x-kom hosting

Sprawdzenie loga, muli sie net.

kamilek073
utworzono
utworzono (edytowane)

Proszę o sprawdzenie loga i przekazanie co mam dalej robic jesli cos wykryjecie. Bardzo muli mi sie net, dostawca powiedzial ze pewnei to wina jakiegos wirusa. Zaden antywirus nic nie wykryl, zrobilem skan combofixem.

[log]ComboFix 10-08-31.02 - Kamilek&Misiek 2010-09-01 15:59:14.1.2 - x86
Microsoft Windows XP Professional 5.1.2600.2.1250.48.1045.18.2047.1499 [GMT 2:00]
Uruchomiony z: c:\documents and settings\Kamilek&Misiek\Pulpit\ComboFix.exe
AV: ESET NOD32 Antivirus 4.0 *On-access scanning disabled* (Updated) {E5E70D32-0101-4F12-8FB0-D96ACA4F34C0}
.

((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.

c:\windows\mirc.ini

.
((((((((((((((((((((((((( Pliki utworzone od 2010-08-01 do 2010-09-01 )))))))))))))))))))))))))))))))
.

2010-09-01 12:52 . 2004-08-03 22:44 77312 -c--a-w- c:\windows\system32\dllcache\wam51.dll
2010-09-01 12:51 . 2004-08-03 21:00 20736 -c--a-w- c:\windows\system32\dllcache\ramdisk.sys
2010-09-01 12:50 . 2004-08-03 22:43 24064 -c--a-w- c:\windows\system32\dllcache\compfilt.dll
2010-09-01 12:49 . 2001-10-26 15:29 16384 -c--a-w- c:\windows\system32\dllcache\isignup.exe
2010-09-01 12:39 . 2001-10-26 15:29 24661 -c--a-w- c:\windows\system32\dllcache\spxcoins.dll
2010-09-01 12:39 . 2001-10-26 15:29 24661 ----a-w- c:\windows\system32\spxcoins.dll
2010-09-01 12:39 . 2001-10-26 15:29 13312 -c--a-w- c:\windows\system32\dllcache\irclass.dll
2010-09-01 12:39 . 2001-10-26 15:29 13312 ----a-w- c:\windows\system32\irclass.dll
2010-08-25 14:56 . 2010-08-25 14:56 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II
2010-08-21 17:06 . 2002-12-17 14:23 33340 ----a-w- c:\windows\system32\dbmsqlgc.dll
2010-08-21 17:06 . 2002-10-20 12:05 24576 ----a-w- c:\windows\system32\dbmsgnet.dll
2010-08-21 17:06 . 2010-08-21 17:06 -------- d-----w- c:\program files\Microsoft SQL Server
2010-08-21 17:05 . 2010-08-21 17:05 -------- d-----w- c:\program files\Vstplugins
2010-08-21 17:04 . 2010-08-21 17:04 -------- d-----w- c:\program files\Sony Setup
2010-08-05 19:41 . 2010-08-05 19:41 503808 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\msvcp71.dll
2010-08-05 19:41 . 2010-08-05 19:41 499712 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\jmc.dll
2010-08-05 19:41 . 2010-08-05 19:41 348160 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\4\7ec4bf04-7eb30b87-n\msvcr71.dll
2010-08-05 19:41 . 2010-08-05 19:41 61440 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-2ba0e944-n\decora-sse.dll
2010-08-05 19:41 . 2010-08-05 19:41 12800 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\42\4488892a-2ba0e944-n\decora-d3d.dll

.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2010-09-01 13:17 . 2010-09-01 13:17 388096 ----a-r- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Microsoft\Installer\{45A66726-69BC-466B-A7A4-12FCBA4883D7}\HiJackThis.exe
2010-09-01 12:55 . 2001-10-26 14:15 8060 ----a-w- c:\windows\system32\perfc015.dat
2010-09-01 12:55 . 2001-10-26 14:15 22296 ----a-w- c:\windows\system32\perfh015.dat
2010-09-01 12:47 . 2008-09-13 17:39 23016 ----a-w- c:\windows\system32\emptyregdb.dat
2010-08-29 19:31 . 2010-04-10 20:28 -------- d-----w- c:\program files\SopCast
2010-08-28 19:52 . 2010-05-07 20:18 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10
2010-08-27 16:47 . 2010-05-12 18:15 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Azureus
2010-08-25 14:37 . 2008-09-13 18:08 -------- d--h--w- c:\program files\InstallShield Installation Information
2010-08-21 17:06 . 2010-05-23 13:22 -------- d-----w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sony
2010-08-21 17:05 . 2010-05-23 13:21 -------- d-----w- c:\program files\Sony
2010-08-20 23:26 . 2010-05-30 08:00 1074 ----a-w- c:\program files\Common Files\userInit.dll
2010-07-19 09:54 . 2010-07-19 09:43 -------- d-----w- c:\program files\Cheat Engine
2010-07-16 09:33 . 2010-07-16 09:33 503808 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\msvcp71.dll
2010-07-16 09:33 . 2010-07-16 09:33 499712 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\jmc.dll
2010-07-16 09:33 . 2010-07-16 09:33 348160 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\46\f84c6ae-1a4b0d45-n\msvcr71.dll
2010-07-16 09:33 . 2010-07-16 09:33 -------- d-----w- c:\program files\Common Files\Java
2010-07-16 09:33 . 2010-07-16 09:33 61440 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-55b3aa36-n\decora-sse.dll
2010-07-16 09:33 . 2010-07-16 09:33 12800 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\Deployment\SystemCache\6.0\50\5535ab32-55b3aa36-n\decora-d3d.dll
2010-07-16 09:33 . 2009-01-21 22:57 -------- d-----w- c:\program files\Java
2010-07-15 21:14 . 2010-07-15 21:16 874784 ----a-w- c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Sun\Java\JRERunOnce.exe
2010-07-13 15:15 . 2008-09-13 19:04 -------- d-----w- c:\program files\BearShare
2010-06-22 02:36 . 2010-07-16 09:33 423656 ----a-w- c:\windows\system32\deployJava1.dll
2010-05-29 20:34 . 2010-05-29 20:34 27958 ----a-w- c:\program files\Common Files\logonInit.dll
.

((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools"="c:\program files\DAEMON Tools\daemon.exe" [2007-04-03 165784]
"Google Update"="c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" [2009-03-05 133104]
"LightScribe Control Panel"="c:\program files\Common Files\LightScribe\LightScribeControlPanel.exe" [2009-10-16 2363392]
"CreativeTaskScheduler"="c:\program files\Creative\Shared Files\CTSched.exe" [2006-11-17 53341]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="c:\windows\system32\NvCpl.dll" [2008-05-16 13529088]
"nwiz"="nwiz.exe" [2008-05-16 1630208]
"WinampAgent"="c:\program files\Winamp\winampa.exe" [2008-08-03 36352]
"HPDJ Taskbar Utility"="c:\windows\system32\spool\drivers\w32x86\3\hpztsb09.exe" [2003-07-28 188416]
"HP Software Update"="c:\program files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" [2003-06-25 49152]
"HP Component Manager"="c:\program files\HP\hpcoretech\hpcmpmgr.exe" [2003-10-23 233472]
"UVS11 Preload"="c:\program files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe" [2007-09-12 340136]
"NeroFilterCheck"="c:\program files\Common Files\Ahead\Lib\NeroCheck.exe" [2006-01-12 155648]
"VolPanel"="c:\program files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" [2008-08-27 233588]
"Adobe Reader Speed Launcher"="c:\program files\Adobe\Reader 9.0\Reader\Reader_sl.exe" [2010-06-20 35760]
"egui"="c:\program files\ESET\ESET NOD32 Antivirus\egui.exe" [2009-11-16 2054360]
"NvMediaCenter"="c:\windows\system32\NvMcTray.dll" [2008-05-16 86016]

[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="c:\windows\system32\CTFMON.EXE" [2004-08-03 15360]

c:\documents and settings\Kamilek&Misiek\Menu Start\Programy\Autostart\
Adobe Gamma.lnk - c:\program files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe [2005-3-16 113664]

c:\documents and settings\All Users\Menu Start\Programy\Autostart\
DualCoreCenter.lnk - c:\program files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe [2008-9-13 192512]

[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoAutoUpdate"= 1 (0x1)

[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"%windir%\\system32\\sessmgr.exe"=
"%windir%\\Network Diagnostic\\xpnetdiag.exe"=
"c:\\Program Files\\Gadu-Gadu\\gg.exe"=
"c:\\Gry\\Gierki\\Soldat\\Soldat.exe"=
"c:\\Gry\\Heroes3\\HEROES3.EXE"=
"c:\\Gry\\Valve\\hl.exe"=
"c:\\totalcmd\\TOTALCMD.EXE"=
"c:\\WINDOWS\\system32\\PnkBstrA.exe"=
"c:\\WINDOWS\\system32\\PnkBstrB.exe"=
"c:\\Program Files\\Mozilla Firefox\\firefox.exe"=
"c:\\Program Files\\Metin2_PL\\metin2.bin"=
"c:\\GRY\\Football Manager 2010\\fm.exe"=
"c:\\Gry\\Pro Evolution Soccer 2010\\pes2010.exe"=
"c:\\Gry\\Steam\\SteamApps\\zoltymms\\condition zero\\hl.exe"=
"c:\\Gry\\Steam\\SteamApps\\zoltymms\\deathmatch classic\\hl.exe"=
"c:\\Gry\\Steam\\SteamApps\\zoltymms\\condition zero deleted scenes\\hl.exe"=
"c:\\Program Files\\mIRC\\mirc.exe"=
"c:\\WINDOWS\\system32\\dpvsetup.exe"=
"c:\\Gry\\Steam\\Steam.exe"=
"c:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"c:\\Program Files\\SopCast\\SopCast.exe"=
"c:\\Program Files\\Gadu-Gadu 10\\gg.exe"=
"c:\\Program Files\\Vuze\\Azureus.exe"=
"c:\\Program Files\\Activision\\Call of Duty 4 - Modern Warfare\\iw3mp.exe"=
"c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\srcds.exe"=
"c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\swarm.exe"=
"c:\\Gry\\Steam\\SteamApps\\common\\alien swarm\\bin\\SDKLauncher.exe"=
"c:\\Gry\\Bitwa o Śródziemie II\\game.dat"=
"c:\\Gry\\Steam\\SteamApps\\zoltymms\\counter-strike\\hl.exe"=

R1 ehdrv;ehdrv;c:\windows\system32\drivers\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir;c:\windows\system32\drivers\epfwtdir.sys [2009-11-16 96408]
R2 ekrn;ESET Service;c:\program files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R3 DualCoreCenter;DualCoreCenter;c:\program files\MSI\DualCoreCenter\NTGLM7X.sys [2008-09-13 28160]
R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol);c:\windows\system32\drivers\RMSPPPOE.SYS [2008-09-13 31424]
R3 RushTopDevice2;RushTopDevice2;c:\program files\MSI\DualCoreCenter\RushTop.sys [2008-09-13 51200]
S0 sptd;sptd;c:\windows\system32\drivers\sptd.sys [2008-09-13 682232]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service;c:\program files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\g:\ntglm7x.sys --> g:\NTGLM7X.sys [?]
S3 skfilt;skfilt;c:\windows\system32\drivers\skfilt.SYS [2009-12-10 1670016]

[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
2009-10-16 11:49 451872 ----a-w- c:\program files\Common Files\LightScribe\LSRunOnce.exe
.
Zawartość folderu 'Zaplanowane zadania'

2010-08-31 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job
- c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 16:43]

2010-09-01 c:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job
- c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 16:43]
.
.
------- Skan uzupełniający -------
.
IE: E&ksport do programu Microsoft Excel - c:\progra~1\MI699F~1\OFFICE11\EXCEL.EXE/3000
IE: E&ksportuj do programu Microsoft Excel - c:\progra~1\MICROS~2\Office12\EXCEL.EXE/3000
FF - ProfilePath - c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\
FF - prefs.js: browser.startup.homepage - hxxp://www.google.pl/
FF - plugin: c:\documents and settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\npgg.2.dll
FF - plugin: c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}\plugins\npOggX.dll
FF - plugin: c:\documents and settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com\plugins\npTVUAx.dll
FF - plugin: c:\documents and settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\npGoogleOneClick8.dll
FF - plugin: c:\program files\Java\jre6\bin\new_plugin\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npdeployJava1.dll
FF - plugin: c:\program files\Mozilla Firefox\plugins\npOggX.dll

---- FIREFOX - SPOSÓB POSTĘPOWANIA ----
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgbaam7a8h", true);
c:\program files\Mozilla Firefox\greprefs\all.js - pref("network.IDN.whitelist.xn--mgberp4a5d4ar", true);
.

**************************************************************************
skanowanie ukrytych procesów ...

skanowanie ukrytych wpisów autostartu ...

skanowanie ukrytych plików ...

skanowanie pomyślnie ukończone
ukryte pliki:

**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------

[HKEY_USERS\S-1-5-21-1708537768-706699826-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:e3,bb,e4,6c,3f,7c,76,b7,f1,50,cd,a6,f2,2f,51,e0,17,1a,12,dd,b2,25,54,
9c,c0,7a,ae,fa,1c,b8,09,54,ad,06,9e,b6,63,3b,ba,35,6e,41,f9,8c,b8,4e,d3,c0,\
"??"=hex:df,7e,4b,dc,6e,57,6d,a4,c7,7a,b9,e1,ee,ae,69,33

[HKEY_USERS\S-1-5-21-1708537768-706699826-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:a0,b4,7b,29,26,9c,77,0a,5e,9b,2a,85,02,a1,dd,81,63,dd,6b,60,55,
70,bd,d8,c2,4c,59,3d,06,8c,d6,4c,c4,c1,db,0d,7f,a5,6e,d5,0d,73,2c,88,19,0a,\
"rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb
.
Czas ukończenia: 2010-09-01 16:03:18
ComboFix-quarantined-files.txt 2010-09-01 14:03

Przed: 10 808 127 488 bajtów wolnych
Po: 10 774 167 552 bajtów wolnych

WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
[boot loader]
timeout=2
default=multi(0)disk(0)rdisk(0)partition(1)\WINDOWS
[operating systems]
c:\cmdcons\BOOTSECT.DAT="Microsoft Windows Recovery Console" /cmdcons
UnsupportedDebug="do not select this" /debug
multi(0)disk(0)rdisk(0)partition(1)\WINDOWS="Microsoft Windows XP Professional" /noexecute=optin /fastdetect

Current=1 Default=1 Failed=0 LastKnownGood=4 Sets=1,2,3,4
- - End Of File - - 6594EC325559846E63CC36A01CC6D8DA[/log]

Tomek01
komentarz
komentarz

Po pierwsze, używanie Combofix'a bez wyraźnego zalecenia, możesz sobie narobić szkód.
Po drugie, przeczytaj regulamin wstawiania logów. Należy wstawiać je w tagi.
Po trzecie, rzeczywiście są wirusy, dlatego proszę o te logi.

kamilek073
komentarz
komentarz (edytowane)

log jest podany w poscie wyzej.
pomoze ktos? ;)

Tomek01
komentarz
komentarz

Ja widzę, że jest log z Combofix'a, widzę tam infekcję, dlatego też poprosiłem o logi które obowiązują na Naszym forum. OTL i RSIT. Wtedy będzie można kompletnie usunąć wirusy i upewnić się, że nie ma czegoś jeszcze. Log z Combofix'a nie pokazuje całego obrazu systemu.

kamilek073
komentarz
komentarz (edytowane)

oto log z OTLa
[log]OTL logfile created on: 2010-09-02 21:43:38 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,89 Gb Total Space | 10,11 Gb Free Space | 11,50% Space Free | Partition Type: NTFS
Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS
Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MISIEK-F67C23CE
Current User Name: Kamilek&Misiek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
PRC - [2010-07-22 01:24:16 | 012,477,024 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe
PRC - [2010-06-24 21:42:20 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe
PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-08-27 19:19:20 | 000,233,588 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe
PRC - [2008-08-04 01:02:20 | 000,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
PRC - [2007-10-14 16:04:20 | 020,836,352 | ---- | M] () -- C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
PRC - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2006-11-17 11:42:46 | 000,053,341 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-07-28 15:43:44 | 000,188,416 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
PRC - [2003-06-25 12:24:48 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
PRC - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-12-10 14:03:01 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
SRV - [2002-12-17 17:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTGLM7X.sys -- (SetupNTGLM7X)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTACCESS.sys -- (NTACCESS)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\install4\MSICPL.sys -- (MSICPL)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys -- (catchme)
DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008-12-21 17:44:28 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008-12-21 17:44:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008-09-13 20:40:36 | 000,682,232 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-05-16 14:01:00 | 006,557,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-02-12 04:50:56 | 001,670,016 | R--- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\skfilt.SYS -- (skfilt)
DRV - [2007-10-15 19:34:16 | 000,051,200 | ---- | M] (Your Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\RushTop.sys -- (RushTopDevice2)
DRV - [2007-10-12 10:32:30 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-04-17 14:42:00 | 000,028,160 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- (DualCoreCenter)
DRV - [2005-02-11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004-08-04 00:54:52 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004-08-03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV - [2003-06-09 03:44:32 | 000,113,840 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2003-06-09 03:44:22 | 000,494,384 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2003-06-09 03:42:28 | 000,819,984 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol)
DRV - [2002-09-09 19:54:06 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\ASNDIS5.sys -- (ASNDIS5)
DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {eaf8a4ef-d221-45ca-9deb-d0934b45fa34}:1.3.0.3
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-21 13:10:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-21 13:10:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-02-10 16:04:51 | 000,000,000 | ---D | M]

