kamilek073 utworzono 1 września 2010 utworzono 1 września 2010 (edytowane) Proszę o sprawdzenie loga i przekazanie co mam dalej robic jesli cos wykryjecie. Bardzo muli mi sie net, dostawca powiedzial ze pewnei to wina jakiegos wirusa. Zaden antywirus nic nie wykryl, zrobilem skan combofixem. [log]ComboFix 10-08-31.02 - Kamilek&Misiek 2010-09-01 15:59:14.1.2 - x86 Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.2047.1499 [GMT 2:00] Uruchomiony z: c:\documents and settings\Kamilek&Misiek\Pulpit\ComboFix.exe AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0} . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . c:\windows\mirc.ini . ((((((((((((((((((((((((( Pliki utworzone od 2010-08-01 do 2010-09-01 ))))))))))))))))))))))))))))))) . 2010-09-01 12:52 . 2004-08-03 22:44 77312 -c--a-w- c:\windows\system32\dllcache\wam51.dll 2010-09-01 12:51 . 2004-08-03 21:00 20736 -c--a-w- c:\windows\system32\dllcache\ramdisk.sys 2010-09-01 12:50 . 2004-08-03 22:43 24064 -c--a-w- c:\windows\system32\dllcache\compfilt.dll 2010-09-01 12:49 . 2001-10-26 15:29 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe 2010-09-01 12:39 . 2001-10-26 15:29 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll 2010-09-01 12:39 . 2001-10-26 15:29 24661 ----a-w- c:\windows\system32\spxcoins.dll 2010-09-01 12:39 . 2001-10-26 15:29 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll 2010-09-01 12:39 . 2001-10-26 15:29 13312 ----a-w- c:\windows\system32\irclass.dll 2010-08-25 14:56 . 2010-08-25 14:56 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II 2010-08-21 17:06 . 2002-12-17 14:23 33340 ----a-w- c:\windows\system32\dbmsqlgc.dll 2010-08-21 17:06 . 2002-10-20 12:05 24576 ----a-w- c:\windows\system32\dbmsgnet.dll 2010-08-21 17:06 . 2010-08-21 17:06 -------- d-----w- c:\program files\Microsoft SQL Server 2010-08-21 17:05 . 2010-08-21 17:05 -------- d-----w- c:\program files\Vstplugins 2010-08-21 17:04 . 2010-08-21 17:04 -------- d-----w- c:\program files\Sony Setup 2010-08-05 19:41 . 2010-08-05 19:41 503808 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\msvcp71.dll 2010-08-05 19:41 . 2010-08-05 19:41 499712 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\jmc.dll 2010-08-05 19:41 . 2010-08-05 19:41 348160 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\msvcr71.dll 2010-08-05 19:41 . 2010-08-05 19:41 61440 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-2ba0e944-n\decora-sse.dll 2010-08-05 19:41 . 2010-08-05 19:41 12800 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-2ba0e944-n\decora-d3d.dll . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-09-01 13:17 . 2010-09-01 13:17 388096 ----a-r- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe 2010-09-01 12:55 . 2001-10-26 14:15 8060 ----a-w- c:\windows\system32\perfc015.dat 2010-09-01 12:55 . 2001-10-26 14:15 22296 ----a-w- c:\windows\system32\perfh015.dat 2010-09-01 12:47 . 2008-09-13 17:39 23016 ----a-w- c:\windows\system32\emptyregdb.dat 2010-08-29 19:31 . 2010-04-10 20:28 -------- d-----w- c:\program files\SopCast 2010-08-28 19:52 . 2010-05-07 20:18 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10 2010-08-27 16:47 . 2010-05-12 18:15 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Azureus 2010-08-25 14:37 . 2008-09-13 18:08 -------- d--h--w- c:\program files\InstallShield Installation Information 2010-08-21 17:06 . 2010-05-23 13:22 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sony 2010-08-21 17:05 . 2010-05-23 13:21 -------- d-----w- c:\program files\Sony 2010-08-20 23:26 . 2010-05-30 08:00 1074 ----a-w- c:\program files\Common Files\userInit.dll 2010-07-19 09:54 . 2010-07-19 09:43 -------- d-----w- c:\program files\Cheat Engine 2010-07-16 09:33 . 2010-07-16 09:33 503808 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\msvcp71.dll 2010-07-16 09:33 . 2010-07-16 09:33 499712 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\jmc.dll 2010-07-16 09:33 . 2010-07-16 09:33 348160 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\msvcr71.dll 2010-07-16 09:33 . 2010-07-16 09:33 -------- d-----w- c:\program files\Common Files\Java 2010-07-16 09:33 . 2010-07-16 09:33 61440 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-55b3aa36-n\decora-sse.dll 2010-07-16 09:33 . 2010-07-16 09:33 12800 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-55b3aa36-n\decora-d3d.dll 2010-07-16 09:33 . 2009-01-21 22:57 -------- d-----w- c:\program files\Java 2010-07-15 21:14 . 2010-07-15 21:16 874784 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\JRERunOnce.exe 2010-07-13 15:15 . 2008-09-13 19:04 -------- d-----w- c:\program files\BearShare 2010-06-22 02:36 . 2010-07-16 09:33 423656 ----a-w- c:\windows\system32\deployJava1.dll 2010-05-29 20:34 . 2010-05-29 20:34 27958 ----a-w- c:\program files\Common Files\logonInit.dll . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2007-04-03 165784] "Google Update"="c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" [2009-03-05 133104] "LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-10-16 2363392] "CreativeTaskScheduler"="c:\program files\Creative\Shared Files\CTSched.exe" [2006-11-17 53341] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13529088] "nwiz"="nwiz.exe" [2008-05-16 1630208] "WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-03 36352] "HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe" [2003-07-28 188416] "HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2003-06-25 49152] "HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-10-23 233472] "UVS11 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe" [2007-09-12 340136] "NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648] "VolPanel"="c:\program files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" [2008-08-27 233588] "Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760] "egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-11-16 2054360] "NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 86016] [HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360] c:\documents and settings\Kamilek&Misiek\Menu Start\Programy\Autostart\ Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664] c:\documents and settings\All Users\Menu Start\Programy\Autostart\ DualCoreCenter.lnk - c:\program files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe [2008-9-13 192512] [HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer] "NoAutoUpdate"= 1 (0x1) [HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List] "%windir%\\system32\\sessmgr.exe"= "%windir%\\Network Diagnostic\\xpnetdiag.exe"= "c:\\Program Files\\Gadu-Gadu\\gg.exe"= "c:\\Gry\\Gierki\\Soldat\\Soldat.exe"= "c:\\Gry\\Heroes3\\HEROES3.EXE"= "c:\\Gry\\Valve\\hl.exe"= "c:\\totalcmd\\TOTALCMD.EXE"= "c:\\WINDOWS\\system32\\PnkBstrA.exe"= "c:\\WINDOWS\\system32\\PnkBstrB.exe"= "c:\\Program Files\\Mozilla Firefox\\firefox.exe"= "c:\\Program Files\\Metin2_PL\\metin2.bin"= "c:\\GRY\\Football Manager 2010\\fm.exe"= "c:\\Gry\\Pro Evolution Soccer 2010\\pes2010.exe"= "c:\\Gry\\Steam\\SteamApps\\zoltymms\\condition zero\\hl.exe"= "c:\\Gry\\Steam\\SteamApps\\zoltymms\\deathmatch classic\\hl.exe"= "c:\\Gry\\Steam\\SteamApps\\zoltymms\\condition zero deleted scenes\\hl.exe"= "c:\\Program Files\\mIRC\\mirc.exe"= "c:\\WINDOWS\\system32\\dpvsetup.exe"= "c:\\Gry\\Steam\\Steam.exe"= "c:\\Program Files\\SopCast\\adv\\SopAdver.exe"= "c:\\Program Files\\SopCast\\SopCast.exe"= "c:\\Program Files\\Gadu-Gadu 10\\gg.exe"= "c:\\Program Files\\Vuze\\Azureus.exe"= "c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"= "c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\srcds.exe"= "c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\swarm.exe"= "c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\bin\\SDKLauncher.exe"= "c:\\Gry\\Bitwa o Śródziemie II\\game.dat"= "c:\\Gry\\Steam\\SteamApps\\zoltymms\\counter-strike\\hl.exe"= R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-11-16 108792] R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-11-16 96408] R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960] R3 DualCoreCenter;DualCoreCenter;c:\program files\MSI\DualCoreCenter\NTGLM7X.sys [2008-09-13 28160] R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol);c:\windows\system32\drivers\RMSPPPOE.SYS [2008-09-13 31424] R3 RushTopDevice2;RushTopDevice2;c:\program files\MSI\DualCoreCenter\RushTop.sys [2008-09-13 51200] S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2008-09-13 682232] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360] S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?] S3 skfilt;skfilt;c:\windows\system32\drivers\skfilt.SYS [2009-12-10 1670016] [HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] 2009-10-16 11:49 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe . Zawartość folderu 'Zaplanowane zadania' 2010-08-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job - c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 16:43] 2010-09-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job - c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 16:43] . . ------- Skan uzupełniający ------- . IE: E&ksport do programu Microsoft Excel - c:\progra~1\MI699F~1\OFFICE11\EXCEL.EXE/3000 IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000 FF - ProfilePath - c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\ FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/ FF - plugin: c:\documents and settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\npgg.2.dll FF - plugin: c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}\plugins\npOggX.dll FF - plugin: c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll FF - plugin: c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\npGoogleOneClick8.dll FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll FF - plugin: c:\program files\Mozilla Firefox\plugins\npOggX.dll ---- FIREFOX - SPOSÓB POSTĘPOWANIA ---- c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true); c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true); . ************************************************************************** skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: ************************************************************************** . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- [HKEY_USERS\S-1-5-21-1708537768-706699826-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*] "??"=hex:e3,bb,e4,6c,3f,7c,76,b7,f1,50,cd,a6,f2,2f,51,e0,17,1a,12,dd,b2,25,54, 9c,c0,7a,ae,fa,1c,b8,09,54,ad,06,9e,b6,63,3b,ba,35,6e,41,f9,8c,b8,4e,d3,c0,\ "??"=hex:df,7e,4b,dc,6e,57,6d,a4,c7,7a,b9,e1,ee,ae,69,33 [HKEY_USERS\S-1-5-21-1708537768-706699826-725345543-1003\Software\SecuROM\License information*] "datasecu"=hex:a0,b4,7b,29,26,9c,77,0a,5e,9b,2a,85,02,a1,dd,81,63,dd,6b,60,55, 70,bd,d8,c2,4c,59,3d,06,8c,d6,4c,c4,c1,db,0d,7f,a5,6e,d5,0d,73,2c,88,19,0a,\ "rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb . Czas ukończenia: 2010-09-01 16:03:18 ComboFix-quarantined-files.txt 2010-09-01 14:03 Przed: 10 808 127 488 bajtów wolnych Po: 10 774 167 552 bajtów wolnych WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe [boot loader] timeout=2 default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS [operating systems] c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons UnsupportedDebug="do not select this" /debug multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4 - - End Of File - - 6594EC325559846E63CC36A01CC6D8DA[/log]
Tomek01 komentarz 1 września 2010 komentarz 1 września 2010 Po pierwsze, używanie Combofix'a bez wyraźnego zalecenia, możesz sobie narobić szkód. Po drugie, przeczytaj regulamin wstawiania logów. Należy wstawiać je w tagi. Po trzecie, rzeczywiście są wirusy, dlatego proszę o te logi.
kamilek073 komentarz 1 września 2010 Autor komentarz 1 września 2010 (edytowane) log jest podany w poscie wyzej. pomoze ktos?
