010-04-07 14:46 . 2010-04-07 11:30 680 ----a-w- c:\users\User\AppData\Local\d3d9caps.dat
2010-04-07 14:04 . 2010-04-07 14:04 72704 ----a-w- c:\windows\system32\admparse.dll
2010-04-07 14:04 . 2010-04-07 14:04 832512 ----a-w- c:\windows\system32\wininet.dll
2010-04-07 14:04 . 2010-04-07 14:04 52736 ----a-w- c:\windows\AppPatch\iebrshim.dll
2010-04-07 14:04 . 2010-04-07 14:04 78336 ----a-w- c:\windows\system32\ieencode.dll
2010-04-07 14:04 . 2010-04-07 14:04 48128 ----a-w- c:\windows\system32\mshtmler.dll
2010-04-07 13:56 . 2010-04-07 13:56 40960 ----a-w- c:\windows\system32\srclient.dll
2010-04-07 12:58 . 2010-04-07 12:58 2560 ----a-w- c:\windows\AppPatch\AcRes.dll
2010-04-07 12:58 . 2010-04-07 12:58 537600 ----a-w- c:\windows\AppPatch\AcLayers.dll
2010-04-07 12:58 . 2010-04-07 12:58 449024 ----a-w- c:\windows\AppPatch\AcSpecfc.dll
2010-04-07 12:58 . 2010-04-07 12:58 2143744 ----a-w- c:\windows\AppPatch\AcGenral.dll
2010-04-07 12:58 . 2010-04-07 12:58 173056 ----a-w- c:\windows\AppPatch\AcXtrnal.dll
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Ulubione
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Szablony
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Pulpit
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Menu Start
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Dokumenty
2010-04-07 11:28 . 2010-04-07 11:28 -------- d-sh--we c:\programdata\Dane aplikacji
.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"Sidebar"="c:\program files\Windows Sidebar\sidebar.exe" [2010-04-07 1232896]
"ehTray.exe"="c:\windows\ehome\ehTray.exe" [2006-11-02 125440]
"Skype"="c:\program files\Skype\Phone\Skype.exe" [2010-04-06 26102056]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvSvc"="c:\windows\system32\nvsvc.dll" [2007-09-12 86016]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2007-09-12 8497696]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2007-09-12 81920]

[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"aux"=wdmaud.drv

[HKEY_LOCAL_MACHINE\software\microsoft\security center\Svc]
"AntiVirusOverride"=dword:00000001
"AntiSpywareOverride"=dword:00000001
"FirewallOverride"=dword:00000001

R3 cpuvis;cpuvis;c:\program files\My applications\cpuvis.sys [x]
R3 eamonm;eamonm;c:\windows\system32\DRIVERS\eamonm.sys [x]

.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://google.pl/
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
FF - ProfilePath - c:\users\User\AppData\Roaming\Mozilla\Firefox\Profiles\39gtp1rv.default\
FF - component: c:\program files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}\components\SkypeFfComponent.dll

---- FIREFOX - SPOSÓB POSTĘPOWANIA ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_colors", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.use_native_popup_windows", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.enable_click_image_resizing", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("accessibility.browsewithcaret_shortcut.enabled", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.high_water_mark", 32);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("javascript.options.mem.gc_frequency", 1600);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.auth.force-generic-ntlm", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("svg.smil.enabled", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("ui.trackpoint_hack.enabled", -1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.debug", false);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.agedWeight", 2);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.bucketSize", 1);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.maxTimeGroupings", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.timeGroupingSize", 604800);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.boundaryWeight", 25);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("browser.formfill.prefixWeight", 5);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("html5.enable", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.allow_unrestricted_renego_everywhere__temporarily_available_pref", true);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.renego_unrestricted_hosts", "");
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.treat_unsafe_negotiation_as_broken", false);
c:\program files\Mozilla Firefox\greprefs\security-prefs.js - pref("security.ssl.require_safe_negotiation", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.download.backgroundInterval", 600);
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("app.update.url.manual", "http://www.firefox.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox-branding.js - pref("browser.search.param.yahoo-fr-ja", "mozff");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.name", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("extensions.{972ce4c6-7e08-4474-a285-3208198ce6fd}.description", "chrome://browser/locale/browser.properties");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add", "addons.mozilla.org");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("xpinstall.whitelist.add.36", "getpersonas.com");
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("lightweightThemes.update.enabled", true);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.allTabs.previews", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.hide_infobar_for_outdated_plugin", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("plugins.update.notifyUser", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("toolbar.customization.usesheet", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.enable", false);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.max", 20);
c:\program files\Mozilla Firefox\defaults\pref\firefox.js - pref("browser.taskbar.previews.cachetime", 20);
.
- - - - USUNIĘTO PUSTE WPISY - - - -