[2008-09-13 20:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Extensions
[2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions
[2010-08-18 11:51:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-07-04 13:26:02 | 000,000,000 | ---D | M] (OggX (powered by TIME S.A.)) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}
[2009-12-13 12:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com
[2009-10-18 11:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\zrzuta.eu@gmail.com
[2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-07-16 11:33:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-06-22 04:36:30 | 000,423,656 | ---- | M] (Oracle) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009-01-28 20:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll
[2010-06-24 22:40:16 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-06-24 22:40:16 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-06-24 22:40:16 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-06-24 22:40:16 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-06-24 22:40:16 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-06-24 22:40:16 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2010-09-01 16:02:34 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe (HP)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd)
O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe ()
O4 - Startup: C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office 2003\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office 2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.100 77.245.242.226
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-09-13 19:42:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-09-02 21:42:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
[2010-09-02 13:25:17 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-09-01 15:57:23 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-09-01 15:53:44 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-09-01 15:53:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-09-01 15:53:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-09-01 15:53:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\ComboFix
[2010-09-01 15:51:55 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-09-01 14:54:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-09-01 14:52:25 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010-09-01 14:52:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010-09-01 14:52:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010-09-01 14:52:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010-09-01 14:52:23 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2010-09-01 14:52:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2010-09-01 14:52:23 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010-09-01 14:52:23 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010-09-01 14:52:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2010-09-01 14:52:22 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2010-09-01 14:52:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2010-09-01 14:52:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2010-09-01 14:52:21 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010-09-01 14:52:21 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010-09-01 14:52:21 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010-09-01 14:52:21 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2010-09-01 14:52:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010-09-01 14:52:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010-09-01 14:52:16 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2010-09-01 14:52:16 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010-09-01 14:52:15 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010-09-01 14:52:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010-09-01 14:52:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2010-09-01 14:52:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010-09-01 14:52:14 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010-09-01 14:52:14 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010-09-01 14:52:14 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010-09-01 14:52:14 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010-09-01 14:52:14 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010-09-01 14:52:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2010-09-01 14:52:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2010-09-01 14:52:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2010-09-01 14:52:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2010-09-01 14:52:11 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010-09-01 14:52:11 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010-09-01 14:52:10 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2010-09-01 14:52:10 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2010-09-01 14:52:10 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2010-09-01 14:52:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010-09-01 14:52:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2010-09-01 14:52:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010-09-01 14:52:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2010-09-01 14:52:09 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2010-09-01 14:52:09 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2010-09-01 14:52:09 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2010-09-01 14:52:09 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010-09-01 14:52:09 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010-09-01 14:52:08 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2010-09-01 14:52:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010-09-01 14:52:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010-09-01 14:52:08 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010-09-01 14:52:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010-09-01 14:52:03 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010-09-01 14:52:03 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010-09-01 14:52:02 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010-09-01 14:52:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2010-09-01 14:52:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010-09-01 14:52:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2010-09-01 14:52:00 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010-09-01 14:52:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010-09-01 14:51:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010-09-01 14:51:59 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2010-09-01 14:51:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010-09-01 14:51:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010-09-01 14:51:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2010-09-01 14:51:57 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010-09-01 14:51:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010-09-01 14:51:57 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010-09-01 14:51:57 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010-09-01 14:51:57 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010-09-01 14:51:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010-09-01 14:51:56 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010-09-01 14:51:56 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010-09-01 14:51:56 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2010-09-01 14:51:55 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010-09-01 14:51:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2010-09-01 14:51:55 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010-09-01 14:51:55 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010-09-01 14:51:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010-09-01 14:51:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010-09-01 14:51:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2010-09-01 14:51:52 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2010-09-01 14:51:50 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010-09-01 14:51:49 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2010-09-01 14:51:47 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010-09-01 14:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010-09-01 14:51:41 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010-09-01 14:51:41 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010-09-01 14:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2010-09-01 14:51:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2010-09-01 14:51:40 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010-09-01 14:51:40 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2010-09-01 14:51:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2010-09-01 14:51:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2010-09-01 14:51:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2010-09-01 14:51:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2010-09-01 14:51:39 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2010-09-01 14:51:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2010-09-01 14:51:36 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010-09-01 14:51:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010-09-01 14:51:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010-09-01 14:51:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010-09-01 14:51:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010-09-01 14:51:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2010-09-01 14:51:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010-09-01 14:51:33 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2010-09-01 14:51:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010-09-01 14:51:33 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2010-09-01 14:51:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010-09-01 14:51:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010-09-01 14:51:32 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2010-09-01 14:51:31 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2010-09-01 14:51:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2010-09-01 14:51:31 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2010-09-01 14:51:30 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010-09-01 14:51:30 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010-09-01 14:51:30 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010-09-01 14:51:30 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010-09-01 14:51:30 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010-09-01 14:51:30 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010-09-01 14:51:30 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010-09-01 14:51:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010-09-01 14:51:30 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010-09-01 14:51:29 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010-09-01 14:51:29 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010-09-01 14:51:29 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010-09-01 14:51:29 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010-09-01 14:51:29 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010-09-01 14:51:29 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010-09-01 14:51:29 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010-09-01 14:51:28 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010-09-01 14:51:28 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010-09-01 14:51:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010-09-01 14:51:28 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010-09-01 14:51:28 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010-09-01 14:51:28 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010-09-01 14:51:28 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2010-09-01 14:51:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010-09-01 14:51:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2010-09-01 14:51:28 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2010-09-01 14:51:27 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2010-09-01 14:51:27 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2010-09-01 14:51:27 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2010-09-01 14:51:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2010-09-01 14:51:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2010-09-01 14:51:23 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010-09-01 14:51:14 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010-09-01 14:51:14 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2010-09-01 14:51:14 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2010-09-01 14:51:14 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2010-09-01 14:51:13 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2010-09-01 14:51:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010-09-01 14:51:11 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2010-09-01 14:51:10 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2010-09-01 14:51:10 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2010-09-01 14:51:10 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2010-09-01 14:51:10 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2010-09-01 14:51:10 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2010-09-01 14:51:10 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2010-09-01 14:51:10 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2010-09-01 14:51:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2010-09-01 14:51:09 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2010-09-01 14:51:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2010-09-01 14:51:09 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010-09-01 14:51:09 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010-09-01 14:51:09 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2010-09-01 14:51:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2010-09-01 14:51:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010-09-01 14:51:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2010-09-01 14:51:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010-09-01 14:51:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2010-09-01 14:51:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2010-09-01 14:51:08 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2010-09-01 14:51:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2010-09-01 14:51:08 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2010-09-01 14:51:08 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2010-09-01 14:51:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010-09-01 14:51:07 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010-09-01 14:51:07 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010-09-01 14:51:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2010-09-01 14:51:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2010-09-01 14:51:06 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2010-09-01 14:51:06 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2010-09-01 14:51:06 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010-09-01 14:51:06 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010-09-01 14:51:06 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010-09-01 14:51:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2010-09-01 14:51:06 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010-09-01 14:51:02 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010-09-01 14:51:01 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2010-09-01 14:51:00 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010-09-01 14:51:00 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2010-09-01 14:51:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2010-09-01 14:51:00 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2010-09-01 14:51:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010-09-01 14:50:59 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2010-09-01 14:50:58 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010-09-01 14:50:58 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010-09-01 14:50:58 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010-09-01 14:50:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010-09-01 14:50:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010-09-01 14:50:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010-09-01 14:50:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010-09-01 14:50:57 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010-09-01 14:50:57 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010-09-01 14:50:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010-09-01 14:50:57 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010-09-01 14:50:57 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010-09-01 14:50:56 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2010-09-01 14:50:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010-09-01 14:50:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010-09-01 14:50:56 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010-09-01 14:50:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2010-09-01 14:50:50 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2010-09-01 14:50:44 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2010-09-01 14:50:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2010-09-01 14:50:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2010-09-01 14:50:43 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2010-09-01 14:50:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2010-09-01 14:50:43 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2010-09-01 14:50:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2010-09-01 14:50:38 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2010-09-01 14:50:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2010-09-01 14:50:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010-09-01 14:50:35 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2010-09-01 14:50:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2010-09-01 14:50:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2010-09-01 14:50:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2010-09-01 14:50:34 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2010-09-01 14:50:34 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2010-09-01 14:50:30 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2010-09-01 14:50:30 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2010-09-01 14:50:30 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2010-09-01 14:50:30 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2010-09-01 14:50:30 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2010-09-01 14:50:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2010-09-01 14:50:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2010-09-01 14:50:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2010-09-01 14:50:29 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2010-09-01 14:50:29 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2010-09-01 14:50:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2010-09-01 14:50:29 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2010-09-01 14:50:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2010-09-01 14:50:29 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2010-09-01 14:50:29 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2010-09-01 14:50:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2010-09-01 14:50:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2010-09-01 14:50:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2010-09-01 14:50:28 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2010-09-01 14:50:28 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2010-09-01 14:50:28 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2010-09-01 14:50:28 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2010-09-01 14:50:28 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2010-09-01 14:50:28 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2010-09-01 14:50:28 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2010-09-01 14:50:28 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2010-09-01 14:50:28 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2010-09-01 14:50:28 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2010-09-01 14:50:28 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2010-09-01 14:50:27 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2010-09-01 14:50:27 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2010-09-01 14:50:27 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2010-09-01 14:50:27 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2010-09-01 14:50:27 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2010-09-01 14:50:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2010-09-01 14:50:26 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2010-09-01 14:50:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2010-09-01 14:50:26 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2010-09-01 14:50:25 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2010-09-01 14:49:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010-08-27 22:20:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kamilek&Misiek\Recent
[2010-08-26 20:19:20 | 002,273,448 | ---- | C] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe
[2010-08-25 16:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II
[2010-08-21 19:06:38 | 000,033,340 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsqlgc.dll
[2010-08-21 19:06:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsgnet.dll
[2010-08-21 19:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2010-08-21 19:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\Vstplugins
[2010-08-21 19:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup
[2010-08-21 18:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Gówno
[2010-08-19 19:33:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HENIEK
[2010-08-16 17:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\AŁDI SAMOCHUD HAHAHA
[2010-08-06 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Wakacje
[2008-09-13 20:06:30 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
[2010-09-02 21:13:41 | 000,181,020 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-09-02 21:13:35 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-09-02 21:13:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-09-02 21:13:30 | 2146,742,272 | -HS- | M] () -- C:\hiberfil.sys
[2010-09-02 20:55:45 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc
[2010-09-02 20:47:00 | 000,001,168 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job
[2010-09-02 19:15:53 | 011,272,192 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\NTUSER.DAT
[2010-09-02 19:15:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx
[2010-09-02 19:15:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx
[2010-09-02 19:15:47 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Kamilek&Misiek\ntuser.ini
[2010-09-02 16:28:35 | 000,002,461 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk
[2010-09-02 13:55:33 | 000,000,170 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin
[2010-09-01 21:47:00 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job
[2010-09-01 18:33:57 | 000,203,815 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg
[2010-09-01 18:32:49 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Microsoft Office Word 2003.lnk
[2010-09-01 18:31:43 | 000,099,968 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-09-01 16:02:38 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-09-01 16:02:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010-09-01 15:57:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010-09-01 15:49:46 | 003,830,025 | R--- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe
[2010-09-01 14:56:07 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-09-01 14:55:18 | 000,364,114 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-09-01 14:55:18 | 000,292,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-09-01 14:55:18 | 000,034,488 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-09-01 14:55:18 | 000,022,296 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-09-01 14:55:18 | 000,008,060 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-09-01 14:54:12 | 000,345,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-09-01 14:52:59 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-09-01 14:50:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-09-01 14:50:09 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-09-01 14:50:09 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-09-01 14:49:59 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-09-01 14:49:07 | 000,000,661 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-09-01 14:47:55 | 000,023,016 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-09-01 14:46:37 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-08-31 22:40:21 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list motyw. Jarek.doc
[2010-08-31 21:50:21 | 000,001,985 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2010-08-31 20:15:57 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk
[2010-08-31 17:48:18 | 000,024,064 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc
[2010-08-31 14:06:06 | 000,016,462 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt
[2010-08-31 14:06:06 | 000,002,952 | ---- | M] () -- C:\WINDOWS\bestplayer.ini
[2010-08-31 14:06:06 | 000,000,112 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp
[2010-08-29 21:31:42 | 000,000,677 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk
[2010-08-29 20:51:57 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp
[2010-08-29 20:05:30 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp
[2010-08-28 22:26:59 | 000,351,232 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp
[2010-08-26 20:19:59 | 002,273,448 | ---- | M] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe
[2010-08-25 20:58:17 | 007,435,769 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2
[2010-08-25 16:49:48 | 000,001,569 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk
[2010-08-21 18:49:37 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk
[2010-08-21 01:26:36 | 000,001,074 | ---- | M] () -- C:\Program Files\Common Files\userInit.dll
[2010-08-18 19:04:40 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc
[2010-08-17 16:53:24 | 000,081,193 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid
[2010-08-16 00:27:42 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3
[2010-08-13 12:41:39 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-08-04 14:26:56 | 000,128,005 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Michał fotka.jpg
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[11 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-09-02 20:55:45 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc
[2010-09-02 13:55:33 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin
[2010-09-01 18:33:57 | 000,203,815 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg
[2010-09-01 15:57:27 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-09-01 15:57:25 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2010-09-01 15:53:44 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-09-01 15:53:44 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-09-01 15:53:44 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-09-01 15:53:44 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-09-01 15:53:44 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-09-01 15:49:13 | 003,830,025 | R--- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe
[2010-09-01 15:17:05 | 000,002,461 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk
[2010-09-01 14:52:29 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010-09-01 14:51:58 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010-09-01 14:51:57 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010-09-01 14:51:56 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010-09-01 14:51:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010-09-01 14:51:37 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010-09-01 14:51:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010-09-01 14:51:29 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010-09-01 14:51:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010-09-01 14:51:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010-09-01 14:51:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010-09-01 14:51:08 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010-09-01 14:50:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010-09-01 14:50:54 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010-09-01 14:50:54 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010-09-01 14:50:54 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010-09-01 14:50:53 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010-09-01 14:50:53 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010-09-01 14:50:53 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010-09-01 14:50:53 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010-09-01 14:50:53 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010-09-01 14:50:52 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010-09-01 14:50:51 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010-09-01 14:50:51 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010-09-01 14:50:51 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010-09-01 14:50:51 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010-09-01 14:50:51 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010-09-01 14:49:21 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-09-01 14:43:14 | 000,186,407 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb
[2010-09-01 14:39:24 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010-09-01 14:39:24 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010-09-01 14:39:24 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010-09-01 14:39:24 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010-09-01 14:39:24 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010-09-01 14:39:24 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010-09-01 14:39:24 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010-09-01 14:39:24 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010-09-01 14:39:24 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010-09-01 14:39:24 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010-09-01 14:39:24 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010-09-01 14:39:24 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010-09-01 14:39:24 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010-09-01 14:39:23 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010-09-01 14:39:23 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010-08-31 17:48:17 | 000,024,064 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc
[2010-08-30 13:24:39 | 000,081,193 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid
[2010-08-29 21:31:42 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk
[2010-08-29 20:51:57 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp
[2010-08-29 20:05:29 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp
[2010-08-28 21:52:45 | 000,351,232 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp
[2010-08-28 20:08:10 | 000,001,985 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010-08-26 20:20:53 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk
[2010-08-25 20:57:17 | 007,435,769 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2
[2010-08-25 16:49:48 | 000,001,569 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk
[2010-08-18 19:04:39 | 000,077,312 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc
[2010-08-16 00:27:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3
[2010-08-14 18:12:55 | 000,002,380 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk
[2010-08-04 14:26:56 | 000,128,005 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Michał fotka.jpg
[2010-07-19 11:43:41 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2010-05-30 10:00:36 | 000,001,074 | ---- | C] () -- C:\Program Files\Common Files\userInit.dll
[2010-05-29 22:34:08 | 000,027,958 | ---- | C] () -- C:\Program Files\Common Files\logonInit.dll
[2009-12-10 14:04:55 | 000,025,199 | R--- | C] () -- C:\WINDOWS\System32\xfisk.ini
[2009-12-10 14:04:55 | 000,000,052 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009-12-10 14:04:49 | 000,151,040 | R--- | C] () -- C:\WINDOWS\System32\KSXPPI32.dll
[2009-10-24 20:16:02 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009-10-24 20:16:02 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009-10-24 20:16:02 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009-10-24 20:16:02 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009-07-23 15:37:47 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Smiley.ico
[2009-07-18 15:12:58 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PnkBstrK.sys
[2009-02-25 09:05:32 | 000,032,562 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpit
[2009-02-25 09:05:32 | 000,000,176 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpite
[2009-02-08 15:47:37 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2009-01-22 20:19:41 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pit2007.ini
[2009-01-22 20:19:40 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pit2008.ini
[2008-12-21 21:17:33 | 000,007,558 | ---- | C] () -- C:\WINDOWS\hpdj5100.ini
[2008-12-21 17:44:28 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008-12-21 17:44:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008-12-10 20:16:58 | 001,572,608 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2008-11-09 03:51:29 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-10-22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-10-17 17:28:58 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-09-17 08:36:55 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2008-09-14 17:54:50 | 000,090,112 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-09-14 17:51:15 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-09-13 21:02:51 | 000,002,952 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2008-09-13 20:56:04 | 000,000,478 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2008-09-13 20:44:22 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-09-13 20:44:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008-09-13 20:44:17 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-09-13 20:44:17 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-09-13 20:44:17 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-09-13 20:44:11 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-09-13 20:44:11 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-09-13 19:58:52 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2008-05-16 14:01:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-05-16 14:01:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-05-16 14:01:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-05-16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-05-16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007-03-26 10:45:18 | 000,071,208 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll
[2007-02-20 14:59:08 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2007-02-20 14:59:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2006-04-19 16:19:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2005-08-30 01:00:00 | 000,781,312 | ---- | C] () -- C:\WINDOWS\System32\RGSS102J.dll
[2005-08-30 01:00:00 | 000,778,752 | ---- | C] () -- C:\WINDOWS\System32\RGSS102E.dll
[2005-08-30 01:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2004-08-04 02:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002-03-17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL

[color=#E56717]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B
< End of report >[/log]

a tutaj log RSIT
[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Kamilek&Misiek at 2010-09-02 21:52:35
Microsoft Windows XP Professional Dodatek Service Pack 2
System drive C: has 10 GB (11%) free of 90 GB
Total RAM: 2047 MB (69% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 21:52:37, on 2010-09-02
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\Gadu-Gadu 10\gg.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Kamilek&Misiek.exe

R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 7403 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-22 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"nwiz"=nwiz.exe /install []
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-04 36352]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [2003-07-28 188416]
"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2003-06-25 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-10-23 233472]
"UVS11 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-09-12 340136]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"VolPanel"=C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe [2008-08-27 233588]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-16 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-04-04 165784]
"Google Update"=C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 133104]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-10-16 2363392]
"CreativeTaskScheduler"=C:\Program Files\Creative\Shared Files\CTSched.exe [2006-11-17 53341]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
DualCoreCenter.lnk - C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe

C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoAutoUpdate"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny"
"C:\Gry\Gierki\Soldat\Soldat.exe"="C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat"
"C:\Gry\Heroes3\HEROES3.EXE"="C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III"
"C:\Gry\Valve\hl.exe"="C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2"
"C:\GRY\Football Manager 2010\fm.exe"="C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010"
"C:\Gry\Pro Evolution Soccer 2010\pes2010.exe"="C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server"
"C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm"
"C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK"
"C:\Gry\Bitwa o Śródziemie II\game.dat"="C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II"
"C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-09-02 21:52:35 ----D---- C:\rsit
2010-09-02 15:38:13 ----RA---- C:\WINDOWS\system32\tmp14.tmp
2010-09-02 15:38:13 ----RA---- C:\WINDOWS\system32\tmp13.tmp
2010-09-02 13:25:17 ----SHD---- C:\RECYCLER
2010-09-01 16:32:31 ----ASH---- C:\pagefile.sys
2010-09-01 16:03:18 ----A---- C:\ComboFix.txt
2010-09-01 15:57:27 ----A---- C:\Boot.bak
2010-09-01 15:57:23 ----RASHD---- C:\cmdcons
2010-09-01 15:53:44 ----A---- C:\WINDOWS\zip.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWSC.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWREG.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\sed.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\PEV.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\NIRCMD.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\MBR.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\grep.exe
2010-09-01 15:53:40 ----D---- C:\WINDOWS\ERDNT
2010-09-01 15:53:40 ----D---- C:\ComboFix
2010-09-01 15:51:55 ----D---- C:\Qoobox
2010-09-01 14:54:37 ----D---- C:\WINDOWS\Prefetch
2010-09-01 14:50:04 ----A---- C:\WINDOWS\OEWABLog.txt
2010-09-01 14:49:21 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\irclass.dll
2010-09-01 14:39:21 ----RA---- C:\WINDOWS\SET5B.tmp
2010-09-01 14:39:19 ----RA---- C:\WINDOWS\SET4F.tmp
2010-09-01 14:39:18 ----RA---- C:\WINDOWS\SET4C.tmp
2010-09-01 14:38:43 ----A---- C:\WINDOWS\setuplog.txt
2010-08-25 16:56:18 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II
2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsqlgc.dll
2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsgnet.dll
2010-08-21 19:06:19 ----D---- C:\Program Files\Microsoft SQL Server
2010-08-21 19:05:27 ----D---- C:\Program Files\Vstplugins
2010-08-21 19:04:31 ----D---- C:\Program Files\Sony Setup

======List of files/folders modified in the last 1 months======

2010-09-02 21:52:13 ----D---- C:\WINDOWS\Temp
2010-09-02 21:46:20 ----D---- C:\Program Files\Mozilla Firefox
2010-09-02 21:41:40 ----D---- C:\WINDOWS\system32\CatRoot2
2010-09-02 20:50:18 ----D---- C:\WINDOWS\system32
2010-09-02 19:15:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-09-02 15:37:49 ----HD---- C:\WINDOWS\inf
2010-09-01 16:37:10 ----D---- C:\WINDOWS\system32\Setup
2010-09-01 16:37:01 ----D---- C:\WINDOWS\system32\usmt
2010-09-01 16:36:52 ----D---- C:\WINDOWS\ehome
2010-09-01 16:36:51 ----D---- C:\WINDOWS\ime
2010-09-01 16:36:50 ----RSD---- C:\WINDOWS\Fonts
2010-09-01 16:36:50 ----D---- C:\WINDOWS\Media
2010-09-01 16:36:38 ----D---- C:\WINDOWS\PeerNet
2010-09-01 16:36:23 ----D---- C:\WINDOWS\system32\npp
2010-09-01 16:36:17 ----D---- C:\WINDOWS\msagent
2010-09-01 16:34:24 ----D---- C:\WINDOWS\system32\1045
2010-09-01 16:34:18 ----D---- C:\WINDOWS\twain_32
2010-09-01 16:34:07 ----D---- C:\WINDOWS\system32\icsxml
2010-09-01 16:33:44 ----D---- C:\WINDOWS\system32\ias
2010-09-01 16:33:38 ----D---- C:\WINDOWS\system32\1033
2010-09-01 16:32:31 ----D---- C:\WINDOWS\WinSxS
2010-09-01 16:32:31 ----D---- C:\WINDOWS\Driver Cache
2010-09-01 16:25:41 ----D---- C:\Program Files\Gadu-Gadu 10
2010-09-01 16:02:38 ----D---- C:\WINDOWS
2010-09-01 16:02:38 ----A---- C:\WINDOWS\system.ini
2010-09-01 16:02:34 ----D---- C:\WINDOWS\system32\drivers\etc
2010-09-01 16:00:47 ----D---- C:\WINDOWS\system32\drivers
2010-09-01 16:00:47 ----D---- C:\WINDOWS\AppPatch
2010-09-01 16:00:43 ----D---- C:\Program Files\Common Files
2010-09-01 15:57:27 ----RASH---- C:\boot.ini
2010-09-01 15:27:15 ----D---- C:\WINDOWS\security
2010-09-01 15:17:06 ----SHD---- C:\WINDOWS\Installer
2010-09-01 14:57:08 ----SHD---- C:\System Volume Information
2010-09-01 14:57:08 ----D---- C:\WINDOWS\system32\Restore
2010-09-01 14:56:54 ----D---- C:\WINDOWS\Registration
2010-09-01 14:55:18 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\inetsrv
2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\config
2010-09-01 14:54:09 ----D---- C:\WINDOWS\nview
2010-09-01 14:54:09 ----D---- C:\WINDOWS\Help
2010-09-01 14:52:29 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-09-01 14:49:59 ----A---- C:\WINDOWS\ODBCINST.INI
2010-09-01 14:49:45 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2010-09-01 14:49:23 ----RD---- C:\WINDOWS\Web
2010-09-01 14:49:23 ----RD---- C:\Program Files
2010-09-01 14:49:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-09-01 14:49:07 ----A---- C:\WINDOWS\win.ini
2010-09-01 14:49:02 ----D---- C:\WINDOWS\system32\oobe
2010-09-01 14:49:01 ----D---- C:\WINDOWS\srchasst
2010-09-01 14:48:58 ----D---- C:\Program Files\Windows Media Player
2010-09-01 14:48:53 ----D---- C:\Program Files\Movie Maker
2010-09-01 14:48:44 ----D---- C:\Program Files\NetMeeting
2010-09-01 14:48:41 ----D---- C:\Program Files\Outlook Express
2010-09-01 14:48:40 ----D---- C:\Program Files\Common Files\System
2010-09-01 14:48:29 ----D---- C:\Program Files\Internet Explorer
2010-09-01 14:47:57 ----D---- C:\WINDOWS\system32\Com
2010-09-01 14:47:33 ----D---- C:\WINDOWS\system32\wbem
2010-09-01 14:47:30 ----D---- C:\Program Files\Windows NT
2010-09-01 14:39:35 ----D---- C:\WINDOWS\system
2010-09-01 14:39:26 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
2010-09-01 14:39:22 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-31 14:06:06 ----A---- C:\WINDOWS\bestplayer.ini
2010-08-29 21:31:44 ----D---- C:\Program Files\SopCast
2010-08-28 21:52:03 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10
2010-08-27 18:47:58 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Azureus
2010-08-25 16:49:10 ----D---- C:\WINDOWS\system32\DirectX
2010-08-25 16:42:10 ----D---- C:\Gry
2010-08-25 16:37:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-23 12:18:38 ----D---- C:\WINDOWS\Minidump
2010-08-21 19:06:02 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Sony
2010-08-21 19:06:01 ----RSD---- C:\WINDOWS\assembly
2010-08-21 19:05:12 ----D---- C:\Program Files\Sony
2010-08-21 18:34:04 ----D---- C:\Misiek
2010-08-21 01:26:36 ----A---- C:\Program Files\Common Files\userInit.dll
2010-08-13 12:41:39 ----A---- C:\WINDOWS\NeroDigital.ini