Tomek01 komentarz 2 września 2010 komentarz 2 września 2010 Ja widzę, że jest log z Combofix'a, widzę tam infekcję, dlatego też poprosiłem o logi które obowiązują na Naszym forum. OTL i RSIT. Wtedy będzie można kompletnie usunąć wirusy i upewnić się, że nie ma czegoś jeszcze. Log z Combofix'a nie pokazuje całego obrazu systemu.
kamilek073 komentarz 2 września 2010 Autor komentarz 2 września 2010 (edytowane) oto log z OTLa [log]OTL logfile created on: 2010-09-02 21:43:38 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 87,89 Gb Total Space | 10,11 Gb Free Space | 11,50% Space Free | Partition Type: NTFS Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MISIEK-F67C23CE Current User Name: Kamilek&Misiek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-06-24 21:42:20 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2008-08-27 19:19:20 | 000,233,588 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe PRC - [2008-08-04 01:02:20 | 000,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe PRC - [2007-10-14 16:04:20 | 020,836,352 | ---- | M] () -- C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe PRC - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe PRC - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe PRC - [2006-11-17 11:42:46 | 000,053,341 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2003-07-28 15:43:44 | 000,188,416 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe PRC - [2003-06-25 12:24:48 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe PRC - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-12-10 14:03:01 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service) SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService) SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service) SRV - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) SRV - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR) SRV - [2002-12-17 17:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTGLM7X.sys -- (SetupNTGLM7X) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTACCESS.sys -- (NTACCESS) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\install4\MSICPL.sys -- (MSICPL) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2008-12-21 17:44:28 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2008-12-21 17:44:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2008-09-13 20:40:36 | 000,682,232 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008-05-16 14:01:00 | 006,557,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-02-12 04:50:56 | 001,670,016 | R--- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\skfilt.SYS -- (skfilt) DRV - [2007-10-15 19:34:16 | 000,051,200 | ---- | M] (Your Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\RushTop.sys -- (RushTopDevice2) DRV - [2007-10-12 10:32:30 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-04-17 14:42:00 | 000,028,160 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- (DualCoreCenter) DRV - [2005-02-11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2004-08-04 00:54:52 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2003-06-09 03:44:32 | 000,113,840 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2003-06-09 03:44:22 | 000,494,384 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM) DRV - [2003-06-09 03:42:28 | 000,819,984 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k) DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol) DRV - [2002-09-09 19:54:06 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\ASNDIS5.sys -- (ASNDIS5) DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {eaf8a4ef-d221-45ca-9deb-d0934b45fa34}:1.3.0.3 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 4 FF - prefs.js..extensions.enabledItems: 9 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-21 13:10:35 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-21 13:10:35 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-02-10 16:04:51 | 000,000,000 | ---D | M] [2008-09-13 20:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Extensions [2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions [2010-08-18 11:51:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-07-04 13:26:02 | 000,000,000 | ---D | M] (OggX (powered by TIME S.A.)) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34} [2009-12-13 12:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com [2009-10-18 11:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\zrzuta.eu@gmail.com [2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-16 11:33:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-06-22 04:36:30 | 000,423,656 | ---- | M] (Oracle) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2009-01-28 20:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll [2010-06-24 22:40:16 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-06-24 22:40:16 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-06-24 22:40:16 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-06-24 22:40:16 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-06-24 22:40:16 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-06-24 22:40:16 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-09-01 16:02:34 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe (Hewlett-Packard) O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe (HP) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation) O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe (Creative Technology Ltd) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKCU..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd) O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe () O4 - Startup: C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office 2003\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office 2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.100 77.245.242.226 O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-09-13 19:42:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-09-02 21:42:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe [2010-09-02 13:25:17 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-09-01 15:57:23 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-09-01 15:53:44 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-09-01 15:53:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-09-01 15:53:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-09-01 15:53:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\ComboFix [2010-09-01 15:51:55 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-09-01 14:54:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-09-01 14:52:25 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010-09-01 14:52:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010-09-01 14:52:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010-09-01 14:52:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010-09-01 14:52:23 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2010-09-01 14:52:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2010-09-01 14:52:23 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010-09-01 14:52:23 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010-09-01 14:52:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2010-09-01 14:52:22 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2010-09-01 14:52:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2010-09-01 14:52:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2010-09-01 14:52:21 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010-09-01 14:52:21 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010-09-01 14:52:21 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010-09-01 14:52:21 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2010-09-01 14:52:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010-09-01 14:52:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010-09-01 14:52:16 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2010-09-01 14:52:16 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010-09-01 14:52:15 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010-09-01 14:52:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010-09-01 14:52:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2010-09-01 14:52:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010-09-01 14:52:14 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010-09-01 14:52:14 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010-09-01 14:52:14 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010-09-01 14:52:14 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010-09-01 14:52:14 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010-09-01 14:52:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2010-09-01 14:52:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2010-09-01 14:52:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2010-09-01 14:52:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2010-09-01 14:52:11 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010-09-01 14:52:11 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010-09-01 14:52:10 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2010-09-01 14:52:10 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2010-09-01 14:52:10 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2010-09-01 14:52:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010-09-01 14:52:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2010-09-01 14:52:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010-09-01 14:52:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2010-09-01 14:52:09 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2010-09-01 14:52:09 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2010-09-01 14:52:09 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2010-09-01 14:52:09 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010-09-01 14:52:09 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010-09-01 14:52:08 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2010-09-01 14:52:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010-09-01 14:52:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010-09-01 14:52:08 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010-09-01 14:52:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010-09-01 14:52:03 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010-09-01 14:52:03 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-09-01 14:52:02 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-09-01 14:52:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2010-09-01 14:52:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010-09-01 14:52:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2010-09-01 14:52:00 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010-09-01 14:52:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010-09-01 14:51:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010-09-01 14:51:59 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2010-09-01 14:51:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010-09-01 14:51:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010-09-01 14:51:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2010-09-01 14:51:57 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010-09-01 14:51:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010-09-01 14:51:57 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010-09-01 14:51:57 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010-09-01 14:51:57 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010-09-01 14:51:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010-09-01 14:51:56 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010-09-01 14:51:56 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010-09-01 14:51:56 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2010-09-01 14:51:55 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010-09-01 14:51:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2010-09-01 14:51:55 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010-09-01 14:51:55 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010-09-01 14:51:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010-09-01 14:51:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010-09-01 14:51:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2010-09-01 14:51:52 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2010-09-01 14:51:50 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010-09-01 14:51:49 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2010-09-01 14:51:47 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010-09-01 14:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010-09-01 14:51:41 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010-09-01 14:51:41 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010-09-01 14:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2010-09-01 14:51:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2010-09-01 14:51:40 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010-09-01 14:51:40 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2010-09-01 14:51:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2010-09-01 14:51:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2010-09-01 14:51:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2010-09-01 14:51:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2010-09-01 14:51:39 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2010-09-01 14:51:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2010-09-01 14:51:36 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2010-09-01 14:51:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010-09-01 14:51:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010-09-01 14:51:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010-09-01 14:51:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010-09-01 14:51:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2010-09-01 14:51:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010-09-01 14:51:33 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2010-09-01 14:51:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010-09-01 14:51:33 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2010-09-01 14:51:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010-09-01 14:51:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010-09-01 14:51:32 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2010-09-01 14:51:31 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2010-09-01 14:51:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2010-09-01 14:51:31 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2010-09-01 14:51:30 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010-09-01 14:51:30 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010-09-01 14:51:30 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010-09-01 14:51:30 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010-09-01 14:51:30 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010-09-01 14:51:30 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010-09-01 14:51:30 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010-09-01 14:51:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010-09-01 14:51:30 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010-09-01 14:51:29 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010-09-01 14:51:29 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010-09-01 14:51:29 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010-09-01 14:51:29 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010-09-01 14:51:29 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010-09-01 14:51:29 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010-09-01 14:51:29 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010-09-01 14:51:28 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010-09-01 14:51:28 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010-09-01 14:51:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010-09-01 14:51:28 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010-09-01 14:51:28 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010-09-01 14:51:28 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010-09-01 14:51:28 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2010-09-01 14:51:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010-09-01 14:51:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2010-09-01 14:51:28 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2010-09-01 14:51:27 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2010-09-01 14:51:27 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2010-09-01 14:51:27 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2010-09-01 14:51:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2010-09-01 14:51:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2010-09-01 14:51:23 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010-09-01 14:51:14 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010-09-01 14:51:14 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2010-09-01 14:51:14 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2010-09-01 14:51:14 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2010-09-01 14:51:13 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2010-09-01 14:51:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010-09-01 14:51:11 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2010-09-01 14:51:10 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2010-09-01 14:51:10 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2010-09-01 14:51:10 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2010-09-01 14:51:10 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2010-09-01 14:51:10 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2010-09-01 14:51:10 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2010-09-01 14:51:10 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2010-09-01 14:51:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2010-09-01 14:51:09 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2010-09-01 14:51:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2010-09-01 14:51:09 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010-09-01 14:51:09 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010-09-01 14:51:09 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2010-09-01 14:51:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2010-09-01 14:51:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010-09-01 14:51:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2010-09-01 14:51:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010-09-01 14:51:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2010-09-01 14:51:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2010-09-01 14:51:08 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2010-09-01 14:51:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2010-09-01 14:51:08 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2010-09-01 14:51:08 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2010-09-01 14:51:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010-09-01 14:51:07 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010-09-01 14:51:07 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010-09-01 14:51:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2010-09-01 14:51:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2010-09-01 14:51:06 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2010-09-01 14:51:06 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2010-09-01 14:51:06 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010-09-01 14:51:06 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010-09-01 14:51:06 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010-09-01 14:51:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2010-09-01 14:51:06 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010-09-01 14:51:02 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010-09-01 14:51:01 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2010-09-01 14:51:00 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010-09-01 14:51:00 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2010-09-01 14:51:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2010-09-01 14:51:00 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2010-09-01 14:51:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010-09-01 14:50:59 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2010-09-01 14:50:58 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010-09-01 14:50:58 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010-09-01 14:50:58 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010-09-01 14:50:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010-09-01 14:50:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010-09-01 