SafeBoot-WinDefend



**************************************************************************

catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2010-04-10 16:03
Windows 6.0.6000 NTFS

skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki: 0

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings]
@Denied: (A) (Users)
@Denied: (A) (Everyone)
@Allowed: (B 1 2 3 4 5) (S-1-5-20)
"BlindDial"=dword:00000000
.
Czas ukończenia: 2010-04-10 16:06:14
ComboFix-quarantined-files.txt 2010-04-10 14:06

Przed: 93 178 437 632 bajtów wolnych
Po: 93 179 838 464 bajtów wolnych

- - End Of File - - 958D140F1C221DFC36701AD834501898
[/log]

Mateusz J.
komentarz
komentarz

Do notatnika wklej:
[code]
Folder::
c:\program files\My applications

Driver::
cpuvis
eamonm[/code]W notatniku zakladka Plik ==> Zapisz jako ==> zapisz pod nazwą[b] CFScript.txt[/b] i zapisz go w tym katalogu co ściągnięty i zapisany został [b]combofix[/b]
Na ikonę [b]ComboFix[/b] przeciągasz zrobiony plik [b]CFScript.txt[/b] Tak jak na obrazku:
[img]http://img212.imageshack.us/img212/740/cfscript10uc2su5.gif[/img]
Rozpocznie się usuwanie [b]i powstanie log , który pokazujesz na forum.[/b]

Następnie spróbuj zainstalować Eset.

krystian_db
komentarz
komentarz

zanim to zrobie, to chciałem zapytać, dlaczego w systemie, w plikach systemowcyh, tj.: w C utworzyły mi się jakieś zupełnie nie znane mi foldery, tzn: program Data, System Volume Information, oraz pliki, które maja wagę ok. 2 GB, o nazwach: hiberfil.sys i pagefile.sys.

Mateusz J.
komentarz
komentarz

One były wcześniej.
Tylko OTL spowodował włączenie pokazywania ukrytych plików i folderów.

Aby zniknęły:
Do notatnika wklej:
[code]Windows Registry Editor Version 5.00

[-HKEY_CURRENT_USER\software\microsoft\windows\currentversion\explorer\ mountpoints2]
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"SuperHidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"Hidden"=dword:00000001
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced]
"ShowSuperHidden"=dword:00000001
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\Hidden\SHOWALL]
"CheckedValue"=dword:00000001
[-HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ Advanced\Folder\SuperHidden\Policy\DontShowSuperHidden]
@=""[/code]Plik ==> Zapisz jako ==> Zmień rozszerzenie na Wszystkie pliki ==> Zapisz pod nazwą [b]FIX.REG[/b]
Uruchom utworzony plik [b]FIX.REG[/b] i potwierdź dodanie do Rejestru i zresetuj komputer.

krystian_db
komentarz
komentarz

zrobiłem to z tym rejestrem, natomiast to nie przyniosło żadnej poprawy...nie pisałem poprzednio, ale w katalogu użytkownika pokazały się też dziwne pliki, co więcej, są to jakieś skróty, ale po dwukliku, pokazuje się okno że nie ma dostępu...w tym katalogu pojawiły się następujące pliki: foldery: AppData, skrót: Cookies, Dane Aplikacji, Menu start, moje dokumenty, nethood, printhood, recent, sendto, szablony, ustawienia lokalne, a teraz pliki, podaje z rozszerzeniami:ntuser.dat, ntuser.dat.log1, ntuser.dat.log2, NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf , NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms , NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms, ntuser.ini i to wszystko, dkad to i dlaczego?? da sie tego jakos pozbyc??

Mateusz J.
komentarz
komentarz

To są prawidłowe pliki!
Tylko ukryte, a teraz masz włączenie ich pokazywanie.
W Moim komputerze daj opcje folderów => Widok i odznacz pokazywanie ukrytych plików i folderów.

krystian_db
komentarz
komentarz

ale wstyd:/ dzięki. a teraz zobacze czy ten plik cfscript pomoze czy nie z ta zapora.

  • 4 miesiące później...
rskl
komentarz
komentarz (edytowane)

`

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.