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-09-13 20747]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-12-21 278984]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-12-21 25416]
R3 BCM43XX;ASUS 802.11 sterownik sieciowego adaptera; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2003-06-09 494384]
R3 ctljystk;Port gier dla karty Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys []
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2003-06-09 819984]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2003-06-09 113840]
R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol); C:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS [2002-10-03 31424]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-12 94592]
R3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\DualCoreCenter\RushTop.sys []
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-09-13 682232]
S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
S3 catchme;catchme; \??\C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys []
S3 GMSIPCI;GMSIPCI; \??\G:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\G:\install4\MSICPL.sys []
S3 NTACCESS;NTACCESS; \??\G:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\G:\NTGLM7X.sys []
S3 skfilt;skfilt; C:\WINDOWS\system32\drivers\skfilt.sys [2008-02-12 1670016]
S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2005-01-28 18944]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-04-30 417792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-22 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728]
R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-18 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-18 107832]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-01-02 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-05 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-01-02 74656]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------
[/log]
OTL extras
[log]OTL Extras logfile created on: 2010-09-02 21:43:38 - Run 1
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 73,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 90,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,89 Gb Total Space | 10,11 Gb Free Space | 11,50% Space Free | Partition Type: NTFS
Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS
Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MISIEK-F67C23CE
Current User Name: Kamilek&Misiek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
htmlfile [edit] -- "C:\Program Files\Microsoft Office 2003\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DoNotAllowExceptions" = 0
"DisableNotifications" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny -- (Gadu-Gadu S.A.)
"C:\Gry\Gierki\Soldat\Soldat.exe" = C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat -- (Michal Marcinkowski)
"C:\Gry\Heroes3\HEROES3.EXE" = C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III -- (The 3DO Company)
"C:\Gry\Valve\hl.exe" = C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\totalcmd\TOTALCMD.EXE" = C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows -- (C. Ghisler & Co.)
"C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox -- (Mozilla Corporation)
"C:\Program Files\Metin2_PL\metin2.bin" = C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2 -- ()
"C:\GRY\Football Manager 2010\fm.exe" = C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010 -- (Sports Interactive)
"C:\Gry\Pro Evolution Soccer 2010\pes2010.exe" = C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010 -- (Konami Digital Entertainment Co., Ltd.)
"C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
"C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.)
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\Gry\Steam\Steam.exe" = C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897 -- (Valve Corporation)
"C:\Program Files\SopCast\adv\SopAdver.exe" = C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver -- (www.sopcast.com)
"C:\Program Files\SopCast\SopCast.exe" = C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application -- (www.sopcast.com)
"C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.)
"C:\Program Files\Vuze\Azureus.exe" = C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze -- (Vuze Inc.)
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe" = C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM) -- ()
"C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server -- ()
"C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm -- ()
"C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe" = C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK -- ()
"C:\Gry\Bitwa o Śródziemie II\game.dat" = C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II -- (Electronic Arts Inc.)
"C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe" = C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam(TM)
"{0DD140D3-9563-481E-AA75-BA457CBDAEF2}" = PC Inspector File Recovery
"{10CCF16B-F1C9-4B24-9570-B4CCEE42392D}" = LightScribe System Software
"{15095BF3-A3D7-4DDF-B193-3A496881E003}" = Microsoft .NET Framework 3.0
"{15C165F1-1DAE-4476-AFB6-8723729B41E7}" = hp deskjet 5100
"{1871FE54-36AA-478F-B374-A46BA54474CC}" = ESET NOD32 Antivirus
"{1A4E47DC-6701-4A85-AA16-C1F99A44598C}" = Spellforce 2 - Czas Mrocznych Wojen
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{236BB7C4-4419-42FD-0415-1E257A25E34D}" = Adobe Photoshop CS2
"{251C3815-7A55-4607-A82D-C3B98F0FBAB8}" = Sony Vegas 7.0
"{26A24AE4-039D-4CA4-87B4-2F83216011FF}" = Java(TM) 6 Update 21
"{283FFB23-8751-4B08-ACB8-5E0F8BCF7727}" = Pro Evolution Soccer 2010
"{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = Bitwa o Śródziemie™ II
"{2B04D44F-1D1B-4E0E-8431-D04F87C21045}" = Nero 7 Ultra Edition
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis
"{491DD792-AD81-429C-9EB4-86DD3D22E333}" = Windows Communication Foundation
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4D87DC92-C328-46EC-A7B4-9C88129DC696}" = Dead Space™
"{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones
"{4ED7D297-58F7-45C3-A9BA-A7CD6FA0D373}_is1" = SureThing CD Labeler LightScribe Trial 5
"{521AAD14-5030-44BB-8B0E-5CE65FCE57E0}" = InterVideo DeviceService
"{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5
"{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV
"{59E4543A-D49D-4489-B445-473D763C79AF}" = Microsoft Games for Windows - LIVE Redistributable
"{5A9FE525-8B8F-4701-A937-7F6745A4E9C7}" = RGSS-RTP Standard
"{5B3A354B-C059-4861-A85B-CA46F1089E15}" = Creative USB Headsets
"{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon
"{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0
"{7197F874-B0E0-4A73-A880-7E712F4D0EB7}}_is1" = Uninstall KnightOnline
"{71A41426-C7A4-4DCF-A9ED-C5B4B105ED1D}" = Sony Media Manager 2.2
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com
"{786C5747-1437-443D-B06E-79A00FE45110}" = Adobe Stock Photos 1.0
"{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo
"{7B31DF8A-8B77-497F-8180-E710A01635F1}" = Warlords IV
"{7D1B85BD-AA07-48B8-808D-67A4067FC6BD}" = Windows Workflow Foundation
"{82D9302E-F209-4805-B548-52087047483A}" = Python 2.4
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{85EBB283-65AF-4C53-9EBE-7C0A232762F7}" = AGEIA PhysX v7.03.21
"{8874FD36-7C9D-4573-8956-E368D6753D90}" = Worms 3D
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EDBA74D-0686-4C99-BFDD-F894678E5101}" = Adobe Common File Installer
"{8F722FA9-B994-4C9B-B292-FD32D6206EDF}" = ASUS WLAN Card Utilities/Driver
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90170415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office FrontPage 2003
"{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6
"{AC76BA86-7AD7-1045-7B44-A93000000001}" = Adobe Reader 9.3.3 - Polish
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{B74D4E10-6884-0000-0000-000000000101}" = Adobe Bridge 1.0
"{BAF78226-3200-4DB4-BE33-4D922A799840}" = Windows Presentation Foundation
"{D9D1A2FD-56B2-4F21-B959-745FE43CAB8C}" = Vegas Pro 9.0
"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)
"{E09B48B5-E141-427A-AB0C-D3605127224A}" = Microsoft SQL Server Desktop Engine (SONY_MEDIAMGR)
"{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E9787678-119F-4D52-B551-6739B2B22101}" = Adobe Help Center 1.0
"{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = VideoStudio
"{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl
"8461-7759-5462-8226" = Vuze
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Adobe Photoshop CS2 - {236BB7C4-4419-42FD-0415-1E257A25E34D}" = Adobe Photoshop CS2
"Adobe Shockwave Player" = Adobe Shockwave Player
"Alex Gordon_is1" = Alex Gordon
"Ashampoo Magical Optimizer" = Ashampoo Magical Optimizer
"CCleaner" = CCleaner (remove only)
"CDex" = CDex extraction audio
"Cheat Engine 5.6.1_is1" = Cheat Engine 5.6.1
"Creative Software AutoUpdate" = Creative Software AutoUpdate
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"dBpowerAMP Music Converter" = dBpowerAMP Music Converter
"DualCoreCenter_is1" = DualCoreCenter
"Dzielenie i łączenie plików_is1" = Dzielenie i łączenie plików v1.2.2
"Egzamin gimnazjalny 2009" = Egzamin gimnazjalny 2009 1.0
"Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni)" = Excel 2007 - praktyczny kurs obsługi (poziom podstawowy i średni)
"Football Manager 2010" = Football Manager 2010
"FormularzeVZM_is1" = Formularze VZM-1 podatki.pl
"Fraps" = Fraps
"Gadu-Gadu" = Gadu-Gadu 7.7
"Gadu-Gadu 10" = Gadu-Gadu 10
"Gimnazjum klasa 2 - Puls życia" = Gimnazjum klasa 2 - Puls życia
"GoldWave v5.10" = GoldWave v5.10
"Heroes of Might and Magic® III" = Heroes of Might and Magic® III
"HijackThis" = HijackThis 2.0.2
"HyperCam 2" = HyperCam 2
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"InstallShield_{F99F9E24-EE2F-47FD-AEB0-FDB82859B5C9}" = Ulead VideoStudio 11
"ipla" = ipla 2.1.3
"IrfanView" = IrfanView (remove only)
"IVONA - syntezator mowy, wersja rehabilitacyjna" = IVONA - syntezator mowy, wersja rehabilitacyjna
"KLiteCodecPack_is1" = K-Lite Codec Pack 4.1.7 (Full)
"Little Fighter 2.5 - v2.0" = Little Fighter 2.5 - v2.0
"MegaTrainer XL_is1" = MegaTrainer XL V1.5.5.5-Beta
"Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0
"Microsoft .NET Framework 3.0" = Microsoft .NET Framework 3.0
"mIRC" = mIRC
"Mozilla Firefox (3.5.11)" = Mozilla Firefox (3.5.11)
"NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2
"nLite_is1" = nLite 1.4.9.1
"NVIDIA Drivers" = NVIDIA Drivers
"OpenAL" = OpenAL
"Otwarte Drzwi_is1" = Otwarte Drzwi - podręcznik multimedialny wersja 1.0
"PhotoScape" = PhotoScape
"PIT 2009 z Gazetą Wyborczą_is1" = PIT 2009 z Gazetą Wyborczą ver. 6.0.1.0
"PITy2008_is1" = PITy2008 ver. 5.0.1.1
"Program Pit 2008 - rozliczenie roczne podatku dochodowego_is1" = Program Pit 2008 - wersja 2.0.0.14
"ProphecyMaster_is1" = ProphecyMaster v1.1
"PunkBusterSvc" = PunkBuster Services
"RealAlt_is1" = Real Alternative 1.42
"RumbleFighter" = Rumble Fighter
"SopCast" = SopCast 3.2.9
"ST6UNST #1" = HLTooLz
"Steam App 10" = Counter-Strike
"Steam App 100" = Condition Zero Deleted Scenes
"Steam App 150" = Counter-Strike Steamworks Beta
"Steam App 30" = Day of Defeat
"Steam App 40" = Deathmatch Classic
"Steam App 60" = Ricochet
"Steam App 640" = Alien Swarm - SDK
"Steam App 80" = Condition Zero
"Switch" = Switch Sound File Converter
"SysInfo" = Creative System Information
"Tasker_is1" = Tasker version 3.13
"Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2
"Tibia_is1" = Tibia
"TMIPC" = Tibia MULTI-ip changer
"Totalcmd" = Total Commander (Remove or Repair)
"Ultra RM Converter_is1" = Ultra RM Converter 4.2.0108
"VMidi" = vanBasco's Karaoke Player
"VoiceChatter" = VoiceChatter
"WavePad" = WavePad Sound Editor
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format Runtime
"WinGimp-2.0-beta_is1" = GIMP 2.7.0
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XviD_is1" = XviD MPEG-4 Video Codec

[color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color]

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"BFX Drippy" = BFX Drippy
"Google Chrome" = Google Chrome

[color=#E56717]========== Last 10 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2010-08-12 09:14:21 | Computer Name = MISIEK-F67C23CE | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd ventrilo.exe, wersja 2.1.4.0, moduł powodujący
błąd ventrilo.exe, wersja 2.1.4.0, adres błędu 0x00035fa6.

Error - 2010-08-31 08:04:04 | Computer Name = MISIEK-F67C23CE | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd ultra rm converter.exe, wersja 1.0.2.0,
moduł powodujący błąd skinmagic.dll, wersja 1.8.1.1, adres błędu 0x0001a64c.

[ System Events ]
Error - 2010-09-02 13:11:49 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148
Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla .

Error - 2010-09-02 13:12:02 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023
Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący
błąd: %%126

Error - 2010-09-02 13:12:04 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: sptd

Error - 2010-09-02 13:12:55 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7031
Description = Usługa ESET Service niespodziewanie zakończyła pracę. Wystąpiło to
razy: 1. W przeciągu 0 milisekund zostanie podjęta następująca czynność korekcyjna:
Uruchom usługę ponownie.

Error - 2010-09-02 13:58:21 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148
Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla .

Error - 2010-09-02 13:58:26 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023
Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący
błąd: %%126

Error - 2010-09-02 13:58:30 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: sptd

Error - 2010-09-02 15:13:39 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7023
Description = Usługa HID Input Service zakończyła działanie; wystąpił następujący
błąd: %%126

Error - 2010-09-02 15:13:47 | Computer Name = MISIEK-F67C23CE | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: sptd

Error - 2010-09-02 15:14:02 | Computer Name = MISIEK-F67C23CE | Source = sptd | ID = 262148
Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla .


< End of report >
[/log]

Tomek01
komentarz
komentarz

W OTL, w oknie Custom scan/fixes wklej:
[code]:Processes
Explorer.exe

:OTL
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.msn.com/
@Alternate Data Stream - 130 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B

:Files
C:\Program Files\Common Files\userInit.dll
C:\Program Files\Common Files\logonInit.dll
C:\WINDOWS\system32\tmp14.tmp
C:\WINDOWS\system32\tmp13.tmp
C:\WINDOWS\SET5B.tmp
C:\WINDOWS\SET4F.tmp
C:\WINDOWS\SET4C.tmp
C:\Program Files\SopCast
C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Klikasz run fix, komputer uruchamia się ponownie.


Wrzuć log z usuwania oraz nowy zestaw logów: OTL, RSIT i Reglooks.

kamilek073
komentarz
komentarz (edytowane)

log z usuwania:
[log]All processes killed
========== PROCESSES ==========
Process Explorer.exe killed successfully!
========== OTL ==========
HKCU\SOFTWARE\Microsoft\Internet Explorer\Main\\Start Page| /E : value set successfully!
ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:6BE50C2B deleted successfully.
========== FILES ==========
C:\Program Files\Common Files\userInit.dll moved successfully.
C:\Program Files\Common Files\logonInit.dll moved successfully.
C:\WINDOWS\system32\tmp14.tmp moved successfully.
C:\WINDOWS\system32\tmp13.tmp moved successfully.
C:\WINDOWS\SET5B.tmp moved successfully.
C:\WINDOWS\SET4F.tmp moved successfully.
C:\WINDOWS\SET4C.tmp moved successfully.
C:\Program Files\SopCast\update\data folder moved successfully.
C:\Program Files\SopCast\update folder moved successfully.
C:\Program Files\SopCast\StreamServer\plugins folder moved successfully.
C:\Program Files\SopCast\StreamServer folder moved successfully.
C:\Program Files\SopCast\skin folder moved successfully.
C:\Program Files\SopCast\recordfiles folder moved successfully.
C:\Program Files\SopCast\languages\sopcore folder moved successfully.
C:\Program Files\SopCast\languages folder moved successfully.
C:\Program Files\SopCast\CrashReport folder moved successfully.
C:\Program Files\SopCast\codec folder moved successfully.
C:\Program Files\SopCast\channellist folder moved successfully.
C:\Program Files\SopCast\cache folder moved successfully.
C:\Program Files\SopCast\adv\default folder moved successfully.
C:\Program Files\SopCast\adv\clips\EE067279-16A4-84A3-33F8-B273AB5A44F2 folder moved successfully.
C:\Program Files\SopCast\adv\clips\D957E741-3FB1-FCFE-9524-CCF1EB1DA723 folder moved successfully.
C:\Program Files\SopCast\adv\clips\A1757DB2-F068-EB6A-4228-3A9EA3519CCB folder moved successfully.
C:\Program Files\SopCast\adv\clips\854A1DBA-8EBC-1EBB-775F-C7DCFCBE92CA folder moved successfully.
C:\Program Files\SopCast\adv\clips\82AED070-D3C5-4B8B-E80D-FB1AAF91015E folder moved successfully.
C:\Program Files\SopCast\adv\clips\75850311-B208-6DC9-EB63-A59D46BDBBC1 folder moved successfully.
C:\Program Files\SopCast\adv\clips\72B2951C-64B6-BE0D-0E10-4FE8371CD0A0 folder moved successfully.
C:\Program Files\SopCast\adv\clips\68D83996-BEB7-2C08-454B-50F66D75CD0E folder moved successfully.
C:\Program Files\SopCast\adv\clips\59D3CDB3-5B26-2EB4-729D-EF4CAB22F95B folder moved successfully.
C:\Program Files\SopCast\adv\clips\54AA7341-FB3F-2750-C038-4906A1C923AA folder moved successfully.
C:\Program Files\SopCast\adv\clips\53FAEDB4-9206-0A0A-6185-3FE87F746365 folder moved successfully.
C:\Program Files\SopCast\adv\clips\18CA426D-7B6D-2F41-FCE2-93B1157CCB67 folder moved successfully.
C:\Program Files\SopCast\adv\clips folder moved successfully.
C:\Program Files\SopCast\adv folder moved successfully.
C:\Program Files\SopCast folder moved successfully.
C:\Documents and Settings\Kamilek&Misiek\Pulpit\SopCast.lnk moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 67 bytes

User: Kamilek&Misiek
->Temp folder emptied: 2692637 bytes
->Temporary Internet Files folder emptied: 84052 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 91629773 bytes
->Google Chrome cache emptied: 234058333 bytes
->Flash cache emptied: 4113 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 32902 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 402 bytes

User: webspell

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2114584 bytes
%systemroot%\System32 .tmp files removed: 6307412 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 245760 bytes
RecycleBin emptied: 10474684 bytes

Total Files Cleaned = 332,00 mb


OTL by OldTimer - Version 3.2.10.0 log created on 09042010_012016

Files\Folders moved on Reboot...
C:\WINDOWS\temp\Perflib_Perfdata_c04.dat moved successfully.

Registry entries deleted on Reboot...
[/log]

nowy log z OTLa
[log]OTL logfile created on: 2010-09-04 01:36:36 - Run 4
OTL by OldTimer - Version 3.2.10.0 Folder = C:\Documents and Settings\Kamilek&Misiek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.2180)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 77,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 92,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 87,89 Gb Total Space | 10,35 Gb Free Space | 11,78% Space Free | Partition Type: NTFS
Drive D: | 68,36 Gb Total Space | 28,34 Gb Free Space | 41,46% Space Free | Partition Type: NTFS
Drive E: | 76,63 Gb Total Space | 3,24 Gb Free Space | 4,22% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded

Computer Name: MISIEK-F67C23CE
Current User Name: Kamilek&Misiek
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color=#E56717]========== Processes (SafeList) ==========[/color]

PRC - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
PRC - [2010-06-24 21:42:20 | 000,134,808 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe
PRC - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2009-11-16 10:03:32 | 002,054,360 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2008-08-27 19:19:20 | 000,233,588 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe
PRC - [2008-08-04 01:02:20 | 000,036,352 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe
PRC - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe
PRC - [2007-10-14 16:04:20 | 020,836,352 | ---- | M] () -- C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
PRC - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
PRC - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
PRC - [2006-11-17 11:42:46 | 000,053,341 | ---- | M] (Creative Technology Ltd) -- C:\Program Files\Creative\Shared Files\CTSched.exe
PRC - [2004-08-04 00:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2003-07-28 15:43:44 | 000,188,416 | ---- | M] (HP) -- C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
PRC - [2003-06-25 12:24:48 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Program Files\Hewlett-Packard\HP Software Update\hpwuSchd.exe
PRC - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe


[color=#E56717]========== Modules (SafeList) ==========[/color]

MOD - [2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
MOD - [2004-08-03 23:01:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2009-12-10 14:03:01 | 000,079,360 | ---- | M] (Creative Labs) [On_Demand | Stopped] -- C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe -- (Creative Audio Engine Licensing Service)
SRV - [2009-11-16 10:12:54 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-11-16 10:04:30 | 000,735,960 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2008-04-30 04:27:50 | 000,417,792 | ---- | M] (Creative Technology Ltd) [Auto | Running] -- C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- (CTAudSvcService)
SRV - [2007-03-06 10:35:02 | 000,198,168 | ---- | M] (InterVideo Inc.) [Auto | Running] -- C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe -- (Capture Device Service)
SRV - [2007-03-03 13:48:28 | 000,067,056 | ---- | M] (Ulead Systems, Inc.) [Auto | Running] -- C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe -- (UleadBurningHelper)
SRV - [2002-12-17 17:26:22 | 007,520,337 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe -- (MSSQL$SONY_MEDIAMGR)
SRV - [2002-12-17 17:23:30 | 000,311,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE -- (SQLAgent$SONY_MEDIAMGR)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTGLM7X.sys -- (SetupNTGLM7X)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\NTACCESS.sys -- (NTACCESS)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\install4\MSICPL.sys -- (MSICPL)
DRV - File not found [Kernel | On_Demand | Stopped] -- G:\INSTALL\GMSIPCI.SYS -- (GMSIPCI)
DRV - File not found [Kernel | On_Demand | Stopped] -- C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys -- (catchme)
DRV - [2009-11-16 10:06:50 | 000,096,408 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2009-11-16 10:03:36 | 000,108,792 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2009-11-16 09:56:12 | 000,116,520 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2008-12-21 17:44:28 | 000,278,984 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\atksgt.sys -- (atksgt)
DRV - [2008-12-21 17:44:28 | 000,025,416 | ---- | M] () [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\lirsgt.sys -- (lirsgt)
DRV - [2008-09-13 20:40:36 | 000,682,232 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2008-05-16 14:01:00 | 006,557,408 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2008-02-12 04:50:56 | 001,670,016 | R--- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\skfilt.SYS -- (skfilt)
DRV - [2007-10-15 19:34:16 | 000,051,200 | ---- | M] (Your Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\RushTop.sys -- (RushTopDevice2)
DRV - [2007-10-12 10:32:30 | 000,094,592 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)
DRV - [2007-04-17 14:42:00 | 000,028,160 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Running] -- C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- (DualCoreCenter)
DRV - [2005-02-11 21:46:22 | 000,371,712 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX)
DRV - [2004-08-04 00:54:52 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum)
DRV - [2004-08-03 23:07:56 | 000,059,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbaudio.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV - [2003-06-09 03:44:32 | 000,113,840 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2003-06-09 03:44:22 | 000,494,384 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2003-06-09 03:42:28 | 000,819,984 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2002-10-03 00:09:08 | 000,031,424 | ---- | M] (Robert Schlabbach) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RMSPPPOE.SYS -- (RMSPPPOE) WAN Miniport (PPP over Ethernet Protocol)
DRV - [2002-09-09 19:54:06 | 000,016,269 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\ASNDIS5.sys -- (ASNDIS5)
DRV - [2001-08-17 22:19:20 | 000,003,712 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctljystk.sys -- (ctljystk)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page =
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.2.2
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {eaf8a4ef-d221-45ca-9deb-d0934b45fa34}:1.3.0.3
FF - prefs.js..extensions.enabledItems: firefox@tvunetworks.com:2
FF - prefs.js..extensions.enabledItems: 4
FF - prefs.js..extensions.enabledItems: 9
FF - prefs.js..extensions.enabledItems: 1
FF - prefs.js..extensions.enabledItems: zrzuta.eu@gmail.com:1.0

FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-07-21 13:10:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.5.11\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-07-21 13:10:35 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2010-02-10 16:04:51 | 000,000,000 | ---D | M]

[2008-09-13 20:17:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Extensions
[2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions
[2010-08-18 11:51:02 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2009-07-04 13:26:02 | 000,000,000 | ---D | M] (OggX (powered by TIME S.A.)) -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\{eaf8a4ef-d221-45ca-9deb-d0934b45fa34}
[2009-12-13 12:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\firefox@tvunetworks.com
[2009-10-18 11:03:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Mozilla\Firefox\Profiles\8s7gd72z.default\extensions\zrzuta.eu@gmail.com
[2010-09-02 21:24:43 | 000,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-07-16 11:33:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-06-22 04:36:30 | 000,423,656 | ---- | M] (Oracle) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2009-01-28 20:46:54 | 000,307,200 | ---- | M] (ESKA) -- C:\Program Files\Mozilla Firefox\plugins\npOggX.dll
[2010-06-24 22:40:16 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-06-24 22:40:16 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-06-24 22:40:16 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-06-24 22:40:16 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-06-24 22:40:16 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-06-24 22:40:16 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2010-09-01 16:02:34 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe (Hewlett-Packard)
O4 - HKLM..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe (HP)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe (InterVideo Digital Technology Corporation)
O4 - HKLM..\Run: [VolPanel] C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe ()
O4 - HKCU..\Run: [CreativeTaskScheduler] C:\Program Files\Creative\Shared Files\CTSched.exe (Creative Technology Ltd)
O4 - HKCU..\Run: [DAEMON Tools] C:\Program Files\DAEMON Tools\daemon.exe (DT Soft Ltd.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe ()
O4 - Startup: C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe (Adobe Systems, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoAutoUpdate = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C:\Program Files\Microsoft Office 2003\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office 2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.100 77.245.242.226
O18 - Protocol\Handler\cetihpz {CF184AD3-CDCB-4168-A3F7-8E447D129300} - C:\Program Files\HP\hpcoretech\comp\hpuiprot.dll (Hewlett-Packard Company)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-09-13 19:42:03 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-09-04 01:20:16 | 000,000,000 | ---D | C] -- C:\_OTL
[2010-09-02 21:52:35 | 000,000,000 | ---D | C] -- C:\rsit
[2010-09-02 21:42:36 | 000,575,488 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
[2010-09-02 13:25:17 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2010-09-01 15:57:23 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2010-09-01 15:53:44 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2010-09-01 15:53:44 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2010-09-01 15:53:44 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2010-09-01 15:53:44 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2010-09-01 15:53:40 | 000,000,000 | ---D | C] -- C:\ComboFix
[2010-09-01 15:51:55 | 000,000,000 | ---D | C] -- C:\Qoobox
[2010-09-01 14:54:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2010-09-01 14:52:25 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime
[2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime
[2010-09-01 14:52:24 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime
[2010-09-01 14:52:24 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime
[2010-09-01 14:52:24 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime
[2010-09-01 14:52:24 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime
[2010-09-01 14:52:23 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll
[2010-09-01 14:52:23 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll
[2010-09-01 14:52:23 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll
[2010-09-01 14:52:23 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys
[2010-09-01 14:52:23 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll
[2010-09-01 14:52:22 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll
[2010-09-01 14:52:22 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll
[2010-09-01 14:52:22 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll
[2010-09-01 14:52:21 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll
[2010-09-01 14:52:21 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll
[2010-09-01 14:52:21 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll
[2010-09-01 14:52:21 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll
[2010-09-01 14:52:17 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll
[2010-09-01 14:52:17 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime
[2010-09-01 14:52:16 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll
[2010-09-01 14:52:16 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe
[2010-09-01 14:52:15 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe
[2010-09-01 14:52:15 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe
[2010-09-01 14:52:15 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll
[2010-09-01 14:52:15 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll
[2010-09-01 14:52:14 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime
[2010-09-01 14:52:14 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll
[2010-09-01 14:52:14 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys
[2010-09-01 14:52:14 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys
[2010-09-01 14:52:14 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys
[2010-09-01 14:52:12 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll
[2010-09-01 14:52:12 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll
[2010-09-01 14:52:12 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll
[2010-09-01 14:52:12 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll
[2010-09-01 14:52:11 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll
[2010-09-01 14:52:11 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll
[2010-09-01 14:52:10 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll
[2010-09-01 14:52:10 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll
[2010-09-01 14:52:10 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll
[2010-09-01 14:52:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll
[2010-09-01 14:52:10 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe
[2010-09-01 14:52:10 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll
[2010-09-01 14:52:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll
[2010-09-01 14:52:09 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll
[2010-09-01 14:52:09 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll
[2010-09-01 14:52:09 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe
[2010-09-01 14:52:09 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll
[2010-09-01 14:52:09 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll
[2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll
[2010-09-01 14:52:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll
[2010-09-01 14:52:08 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe
[2010-09-01 14:52:08 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll
[2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll
[2010-09-01 14:52:08 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll
[2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll
[2010-09-01 14:52:08 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll
[2010-09-01 14:52:08 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll
[2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll
[2010-09-01 14:52:08 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll
[2010-09-01 14:52:08 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll
[2010-09-01 14:52:08 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll
[2010-09-01 14:52:06 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll
[2010-09-01 14:52:03 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll
[2010-09-01 14:52:03 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll
[2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2010-09-01 14:52:02 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2010-09-01 14:52:02 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll
[2010-09-01 14:52:02 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll
[2010-09-01 14:52:01 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime
[2010-09-01 14:52:01 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll
[2010-09-01 14:52:00 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe
[2010-09-01 14:52:00 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe
[2010-09-01 14:51:59 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime
[2010-09-01 14:51:59 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys
[2010-09-01 14:51:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe
[2010-09-01 14:51:59 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe
[2010-09-01 14:51:58 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll
[2010-09-01 14:51:57 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime
[2010-09-01 14:51:57 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll
[2010-09-01 14:51:57 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe
[2010-09-01 14:51:57 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll
[2010-09-01 14:51:57 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll
[2010-09-01 14:51:57 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll
[2010-09-01 14:51:56 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime
[2010-09-01 14:51:56 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll
[2010-09-01 14:51:56 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll
[2010-09-01 14:51:55 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll
[2010-09-01 14:51:55 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll
[2010-09-01 14:51:55 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll
[2010-09-01 14:51:55 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll
[2010-09-01 14:51:55 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll
[2010-09-01 14:51:53 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll
[2010-09-01 14:51:52 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll
[2010-09-01 14:51:52 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll
[2010-09-01 14:51:50 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll
[2010-09-01 14:51:49 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe
[2010-09-01 14:51:47 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex
[2010-09-01 14:51:46 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll
[2010-09-01 14:51:41 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys
[2010-09-01 14:51:41 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll
[2010-09-01 14:51:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe
[2010-09-01 14:51:40 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll
[2010-09-01 14:51:40 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll
[2010-09-01 14:51:40 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll
[2010-09-01 14:51:40 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll
[2010-09-01 14:51:39 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll
[2010-09-01 14:51:39 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll
[2010-09-01 14:51:39 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll
[2010-09-01 14:51:39 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll
[2010-09-01 14:51:38 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll
[2010-09-01 14:51:36 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll
[2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll
[2010-09-01 14:51:36 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll
[2010-09-01 14:51:36 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll
[2010-09-01 14:51:35 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll
[2010-09-01 14:51:35 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll
[2010-09-01 14:51:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll
[2010-09-01 14:51:35 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll
[2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll
[2010-09-01 14:51:35 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll
[2010-09-01 14:51:35 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll
[2010-09-01 14:51:34 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll
[2010-09-01 14:51:34 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll
[2010-09-01 14:51:34 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll
[2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll
[2010-09-01 14:51:34 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll
[2010-09-01 14:51:33 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll
[2010-09-01 14:51:33 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll
[2010-09-01 14:51:33 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll
[2010-09-01 14:51:33 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll
[2010-09-01 14:51:33 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll
[2010-09-01 14:51:33 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll
[2010-09-01 14:51:33 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll
[2010-09-01 14:51:32 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll
[2010-09-01 14:51:31 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll
[2010-09-01 14:51:31 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe
[2010-09-01 14:51:31 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll
[2010-09-01 14:51:30 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll
[2010-09-01 14:51:30 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll
[2010-09-01 14:51:30 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll
[2010-09-01 14:51:30 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe
[2010-09-01 14:51:30 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe
[2010-09-01 14:51:30 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe
[2010-09-01 14:51:30 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll
[2010-09-01 14:51:30 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe
[2010-09-01 14:51:30 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe
[2010-09-01 14:51:29 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll
[2010-09-01 14:51:29 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll
[2010-09-01 14:51:29 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll
[2010-09-01 14:51:29 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe
[2010-09-01 14:51:29 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe
[2010-09-01 14:51:29 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll
[2010-09-01 14:51:29 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe
[2010-09-01 14:51:28 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime
[2010-09-01 14:51:28 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe
[2010-09-01 14:51:28 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll
[2010-09-01 14:51:28 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll
[2010-09-01 14:51:28 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime
[2010-09-01 14:51:28 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll
[2010-09-01 14:51:28 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll
[2010-09-01 14:51:28 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe
[2010-09-01 14:51:28 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe
[2010-09-01 14:51:28 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll
[2010-09-01 14:51:27 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll
[2010-09-01 14:51:27 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll
[2010-09-01 14:51:27 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll
[2010-09-01 14:51:27 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll
[2010-09-01 14:51:27 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll
[2010-09-01 14:51:23 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll
[2010-09-01 14:51:14 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll
[2010-09-01 14:51:14 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll
[2010-09-01 14:51:14 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll
[2010-09-01 14:51:14 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll
[2010-09-01 14:51:13 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll
[2010-09-01 14:51:12 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll
[2010-09-01 14:51:11 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll
[2010-09-01 14:51:10 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll
[2010-09-01 14:51:10 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll
[2010-09-01 14:51:10 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll
[2010-09-01 14:51:10 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe
[2010-09-01 14:51:10 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll
[2010-09-01 14:51:10 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll
[2010-09-01 14:51:10 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll
[2010-09-01 14:51:09 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll
[2010-09-01 14:51:09 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe
[2010-09-01 14:51:09 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe
[2010-09-01 14:51:09 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll
[2010-09-01 14:51:09 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll
[2010-09-01 14:51:09 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll
[2010-09-01 14:51:09 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll
[2010-09-01 14:51:09 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll
[2010-09-01 14:51:09 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll
[2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll
[2010-09-01 14:51:09 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll
[2010-09-01 14:51:09 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe
[2010-09-01 14:51:09 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll
[2010-09-01 14:51:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll
[2010-09-01 14:51:08 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll
[2010-09-01 14:51:08 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll
[2010-09-01 14:51:08 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe
[2010-09-01 14:51:08 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll
[2010-09-01 14:51:08 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll
[2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll
[2010-09-01 14:51:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll
[2010-09-01 14:51:07 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll
[2010-09-01 14:51:07 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe
[2010-09-01 14:51:07 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll
[2010-09-01 14:51:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll
[2010-09-01 14:51:06 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll
[2010-09-01 14:51:06 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe
[2010-09-01 14:51:06 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll
[2010-09-01 14:51:06 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll
[2010-09-01 14:51:06 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll
[2010-09-01 14:51:06 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe
[2010-09-01 14:51:06 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys
[2010-09-01 14:51:02 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime
[2010-09-01 14:51:01 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe
[2010-09-01 14:51:00 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe
[2010-09-01 14:51:00 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe
[2010-09-01 14:51:00 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll
[2010-09-01 14:51:00 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll
[2010-09-01 14:51:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe
[2010-09-01 14:50:59 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll
[2010-09-01 14:50:58 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll
[2010-09-01 14:50:58 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe
[2010-09-01 14:50:58 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll
[2010-09-01 14:50:58 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll
[2010-09-01 14:50:58 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll
[2010-09-01 14:50:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime
[2010-09-01 14:50:57 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll
[2010-09-01 14:50:57 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime
[2010-09-01 14:50:57 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe
[2010-09-01 14:50:57 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe
[2010-09-01 14:50:57 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe
[2010-09-01 14:50:57 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe
[2010-09-01 14:50:56 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll
[2010-09-01 14:50:56 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2010-09-01 14:50:56 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll
[2010-09-01 14:50:56 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll
[2010-09-01 14:50:51 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll
[2010-09-01 14:50:50 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll
[2010-09-01 14:50:44 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll
[2010-09-01 14:50:44 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll
[2010-09-01 14:50:44 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll
[2010-09-01 14:50:43 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll
[2010-09-01 14:50:43 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll
[2010-09-01 14:50:43 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll
[2010-09-01 14:50:42 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll
[2010-09-01 14:50:38 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll
[2010-09-01 14:50:38 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll
[2010-09-01 14:50:38 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll
[2010-09-01 14:50:38 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll
[2010-09-01 14:50:35 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe
[2010-09-01 14:50:35 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll
[2010-09-01 14:50:35 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll
[2010-09-01 14:50:35 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll
[2010-09-01 14:50:34 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll
[2010-09-01 14:50:34 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe
[2010-09-01 14:50:30 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll
[2010-09-01 14:50:30 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll
[2010-09-01 14:50:30 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll
[2010-09-01 14:50:30 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx
[2010-09-01 14:50:30 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll
[2010-09-01 14:50:30 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll
[2010-09-01 14:50:30 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll
[2010-09-01 14:50:30 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe
[2010-09-01 14:50:29 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll
[2010-09-01 14:50:29 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll
[2010-09-01 14:50:29 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll
[2010-09-01 14:50:29 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll
[2010-09-01 14:50:29 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe
[2010-09-01 14:50:29 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll
[2010-09-01 14:50:29 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe
[2010-09-01 14:50:29 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe
[2010-09-01 14:50:29 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll
[2010-09-01 14:50:29 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll
[2010-09-01 14:50:28 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll
[2010-09-01 14:50:28 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe
[2010-09-01 14:50:28 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll
[2010-09-01 14:50:28 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe
[2010-09-01 14:50:28 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll
[2010-09-01 14:50:28 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll
[2010-09-01 14:50:28 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll
[2010-09-01 14:50:28 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll
[2010-09-01 14:50:28 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll
[2010-09-01 14:50:28 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll
[2010-09-01 14:50:28 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe
[2010-09-01 14:50:27 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx
[2010-09-01 14:50:27 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe
[2010-09-01 14:50:27 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll
[2010-09-01 14:50:27 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx
[2010-09-01 14:50:27 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx
[2010-09-01 14:50:27 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll
[2010-09-01 14:50:26 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll
[2010-09-01 14:50:26 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll
[2010-09-01 14:50:26 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll
[2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe
[2010-09-01 14:50:26 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe
[2010-09-01 14:50:25 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll
[2010-09-01 14:49:01 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe
[2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll
[2010-09-01 14:39:36 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll
[2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll
[2010-09-01 14:39:36 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll
[2010-08-27 22:20:52 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Kamilek&Misiek\Recent
[2010-08-26 20:19:20 | 002,273,448 | ---- | C] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe
[2010-08-25 16:56:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II
[2010-08-21 19:06:38 | 000,033,340 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsqlgc.dll
[2010-08-21 19:06:38 | 000,024,576 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dbmsgnet.dll
[2010-08-21 19:06:19 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server
[2010-08-21 19:05:27 | 000,000,000 | ---D | C] -- C:\Program Files\Vstplugins
[2010-08-21 19:04:31 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Setup
[2010-08-21 18:29:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Gówno
[2010-08-19 19:33:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HENIEK
[2010-08-16 17:30:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\AŁDI SAMOCHUD HAHAHA
[2010-08-06 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Wakacje
[2008-09-13 20:06:30 | 000,065,536 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll

[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]

[2010-09-04 01:33:47 | 000,330,519 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\reglooks.exe
[2010-09-04 01:21:49 | 000,181,020 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-09-04 01:21:44 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-09-04 01:21:43 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-09-04 01:21:41 | 2146,742,272 | -HS- | M] () -- C:\hiberfil.sys
[2010-09-04 01:20:52 | 011,272,192 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\NTUSER.DAT
[2010-09-04 01:20:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx
[2010-09-04 01:20:52 | 000,003,888 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000005-00000000-00000001-00001102-00000002-80671102}.rfx
[2010-09-04 01:20:47 | 000,000,292 | -HS- | M] () -- C:\Documents and Settings\Kamilek&Misiek\ntuser.ini
[2010-09-04 01:20:19 | 000,364,114 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-09-04 01:20:19 | 000,292,614 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-09-04 01:20:19 | 000,034,488 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-09-04 01:20:19 | 000,022,296 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-09-04 01:20:19 | 000,008,060 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-09-04 00:10:15 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2010-09-03 18:47:00 | 000,001,168 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job
[2010-09-02 21:52:18 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe
[2010-09-02 21:47:00 | 000,001,116 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job
[2010-09-02 21:42:53 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\OTL_3.2.10(dobreprogramy.pl).exe
[2010-09-02 20:55:45 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc
[2010-09-02 16:28:35 | 000,002,461 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk
[2010-09-02 13:55:33 | 000,000,170 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin
[2010-09-01 18:33:57 | 000,203,815 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg
[2010-09-01 18:32:49 | 000,002,559 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Microsoft Office Word 2003.lnk
[2010-09-01 18:31:43 | 000,099,968 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-09-01 16:02:38 | 000,000,227 | ---- | M] () -- C:\WINDOWS\system.ini
[2010-09-01 16:02:34 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2010-09-01 15:57:27 | 000,000,327 | RHS- | M] () -- C:\boot.ini
[2010-09-01 15:49:46 | 003,830,025 | R--- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe
[2010-09-01 14:56:07 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-09-01 14:54:12 | 000,345,808 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-09-01 14:52:59 | 000,000,288 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2010-09-01 14:50:10 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2010-09-01 14:50:09 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2010-09-01 14:50:09 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2010-09-01 14:49:59 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\WindowsLogon.manifest
[2010-09-01 14:49:21 | 000,000,488 | RH-- | M] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | M] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-09-01 14:49:07 | 000,000,661 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-09-01 14:47:55 | 000,023,016 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-09-01 14:46:37 | 000,000,211 | ---- | M] () -- C:\Boot.bak
[2010-08-31 22:40:21 | 000,025,088 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list motyw. Jarek.doc
[2010-08-31 21:50:21 | 000,001,985 | ---- | M] () -- C:\WINDOWS\setupapi.old
[2010-08-31 20:15:57 | 000,000,746 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk
[2010-08-31 17:48:18 | 000,024,064 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc
[2010-08-31 14:06:06 | 000,016,462 | ---- | M] () -- C:\WINDOWS\bestplayer.bbt
[2010-08-31 14:06:06 | 000,002,952 | ---- | M] () -- C:\WINDOWS\bestplayer.ini
[2010-08-31 14:06:06 | 000,000,112 | ---- | M] () -- C:\WINDOWS\bestplayer.bpp
[2010-08-29 20:51:57 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp
[2010-08-29 20:05:30 | 002,359,350 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp
[2010-08-28 22:26:59 | 000,351,232 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp
[2010-08-26 20:19:59 | 002,273,448 | ---- | M] (TaxNet sp. z o.o. ) -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\vzm.exe
[2010-08-25 20:58:17 | 007,435,769 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2
[2010-08-25 16:49:48 | 000,001,569 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk
[2010-08-21 18:49:37 | 000,002,380 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk
[2010-08-18 19:04:40 | 000,077,312 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc
[2010-08-17 16:53:24 | 000,081,193 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid
[2010-08-16 00:27:42 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-09-04 01:33:45 | 000,330,519 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\reglooks.exe
[2010-09-02 21:52:14 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe
[2010-09-02 20:55:45 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\~$M - do gmin.doc
[2010-09-02 13:55:33 | 000,000,170 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\list-19cac9-3.bin
[2010-09-01 18:33:57 | 000,203,815 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\plan_lekcji_pilka_nozna_www.przeklej.pl-1.jpg
[2010-09-01 15:57:27 | 000,000,211 | ---- | C] () -- C:\Boot.bak
[2010-09-01 15:57:25 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2010-09-01 15:53:44 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2010-09-01 15:53:44 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2010-09-01 15:53:44 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2010-09-01 15:53:44 | 000,077,312 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2010-09-01 15:53:44 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2010-09-01 15:49:13 | 003,830,025 | R--- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ComboFix.exe
[2010-09-01 15:17:05 | 000,002,461 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\HiJackThis.lnk
[2010-09-01 14:52:29 | 000,028,288 | ---- | C] () -- C:\WINDOWS\System32\dllcache\xjis.nls
[2010-09-01 14:51:58 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prcp.nls
[2010-09-01 14:51:57 | 000,083,748 | ---- | C] () -- C:\WINDOWS\System32\dllcache\prc.nls
[2010-09-01 14:51:56 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2010-09-01 14:51:37 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2010-09-01 14:51:37 | 000,047,066 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ksc.nls
[2010-09-01 14:51:30 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2010-09-01 14:51:29 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2010-09-01 14:51:28 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2010-09-01 14:51:18 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2010-09-01 14:51:12 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2010-09-01 14:51:08 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll
[2010-09-01 14:50:58 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_864.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_862.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_858.nls
[2010-09-01 14:50:55 | 000,066,594 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_720.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_870.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_708.nls
[2010-09-01 14:50:55 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_28596.nls
[2010-09-01 14:50:54 | 000,180,770 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20932.nls
[2010-09-01 14:50:54 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20949.nls
[2010-09-01 14:50:54 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20936.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21027.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_21025.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20924.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20880.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20871.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20838.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20833.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20424.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20423.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20420.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20297.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20290.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20285.nls
[2010-09-01 14:50:54 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20284.nls
[2010-09-01 14:50:53 | 000,189,986 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1361.nls
[2010-09-01 14:50:53 | 000,187,938 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20005.nls
[2010-09-01 14:50:53 | 000,186,402 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20001.nls
[2010-09-01 14:50:53 | 000,185,378 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20003.nls
[2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20004.nls
[2010-09-01 14:50:53 | 000,180,258 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20000.nls
[2010-09-01 14:50:53 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20002.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20280.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20278.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20277.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20273.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20269.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20108.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20107.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20106.nls
[2010-09-01 14:50:53 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_20105.nls
[2010-09-01 14:50:52 | 000,173,602 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10008.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1149.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1148.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1147.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1146.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1145.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1144.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1143.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1142.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1141.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1140.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_1047.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10021.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10005.nls
[2010-09-01 14:50:52 | 000,066,082 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10004.nls
[2010-09-01 14:50:51 | 000,195,618 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10002.nls
[2010-09-01 14:50:51 | 000,177,698 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10003.nls
[2010-09-01 14:50:51 | 000,162,850 | ---- | C] () -- C:\WINDOWS\System32\dllcache\c_10001.nls
[2010-09-01 14:50:51 | 000,082,172 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bopomofo.nls
[2010-09-01 14:50:51 | 000,066,728 | ---- | C] () -- C:\WINDOWS\System32\dllcache\big5.nls
[2010-09-01 14:49:21 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\wuaucpl.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\WindowsShell.Manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\sapi.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\nwc.cpl.manifest
[2010-09-01 14:49:17 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\ncpa.cpl.manifest
[2010-09-01 14:43:14 | 000,186,407 | ---- | C] () -- C:\WINDOWS\System32\nvapps.nvb
[2010-09-01 14:39:24 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2010-09-01 14:39:24 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2010-09-01 14:39:24 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat
[2010-09-01 14:39:24 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat
[2010-09-01 14:39:24 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2010-09-01 14:39:24 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat
[2010-09-01 14:39:24 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT
[2010-09-01 14:39:24 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT
[2010-09-01 14:39:24 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2010-09-01 14:39:24 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT
[2010-09-01 14:39:24 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2010-09-01 14:39:24 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2010-09-01 14:39:24 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT
[2010-09-01 14:39:23 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT
[2010-09-01 14:39:23 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT
[2010-08-31 17:48:17 | 000,024,064 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\lLM - do gmin.doc
[2010-08-30 13:24:39 | 000,081,193 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Alejandro Lady Gaga KAR 05639.mid
[2010-08-29 20:51:57 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\stats.bmp
[2010-08-29 20:05:29 | 002,359,350 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\ss smoge.bmp
[2010-08-28 21:52:45 | 000,351,232 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\de_inferno0006.bmp
[2010-08-28 20:08:10 | 000,001,985 | ---- | C] () -- C:\WINDOWS\setupapi.old
[2010-08-26 20:20:53 | 000,000,746 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Formularze VZM-1 podatki.pl.lnk
[2010-08-25 20:57:17 | 007,435,769 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\TCGaming.ImpressiveGaning.tar.bz2
[2010-08-25 16:49:48 | 000,001,569 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Bitwa o Śródziemie™ II.lnk
[2010-08-18 19:04:39 | 000,077,312 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\karta_3.doc
[2010-08-16 00:27:42 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Moje dokumenty\DJ Vengerov feat Vera Brezhneva Lyubov spaset mir remix.mp3
[2010-08-14 18:12:55 | 000,002,380 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Pulpit\Google Chrome.lnk
[2010-07-19 11:43:41 | 001,970,176 | ---- | C] () -- C:\WINDOWS\System32\d3dx9.dll
[2009-12-10 14:04:55 | 000,025,199 | R--- | C] () -- C:\WINDOWS\System32\xfisk.ini
[2009-12-10 14:04:55 | 000,000,052 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009-12-10 14:04:49 | 000,151,040 | R--- | C] () -- C:\WINDOWS\System32\KSXPPI32.dll
[2009-10-24 20:16:02 | 000,210,456 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeW7.dll
[2009-10-24 20:16:02 | 000,206,360 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeA6.dll
[2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeP6.dll
[2009-10-24 20:16:02 | 000,198,168 | ---- | C] () -- C:\WINDOWS\System32\IVIresizeM6.dll
[2009-10-24 20:16:02 | 000,194,072 | ---- | C] () -- C:\WINDOWS\System32\IVIresizePX.dll
[2009-10-24 20:16:02 | 000,026,136 | ---- | C] () -- C:\WINDOWS\System32\IVIresize.dll
[2009-07-23 15:37:47 | 000,076,407 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Smiley.ico
[2009-07-18 15:12:58 | 000,022,328 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PnkBstrK.sys
[2009-02-25 09:05:32 | 000,032,562 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpit
[2009-02-25 09:05:32 | 000,000,176 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\PIT.dpite
[2009-02-08 15:47:37 | 000,129,024 | ---- | C] () -- C:\WINDOWS\System32\AVERM.dll
[2009-01-22 20:19:41 | 000,000,021 | ---- | C] () -- C:\WINDOWS\pit2007.ini
[2009-01-22 20:19:40 | 000,000,079 | ---- | C] () -- C:\WINDOWS\pit2008.ini
[2008-12-21 21:17:33 | 000,007,558 | ---- | C] () -- C:\WINDOWS\hpdj5100.ini
[2008-12-21 17:44:28 | 000,278,984 | ---- | C] () -- C:\WINDOWS\System32\drivers\atksgt.sys
[2008-12-21 17:44:28 | 000,025,416 | ---- | C] () -- C:\WINDOWS\System32\drivers\lirsgt.sys
[2008-12-10 20:16:58 | 001,572,608 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2008-11-09 03:51:29 | 000,022,328 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2008-10-22 06:29:06 | 000,173,550 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-10-17 17:28:58 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2008-09-17 08:36:55 | 000,000,319 | ---- | C] () -- C:\WINDOWS\game.ini
[2008-09-14 17:54:50 | 000,090,112 | ---- | C] () -- C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-09-14 17:51:15 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2008-09-13 21:02:51 | 000,002,952 | ---- | C] () -- C:\WINDOWS\bestplayer.ini
[2008-09-13 20:56:04 | 000,000,478 | ---- | C] () -- C:\WINDOWS\hpbvspst.ini
[2008-09-13 20:44:22 | 000,164,352 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2008-09-13 20:44:22 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2008-09-13 20:44:17 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll
[2008-09-13 20:44:17 | 000,679,936 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2008-09-13 20:44:17 | 000,155,648 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2008-09-13 20:44:11 | 000,007,680 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2008-09-13 20:44:11 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2008-09-13 19:58:52 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll
[2008-05-16 14:01:00 | 001,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2008-05-16 14:01:00 | 001,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2008-05-16 14:01:00 | 001,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2008-05-16 14:01:00 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2008-05-16 14:01:00 | 000,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2007-03-26 10:45:18 | 000,071,208 | ---- | C] () -- C:\WINDOWS\System32\PhysXLoader.dll
[2007-02-20 14:59:08 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelJapanese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelTraditionalChinese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSwedish.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSimplifiedChinese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelPortugese.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelKorean.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelGerman.dll
[2007-02-20 14:59:06 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelFrench.dll
[2007-02-20 14:59:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\AgCPanelSpanish.dll
[2006-04-19 16:19:25 | 000,274,432 | ---- | C] () -- C:\WINDOWS\System32\lame_enc.dll
[2005-08-30 01:00:00 | 000,781,312 | ---- | C] () -- C:\WINDOWS\System32\RGSS102J.dll
[2005-08-30 01:00:00 | 000,778,752 | ---- | C] () -- C:\WINDOWS\System32\RGSS102E.dll
[2005-08-30 01:00:00 | 000,771,584 | ---- | C] () -- C:\WINDOWS\System32\RGSS100J.dll
[2004-08-04 02:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2004-08-04 00:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll
[2004-07-17 11:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\WINDOWS\System32\OUTLPERF.INI
[2002-03-17 02:00:00 | 000,007,420 | ---- | C] () -- C:\WINDOWS\UA000088.DLL
< End of report >
[/log]

nowy log RSIT
[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Kamilek&Misiek at 2010-09-04 01:30:14
Microsoft Windows XP Professional Dodatek Service Pack 2
System drive C: has 11 GB (12%) free of 90 GB
Total RAM: 2047 MB (74% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 01:30:16, on 2010-09-04
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\Creative\Shared Files\CTAudSvc.exe
C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\Program Files\Common Files\LightScribe\LSSrvc.exe
C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe
C:\Program Files\Winamp\winampa.exe
C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe
C:\Program Files\HP\hpcoretech\hpcmpmgr.exe
C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
C:\WINDOWS\system32\wbem\wmiapsrv.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe
C:\Program Files\Creative\Shared Files\CTSched.exe
C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\1.2.183.29\GoogleCrashHandler.exe
C:\Program Files\MSI\DualCoreCenter\DualCoreCenter.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Documents and Settings\Kamilek&Misiek\Pulpit\RSIT.exe
C:\Program Files\Trend Micro\HijackThis\Kamilek&Misiek.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page =
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [HPDJ Taskbar Utility] C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe
O4 - HKLM\..\Run: [HP Software Update] "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe"
O4 - HKLM\..\Run: [HP Component Manager] "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe"
O4 - HKLM\..\Run: [UVS11 Preload] C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe
O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe
O4 - HKLM\..\Run: [VolPanel] "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [egui] "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKCU\..\Run: [DAEMON Tools] "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [LightScribe Control Panel] C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden
O4 - HKCU\..\Run: [CreativeTaskScheduler] "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - Startup: Adobe Gamma.lnk = C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe
O4 - Global Startup: DualCoreCenter.lnk = C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MI699F~1\OFFICE11\EXCEL.EXE/3000
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~2\Office12\EXCEL.EXE/3000
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MI699F~1\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O23 - Service: Adobe LM Service - Adobe Systems - C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe
O23 - Service: Capture Device Service - InterVideo Inc. - C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe
O23 - Service: Creative Audio Engine Licensing Service - Creative Labs - C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe
O23 - Service: Creative Audio Service (CTAudSvcService) - Creative Technology Ltd - C:\Program Files\Creative\Shared Files\CTAudSvc.exe
O23 - Service: ESET HTTP Server (EhttpSrv) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe
O23 - Service: ESET Service (ekrn) - ESET - C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Oracle - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - C:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: stllssvr - MicroVision Development, Inc. - C:\Program Files\Common Files\SureThing Shared\stllssvr.exe
O23 - Service: Ulead Burning Helper (UleadBurningHelper) - Ulead Systems, Inc. - C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe

--
End of file - 7432 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-06-19 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-06-22 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-06-22 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2008-05-16 13529088]
"nwiz"=nwiz.exe /install []
"WinampAgent"=C:\Program Files\Winamp\winampa.exe [2008-08-04 36352]
"HPDJ Taskbar Utility"=C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe [2003-07-28 188416]
"HP Software Update"=C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe [2003-06-25 49152]
"HP Component Manager"=C:\Program Files\HP\hpcoretech\hpcmpmgr.exe [2003-10-23 233472]
"UVS11 Preload"=C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe [2007-09-12 340136]
"NeroFilterCheck"=C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2006-01-12 155648]
"VolPanel"=C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe [2008-08-27 233588]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-06-20 35760]
"egui"=C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2009-11-16 2054360]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2008-05-16 86016]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools"=C:\Program Files\DAEMON Tools\daemon.exe [2007-04-04 165784]
"Google Update"=C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2009-03-05 133104]
"LightScribe Control Panel"=C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe [2009-10-16 2363392]
"CreativeTaskScheduler"=C:\Program Files\Creative\Shared Files\CTSched.exe [2006-11-17 53341]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
DualCoreCenter.lnk - C:\Program Files\MSI\DualCoreCenter\StartUpDualCoreCenter.exe

C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart
Adobe Gamma.lnk - C:\Program Files\Common Files\Adobe\Calibration\Adobe Gamma Loader.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2006-10-18 133632]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoAutoUpdate"=1
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveAutoRun"=67108863
"NoDriveTypeAutoRun"=323
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny"
"C:\Gry\Gierki\Soldat\Soldat.exe"="C:\Gry\Gierki\Soldat\Soldat.exe:*:Enabled:Soldat"
"C:\Gry\Heroes3\HEROES3.EXE"="C:\Gry\Heroes3\HEROES3.EXE:*:Enabled:Heroes of Might and Magic® III"
"C:\Gry\Valve\hl.exe"="C:\Gry\Valve\hl.exe:*:Enabled:Half-Life Launcher"
"C:\totalcmd\TOTALCMD.EXE"="C:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit international version, file manager replacement for Windows"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox"
"C:\Program Files\Metin2_PL\metin2.bin"="C:\Program Files\Metin2_PL\metin2.bin:*:Enabled:metin2"
"C:\GRY\Football Manager 2010\fm.exe"="C:\GRY\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010"
"C:\Gry\Pro Evolution Soccer 2010\pes2010.exe"="C:\Gry\Pro Evolution Soccer 2010\pes2010.exe:*:Enabled:Pro Evolution Soccer 2010"
"C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\deathmatch classic\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\condition zero deleted scenes\hl.exe:*:Enabled:Half-Life Launcher"
"C:\Program Files\mIRC\mirc.exe"="C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC"
"C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test"
"C:\Gry\Steam\Steam.exe"="C:\Gry\Steam\Steam.exe:*:Enabled:Steam 732897"
"C:\Program Files\SopCast\adv\SopAdver.exe"="C:\Program Files\SopCast\adv\SopAdver.exe:*:Enabled:SopCast Adver"
"C:\Program Files\SopCast\SopCast.exe"="C:\Program Files\SopCast\SopCast.exe:*:Enabled:SopCast Main Application"
"C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10"
"C:\Program Files\Vuze\Azureus.exe"="C:\Program Files\Vuze\Azureus.exe:*:Enabled:Azureus / Vuze"
"C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe"="C:\Program Files\Activision\Call of Duty 4 - Modern Warfare\iw3mp.exe:*:Enabled:Call of Duty(R) 4 - Modern Warfare(TM)"
"C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\srcds.exe:*:Enabled:Alien Swarm Dedicated Server"
"C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\swarm.exe:*:Enabled:Alien Swarm"
"C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe"="C:\Gry\Steam\SteamApps\common\alien swarm\bin\SDKLauncher.exe:*:Enabled:Alien Swarm - SDK"
"C:\Gry\Bitwa o Śródziemie II\game.dat"="C:\Gry\Bitwa o Śródziemie II\game.dat:*:Enabled:Bitwa o Śródziemie™ II"
"C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe"="C:\Gry\Steam\SteamApps\zoltymms\counter-strike\hl.exe:*:Enabled:Counter-Strike"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

======List of files/folders created in the last 1 months======

2010-09-04 01:20:16 ----D---- C:\_OTL
2010-09-02 21:52:35 ----D---- C:\rsit
2010-09-02 13:25:17 ----SHD---- C:\RECYCLER
2010-09-01 16:32:31 ----ASH---- C:\pagefile.sys
2010-09-01 16:03:18 ----A---- C:\ComboFix.txt
2010-09-01 15:57:27 ----A---- C:\Boot.bak
2010-09-01 15:57:23 ----RASHD---- C:\cmdcons
2010-09-01 15:53:44 ----A---- C:\WINDOWS\zip.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWXCACLS.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWSC.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\SWREG.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\sed.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\PEV.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\NIRCMD.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\MBR.exe
2010-09-01 15:53:44 ----A---- C:\WINDOWS\grep.exe
2010-09-01 15:53:40 ----D---- C:\WINDOWS\ERDNT
2010-09-01 15:53:40 ----D---- C:\ComboFix
2010-09-01 15:51:55 ----D---- C:\Qoobox
2010-09-01 14:54:37 ----D---- C:\WINDOWS\Prefetch
2010-09-01 14:50:04 ----A---- C:\WINDOWS\OEWABLog.txt
2010-09-01 14:49:21 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest
2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\spxcoins.dll
2010-09-01 14:39:36 ----A---- C:\WINDOWS\system32\irclass.dll
2010-09-01 14:38:43 ----A---- C:\WINDOWS\setuplog.txt
2010-08-25 16:56:18 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II
2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsqlgc.dll
2010-08-21 19:06:38 ----A---- C:\WINDOWS\system32\dbmsgnet.dll
2010-08-21 19:06:19 ----D---- C:\Program Files\Microsoft SQL Server
2010-08-21 19:05:27 ----D---- C:\Program Files\Vstplugins
2010-08-21 19:04:31 ----D---- C:\Program Files\Sony Setup

======List of files/folders modified in the last 1 months======

2010-09-04 01:29:55 ----D---- C:\WINDOWS\Temp
2010-09-04 01:29:07 ----D---- C:\Program Files\Mozilla Firefox
2010-09-04 01:20:49 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-09-04 01:20:29 ----D---- C:\WINDOWS\system32
2010-09-04 01:20:29 ----D---- C:\WINDOWS
2010-09-04 01:20:19 ----RD---- C:\Program Files
2010-09-04 01:20:19 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-09-04 01:20:17 ----D---- C:\Program Files\Common Files
2010-09-04 00:15:25 ----D---- C:\WINDOWS\system32\CatRoot2
2010-09-04 00:10:15 ----A---- C:\WINDOWS\NeroDigital.ini
2010-09-02 15:37:49 ----HD---- C:\WINDOWS\inf
2010-09-01 16:37:10 ----D---- C:\WINDOWS\system32\Setup
2010-09-01 16:37:01 ----D---- C:\WINDOWS\system32\usmt
2010-09-01 16:36:52 ----D---- C:\WINDOWS\ehome
2010-09-01 16:36:51 ----D---- C:\WINDOWS\ime
2010-09-01 16:36:50 ----RSD---- C:\WINDOWS\Fonts
2010-09-01 16:36:50 ----D---- C:\WINDOWS\Media
2010-09-01 16:36:38 ----D---- C:\WINDOWS\PeerNet
2010-09-01 16:36:23 ----D---- C:\WINDOWS\system32\npp
2010-09-01 16:36:17 ----D---- C:\WINDOWS\msagent
2010-09-01 16:34:24 ----D---- C:\WINDOWS\system32\1045
2010-09-01 16:34:18 ----D---- C:\WINDOWS\twain_32
2010-09-01 16:34:07 ----D---- C:\WINDOWS\system32\icsxml
2010-09-01 16:33:44 ----D---- C:\WINDOWS\system32\ias
2010-09-01 16:33:38 ----D---- C:\WINDOWS\system32\1033
2010-09-01 16:32:31 ----D---- C:\WINDOWS\WinSxS
2010-09-01 16:32:31 ----D---- C:\WINDOWS\Driver Cache
2010-09-01 16:25:41 ----D---- C:\Program Files\Gadu-Gadu 10
2010-09-01 16:02:38 ----A---- C:\WINDOWS\system.ini
2010-09-01 16:02:34 ----D---- C:\WINDOWS\system32\drivers\etc
2010-09-01 16:00:47 ----D---- C:\WINDOWS\system32\drivers
2010-09-01 16:00:47 ----D---- C:\WINDOWS\AppPatch
2010-09-01 15:57:27 ----RASH---- C:\boot.ini
2010-09-01 15:27:15 ----D---- C:\WINDOWS\security
2010-09-01 15:17:06 ----SHD---- C:\WINDOWS\Installer
2010-09-01 14:57:08 ----SHD---- C:\System Volume Information
2010-09-01 14:57:08 ----D---- C:\WINDOWS\system32\Restore
2010-09-01 14:56:54 ----D---- C:\WINDOWS\Registration
2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\inetsrv
2010-09-01 14:54:09 ----D---- C:\WINDOWS\system32\config
2010-09-01 14:54:09 ----D---- C:\WINDOWS\nview
2010-09-01 14:54:09 ----D---- C:\WINDOWS\Help
2010-09-01 14:52:29 ----RSHDC---- C:\WINDOWS\system32\dllcache
2010-09-01 14:49:59 ----A---- C:\WINDOWS\ODBCINST.INI
2010-09-01 14:49:45 ----ASH---- C:\WINDOWS\fonts\desktop.ini
2010-09-01 14:49:23 ----RD---- C:\WINDOWS\Web
2010-09-01 14:49:17 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest
2010-09-01 14:49:07 ----A---- C:\WINDOWS\win.ini
2010-09-01 14:49:02 ----D---- C:\WINDOWS\system32\oobe
2010-09-01 14:49:01 ----D---- C:\WINDOWS\srchasst
2010-09-01 14:48:58 ----D---- C:\Program Files\Windows Media Player
2010-09-01 14:48:53 ----D---- C:\Program Files\Movie Maker
2010-09-01 14:48:44 ----D---- C:\Program Files\NetMeeting
2010-09-01 14:48:41 ----D---- C:\Program Files\Outlook Express
2010-09-01 14:48:40 ----D---- C:\Program Files\Common Files\System
2010-09-01 14:48:29 ----D---- C:\Program Files\Internet Explorer
2010-09-01 14:47:57 ----D---- C:\WINDOWS\system32\Com
2010-09-01 14:47:33 ----D---- C:\WINDOWS\system32\wbem
2010-09-01 14:47:30 ----D---- C:\Program Files\Windows NT
2010-09-01 14:39:35 ----D---- C:\WINDOWS\system
2010-09-01 14:39:26 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini
2010-09-01 14:39:22 ----D---- C:\WINDOWS\system32\CatRoot
2010-08-31 14:06:06 ----A---- C:\WINDOWS\bestplayer.ini
2010-08-28 21:52:03 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Gadu-Gadu 10
2010-08-27 18:47:58 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Azureus
2010-08-25 16:49:10 ----D---- C:\WINDOWS\system32\DirectX
2010-08-25 16:42:10 ----D---- C:\Gry
2010-08-25 16:37:56 ----HD---- C:\Program Files\InstallShield Installation Information
2010-08-23 12:18:38 ----D---- C:\WINDOWS\Minidump
2010-08-21 19:06:02 ----D---- C:\Documents and Settings\Kamilek&Misiek\Dane aplikacji\Sony
2010-08-21 19:06:01 ----RSD---- C:\WINDOWS\assembly
2010-08-21 19:05:12 ----D---- C:\Program Files\Sony
2010-08-21 18:34:04 ----D---- C:\Misiek

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2007-03-08 43528]
R0 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2006-09-28 77568]
R1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys [2009-11-16 108792]
R1 epfwtdir;epfwtdir; C:\WINDOWS\system32\DRIVERS\epfwtdir.sys [2009-11-16 96408]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2004-08-04 40320]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.4.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2008-09-13 20747]
R2 atksgt;atksgt; C:\WINDOWS\system32\DRIVERS\atksgt.sys [2008-12-21 278984]
R2 eamon;eamon; C:\WINDOWS\system32\DRIVERS\eamon.sys [2009-11-16 116520]
R2 lirsgt;lirsgt; C:\WINDOWS\system32\DRIVERS\lirsgt.sys [2008-12-21 25416]
R3 BCM43XX;ASUS 802.11 sterownik sieciowego adaptera; C:\WINDOWS\system32\DRIVERS\bcmwl5.sys [2005-02-11 371712]
R3 ctaud2k;Creative Audio Driver (WDM); C:\WINDOWS\system32\drivers\ctaud2k.sys [2003-06-09 494384]
R3 ctljystk;Port gier dla karty Creative SB Live!; C:\WINDOWS\system32\DRIVERS\ctljystk.sys [2001-08-17 3712]
R3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys []
R3 ha10kx2k;Creative Hardware Abstract Layer Driver; C:\WINDOWS\system32\drivers\ha10kx2k.sys [2003-06-09 819984]
R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-17 9600]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2008-05-16 6557408]
R3 ossrv;Creative OS Services Driver; C:\WINDOWS\system32\drivers\ctoss2k.sys [2003-06-09 113840]
R3 RMSPPPOE;WAN Miniport (PPP over Ethernet Protocol); C:\WINDOWS\system32\DRIVERS\RMSPPPOE.SYS [2002-10-03 31424]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2007-10-12 94592]
R3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\DualCoreCenter\RushTop.sys []
R3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2004-08-03 20480]
S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2008-09-13 682232]
S1 kbdhid;Sterownik klawiatury HID; C:\WINDOWS\system32\DRIVERS\kbdhid.sys [2004-08-04 14848]
S3 ASNDIS5;ASNDIS5 Protocol Driver; \??\C:\WINDOWS\system32\ASNDIS5.SYS []
S3 catchme;catchme; \??\C:\DOCUME~1\KAMILE~1\USTAWI~1\Temp\catchme.sys []
S3 GMSIPCI;GMSIPCI; \??\G:\INSTALL\GMSIPCI.SYS []
S3 MSICPL;MSICPL; \??\G:\install4\MSICPL.sys []
S3 NTACCESS;NTACCESS; \??\G:\NTACCESS.sys []
S3 SetupNTGLM7X;SetupNTGLM7X; \??\G:\NTGLM7X.sys []
S3 skfilt;skfilt; C:\WINDOWS\system32\drivers\skfilt.sys [2008-02-12 1670016]
S3 usbaudio;Sterownik audio USB (WDM); C:\WINDOWS\system32\drivers\usbaudio.sys [2004-08-03 59264]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 WpdUsb;WpdUsb; C:\WINDOWS\system32\DRIVERS\wpdusb.sys [2005-01-28 18944]
S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2006-09-28 82944]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 Capture Device Service;Capture Device Service; C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe [2007-03-06 198168]
R2 CTAudSvcService;Creative Audio Service; C:\Program Files\Creative\Shared Files\CTAudSvc.exe [2008-04-30 417792]
R2 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2009-11-16 735960]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-06-22 153376]
R2 LightScribeService;LightScribeService Direct Disc Labeling Service; C:\Program Files\Common Files\LightScribe\LSSrvc.exe [2009-10-16 73728]
R2 MSSQL$SONY_MEDIAMGR;MSSQL$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlservr.exe [2002-12-17 7520337]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2008-05-16 159812]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2009-07-18 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2009-07-18 107832]
R2 UleadBurningHelper;Ulead Burning Helper; C:\Program Files\Common Files\Ulead Systems\DVD\ULCDRSvr.exe [2007-03-03 67056]
R2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-04 14336]
S3 Adobe LM Service;Adobe LM Service; C:\Program Files\Common Files\Adobe Systems Shared\Service\Adobelmsvc.exe [2010-01-02 72704]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 Creative Audio Engine Licensing Service;Creative Audio Engine Licensing Service; C:\Program Files\Common Files\Creative Labs Shared\Service\CTAELicensing.exe [2009-12-10 79360]
S3 EhttpSrv;ESET HTTP Server; C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe [2009-11-16 20680]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2006-10-20 36864]
S3 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2006-10-30 741376]
S3 MSSQLServerADHelper;MSSQLServerADHelper; C:\Program Files\Microsoft SQL Server\80\Tools\Binn\sqladhlp.exe [2002-12-17 66112]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-01-05 774144]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2006-12-23 262144]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]
S3 SQLAgent$SONY_MEDIAMGR;SQLAgent$SONY_MEDIAMGR; C:\Program Files\Sony\Shared Plug-Ins\Media Manager\MSSQL$SONY_MEDIAMGR\Binn\sqlagent.EXE [2002-12-17 311872]
S3 stllssvr;stllssvr; C:\Program Files\Common Files\SureThing Shared\stllssvr.exe [2007-01-02 74656]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2005-01-28 38912]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2006-10-30 122880]