14:50:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010-09-01 14:50:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010-09-01 14:50:57 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010-09-01 14:50:57 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010-09-01 14:50:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010-09-01 14:50:57 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010-09-01 14:50:57 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010-09-01 14:50:56 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2010-09-01 14:50:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-09-01 14:50:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010-09-01 14:50:56 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010-09-01 14:50:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2010-09-01 14:50:50 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2010-09-01 14:50:44 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2010-09-01 14:50:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2010-09-01 14:50:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2010-09-01 14:50:43 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2010-09-01 14:50:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2010-09-01 14:50:43 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2010-09-01 14:50:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2010-09-01 14:50:38 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2010-09-01 14:50:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2010-09-01 14:50:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010-09-01 14:50:35 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2010-09-01 14:50:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010-09-01 14:50:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2010-09-01 14:50:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2010-09-01 14:50:34 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2010-09-01 14:50:34 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2010-09-01 14:50:30 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2010-09-01 14:50:30 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2010-09-01 14:50:30 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2010-09-01 14:50:30 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2010-09-01 14:50:30 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2010-09-01 14:50:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2010-09-01 14:50:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2010-09-01 14:50:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2010-09-01 14:50:29 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2010-09-01 14:50:29 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010-09-01 14:50:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2010-09-01 14:50:29 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2010-09-01 14:50:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2010-09-01 14:50:29 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2010-09-01 14:50:29 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2010-09-01 14:50:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2010-09-01 14:50:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2010-09-01 14:50:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2010-09-01 14:50:28 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2010-09-01 14:50:28 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2010-09-01 14:50:28 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2010-09-01 14:50:28 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2010-09-01 14:50:28 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2010-09-01 14:50:28 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2010-09-01 14:50:28 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2010-09-01 14:50:28 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2010-09-01 14:50:28 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2010-09-01 14:50:28 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2010-09-01 14:50:28 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2010-09-01 14:50:27 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2010-09-01 14:50:27 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2010-09-01 14:50:27 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2010-09-01 14:50:27 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2010-09-01 14:50:27 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2010-09-01 14:50:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2010-09-01 14:50:26 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2010-09-01 14:50:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2010-09-01 14:50:26 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2010-09-01 14:50:25 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2010-09-01 14:49:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010-08-27 22:20:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kamilek&Misiek\Recent [2010-08-26 20:19:20 | 002,273,448 | ---- | C] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe [2010-08-25 16:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2010-08-21 19:06:38 | 000,033,340 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsqlgc.dll [2010-08-21 19:06:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsgnet.dll [2010-08-21 19:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server [2010-08-21 19:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\Vstplugins [2010-08-21 19:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup [2010-08-21 18:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Gówno [2010-08-19 19:33:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HENIEK [2010-08-16 17:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\AŁDI SAMOCHUD HAHAHA [2010-08-06 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Wakacje [2008-09-13 20:06:30 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe [2010-09-02 21:13:41 | 000,181,020 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-09-02 21:13:35 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-09-02 21:13:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-09-02 21:13:30 | 2146,742,272 | -HS- | M] () -- C:\hiberfil.sys [2010-09-02 20:55:45 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc [2010-09-02 20:47:00 | 000,001,168 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job [2010-09-02 19:15:53 | 011,272,192 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\NTUSER.DAT [2010-09-02 19:15:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx [2010-09-02 19:15:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx [2010-09-02 19:15:47 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Kamilek&Misiek\ntuser.ini [2010-09-02 16:28:35 | 000,002,461 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk [2010-09-02 13:55:33 | 000,000,170 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin [2010-09-01 21:47:00 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job [2010-09-01 18:33:57 | 000,203,815 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg [2010-09-01 18:32:49 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Microsoft Office Word 2003.lnk [2010-09-01 18:31:43 | 000,099,968 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-09-01 16:02:38 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-09-01 16:02:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010-09-01 15:57:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2010-09-01 15:49:46 | 003,830,025 | R--- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe [2010-09-01 14:56:07 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-09-01 14:55:18 | 000,364,114 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-09-01 14:55:18 | 000,292,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-09-01 14:55:18 | 000,034,488 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-09-01 14:55:18 | 000,022,296 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-09-01 14:55:18 | 000,008,060 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-09-01 14:54:12 | 000,345,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-09-01 14:52:59 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-01 14:50:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-09-01 14:50:09 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-09-01 14:50:09 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-09-01 14:49:59 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-09-01 14:49:07 | 000,000,661 | ---- | M] () -- C:\WINDOWS\win.ini [2010-09-01 14:47:55 | 000,023,016 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-09-01 14:46:37 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010-08-31 22:40:21 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list motyw. Jarek.doc [2010-08-31 21:50:21 | 000,001,985 | ---- | M] () -- C:\WINDOWS\setupapi.old [2010-08-31 20:15:57 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk [2010-08-31 17:48:18 | 000,024,064 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc [2010-08-31 14:06:06 | 000,016,462 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt [2010-08-31 14:06:06 | 000,002,952 | ---- | M] () -- C:\WINDOWS\bestplayer.ini [2010-08-31 14:06:06 | 000,000,112 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp [2010-08-29 21:31:42 | 000,000,677 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk [2010-08-29 20:51:57 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp [2010-08-29 20:05:30 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp [2010-08-28 22:26:59 | 000,351,232 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp [2010-08-26 20:19:59 | 002,273,448 | ---- | M] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe [2010-08-25 20:58:17 | 007,435,769 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2 [2010-08-25 16:49:48 | 000,001,569 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk [2010-08-21 18:49:37 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk [2010-08-21 01:26:36 | 000,001,074 | ---- | M] () -- C:\Program Files\Common Files\userInit.dll [2010-08-18 19:04:40 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc [2010-08-17 16:53:24 | 000,081,193 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid [2010-08-16 00:27:42 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3 [2010-08-13 12:41:39 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-08-04 14:26:56 | 000,128,005 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Michał fotka.jpg [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-09-02 20:55:45 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc [2010-09-02 13:55:33 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin [2010-09-01 18:33:57 | 000,203,815 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg [2010-09-01 15:57:27 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010-09-01 15:57:25 | 000,262,400 | RHS- | C] () -- C:\cmldr [2010-09-01 15:53:44 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-09-01 15:53:44 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-09-01 15:53:44 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-09-01 15:53:44 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-09-01 15:53:44 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-09-01 15:49:13 | 003,830,025 | R--- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe [2010-09-01 15:17:05 | 000,002,461 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk [2010-09-01 14:52:29 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-09-01 14:51:58 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-09-01 14:51:57 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-09-01 14:51:56 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-09-01 14:51:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-09-01 14:51:37 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-09-01 14:51:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-09-01 14:51:29 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-09-01 14:51:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-09-01 14:51:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-09-01 14:51:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-09-01 14:51:08 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-09-01 14:50:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-09-01 14:50:54 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-09-01 14:50:54 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-09-01 14:50:54 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-09-01 14:50:53 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-09-01 14:50:53 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-09-01 14:50:53 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-09-01 14:50:53 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-09-01 14:50:53 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-09-01 14:50:52 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-09-01 14:50:51 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-09-01 14:50:51 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-09-01 14:50:51 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-09-01 14:50:51 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-09-01 14:50:51 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-09-01 14:49:21 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-09-01 14:43:14 | 000,186,407 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb [2010-09-01 14:39:24 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-09-01 14:39:24 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-09-01 14:39:24 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-09-01 14:39:24 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-09-01 14:39:24 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-09-01 14:39:24 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-09-01 14:39:24 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-09-01 14:39:24 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-09-01 14:39:24 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-09-01 14:39:24 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-09-01 14:39:24 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-09-01 14:39:24 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-09-01 14:39:24 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-09-01 14:39:23 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-09-01 14:39:23 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-08-31 17:48:17 | 000,024,064 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc [2010-08-30 13:24:39 | 000,081,193 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid [2010-08-29 21:31:42 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk [2010-08-29 20:51:57 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp [2010-08-29 20:05:29 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp [2010-08-28 21:52:45 | 000,351,232 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp [2010-08-28 20:08:10 | 000,001,985 | ---- | C] () -- C:\WINDOWS\setupapi.old [2010-08-26 20:20:53 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk [2010-08-25 20:57:17 | 007,435,769 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2 [2010-08-25 16:49:48 | 000,001,569 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk [2010-08-18 19:04:39 | 000,077,312 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc [2010-08-16 00:27:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3 [2010-08-14 18:12:55 | 000,002,380 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk [2010-08-04 14:26:56 | 000,128,005 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Michał fotka.jpg [2010-07-19 11:43:41 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2010-05-30 10:00:36 | 000,001,074 | ---- | C] () -- C:\Program Files\Common Files\userInit.dll [2010-05-29 22:34:08 | 000,027,958 | ---- | C] () -- C:\Program Files\Common Files\logonInit.dll [2009-12-10 14:04:55 | 000,025,199 | R--- | C] () -- C:\WINDOWS\System32\xfisk.ini [2009-12-10 14:04:55 | 000,000,052 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini [2009-12-10 14:04:49 | 000,151,040 | R--- | C] () -- C:\WINDOWS\System32\KSXPPI32.dll [2009-10-24 20:16:02 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2009-10-24 20:16:02 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2009-10-24 20:16:02 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2009-10-24 20:16:02 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2009-07-23 15:37:47 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Smiley.ico [2009-07-18 15:12:58 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PnkBstrK.sys [2009-02-25 09:05:32 | 000,032,562 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpit [2009-02-25 09:05:32 | 000,000,176 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpite [2009-02-08 15:47:37 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll [2009-01-22 20:19:41 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pit2007.ini [2009-01-22 20:19:40 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pit2008.ini [2008-12-21 21:17:33 | 000,007,558 | ---- | C] () -- C:\WINDOWS\hpdj5100.ini [2008-12-21 17:44:28 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2008-12-21 17:44:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2008-12-10 20:16:58 | 001,572,608 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2008-11-09 03:51:29 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008-10-22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2008-10-17 17:28:58 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-09-17 08:36:55 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2008-09-14 17:54:50 | 000,090,112 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-09-14 17:51:15 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-09-13 21:02:51 | 000,002,952 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2008-09-13 20:56:04 | 000,000,478 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini [2008-09-13 20:44:22 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-09-13 20:44:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2008-09-13 20:44:17 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-09-13 20:44:17 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-09-13 20:44:17 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-09-13 20:44:11 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-09-13 20:44:11 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-09-13 19:58:52 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll [2008-05-16 14:01:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-05-16 14:01:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-05-16 14:01:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-05-16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-05-16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2007-03-26 10:45:18 | 000,071,208 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll [2007-02-20 14:59:08 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-02-20 14:59:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2006-04-19 16:19:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2005-08-30 01:00:00 | 000,781,312 | ---- | C] () -- C:\WINDOWS\System32\RGSS102J.dll [2005-08-30 01:00:00 | 000,778,752 | ---- | C] () -- C:\WINDOWS\System32\RGSS102E.dll [2005-08-30 01:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll [2004-08-04 02:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2002-03-17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B < End of report >[/log] a tutaj log RSIT [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Kamilek&Misiek at 2010-09-02 21:52:35 Microsoft Windows XP Professional Dodatek Service Pack 2 System drive C: has 10 GB (11%) free of 90 GB Total RAM: 2047 MB (69% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 21:52:37, on 2010-09-02 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files\Creative\Shared Files\CTSched.exe C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe C:\Program Files\Trend Micro\HijackThis\Kamilek&Misiek.exe R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7403 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-22 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088] "nwiz"=nwiz.exe /install [] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-04 36352] "HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [2003-07-28 188416] "HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2003-06-25 49152] "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-10-23 233472] "UVS11 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-09-12 340136] "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648] "VolPanel"=C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe [2008-08-27 233588] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-16 86016] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-04-04 165784] "Google Update"=C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 133104] "LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-10-16 2363392] "CreativeTaskScheduler"=C:\Program Files\Creative\Shared Files\CTSched.exe [2006-11-17 53341] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart DualCoreCenter.lnk - C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoAutoUpdate"=1 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveAutoRun"=67108863 "NoDriveTypeAutoRun"=323 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\Gry\Gierki\Soldat\Soldat.exe"="C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat" "C:\Gry\Heroes3\HEROES3.EXE"="C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III" "C:\Gry\Valve\hl.exe"="C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher" "C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows" "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2" "C:\GRY\Football Manager 2010\fm.exe"="C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010" "C:\Gry\Pro Evolution Soccer 2010\pes2010.exe"="C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010" "C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher" "C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher" "C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897" "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver" "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze" "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)" "C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server" "C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm" "C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK" "C:\Gry\Bitwa o Śródziemie II\game.dat"="C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II" "C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-09-02 21:52:35 ----D---- C:\rsit 2010-09-02 15:38:13 ----RA---- C:\WINDOWS\system32\tmp14.tmp 2010-09-02 15:38:13 ----RA---- C:\WINDOWS\system32\tmp13.tmp 2010-09-02 13:25:17 ----SHD---- C:\RECYCLER 2010-09-01 16:32:31 ----ASH---- C:\pagefile.sys 2010-09-01 16:03:18 ----A---- C:\ComboFix.txt 2010-09-01 15:57:27 ----A---- C:\Boot.bak 2010-09-01 15:57:23 ----RASHD---- C:\cmdcons 2010-09-01 15:53:44 ----A---- C:\WINDOWS\zip.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWXCACLS.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWSC.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWREG.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\sed.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\PEV.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\NIRCMD.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\MBR.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\grep.exe 2010-09-01 15:53:40 ----D---- C:\WINDOWS\ERDNT 2010-09-01 15:53:40 ----D---- C:\ComboFix 2010-09-01 15:51:55 ----D---- C:\Qoobox 2010-09-01 14:54:37 ----D---- C:\WINDOWS\Prefetch 2010-09-01 14:50:04 ----A---- C:\WINDOWS\OEWABLog.txt 2010-09-01 14:49:21 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\irclass.dll 2010-09-01 14:39:21 ----RA---- C:\WINDOWS\SET5B.tmp 2010-09-01 14:39:19 ----RA---- C:\WINDOWS\SET4F.tmp 2010-09-01 14:39:18 ----RA---- C:\WINDOWS\SET4C.tmp 2010-09-01 14:38:43 ----A---- C:\WINDOWS\setuplog.txt 2010-08-25 16:56:18 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II 2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsqlgc.dll 2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsgnet.dll 2010-08-21 19:06:19 ----D---- C:\Program Files\Microsoft SQL Server 2010-08-21 19:05:27 ----D---- C:\Program Files\Vstplugins 2010-08-21 19:04:31 ----D---- C:\Program Files\Sony Setup ======List of files/folders modified in the last 1 months====== 2010-09-02 21:52:13 ----D---- C:\WINDOWS\Temp 2010-09-02 21:46:20 ----D---- C:\Program Files\Mozilla Firefox 2010-09-02 21:41:40 ----D---- C:\WINDOWS\system32\CatRoot2 2010-09-02 20:50:18 ----D---- C:\WINDOWS\system32 2010-09-02 19:15:49 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-09-02 15:37:49 ----HD---- C:\WINDOWS\inf 2010-09-01 16:37:10 ----D---- C:\WINDOWS\system32\Setup 2010-09-01 16:37:01 ----D---- C:\WINDOWS\system32\usmt 2010-09-01 16:36:52 ----D---- C:\WINDOWS\ehome 2010-09-01 16:36:51 ----D---- C:\WINDOWS\ime 2010-09-01 16:36:50 ----RSD---- C:\WINDOWS\Fonts 2010-09-01 16:36:50 ----D---- C:\WINDOWS\Media 2010-09-01 16:36:38 ----D---- C:\WINDOWS\PeerNet 2010-09-01 16:36:23 ----D---- C:\WINDOWS\system32\npp 2010-09-01 16:36:17 ----D---- C:\WINDOWS\msagent 2010-09-01 16:34:24 ----D---- C:\WINDOWS\system32\1045 2010-09-01 16:34:18 ----D---- C:\WINDOWS\twain_32 2010-09-01 16:34:07 ----D---- C:\WINDOWS\system32\icsxml 2010-09-01 16:33:44 ----D---- C:\WINDOWS\system32\ias 2010-09-01 16:33:38 ----D---- C:\WINDOWS\system32\1033 2010-09-01 16:32:31 ----D---- C:\WINDOWS\WinSxS 2010-09-01 16:32:31 ----D---- C:\WINDOWS\Driver Cache 2010-09-01 16:25:41 ----D---- C:\Program Files\Gadu-Gadu 10 2010-09-01 16:02:38 ----D---- C:\WINDOWS 2010-09-01 16:02:38 ----A---- C:\WINDOWS\system.ini 2010-09-01 16:02:34 ----D---- C:\WINDOWS\system32\drivers\etc 2010-09-01 16:00:47 ----D---- C:\WINDOWS\system32\drivers 2010-09-01 16:00:47 ----D---- C:\WINDOWS\AppPatch 2010-09-01 16:00:43 ----D---- C:\Program Files\Common Files 2010-09-01 15:57:27 ----RASH---- C:\boot.ini 2010-09-01 15:27:15 ----D---- C:\WINDOWS\security 2010-09-01 15:17:06 ----SHD---- C:\WINDOWS\Installer 2010-09-01 14:57:08 ----SHD---- C:\System Volume Information 2010-09-01 14:57:08 ----D---- C:\WINDOWS\system32\Restore 2010-09-01 14:56:54 ----D---- C:\WINDOWS\Registration 2010-09-01 14:55:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\inetsrv 2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\config 2010-09-01 14:54:09 ----D---- C:\WINDOWS\nview 2010-09-01 14:54:09 ----D---- C:\WINDOWS\Help 2010-09-01 14:52:29 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-09-01 14:49:59 ----A---- C:\WINDOWS\ODBCINST.INI 2010-09-01 14:49:45 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2010-09-01 14:49:23 ----RD---- C:\WINDOWS\Web 2010-09-01 14:49:23 ----RD---- C:\Program Files 2010-09-01 14:49:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-09-01 14:49:07 ----A---- C:\WINDOWS\win.ini 2010-09-01 14:49:02 ----D---- C:\WINDOWS\system32\oobe 2010-09-01 14:49:01 ----D---- C:\WINDOWS\srchasst 2010-09-01 14:48:58 ----D---- C:\Program Files\Windows Media Player 2010-09-01 14:48:53 ----D---- C:\Program Files\Movie Maker 2010-09-01 14:48:44 ----D---- C:\Program Files\NetMeeting 2010-09-01 14:48:41 ----D---- C:\Program Files\Outlook Express 2010-09-01 14:48:40 ----D---- C:\Program Files\Common Files\System 2010-09-01 14:48:29 ----D---- C:\Program Files\Internet Explorer 2010-09-01 14:47:57 ----D---- C:\WINDOWS\system32\Com 2010-09-01 14:47:33 ----D---- C:\WINDOWS\system32\wbem 2010-09-01 14:47:30 ----D---- C:\Program Files\Windows NT 2010-09-01 14:39:35 ----D---- C:\WINDOWS\system 2010-09-01 14:39:26 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-09-01 14:39:22 ----D---- C:\WINDOWS\system32\CatRoot 2010-08-31 14:06:06 ----A---- C:\WINDOWS\bestplayer.ini 2010-08-29 21:31:44 ----D---- C:\Program Files\SopCast 2010-08-28 21:52:03 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10 2010-08-27 18:47:58 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Azureus 2010-08-25 16:49:10 ----D---- C:\WINDOWS\system32\DirectX 2010-08-25 16:42:10 ----D---- C:\Gry 2010-08-25 16:37:56 ----HD---- C:\Program Files\InstallShield Installation Information 2010-08-23 12:18:38 ----D---- C:\WINDOWS\Minidump 2010-08-21 19:06:02 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Sony 2010-08-21 19:06:01 ----RSD---- C:\WINDOWS\assembly 2010-08-21 19:05:12 ----D---- C:\Program Files\Sony 2010-08-21 18:34:04 ----D---- C:\Misiek 2010-08-21 01:26:36 ----A---- C:\Program Files\Common Files\userInit.dll 2010-08-13 12:41:39 ----A---- C:\WINDOWS\NeroDigital.ini ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-09-13 20747] R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-12-21 278984] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520] R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-12-21 25416] R3 BCM43XX;ASUS 802.11 sterownik sieciowego adaptera; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712] R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2003-06-09 494384] R3 ctljystk;Port gier dla karty Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712] R3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys [] R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2003-06-09 819984] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408] R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2003-06-09 113840] R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol); C:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS [2002-10-03 31424] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-12 94592] R3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\DualCoreCenter\RushTop.sys [] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480] S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-09-13 682232] S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848] S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS [] S3 catchme;catchme; \??\C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys [] S3 GMSIPCI;GMSIPCI; \??\G:\INSTALL\GMSIPCI.SYS [] S3 MSICPL;MSICPL; \??\G:\install4\MSICPL.sys [] S3 NTACCESS;NTACCESS; \??\G:\NTACCESS.sys [] S3 SetupNTGLM7X;SetupNTGLM7X; \??\G:\NTGLM7X.sys [] S3 skfilt;skfilt; C:\WINDOWS\system32\drivers\skfilt.sys [2008-02-12 1670016] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2005-01-28 18944] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168] R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-04-30 417792] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-22 153376] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728] R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-18 66872] R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-18 107832] R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-01-02 72704] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376] S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-05 774144] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872] S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-01-02 74656] S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880] -----------------EOF----------------- [/log] OTL extras [log]OTL Extras logfile created on: 2010-09-02 21:43:38 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 87,89 Gb Total Space | 10,11 Gb Free Space | 11,50% Space Free | Partition Type: NTFS Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MISIEK-F67C23CE Current User Name: Kamilek&Misiek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office 2003\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.) "C:\Gry\Gierki\Soldat\Soldat.exe" = C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat -- (Michal Marcinkowski) "C:\Gry\Heroes3\HEROES3.EXE" = C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III -- (The 3DO Company) "C:\Gry\Valve\hl.exe" = C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) "C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation) "C:\Program Files\Metin2_PL\metin2.bin" = C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2 -- () "C:\GRY\Football Manager 2010\fm.exe" = C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010 -- (Sports Interactive) "C:\Gry\Pro Evolution Soccer 2010\pes2010.exe" = C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.) "C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) "C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) "C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher -- (Valve) "C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "C:\Gry\Steam\Steam.exe" = C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897 -- (Valve Corporation) "C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com) "C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.) "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- () "C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server -- () "C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm -- () "C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK -- () "C:\Gry\Bitwa o Śródziemie II\game.dat" = C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II -- (Electronic Arts Inc.) "C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM) "{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery "{10CCF16B-F1C9-4B24-9570-B4CCEE42392D}" = LightScribe System Software "{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0 "{15C165F1-1DAE-4476-AFB6-8723729B41E7}" = hp deskjet 5100 "{1871FE54-36AA-478F-B374-A46BA54474CC}" = ESET NOD32 Antivirus "{1A4E47DC-6701-4A85-AA16-C1F99A44598C}" = Spellforce 2 - Czas Mrocznych Wojen "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{236BB7C4-4419-42FD-0415-1E257A25E34D}" = Adobe Photoshop CS2 "{251C3815-7A55-4607-A82D-C3B98F0FBAB8}" = Sony Vegas 7.0 "{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 21 "{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010 "{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = Bitwa o Śródziemie™ II "{2B04D44F-1D1B-4E0E-8431-D04F87C21045}" = Nero 7 Ultra Edition "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™ "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{4ED7D297-58F7-45C3-A9BA-A7CD6FA0D373}_is1" = SureThing CD Labeler LightScribe Trial 5 "{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV "{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable "{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard "{5B3A354B-C059-4861-A85B-CA46F1089E15}" = Creative USB Headsets "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0 "{7197F874-B0E0-4A73-A880-7E712F4D0EB7}}_is1" = Uninstall KnightOnline "{71A41426-C7A4-4DCF-A9ED-C5B4B105ED1D}" = Sony Media Manager 2.2 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com "{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0 "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{7B31DF8A-8B77-497F-8180-E710A01635F1}" = Warlords IV "{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation "{82D9302E-F209-4805-B548-52087047483A}" = Python 2.4 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{85EBB283-65AF-4C53-9EBE-7C0A232762F7}" = AGEIA PhysX v7.03.21 "{8874FD36-7C9D-4573-8956-E368D6753D90}" = Worms 3D "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8EDBA74D-0686-4C99-BFDD-F894678E5101}" = Adobe Common File Installer "{8F722FA9-B994-4C9B-B292-FD32D6206EDF}" = ASUS WLAN Card Utilities/Driver "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90170415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003 "{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6 "{AC76BA86-7AD7-1045-7B44-A93000000001}" = Adobe Reader 9.3.3 - Polish "{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9 "{B74D4E10-6884-0000-0000-000000000101}" = Adobe Bridge 1.0 "{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation "{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0 "{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM) "{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR) "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{E9787678-119F-4D52-B551-6739B2B22101}" = Adobe Help Center 1.0 "{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "8461-7759-5462-8226" = Vuze "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0415-1E257A25E34D}" = Adobe Photoshop CS2 "Adobe Shockwave Player" = Adobe Shockwave Player "Alex Gordon_is1" = Alex Gordon "Ashampoo Magical Optimizer" = Ashampoo Magical Optimizer "CCleaner" = CCleaner (remove only) "CDex" = CDex extraction audio "Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1 "Creative Software AutoUpdate" = Creative Software AutoUpdate "CWK" = CWK (Czasowy Wyłącznik Komputera) "dBpowerAMP Music Converter" = dBpowerAMP Music Converter "DualCoreCenter_is1" = DualCoreCenter "Dzielenie i łączenie plików_is1" = Dzielenie i łączenie plików v1.2.2 "Egzamin gimnazjalny 2009" = Egzamin gimnazjalny 2009 1.0 "Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni)" = Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni) "Football Manager 2010" = Football Manager 2010 "FormularzeVZM_is1" = Formularze VZM-1 podatki.pl "Fraps" = Fraps "Gadu-Gadu" = Gadu-Gadu 7.7 "Gadu-Gadu 10" = Gadu-Gadu 10 "Gimnazjum klasa 2 - Puls życia" = Gimnazjum klasa 2 - Puls życia "GoldWave v5.10" = GoldWave v5.10 "Heroes of Might and Magic® III" = Heroes of Might and Magic® III "HijackThis" = HijackThis 2.0.2 "HyperCam 2" = HyperCam 2 "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11 "ipla" = ipla 2.1.3 "IrfanView" = IrfanView (remove only) "IVONA - syntezator mowy, wersja rehabilitacyjna" = IVONA - syntezator mowy, wersja rehabilitacyjna "KLiteCodecPack_is1" = K-Lite Codec Pack 4.1.7 (Full) "Little Fighter 2.5 - v2.0" = Little Fighter 2.5 - v2.0 "MegaTrainer XL_is1" = MegaTrainer XL V1.5.5.5-Beta "Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0 "Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0 "mIRC" = mIRC "Mozilla Firefox (3.5.11)" = Mozilla Firefox (3.5.11) "NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2 "nLite_is1" = nLite 1.4.9.1 "NVIDIA Drivers" = NVIDIA Drivers "OpenAL" = OpenAL "Otwarte Drzwi_is1" = Otwarte Drzwi - podręcznik multimedialny wersja 1.0 "PhotoScape" = PhotoScape "PIT 2009 z Gazetą Wyborczą_is1" = PIT 2009 z Gazetą Wyborczą ver. 6.0.1.0 "PITy2008_is1" = PITy2008 ver. 5.0.1.1 "Program Pit 2008 - rozliczenie roczne podatku dochodowego_is1" = Program Pit 2008 - wersja 2.0.0.14 "ProphecyMaster_is1" = ProphecyMaster v1.1 "PunkBusterSvc" = PunkBuster Services "RealAlt_is1" = Real Alternative 1.42 "RumbleFighter" = Rumble Fighter "SopCast" = SopCast 3.2.9 "ST6UNST #1" = HLTooLz "Steam App 10" = Counter-Strike "Steam App 100" = Condition Zero Deleted Scenes "Steam App 150" = Counter-Strike Steamworks Beta "Steam App 30" = Day of Defeat "Steam App 40" = Deathmatch Classic "Steam App 60" = Ricochet "Steam App 640" = Alien Swarm - SDK "Steam App 80" = Condition Zero "Switch" = Switch Sound File Converter "SysInfo" = Creative System Information "Tasker_is1" = Tasker version 3.13 "Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2 "Tibia_is1" = Tibia "TMIPC" = Tibia MULTI-ip changer "Totalcmd" = Total Commander (Remove or Repair) "Ultra RM Converter_is1" = Ultra RM Converter 4.2.0108 "VMidi" = vanBasco's Karaoke Player "VoiceChatter" = VoiceChatter "WavePad" = WavePad Sound Editor "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format Runtime "WinGimp-2.0-beta_is1" = GIMP 2.7.0 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "XpsEPSC" = XML Paper Specification Shared Components Pack 1.0 "XviD_is1" = XviD MPEG-4 Video Codec [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "BFX Drippy" = BFX Drippy "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-08-12 09:14:21 | Computer Name = MISIEK-F67C23CE | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd ventrilo.exe, wersja 2.1.4.0, moduł powodujący błąd ventrilo.exe, wersja 2.1.4.0, adres błędu 0x00035fa6. Error - 2010-08-31 08:04:04 | Computer Name = MISIEK-F67C23CE | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd ultra rm converter.exe, wersja 1.0.2.0, moduł powodujący błąd skinmagic.dll, wersja 1.8.1.1, adres błędu 0x0001a64c. [ System Events ] Error - 2010-09-02 13:11:49 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2010-09-02 13:12:02 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023 Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2010-09-02 13:12:04 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2010-09-02 13:12:55 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7031 Description = Usługa ESET Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error - 2010-09-02 13:58:21 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2010-09-02 13:58:26 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023 Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2010-09-02 13:58:30 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2010-09-02 15:13:39 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023 Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2010-09-02 15:13:47 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2010-09-02 15:14:02 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . < End of report > [/log]
Tomek01 komentarz 3 września 2010 komentarz 3 września 2010 W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/ @Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B :Files C:\Program Files\Common Files\userInit.dll C:\Program Files\Common Files\logonInit.dll C:\WINDOWS\system32\tmp14.tmp C:\WINDOWS\system32\tmp13.tmp C:\WINDOWS\SET5B.tmp C:\WINDOWS\SET4F.tmp C:\WINDOWS\SET4C.tmp C:\Program Files\SopCast C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowy zestaw logów: OTL, RSIT i Reglooks.
kamilek073 komentarz 3 września 2010 Autor komentarz 3 września 2010 (edytowane) log z usuwania: [log]All processes killed ========== PROCESSES ========== Process Explorer.exe killed successfully! ========== OTL ========== HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully! ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B deleted successfully. ========== FILES ========== C:\Program Files\Common Files\userInit.dll moved successfully. C:\Program Files\Common Files\logonInit.dll moved successfully. C:\WINDOWS\system32\tmp14.tmp moved successfully. C:\WINDOWS\system32\tmp13.tmp moved successfully. C:\WINDOWS\SET5B.tmp moved successfully. C:\WINDOWS\SET4F.tmp moved successfully. C:\WINDOWS\SET4C.tmp moved successfully. C:\Program Files\SopCast\update\data folder moved successfully. C:\Program Files\SopCast\update folder moved successfully. C:\Program Files\SopCast\StreamServer\plugins folder moved successfully. C:\Program Files\SopCast\StreamServer folder moved successfully. C:\Program Files\SopCast\skin folder moved successfully. C:\Program Files\SopCast\recordfiles folder moved successfully. C:\Program Files\SopCast\languages\sopcore folder moved successfully. C:\Program Files\SopCast\languages folder moved successfully. C:\Program Files\SopCast\CrashReport folder moved successfully. C:\Program Files\SopCast\codec folder moved successfully. C:\Program Files\SopCast\channellist folder moved successfully. C:\Program Files\SopCast\cache folder moved successfully. C:\Program Files\SopCast\adv\default folder moved successfully. C:\Program Files\SopCast\adv\clips\EE067279-16A4-84A3-33F8-B273AB5A44F2 folder moved successfully. C:\Program Files\SopCast\adv\clips\D957E741-3FB1-FCFE-9524-CCF1EB1DA723 folder moved successfully. C:\Program Files\SopCast\adv\clips\A1757DB2-F068-EB6A-4228-3A9EA3519CCB folder moved successfully. C:\Program Files\SopCast\adv\clips\854A1DBA-8EBC-1EBB-775F-C7DCFCBE92CA folder moved successfully. C:\Program Files\SopCast\adv\clips\82AED070-D3C5-4B8B-E80D-FB1AAF91015E folder moved successfully. C:\Program Files\SopCast\adv\clips\75850311-B208-6DC9-EB63-A59D46BDBBC1 folder moved successfully. C:\Program Files\SopCast\adv\clips\72B2951C-64B6-BE0D-0E10-4FE8371CD0A0 folder moved successfully. C:\Program Files\SopCast\adv\clips\68D83996-BEB7-2C08-454B-50F66D75CD0E folder moved successfully. C:\Program Files\SopCast\adv\clips\59D3CDB3-5B26-2EB4-729D-EF4CAB22F95B folder moved successfully. C:\Program Files\SopCast\adv\clips\54AA7341-FB3F-2750-C038-4906A1C923AA folder moved successfully. C:\Program Files\SopCast\adv\clips\53FAEDB4-9206-0A0A-6185-3FE87F746365 folder moved successfully. C:\Program Files\SopCast\adv\clips\18CA426D-7B6D-2F41-FCE2-93B1157CCB67 folder moved successfully. C:\Program Files\SopCast\adv\clips folder moved successfully. C:\Program Files\SopCast\adv folder moved successfully. C:\Program Files\SopCast folder moved successfully. C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 67 bytes User: Kamilek&Misiek ->Temp folder emptied: 2692637 bytes ->Temporary Internet Files folder emptied: 84052 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 91629773 bytes ->Google Chrome cache emptied: 234058333 bytes ->Flash cache emptied: 4113 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 32902 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 402 bytes User: webspell %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2114584 bytes %systemroot%\System32 .tmp files removed: 6307412 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 245760 bytes RecycleBin emptied: 10474684 bytes Total Files Cleaned = 332,00 mb OTL by OldTimer - Version 3.2.10.0 log created on 09042010_012016 Files\Folders moved on Reboot... C:\WINDOWS\temp\Perflib_Perfdata_c04.dat moved successfully. Registry entries deleted on Reboot... [/log] nowy log z OTLa [log]OTL logfile created on: 2010-09-04 01:36:36 - Run 4 OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 77,00% Memory free 4,00 Gb Paging File | 4,00 Gb Available in Paging File | 92,00% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 87,89 Gb Total Space | 10,35 Gb Free Space | 11,78% Space Free | Partition Type: NTFS Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: MISIEK-F67C23CE Current User Name: Kamilek&Misiek Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe PRC - [2010-06-24 21:42:20 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2008-08-27 19:19:20 | 000,233,588 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe PRC - [2008-08-04 01:02:20 | 000,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe PRC - [2007-10-14 16:04:20 | 020,836,352 | ---- | M] () -- C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe PRC - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe PRC - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe PRC - [2006-11-17 11:42:46 | 000,053,341 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2003-07-28 15:43:44 | 000,188,416 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe PRC - [2003-06-25 12:24:48 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe PRC - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2009-12-10 14:03:01 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service) SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService) SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service) SRV - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper) SRV - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR) SRV - [2002-12-17 17:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTGLM7X.sys -- (SetupNTGLM7X) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTACCESS.sys -- (NTACCESS) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\install4\MSICPL.sys -- (MSICPL) DRV - File not found [Kernel | On_Demand | Stopped] -- G:\INSTALL\GMSIPCI.SYS -- (GMSIPCI) DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys -- (catchme) DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2008-12-21 17:44:28 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt) DRV - [2008-12-21 17:44:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt) DRV - [2008-09-13 20:40:36 | 000,682,232 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2008-05-16 14:01:00 | 006,557,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2008-02-12 04:50:56 | 001,670,016 | R--- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\skfilt.SYS -- (skfilt) DRV - [2007-10-15 19:34:16 | 000,051,200 | ---- | M] (Your Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\RushTop.sys -- (RushTopDevice2) DRV - [2007-10-12 10:32:30 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2007-04-17 14:42:00 | 000,028,160 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- (DualCoreCenter) DRV - [2005-02-11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2004-08-04 00:54:52 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004-08-03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM) DRV - [2003-06-09 03:44:32 | 000,113,840 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv) DRV - [2003-06-09 03:44:22 | 000,494,384 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM) DRV - [2003-06-09 03:42:28 | 000,819,984 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k) DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol) DRV - [2002-09-09 19:54:06 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\ASNDIS5.sys -- (ASNDIS5) DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "http://www.google.pl/" FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {eaf8a4ef-d221-45ca-9deb-d0934b45fa34}:1.3.0.3 FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2 FF - prefs.js..extensions.enabledItems: 4 FF - prefs.js..extensions.enabledItems: 9 FF - prefs.js..extensions.enabledItems: 1 FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0 FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-21 13:10:35 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-21 13:10:35 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-02-10 16:04:51 | 000,000,000 | ---D | M] [2008-09-13 20:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Extensions [2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions [2010-08-18 11:51:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d} [2009-07-04 13:26:02 | 000,000,000 | ---D | M] (OggX (powered by TIME S.A.)) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34} [2009-12-13 12:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com [2009-10-18 11:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\zrzuta.eu@gmail.com [2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-07-16 11:33:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-06-22 04:36:30 | 000,423,656 | ---- | M] (Oracle) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2009-01-28 20:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll [2010-06-24 22:40:16 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-06-24 22:40:16 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-06-24 22:40:16 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-06-24 22:40:16 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-06-24 22:40:16 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-06-24 22:40:16 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2010-09-01 16:02:34 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe (Hewlett-Packard) O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe (HP) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation) O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe (Creative Technology Ltd) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKCU..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd) O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe () O4 - Startup: C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office 2003\OFFICE11\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office 2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.100 77.245.242.226 O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-09-13 19:42:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-09-04 01:20:16 | 000,000,000 | ---D | C] -- C:\_OTL [2010-09-02 21:52:35 | 000,000,000 | ---D | C] -- C:\rsit [2010-09-02 21:42:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe [2010-09-02 13:25:17 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2010-09-01 15:57:23 | 000,000,000 | RHSD | C] -- C:\cmdcons [2010-09-01 15:53:44 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe [2010-09-01 15:53:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe [2010-09-01 15:53:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe [2010-09-01 15:53:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe [2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT [2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\ComboFix [2010-09-01 15:51:55 | 000,000,000 | ---D | C] -- C:\Qoobox [2010-09-01 14:54:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2010-09-01 14:52:25 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2010-09-01 14:52:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2010-09-01 14:52:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2010-09-01 14:52:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2010-09-01 14:52:23 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2010-09-01 14:52:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2010-09-01 14:52:23 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2010-09-01 14:52:23 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2010-09-01 14:52:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2010-09-01 14:52:22 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2010-09-01 14:52:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2010-09-01 14:52:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2010-09-01 14:52:21 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2010-09-01 14:52:21 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2010-09-01 14:52:21 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2010-09-01 14:52:21 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2010-09-01 14:52:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2010-09-01 14:52:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2010-09-01 14:52:16 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2010-09-01 14:52:16 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2010-09-01 14:52:15 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2010-09-01 14:52:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2010-09-01 14:52:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2010-09-01 14:52:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2010-09-01 14:52:14 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2010-09-01 14:52:14 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2010-09-01 14:52:14 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2010-09-01 14:52:14 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2010-09-01 14:52:14 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2010-09-01 14:52:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2010-09-01 14:52:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2010-09-01 14:52:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2010-09-01 14:52:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2010-09-01 14:52:11 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2010-09-01 14:52:11 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2010-09-01 14:52:10 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2010-09-01 14:52:10 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2010-09-01 14:52:10 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2010-09-01 14:52:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2010-09-01 14:52:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2010-09-01 14:52:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2010-09-01 14:52:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2010-09-01 14:52:09 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2010-09-01 14:52:09 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2010-09-01 14:52:09 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2010-09-01 14:52:09 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2010-09-01 14:52:09 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2010-09-01 14:52:08 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2010-09-01 14:52:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2010-09-01 14:52:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2010-09-01 14:52:08 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2010-09-01 14:52:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2010-09-01 14:52:03 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2010-09-01 14:52:03 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2010-09-01 14:52:02 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2010-09-01 14:52:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2010-09-01 14:52:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2010-09-01 14:52:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2010-09-01 14:52:00 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2010-09-01 14:52:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2010-09-01 14:51:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2010-09-01 14:51:59 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2010-09-01 14:51:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2010-09-01 14:51:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2010-09-01 14:51:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2010-09-01 14:51:57 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2010-09-01 14:51:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2010-09-01 14:51:57 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2010-09-01 14:51:57 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2010-09-01 14:51:57 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2010-09-01 14:51:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2010-09-01 14:51:56 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2010-09-01 14:51:56 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2010-09-01 14:51:56 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2010-09-01 14:51:55 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2010-09-01 14:51:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2010-09-01 14:51:55 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2010-09-01 14:51:55 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2010-09-01 14:51:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2010-09-01 14:51:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2010-09-01 14:51:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2010-09-01 14:51:52 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2010-09-01 14:51:50 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2010-09-01 14:51:49 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2010-09-01 14:51:47 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2010-09-01 14:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2010-09-01 14:51:41 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2010-09-01 14:51:41 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2010-09-01 14:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2010-09-01 14:51:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2010-09-01 14:51:40 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2010-09-01 14:51:40 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2010-09-01 14:51:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2010-09-01 14:51:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2010-09-01 14:51:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2010-09-01 14:51:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2010-09-01 14:51:39 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2010-09-01 14:51:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2010-09-01 14:51:36 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2010-09-01 14:51:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2010-09-01 14:51:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2010-09-01 14:51:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2010-09-01 14:51:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2010-09-01 14:51:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2010-09-01 14:51:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2010-09-01 14:51:33 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2010-09-01 14:51:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2010-09-01 14:51:33 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2010-09-01 14:51:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2010-09-01 14:51:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2010-09-01 14:51:32 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2010-09-01 14:51:31 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2010-09-01 14:51:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2010-09-01 14:51:31 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2010-09-01 14:51:30 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2010-09-01 14:51:30 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2010-09-01 14:51:30 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2010-09-01 14:51:30 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2010-09-01 14:51:30 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2010-09-01 14:51:30 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2010-09-01 14:51:30 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2010-09-01 14:51:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2010-09-01 14:51:30 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2010-09-01 14:51:29 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2010-09-01 14:51:29 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2010-09-01 14:51:29 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2010-09-01 14:51:29 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2010-09-01 14:51:29 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2010-09-01 14:51:29 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2010-09-01 14:51:29 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2010-09-01 14:51:28 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2010-09-01 14:51:28 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2010-09-01 14:51:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2010-09-01 14:51:28 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2010-09-01 14:51:28 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2010-09-01 14:51:28 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2010-09-01 14:51:28 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2010-09-01 14:51:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2010-09-01 14:51:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2010-09-01 14:51:28 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2010-09-01 14:51:27 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2010-09-01 14:51:27 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2010-09-01 14:51:27 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2010-09-01 14:51:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2010-09-01 14:51:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2010-09-01 14:51:23 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2010-09-01 14:51:14 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2010-09-01 14:51:14 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2010-09-01 14:51:14 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2010-09-01 14:51:14 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2010-09-01 14:51:13 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2010-09-01 14:51:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2010-09-01 14:51:11 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2010-09-01 14:51:10 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2010-09-01 14:51:10 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2010-09-01 14:51:10 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2010-09-01 14:51:10 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2010-09-01 14:51:10 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2010-09-01 14:51:10 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2010-09-01 14:51:10 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2010-09-01 14:51:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2010-09-01 14:51:09 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2010-09-01 14:51:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2010-09-01 14:51:09 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2010-09-01 14:51:09 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2010-09-01 14:51:09 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2010-09-01 14:51:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2010-09-01 14:51:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2010-09-01 14:51:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2010-09-01 14:51:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2010-09-01 14:51:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2010-09-01 14:51:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2010-09-01 14:51:08 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2010-09-01 14:51:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2010-09-01 14:51:08 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2010-09-01 14:51:08 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2010-09-01 14:51:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2010-09-01 14:51:07 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2010-09-01 14:51:07 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2010-09-01 14:51:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2010-09-01 14:51:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2010-09-01 14:51:06 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2010-09-01 14:51:06 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2010-09-01 14:51:06 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2010-09-01 14:51:06 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2010-09-01 14:51:06 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2010-09-01 14:51:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2010-09-01 14:51:06 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2010-09-01 14:51:02 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2010-09-01 14:51:01 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2010-09-01 14:51:00 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2010-09-01 14:51:00 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2010-09-01 14:51:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2010-09-01 14:51:00 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2010-09-01 14:51:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2010-09-01 14:50:59 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2010-09-01 14:50:58 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2010-09-01 14:50:58 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2010-09-01 14:50:58 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2010-09-01 14:50:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2010-09-01 14:50:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2010-09-01 14:50:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2010-09-01 14:50:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2010-09-01 14:50:57 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2010-09-01 14:50:57 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2010-09-01 14:50:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2010-09-01 14:50:57 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2010-09-01 14:50:57 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2010-09-01 14:50:56 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2010-09-01 14:50:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2010-09-01 14:50:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2010-09-01 14:50:56 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2010-09-01 14:50:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2010-09-01 14:50:50 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2010-09-01 14:50:44 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2010-09-01 14:50:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2010-09-01 14:50:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2010-09-01 14:50:43 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2010-09-01 14:50:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2010-09-01 14:50:43 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2010-09-01 14:50:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2010-09-01 14:50:38 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2010-09-01 14:50:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2010-09-01 14:50:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2010-09-01 14:50:35 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2010-09-01 14:50:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2010-09-01 14:50:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2010-09-01 14:50:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2010-09-01 14:50:34 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2010-09-01 14:50:34 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2010-09-01 14:50:30 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2010-09-01 14:50:30 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2010-09-01 14:50:30 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2010-09-01 14:50:30 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2010-09-01 14:50:30 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2010-09-01 14:50:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2010-09-01 14:50:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2010-09-01 14:50:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2010-09-01 14:50:29 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2010-09-01 14:50:29 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2010-09-01 14:50:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2010-09-01 14:50:29 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2010-09-01 14:50:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2010-09-01 14:50:29 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2010-09-01 14:50:29 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2010-09-01 14:50:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2010-09-01 14:50:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2010-09-01 14:50:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2010-09-01 14:50:28 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2010-09-01 14:50:28 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2010-09-01 14:50:28 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2010-09-01 14:50:28 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2010-09-01 14:50:28 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2010-09-01 14:50:28 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2010-09-01 14:50:28 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2010-09-01 14:50:28 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2010-09-01 14:50:28 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2010-09-01 14:50:28 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2010-09-01 14:50:28 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2010-09-01 14:50:27 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2010-09-01 14:50:27 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2010-09-01 14:50:27 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2010-09-01 14:50:27 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2010-09-01 14:50:27 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2010-09-01 14:50:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2010-09-01 14:50:26 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2010-09-01 14:50:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2010-09-01 14:50:26 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2010-09-01 14:50:25 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2010-09-01 14:49:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2010-08-27 22:20:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kamilek&Misiek\Recent [2010-08-26 20:19:20 | 002,273,448 | ---- | C] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe [2010-08-25 16:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2010-08-21 19:06:38 | 000,033,340 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsqlgc.dll [2010-08-21 19:06:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsgnet.dll [2010-08-21 19:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server [2010-08-21 19:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\Vstplugins [2010-08-21 19:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup [2010-08-21 18:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Gówno [2010-08-19 19:33:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HENIEK [2010-08-16 17:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\AŁDI SAMOCHUD HAHAHA [2010-08-06 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Wakacje [2008-09-13 20:06:30 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-09-04 01:33:47 | 000,330,519 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\reglooks.exe [2010-09-04 01:21:49 | 000,181,020 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-09-04 01:21:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-09-04 01:21:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-09-04 01:21:41 | 2146,742,272 | -HS- | M] () -- C:\hiberfil.sys [2010-09-04 01:20:52 | 011,272,192 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\NTUSER.DAT [2010-09-04 01:20:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx [2010-09-04 01:20:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx [2010-09-04 01:20:47 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Kamilek&Misiek\ntuser.ini [2010-09-04 01:20:19 | 000,364,114 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-09-04 01:20:19 | 000,292,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-09-04 01:20:19 | 000,034,488 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-09-04 01:20:19 | 000,022,296 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-09-04 01:20:19 | 000,008,060 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-09-04 00:10:15 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2010-09-03 18:47:00 | 000,001,168 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job [2010-09-02 21:52:18 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe [2010-09-02 21:47:00 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe [2010-09-02 20:55:45 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc [2010-09-02 16:28:35 | 000,002,461 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk [2010-09-02 13:55:33 | 000,000,170 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin [2010-09-01 18:33:57 | 000,203,815 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg [2010-09-01 18:32:49 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Microsoft Office Word 2003.lnk [2010-09-01 18:31:43 | 000,099,968 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT [2010-09-01 16:02:38 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini [2010-09-01 16:02:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2010-09-01 15:57:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini [2010-09-01 15:49:46 | 003,830,025 | R--- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe [2010-09-01 14:56:07 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-09-01 14:54:12 | 000,345,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2010-09-01 14:52:59 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2010-09-01 14:50:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2010-09-01 14:50:09 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2010-09-01 14:50:09 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2010-09-01 14:49:59 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest [2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest [2010-09-01 14:49:07 | 000,000,661 | ---- | M] () -- C:\WINDOWS\win.ini [2010-09-01 14:47:55 | 000,023,016 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2010-09-01 14:46:37 | 000,000,211 | ---- | M] () -- C:\Boot.bak [2010-08-31 22:40:21 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list motyw. Jarek.doc [2010-08-31 21:50:21 | 000,001,985 | ---- | M] () -- C:\WINDOWS\setupapi.old [2010-08-31 20:15:57 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk [2010-08-31 17:48:18 | 000,024,064 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc [2010-08-31 14:06:06 | 000,016,462 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt [2010-08-31 14:06:06 | 000,002,952 | ---- | M] () -- C:\WINDOWS\bestplayer.ini [2010-08-31 14:06:06 | 000,000,112 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp [2010-08-29 20:51:57 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp [2010-08-29 20:05:30 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp [2010-08-28 22:26:59 | 000,351,232 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp [2010-08-26 20:19:59 | 002,273,448 | ---- | M] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe [2010-08-25 20:58:17 | 007,435,769 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2 [2010-08-25 16:49:48 | 000,001,569 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk [2010-08-21 18:49:37 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk [2010-08-18 19:04:40 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc [2010-08-17 16:53:24 | 000,081,193 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid [2010-08-16 00:27:42 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3 [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-09-04 01:33:45 | 000,330,519 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\reglooks.exe [2010-09-02 21:52:14 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe [2010-09-02 20:55:45 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc [2010-09-02 13:55:33 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin [2010-09-01 18:33:57 | 000,203,815 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg [2010-09-01 15:57:27 | 000,000,211 | ---- | C] () -- C:\Boot.bak [2010-09-01 15:57:25 | 000,262,400 | RHS- | C] () -- C:\cmldr [2010-09-01 15:53:44 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe [2010-09-01 15:53:44 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe [2010-09-01 15:53:44 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe [2010-09-01 15:53:44 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe [2010-09-01 15:53:44 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe [2010-09-01 15:49:13 | 003,830,025 | R--- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe [2010-09-01 15:17:05 | 000,002,461 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk [2010-09-01 14:52:29 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls [2010-09-01 14:51:58 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls [2010-09-01 14:51:57 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls [2010-09-01 14:51:56 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2010-09-01 14:51:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2010-09-01 14:51:37 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls [2010-09-01 14:51:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2010-09-01 14:51:29 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2010-09-01 14:51:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2010-09-01 14:51:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2010-09-01 14:51:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2010-09-01 14:51:08 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2010-09-01 14:50:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls [2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls [2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls [2010-09-01 14:50:54 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls [2010-09-01 14:50:54 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls [2010-09-01 14:50:54 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls [2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls [2010-09-01 14:50:53 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls [2010-09-01 14:50:53 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls [2010-09-01 14:50:53 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls [2010-09-01 14:50:53 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls [2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls [2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls [2010-09-01 14:50:53 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls [2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls [2010-09-01 14:50:52 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls [2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls [2010-09-01 14:50:51 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls [2010-09-01 14:50:51 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls [2010-09-01 14:50:51 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls [2010-09-01 14:50:51 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls [2010-09-01 14:50:51 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls [2010-09-01 14:49:21 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest [2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest [2010-09-01 14:43:14 | 000,186,407 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb [2010-09-01 14:39:24 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2010-09-01 14:39:24 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2010-09-01 14:39:24 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2010-09-01 14:39:24 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2010-09-01 14:39:24 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2010-09-01 14:39:24 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2010-09-01 14:39:24 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2010-09-01 14:39:24 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2010-09-01 14:39:24 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2010-09-01 14:39:24 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2010-09-01 14:39:24 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2010-09-01 14:39:24 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2010-09-01 14:39:24 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2010-09-01 14:39:23 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2010-09-01 14:39:23 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2010-08-31 17:48:17 | 000,024,064 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc [2010-08-30 13:24:39 | 000,081,193 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid [2010-08-29 20:51:57 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp [2010-08-29 20:05:29 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp [2010-08-28 21:52:45 | 000,351,232 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp [2010-08-28 20:08:10 | 000,001,985 | ---- | C] () -- C:\WINDOWS\setupapi.old [2010-08-26 20:20:53 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk [2010-08-25 20:57:17 | 007,435,769 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2 [2010-08-25 16:49:48 | 000,001,569 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk [2010-08-18 19:04:39 | 000,077,312 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc [2010-08-16 00:27:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3 [2010-08-14 18:12:55 | 000,002,380 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk [2010-07-19 11:43:41 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll [2009-12-10 14:04:55 | 000,025,199 | R--- | C] () -- C:\WINDOWS\System32\xfisk.ini [2009-12-10 14:04:55 | 000,000,052 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini [2009-12-10 14:04:49 | 000,151,040 | R--- | C] () -- C:\WINDOWS\System32\KSXPPI32.dll [2009-10-24 20:16:02 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll [2009-10-24 20:16:02 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll [2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll [2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll [2009-10-24 20:16:02 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll [2009-10-24 20:16:02 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll [2009-07-23 15:37:47 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Smiley.ico [2009-07-18 15:12:58 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PnkBstrK.sys [2009-02-25 09:05:32 | 000,032,562 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpit [2009-02-25 09:05:32 | 000,000,176 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpite [2009-02-08 15:47:37 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll [2009-01-22 20:19:41 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pit2007.ini [2009-01-22 20:19:40 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pit2008.ini [2008-12-21 21:17:33 | 000,007,558 | ---- | C] () -- C:\WINDOWS\hpdj5100.ini [2008-12-21 17:44:28 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys [2008-12-21 17:44:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys [2008-12-10 20:16:58 | 001,572,608 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2008-11-09 03:51:29 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2008-10-22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat [2008-10-17 17:28:58 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2008-09-17 08:36:55 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini [2008-09-14 17:54:50 | 000,090,112 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2008-09-14 17:51:15 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2008-09-13 21:02:51 | 000,002,952 | ---- | C] () -- C:\WINDOWS\bestplayer.ini [2008-09-13 20:56:04 | 000,000,478 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini [2008-09-13 20:44:22 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2008-09-13 20:44:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2008-09-13 20:44:17 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2008-09-13 20:44:17 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2008-09-13 20:44:17 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2008-09-13 20:44:11 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2008-09-13 20:44:11 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest [2008-09-13 19:58:52 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll [2008-05-16 14:01:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2008-05-16 14:01:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2008-05-16 14:01:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2008-05-16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2008-05-16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2007-03-26 10:45:18 | 000,071,208 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll [2007-02-20 14:59:08 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll [2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll [2007-02-20 14:59:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll [2006-04-19 16:19:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll [2005-08-30 01:00:00 | 000,781,312 | ---- | C] () -- C:\WINDOWS\System32\RGSS102J.dll [2005-08-30 01:00:00 | 000,778,752 | ---- | C] () -- C:\WINDOWS\System32\RGSS102E.dll [2005-08-30 01:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll [2004-08-04 02:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI [2002-03-17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL < End of report > [/log] nowy log RSIT [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Kamilek&Misiek at 2010-09-04 01:30:14 Microsoft Windows XP Professional Dodatek Service Pack 2 System drive C: has 11 GB (12%) free of 90 GB Total RAM: 2047 MB (74% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 01:30:16, on 2010-09-04 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Creative\Shared Files\CTAudSvc.exe C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Common Files\LightScribe\LSSrvc.exe C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe C:\WINDOWS\Explorer.EXE C:\WINDOWS\system32\nvsvc32.exe C:\WINDOWS\system32\PnkBstrA.exe C:\WINDOWS\system32\PnkBstrB.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe C:\Program Files\Winamp\winampa.exe C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe C:\Program Files\HP\hpcoretech\hpcmpmgr.exe C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe C:\Program Files\Creative\Shared Files\CTSched.exe C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe C:\Program Files\Trend Micro\HijackThis\Kamilek&Misiek.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896 R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000 O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- End of file - 7432 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-22 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088] "nwiz"=nwiz.exe /install [] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-04 36352] "HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [2003-07-28 188416] "HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2003-06-25 49152] "HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-10-23 233472] "UVS11 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-09-12 340136] "NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648] "VolPanel"=C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe [2008-08-27 233588] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760] "egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-16 86016] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-04-04 165784] "Google Update"=C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 133104] "LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-10-16 2363392] "CreativeTaskScheduler"=C:\Program Files\Creative\Shared Files\CTSched.exe [2006-11-17 53341] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart DualCoreCenter.lnk - C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=323 "NoAutoUpdate"=1 "NoDriveAutoRun"=67108863 "NoDrives"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveAutoRun"=67108863 "NoDriveTypeAutoRun"=323 "NoDrives"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\Gry\Gierki\Soldat\Soldat.exe"="C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat" "C:\Gry\Heroes3\HEROES3.EXE"="C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III" "C:\Gry\Valve\hl.exe"="C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher" "C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows" "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2" "C:\GRY\Football Manager 2010\fm.exe"="C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010" "C:\Gry\Pro Evolution Soccer 2010\pes2010.exe"="C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010" "C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher" "C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher" "C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher" "C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897" "C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver" "C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze" "C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)" "C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server" "C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm" "C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK" "C:\Gry\Bitwa o Śródziemie II\game.dat"="C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II" "C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" ======List of files/folders created in the last 1 months====== 2010-09-04 01:20:16 ----D---- C:\_OTL 2010-09-02 21:52:35 ----D---- C:\rsit 2010-09-02 13:25:17 ----SHD---- C:\RECYCLER 2010-09-01 16:32:31 ----ASH---- C:\pagefile.sys 2010-09-01 16:03:18 ----A---- C:\ComboFix.txt 2010-09-01 15:57:27 ----A---- C:\Boot.bak 2010-09-01 15:57:23 ----RASHD---- C:\cmdcons 2010-09-01 15:53:44 ----A---- C:\WINDOWS\zip.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWXCACLS.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWSC.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWREG.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\sed.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\PEV.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\NIRCMD.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\MBR.exe 2010-09-01 15:53:44 ----A---- C:\WINDOWS\grep.exe 2010-09-01 15:53:40 ----D---- C:\WINDOWS\ERDNT 2010-09-01 15:53:40 ----D---- C:\ComboFix 2010-09-01 15:51:55 ----D---- C:\Qoobox 2010-09-01 14:54:37 ----D---- C:\WINDOWS\Prefetch 2010-09-01 14:50:04 ----A---- C:\WINDOWS\OEWABLog.txt 2010-09-01 14:49:21 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\spxcoins.dll 2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\irclass.dll 2010-09-01 14:38:43 ----A---- C:\WINDOWS\setuplog.txt 2010-08-25 16:56:18 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II 2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsqlgc.dll 2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsgnet.dll 2010-08-21 19:06:19 ----D---- C:\Program Files\Microsoft SQL Server 2010-08-21 19:05:27 ----D---- C:\Program Files\Vstplugins 2010-08-21 19:04:31 ----D---- C:\Program Files\Sony Setup ======List of files/folders modified in the last 1 months====== 2010-09-04 01:29:55 ----D---- C:\WINDOWS\Temp 2010-09-04 01:29:07 ----D---- C:\Program Files\Mozilla Firefox 2010-09-04 01:20:49 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-09-04 01:20:29 ----D---- C:\WINDOWS\system32 2010-09-04 01:20:29 ----D---- C:\WINDOWS 2010-09-04 01:20:19 ----RD---- C:\Program Files 2010-09-04 01:20:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-09-04 01:20:17 ----D---- C:\Program Files\Common Files 2010-09-04 00:15:25 ----D---- C:\WINDOWS\system32\CatRoot2 2010-09-04 00:10:15 ----A---- C:\WINDOWS\NeroDigital.ini 2010-09-02 15:37:49 ----HD---- C:\WINDOWS\inf 2010-09-01 16:37:10 ----D---- C:\WINDOWS\system32\Setup 2010-09-01 16:37:01 ----D---- C:\WINDOWS\system32\usmt 2010-09-01 16:36:52 ----D---- C:\WINDOWS\ehome 2010-09-01 16:36:51 ----D---- C:\WINDOWS\ime 2010-09-01 16:36:50 ----RSD---- C:\WINDOWS\Fonts 2010-09-01 16:36:50 ----D---- C:\WINDOWS\Media 2010-09-01 16:36:38 ----D---- C:\WINDOWS\PeerNet 2010-09-01 16:36:23 ----D---- C:\WINDOWS\system32\npp 2010-09-01 16:36:17 ----D---- C:\WINDOWS\msagent 2010-09-01 16:34:24 ----D---- C:\WINDOWS\system32\1045 2010-09-01 16:34:18 ----D---- C:\WINDOWS\twain_32 2010-09-01 16:34:07 ----D---- C:\WINDOWS\system32\icsxml 2010-09-01 16:33:44 ----D---- C:\WINDOWS\system32\ias 2010-09-01 16:33:38 ----D---- C:\WINDOWS\system32\1033 2010-09-01 16:32:31 ----D---- C:\WINDOWS\WinSxS 2010-09-01 16:32:31 ----D---- C:\WINDOWS\Driver Cache 2010-09-01 16:25:41 ----D---- C:\Program Files\Gadu-Gadu 10 2010-09-01 16:02:38 ----A---- C:\WINDOWS\system.ini 2010-09-01 16:02:34 ----D---- C:\WINDOWS\system32\drivers\etc 2010-09-01 16:00:47 ----D---- C:\WINDOWS\system32\drivers 2010-09-01 16:00:47 ----D---- C:\WINDOWS\AppPatch 2010-09-01 15:57:27 ----RASH---- C:\boot.ini 2010-09-01 15:27:15 ----D---- C:\WINDOWS\security 2010-09-01 15:17:06 ----SHD---- C:\WINDOWS\Installer 2010-09-01 14:57:08 ----SHD---- C:\System Volume Information 2010-09-01 14:57:08 ----D---- C:\WINDOWS\system32\Restore 2010-09-01 14:56:54 ----D---- C:\WINDOWS\Registration 2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\inetsrv 2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\config 2010-09-01 14:54:09 ----D---- C:\WINDOWS\nview 2010-09-01 14:54:09 ----D---- C:\WINDOWS\Help 2010-09-01 14:52:29 ----RSHDC---- C:\WINDOWS\system32\dllcache 2010-09-01 14:49:59 ----A---- C:\WINDOWS\ODBCINST.INI 2010-09-01 14:49:45 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2010-09-01 14:49:23 ----RD---- C:\WINDOWS\Web 2010-09-01 14:49:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2010-09-01 14:49:07 ----A---- C:\WINDOWS\win.ini 2010-09-01 14:49:02 ----D---- C:\WINDOWS\system32\oobe 2010-09-01 14:49:01 ----D---- C:\WINDOWS\srchasst 2010-09-01 14:48:58 ----D---- C:\Program Files\Windows Media Player 2010-09-01 14:48:53 ----D---- C:\Program Files\Movie Maker 2010-09-01 14:48:44 ----D---- C:\Program Files\NetMeeting 2010-09-01 14:48:41 ----D---- C:\Program Files\Outlook Express 2010-09-01 14:48:40 ----D---- C:\Program Files\Common Files\System 2010-09-01 14:48:29 ----D---- C:\Program Files\Internet Explorer 2010-09-01 14:47:57 ----D---- C:\WINDOWS\system32\Com 2010-09-01 14:47:33 ----D---- C:\WINDOWS\system32\wbem 2010-09-01 14:47:30 ----D---- C:\Program Files\Windows NT 2010-09-01 14:39:35 ----D---- C:\WINDOWS\system 2010-09-01 14:39:26 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2010-09-01 14:39:22 ----D---- C:\WINDOWS\system32\CatRoot 2010-08-31 14:06:06 ----A---- C:\WINDOWS\bestplayer.ini 2010-08-28 21:52:03 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10 2010-08-27 18:47:58 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Azureus 2010-08-25 16:49:10 ----D---- C:\WINDOWS\system32\DirectX 2010-08-25 16:42:10 ----D---- C:\Gry 2010-08-25 16:37:56 ----HD---- C:\Program Files\InstallShield Installation Information 2010-08-23 12:18:38 ----D---- C:\WINDOWS\Minidump 2010-08-21 19:06:02 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Sony 2010-08-21 19:06:01 ----RSD---- C:\WINDOWS\assembly 2010-08-21 19:05:12 ----D---- C:\Program Files\Sony 2010-08-21 18:34:04 ----D---- C:\Misiek ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528] R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568] R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792] R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408] R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-09-13 20747] R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-12-21 278984] R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520] R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-12-21 25416] R3 BCM43XX;ASUS 802.11 sterownik sieciowego adaptera; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712] R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2003-06-09 494384] R3 ctljystk;Port gier dla karty Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712] R3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys [] R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2003-06-09 819984] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408] R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2003-06-09 113840] R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol); C:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS [2002-10-03 31424] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-12 94592] R3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\DualCoreCenter\RushTop.sys [] R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480] S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-09-13 682232] S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848] S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS [] S3 catchme;catchme; \??\C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys [] S3 GMSIPCI;GMSIPCI; \??\G:\INSTALL\GMSIPCI.SYS [] S3 MSICPL;MSICPL; \??\G:\install4\MSICPL.sys [] S3 NTACCESS;NTACCESS; \??\G:\NTACCESS.sys [] S3 SetupNTGLM7X;SetupNTGLM7X; \??\G:\NTGLM7X.sys [] S3 skfilt;skfilt; C:\WINDOWS\system32\drivers\skfilt.sys [2008-02-12 1670016] S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2005-01-28 18944] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168] R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-04-30 417792] R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-22 153376] R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728] R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-18 66872] R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-18 107832] R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056] R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336] S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-01-02 72704] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360] S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680] S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864] S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376] S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112] S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-05 774144] S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872] S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-01-02 74656] S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912] S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880] -----------------EOF----------------- [/log] log z RegLooks [log]REGLOOKS logfile - version 0.985 Scan started: 2010-09-04 1:34:04,32 --- INFORMATION --- Manufacturer: MICRO-STAR INTERNATIONAL CO.,LTD - Model: MS-7360 Operating System: Microsoft Windows XP Professional -- 5.1.2600 -- Dodatek Service Pack 2 -- Processor: Procesor Intel Pentium III Xeon Work Station Bootmode: Normal boot Total RAM: 2047 MB (free 1487 MB - 72%) Computername: MISIEK-F67C23CE Domain: GRUPA_ROBOCZA Processor: Procesor Intel Pentium III Xeon Work Station Bootmode: Normal boot Total RAM: 2047 MB (free 1487 MB - 72%) Computername: MISIEK-F67C23CE Domain: GRUPA_ROBOCZA User: Kamilek&Misiek (Administrator account) Bootdevice: \Device\HarddiskVolume1 Systemdrive: C: Windowsdirectory: C:\WINDOWS Systemdirectory: C:\WINDOWS\system32 Internet Explorer Version: 6.0.2900.2180 Antivirus Program: ESET NOD32 Antivirus 4.0 4.0 [Enabled - Updated] --- SIGCHECK --- C:\WINDOWS\explorer.exe -- [1033728] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\appmgmts.dll -- [172032] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\browser.dll -- [77312] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\comres.dll -- [822272] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\comctl32.dll -- [611328] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\cryptsvc.dll -- [60416] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\ctfmon.exe -- [15360] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\es.dll -- [243200] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\eventlog.dll -- [55808] -- [2004-08-04 00:43] -- sigcheck OK C:\WINDOWS\system32\ias.dll NOT found C:\WINDOWS\system32\imm32.dll -- [110080] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\kernel32.dll -- [1012224] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\linkinfo.dll -- [18944] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\lpk.dll -- [22016] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\lsass.exe -- [13312] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\mfc40u.dll -- [924432] -- [2001-10-26 17:29] -- sigcheck OK C:\WINDOWS\system32\msgsvc.dll -- [33792] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\mshtml.dll -- [3003392] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\mspmsnsv.dll -- [25088] -- [2005-01-28 13:44] -- sigcheck OK C:\WINDOWS\system32\mswsock.dll -- [246784] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\netlogon.dll -- [407040] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\netman.dll -- [198144] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\ntkrnlpa.exe -- [2016768] -- [2004-08-04 00:54] -- sigcheck OK C:\WINDOWS\system32\ntmssvc.dll -- [435712] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\ntoskrnl.exe -- [2149888] -- [2004-08-04 00:38] -- sigcheck OK C:\WINDOWS\system32\pchsvc.dll NOT found C:\WINDOWS\system32\powrprof.dll -- [17408] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\qmgr.dll -- [382464] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\rasauto.dll -- [89088] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\regsvc.dll -- [59904] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\rpcss.dll -- [395776] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\scecli.dll -- [185344] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\schedsvc.dll -- [192000] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\services.exe -- [108544] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\sfc.dll -- [5120] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\sfcfiles.dll -- [1548288] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\spoolsv.exe -- [57856] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\srsvc.dll -- [171008] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\ssdpsrv.dll -- [71680] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\svchost.exe -- [14336] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\tapisrv.dll -- [246272] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\termsrv.dll -- [296448] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\upnphost.dll -- [185856] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\user32.dll -- [578560] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\userinit.exe -- [25088] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\wininet.dll -- [658944] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\winlogon.exe -- [504832] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\ws2_32.dll -- [82944] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\wscntfy.exe -- [13824] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\wuauclt.exe -- [112128] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\xmlprov.dll -- [129536] -- [2004-08-04 00:44] -- sigcheck OK C:\WINDOWS\system32\drivers\acpiec.sys -- [12032] -- [2001-10-26 16:46] -- sigcheck OK C:\WINDOWS\system32\drivers\aec.sys -- [142464] -- [2004-08-04 00:54] -- sigcheck OK C:\WINDOWS\system32\drivers\asyncmac.sys -- [14336] -- [2004-08-03 23:05] -- sigcheck OK C:\WINDOWS\system32\drivers\atapi.sys -- [95360] -- [2004-08-03 22:59] -- sigcheck OK C:\WINDOWS\system32\drivers\beep.sys -- [4224] -- [2001-08-17 21:47] -- sigcheck OK C:\WINDOWS\system32\drivers\classpnp.sys -- [49664] -- [2004-08-03 23:14] -- sigcheck OK C:\WINDOWS\system32\drivers\disk.sys -- [36352] -- [2004-08-03 22:59] -- sigcheck OK C:\WINDOWS\system32\drivers\iaStor.sys NOT found C:\WINDOWS\system32\drivers\ip6fw.sys -- [29056] -- [2004-08-03 23:00] -- sigcheck OK C:\WINDOWS\system32\drivers\kbdclass.sys -- [24960] -- [2004-08-04 00:38] -- sigcheck OK C:\WINDOWS\system32\drivers\ndis.sys -- [182912] -- [2004-08-03 23:14] -- sigcheck OK C:\WINDOWS\system32\drivers\ntfs.sys -- [574592] -- [2004-08-03 23:15] -- sigcheck OK C:\WINDOWS\system32\drivers\tcpip.sys -- [359040] -- [2004-08-03 23:14] -- sigcheck OK --- SSODL regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] "PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" -- File: %SystemRoot%\system32\shell32.dll -- [?] "CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?] "WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -- File: %Systemroot%\system32\webcheck.dll -- [?] "SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" -- File: %systemroot%\system32\stobject.dll -- [?] "WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -- File: C:\WINDOWS\system32\WPDShServiceObj.dll -- [133632] -- [2006-10-18 22:47] --- STS regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler] --- USERINIT regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Userinit"="C:\\WINDOWS\\system32\\userinit.exe," File: C:\WINDOWS\system32\userinit.exe -- [25088] -- [2004-08-04 00:44] --- SHELL regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "Shell"="Explorer.exe" File: C:\WINDOWS\Explorer.exe -- [1033728] -- [2004-08-04 00:44] --- SYSTEM regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "System"="" --- APPINIT_DLLS regkey --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows] no AppInit_DLLs regkey found --- NOTIFY regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain] -- File: C:\WINDOWS\system32\crypt32.dll -- [601088] -- [2004-08-04 00:43] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet] -- File: C:\WINDOWS\system32\cryptnet.dll -- [63488] -- [2004-08-04 00:43] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll] -- File: C:\WINDOWS\system32\cscdll.dll -- [102400] -- [2004-08-04 00:43] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy] -- File: %SystemRoot%\System32\dimsntfy.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp] -- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule] -- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy] -- File: C:\WINDOWS\system32\sclgntfy.dll -- [22016] -- [2004-08-04 00:44] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn] -- File: C:\WINDOWS\system32\WlNotify.dll -- [93184] -- [2004-08-04 00:44] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv] -- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon] -- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44] --- RUN / LOAD regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows] no run / load keys found --- SHELLEXECUTEHOOKS regkey --- [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks] "{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" -- File: shell32.dll -- [?] --- HKLM AUTORUN regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor] no AutoRun regkey found --- HKCU AUTORUN regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Command Processor] no AutoRun regkey found --- HKLM\RUN regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "NvCplDaemon" -- File: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup -- [?] "nwiz" -- File: nwiz.exe /install -- [?] "WinampAgent" -- File "C:\Program Files\Winamp\winampa.exe" -- [36352] -- [2008-08-04 01:02] "HPDJ Taskbar Utility" -- File C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe -- [188416] -- [2003-07-28 15:43] "HP Software Update" -- File: "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" -- [?] "HP Component Manager" -- File "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" -- [233472] -- [2003-10-23 20:51] "UVS11 Preload" -- File C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe -- [340136] -- [2007-09-12 12:17] "NeroFilterCheck" -- File C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe -- [155648] -- [2006-01-12 16:40] "VolPanel" -- File: "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r -- [?] "Adobe Reader Speed Launcher" -- File "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" -- [35760] -- [2010-06-20 04:04] "egui" -- File: "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice -- [?] "NvMediaCenter" -- File: RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit -- [?] --- HKLM\RUNONCE regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] no runonce values found --- HKLM\RUNONCEEX regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] no runonceex values found --- HKLM\RUNSERVICES regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] key not found --- HKLM\RUNSERVICESONCE regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce] key not found --- HKCU\RUN regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "DAEMON Tools" -- File: "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 -- [?] "Google Update" -- File: "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c -- [?] "LightScribe Control Panel" -- File: C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [?] "CreativeTaskScheduler" -- File: "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon -- [?] --- HKCU\RUNONCE regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce] no runonce values found --- HKCU\RUNONCEEX regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx] key not found --- HKCU\RUNSERVICES regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices] no runservices values found --- HKCU\RUNSERVICESONCE regkey --- [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce] no runservicesonce values found --- HKU\.DEFAULT\Run regkeys - Default user --- [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [2004-08-04 00:44] --- HKU\S-1-5-18\Run regkeys - user SYSTEM --- [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [2004-08-04 00:44] --- HKU\S-1-5-19\Run regkeys - User Lokale service --- [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] key not found --- HKU\S-1-5-20\Run regkeys - User Lokale service --- [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] key not found --- HKLM\Explorer\Run regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] no run values found --- HKCU\Explorer\Run regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run] no run values found --- Image File Execution regkeys --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] no debuggers found --- BROWSER HELPER OBJECTS regkeys --- [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] -- File: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -- [75200] -- [2010-06-19 21:29] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] -- File: C:\Program Files\Java\jre6\bin\jp2ssv.dll -- [41760] -- [2010-06-22 06:07] [HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] -- File: C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll -- [79648] -- [2010-06-22 06:07] --- TOOLBAR regkeys --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] no toolbars found --- HKLM\URLSEARCHHOOKS regkeys --- [HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks] no urlsearchhooks found --- HKCU\URLSEARCHHOOKS regkeys --- [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks] {CFBFAE00-17A6-11D0-99CB-00C04FD64497} -- File: %SystemRoot%\system32\shdocvw.dll -- [?] --- SRCEENSAVER regkey --- [HKEY_CURRENT_USER\Control Panel\Desktop] scrnsave.exe value not found --- ALTERNATESHELL regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot] File: C:\WINDOWS\system32\cmd.exe -- [395776] -- [2004-08-04 00:44] --- SECURITYPROVIDERS regkey --- [HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders] "SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll" File: C:\WINDOWS\system32\msapsspc.dll -- [86016] -- [2004-08-04 00:44] File: C:\WINDOWS\system32\schannel.dll -- [144896] -- [2004-08-04 00:44] File: C:\WINDOWS\system32\digest.dll -- [68608] -- [2004-08-04 00:43] File: C:\WINDOWS\system32\msnsspc.dll -- [290816] -- [2004-08-04 00:44] --- Active Setup\Installed Components regkey --- [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}] -- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS] -- File: RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}] -- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}] -- File: "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" -- [451872] -- [2009-10-16 13:49] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{233C1507-6A77-46A4-9443-F871F945D258}] -- filepath not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2A202491-F00D-11cf-87CC-0020AFEECF20}] -- filepath not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}] -- File: %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}] -- File: "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}] -- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}] -- filepath not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}] -- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}] -- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}] -- filepath not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}] -- File: regsvr32.exe /s /n /i:U shell32.dll -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] -- File: %SystemRoot%\system32\ie4uinit.exe -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}] -- File: %SystemRoot%\system32\ie4uinit.exe -- [?] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}] -- File: C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install -- [?] --- Services regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Capture Device Service] -- File: "C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe" -- [198168] -- [2007-03-06 10:35] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ctaud2k] -- File: system32\drivers\ctaud2k.sys -- [?] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CTAudSvcService] -- File: C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- [417792] -- [2008-04-30 04:27] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ctljystk] -- File: system32\DRIVERS\ctljystk.sys -- [?] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DualCoreCenter] -- File: \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- [?] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ehdrv] -- File: system32\DRIVERS\ehdrv.sys -- [?] --- SAFEBOOT MINIMAL SERVICES --- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal {533C5B84-EC70-11D2-9505-00C04F79DEAF} --- SAFEBOOT Network SERVICES --- HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network DnsCache --- BOOTEXECUTE regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager] "BootExecute"= autocheck autochk *\0\0 --- PENDINGFILERENAMEOPERATIONS regkey --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager] PendingFileRenameOperations key not found --- WOW-CMDLINE regkeys --- [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW] "cmdline" = %SystemRoot%\system32\ntvdm.exe "cmdline" = %SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386 --- NETSVCS regkey --- [HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] -- NETSVCS only standard values found --- DNS SERVER regkeys --- no "NameServer" values found --- File associations --- .BAT files: ("%1" %*) .COM files: ("%1" %*) .EXE files: ("%1" %*) .HLP files: (%SystemRoot%\System32\winhlp32.exe %1) .INF files: (%SystemRoot%\System32\NOTEPAD.EXE %1) .INI files: (%SystemRoot%\System32\NOTEPAD.EXE %1) .JS files: (%SystemRoot%\System32\WScript.exe "%1" %*) .PIF files: ("%1" %*) .REG files: (regedit.exe "%1") .SCR files: ("%1" /S) .TXT files: (%SystemRoot%\system32\NOTEPAD.EXE %1) .VBS files: (%SystemRoot%\System32\WScript.exe "%1" %*) --- STARTUP FOLDERS --- C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk -- [999] -- [2010-01-02 00:28] C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-09-01 14:50] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk -- [869] -- [2008-09-13 19:58] C:\WINDOWS\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42] C:\WINDOWS\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42] --- TASK SCHEDULER JOBS --- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job -- [1116] -- [2010-09-02 21:47] C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job -- [1168] -- [2010-09-03 18:47] Scan completed: 2010-09-04 1:34:29,76 FINISHED [/log] Czekam na dalsze instrukcje
Tomek01 komentarz 4 września 2010 komentarz 4 września 2010 Teraz powinno być ok. Odinstaluj ComboFix’a Start >>> Uruchom >>> combofix /u [i naciskasz OK] Skasuj ręcznie kwarantannę: C:/Qoobox Zastosuj ATF CLeaner, zaznacz trzy pierwsze fajki i empty selected. Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] jeśli coś wykryją, wyniki podaj na forum.
kamilek073 komentarz 4 września 2010 Autor komentarz 4 września 2010 (edytowane) DrWeb cos wykryl. http://img837.imageshack.us/i/wirusi.jpg/ Malwarebytes Anti-Malware w porzadku.
kamilek073 komentarz 4 września 2010 Autor komentarz 4 września 2010 (edytowane) [quote name='Tomek01' timestamp='1283617273' post='1082567'] Wrzuć raport z DrWeb. [/quote] po skanowaniu wyłączylem Dr.Web i raport sie chyba nie zapisal, a jak zapsial to nie wiem gdzie. Uruchomic skan jeszcze raz? podalem link z obrazkiem z tym co wykryl.
Tomek01 komentarz 4 września 2010 komentarz 4 września 2010 Ale widzę, że zrobiłeś szybki skan a miałeś zrobić full. Zrób jeszcze raz i wrzuć raport.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.