-----------------EOF-----------------
[/log]

log z RegLooks
[log]REGLOOKS logfile - version 0.985
Scan started: 2010-09-04 1:34:04,32

--- INFORMATION ---

Manufacturer: MICRO-STAR INTERNATIONAL CO.,LTD - Model: MS-7360
Operating System: Microsoft Windows XP Professional -- 5.1.2600 -- Dodatek Service Pack 2 --
Processor: Procesor Intel Pentium III Xeon

Work Station
Bootmode: Normal boot
Total RAM: 2047 MB (free 1487 MB - 72%)

Computername: MISIEK-F67C23CE
Domain: GRUPA_ROBOCZA
Processor: Procesor Intel Pentium III Xeon

Work Station
Bootmode: Normal boot
Total RAM: 2047 MB (free 1487 MB - 72%)

Computername: MISIEK-F67C23CE
Domain: GRUPA_ROBOCZA
User: Kamilek&Misiek (Administrator account)

Bootdevice: \Device\HarddiskVolume1
Systemdrive: C:
Windowsdirectory: C:\WINDOWS
Systemdirectory: C:\WINDOWS\system32

Internet Explorer Version: 6.0.2900.2180

Antivirus Program: ESET NOD32 Antivirus 4.0 4.0 [Enabled - Updated]



--- SIGCHECK ---

C:\WINDOWS\explorer.exe -- [1033728] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\appmgmts.dll -- [172032] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\browser.dll -- [77312] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\comres.dll -- [822272] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\comctl32.dll -- [611328] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\cryptsvc.dll -- [60416] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\ctfmon.exe -- [15360] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\es.dll -- [243200] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\eventlog.dll -- [55808] -- [2004-08-04 00:43] -- sigcheck OK
C:\WINDOWS\system32\ias.dll NOT found
C:\WINDOWS\system32\imm32.dll -- [110080] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\kernel32.dll -- [1012224] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\linkinfo.dll -- [18944] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\lpk.dll -- [22016] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\lsass.exe -- [13312] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\mfc40u.dll -- [924432] -- [2001-10-26 17:29] -- sigcheck OK
C:\WINDOWS\system32\msgsvc.dll -- [33792] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\mshtml.dll -- [3003392] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\mspmsnsv.dll -- [25088] -- [2005-01-28 13:44] -- sigcheck OK
C:\WINDOWS\system32\mswsock.dll -- [246784] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\netlogon.dll -- [407040] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\netman.dll -- [198144] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\ntkrnlpa.exe -- [2016768] -- [2004-08-04 00:54] -- sigcheck OK
C:\WINDOWS\system32\ntmssvc.dll -- [435712] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\ntoskrnl.exe -- [2149888] -- [2004-08-04 00:38] -- sigcheck OK
C:\WINDOWS\system32\pchsvc.dll NOT found
C:\WINDOWS\system32\powrprof.dll -- [17408] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\qmgr.dll -- [382464] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\rasauto.dll -- [89088] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\regsvc.dll -- [59904] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\rpcss.dll -- [395776] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\scecli.dll -- [185344] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\schedsvc.dll -- [192000] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\services.exe -- [108544] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\sfc.dll -- [5120] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\sfcfiles.dll -- [1548288] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\spoolsv.exe -- [57856] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\srsvc.dll -- [171008] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\ssdpsrv.dll -- [71680] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\svchost.exe -- [14336] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\tapisrv.dll -- [246272] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\termsrv.dll -- [296448] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\upnphost.dll -- [185856] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\user32.dll -- [578560] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\userinit.exe -- [25088] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\wininet.dll -- [658944] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\winlogon.exe -- [504832] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\ws2_32.dll -- [82944] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\wscntfy.exe -- [13824] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\wuauclt.exe -- [112128] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\xmlprov.dll -- [129536] -- [2004-08-04 00:44] -- sigcheck OK
C:\WINDOWS\system32\drivers\acpiec.sys -- [12032] -- [2001-10-26 16:46] -- sigcheck OK
C:\WINDOWS\system32\drivers\aec.sys -- [142464] -- [2004-08-04 00:54] -- sigcheck OK
C:\WINDOWS\system32\drivers\asyncmac.sys -- [14336] -- [2004-08-03 23:05] -- sigcheck OK
C:\WINDOWS\system32\drivers\atapi.sys -- [95360] -- [2004-08-03 22:59] -- sigcheck OK
C:\WINDOWS\system32\drivers\beep.sys -- [4224] -- [2001-08-17 21:47] -- sigcheck OK
C:\WINDOWS\system32\drivers\classpnp.sys -- [49664] -- [2004-08-03 23:14] -- sigcheck OK
C:\WINDOWS\system32\drivers\disk.sys -- [36352] -- [2004-08-03 22:59] -- sigcheck OK
C:\WINDOWS\system32\drivers\iaStor.sys NOT found
C:\WINDOWS\system32\drivers\ip6fw.sys -- [29056] -- [2004-08-03 23:00] -- sigcheck OK
C:\WINDOWS\system32\drivers\kbdclass.sys -- [24960] -- [2004-08-04 00:38] -- sigcheck OK
C:\WINDOWS\system32\drivers\ndis.sys -- [182912] -- [2004-08-03 23:14] -- sigcheck OK
C:\WINDOWS\system32\drivers\ntfs.sys -- [574592] -- [2004-08-03 23:15] -- sigcheck OK
C:\WINDOWS\system32\drivers\tcpip.sys -- [359040] -- [2004-08-03 23:14] -- sigcheck OK


--- SSODL regkeys ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad]
"PostBootReminder"="{7849596a-48ea-486e-8937-a2a3009f31a9}" -- File: %SystemRoot%\system32\shell32.dll -- [?]
"CDBurn"="{fbeb8a05-beee-4442-804e-409d6c4515e9}" -- File: %SystemRoot%\system32\SHELL32.dll -- [?]
"WebCheck"="{E6FB5E20-DE35-11CF-9C87-00AA005127ED}" -- File: %Systemroot%\system32\webcheck.dll -- [?]
"SysTray"="{35CEC8A3-2BE6-11D2-8773-92E220524153}" -- File: %systemroot%\system32\stobject.dll -- [?]
"WPDShServiceObj"="{AAA288BA-9A4C-45B0-95D7-94D524869DB5}" -- File: C:\WINDOWS\system32\WPDShServiceObj.dll -- [133632] -- [2006-10-18 22:47]


--- STS regkeys ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\SharedTaskScheduler]


--- USERINIT regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Userinit"="C:\\WINDOWS\\system32\\userinit.exe,"
File: C:\WINDOWS\system32\userinit.exe -- [25088] -- [2004-08-04 00:44]


--- SHELL regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"Shell"="Explorer.exe"
File: C:\WINDOWS\Explorer.exe -- [1033728] -- [2004-08-04 00:44]


--- SYSTEM regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon]
"System"=""


--- APPINIT_DLLS regkey ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Windows]
no AppInit_DLLs regkey found


--- NOTIFY regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\crypt32chain]
-- File: C:\WINDOWS\system32\crypt32.dll -- [601088] -- [2004-08-04 00:43]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cryptnet]
-- File: C:\WINDOWS\system32\cryptnet.dll -- [63488] -- [2004-08-04 00:43]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\cscdll]
-- File: C:\WINDOWS\system32\cscdll.dll -- [102400] -- [2004-08-04 00:43]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\dimsntfy]
-- File: %SystemRoot%\System32\dimsntfy.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ScCertProp]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\Schedule]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\sclgntfy]
-- File: C:\WINDOWS\system32\sclgntfy.dll -- [22016] -- [2004-08-04 00:44]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\SensLogn]
-- File: C:\WINDOWS\system32\WlNotify.dll -- [93184] -- [2004-08-04 00:44]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\termsrv]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\wlballoon]
-- File: C:\WINDOWS\system32\wlnotify.dll -- [93184] -- [2004-08-04 00:44]


--- RUN / LOAD regkeys ---

[HKEY_CURRENT_USER\Software\Microsoft\Windows NT\CurrentVersion\Windows]
no run / load keys found


--- SHELLEXECUTEHOOKS regkey ---

[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shellexecutehooks]
"{AEB6717E-7E19-11d0-97EE-00C04FD91972}"="" -- File: shell32.dll -- [?]


--- HKLM AUTORUN regkeys ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Command Processor]
no AutoRun regkey found


--- HKCU AUTORUN regkeys ---

[HKEY_CURRENT_USER\Software\Microsoft\Command Processor]
no AutoRun regkey found


--- HKLM\RUN regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon" -- File: RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup -- [?]
"nwiz" -- File: nwiz.exe /install -- [?]
"WinampAgent" -- File "C:\Program Files\Winamp\winampa.exe" -- [36352] -- [2008-08-04 01:02]
"HPDJ Taskbar Utility" -- File C:\WINDOWS\system32\spool\drivers\w32x86\3\hpztsb09.exe -- [188416] -- [2003-07-28 15:43]
"HP Software Update" -- File: "C:\Program Files\Hewlett-Packard\HP Software Update\HPWuSchd.exe" -- [?]
"HP Component Manager" -- File "C:\Program Files\HP\hpcoretech\hpcmpmgr.exe" -- [233472] -- [2003-10-23 20:51]
"UVS11 Preload" -- File C:\Program Files\Ulead Systems\Ulead VideoStudio 11\uvPL.exe -- [340136] -- [2007-09-12 12:17]
"NeroFilterCheck" -- File C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe -- [155648] -- [2006-01-12 16:40]
"VolPanel" -- File: "C:\Program Files\Creative\USB Headsets\Volume Panel\VolPanlu.exe" /r -- [?]
"Adobe Reader Speed Launcher" -- File "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" -- [35760] -- [2010-06-20 04:04]
"egui" -- File: "C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe" /hide /waitservice -- [?]
"NvMediaCenter" -- File: RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit -- [?]


--- HKLM\RUNONCE regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
no runonce values found


--- HKLM\RUNONCEEX regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
no runonceex values found


--- HKLM\RUNSERVICES regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
key not found


--- HKLM\RUNSERVICESONCE regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
key not found


--- HKCU\RUN regkey ---

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"DAEMON Tools" -- File: "C:\Program Files\DAEMON Tools\daemon.exe" -lang 1033 -- [?]
"Google Update" -- File: "C:\Documents and Settings\Kamilek&Misiek\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c -- [?]
"LightScribe Control Panel" -- File: C:\Program Files\Common Files\LightScribe\LightScribeControlPanel.exe -hidden -- [?]
"CreativeTaskScheduler" -- File: "C:\Program Files\Creative\Shared Files\CTSched.exe" /logon -- [?]


--- HKCU\RUNONCE regkey ---

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnce]
no runonce values found


--- HKCU\RUNONCEEX regkey ---

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunOnceEx]
key not found


--- HKCU\RUNSERVICES regkey ---

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServices]
no runservices values found


--- HKCU\RUNSERVICESONCE regkey ---

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\RunServicesOnce]
no runservicesonce values found


--- HKU\.DEFAULT\Run regkeys - Default user ---

[HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [2004-08-04 00:44]


--- HKU\S-1-5-18\Run regkeys - user SYSTEM ---

[HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE" -- File C:\WINDOWS\system32\CTFMON.EXE -- [15360] -- [2004-08-04 00:44]


--- HKU\S-1-5-19\Run regkeys - User Lokale service ---

[HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
key not found


--- HKU\S-1-5-20\Run regkeys - User Lokale service ---

[HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
key not found


--- HKLM\Explorer\Run regkeys ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
no run values found


--- HKCU\Explorer\Run regkeys ---

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer\Run]
no run values found


--- Image File Execution regkeys ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options]
no debuggers found


--- BROWSER HELPER OBJECTS regkeys ---

[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
-- File: C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll -- [75200] -- [2010-06-19 21:29]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
-- File: C:\Program Files\Java\jre6\bin\jp2ssv.dll -- [41760] -- [2010-06-22 06:07]
[HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
-- File: C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll -- [79648] -- [2010-06-22 06:07]


--- TOOLBAR regkeys ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar]
no toolbars found


--- HKLM\URLSEARCHHOOKS regkeys ---

[HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\URLSearchHooks]
no urlsearchhooks found


--- HKCU\URLSEARCHHOOKS regkeys ---

[HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\URLSearchHooks]
{CFBFAE00-17A6-11D0-99CB-00C04FD64497} -- File: %SystemRoot%\system32\shdocvw.dll -- [?]


--- SRCEENSAVER regkey ---

[HKEY_CURRENT_USER\Control Panel\Desktop]
scrnsave.exe value not found


--- ALTERNATESHELL regkey ---

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot]
File: C:\WINDOWS\system32\cmd.exe -- [395776] -- [2004-08-04 00:44]


--- SECURITYPROVIDERS regkey ---

[HKEY_LOCAL_MACHINE\system\currentcontrolset\control\securityproviders]
"SecurityProviders"="msapsspc.dll, schannel.dll, digest.dll, msnsspc.dll"
File: C:\WINDOWS\system32\msapsspc.dll -- [86016] -- [2004-08-04 00:44]
File: C:\WINDOWS\system32\schannel.dll -- [144896] -- [2004-08-04 00:44]
File: C:\WINDOWS\system32\digest.dll -- [68608] -- [2004-08-04 00:43]
File: C:\WINDOWS\system32\msnsspc.dll -- [290816] -- [2004-08-04 00:44]


--- Active Setup\Installed Components regkey ---

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{26923b43-4d38-484f-9b9e-de460746276c}]
-- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigIE -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS]
-- File: RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\>{881dd1c5-3dcf-431b-b061-f3f88e8be88a}]
-- File: %systemroot%\system32\shmgrate.exe OCInstallUserConfigOE -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
-- File: "C:\Program Files\Common Files\LightScribe\LSRunOnce.exe" -- [451872] -- [2009-10-16 13:49]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{233C1507-6A77-46A4-9443-F871F945D258}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2A202491-F00D-11cf-87CC-0020AFEECF20}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{2C7339CF-2B09-4501-B3F3-F3508C9228ED}]
-- File: %SystemRoot%\system32\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\system32\themeui.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA840-CC51-11CF-AAFA-00AA00B6015C}]
-- File: "%ProgramFiles%\Outlook Express\setup50.exe" /APP:OE /CALLER:WINNT /user /install -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA842-CC51-11CF-AAFA-00AA00B6015B}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msnetmtg.inf,NetMtg.Install.PerUser.NT -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{44BBA855-CC51-11CF-AAFA-00AA00B6015C}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{5945c046-1e7d-11d1-bc44-00c04fd912be}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\msmsgs.inf,BLC.QuietInstall.PerUser -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{6BF52A52-394A-11d3-B153-00C04F79FAA6}]
-- File: rundll32.exe advpack.dll,LaunchINFSection C:\WINDOWS\INF\wmp.inf,PerUserStub -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{73fa19d0-2d75-11d2-995d-00c04f98bbc9}]
-- filepath not found
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4340}]
-- File: regsvr32.exe /s /n /i:U shell32.dll -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: %SystemRoot%\system32\ie4uinit.exe -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89820200-ECBD-11cf-8B85-00AA005B4383}]
-- File: %SystemRoot%\system32\ie4uinit.exe -- [?]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{89B4C1CD-B018-4511-B0A1-5476DBF70820}]
-- File: C:\WINDOWS\system32\Rundll32.exe C:\WINDOWS\system32\mscories.dll,Install -- [?]


--- Services regkey ---

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Capture Device Service]
-- File: "C:\Program Files\Common Files\InterVideo\DeviceService\DevSvc.exe" -- [198168] -- [2007-03-06 10:35]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ctaud2k]
-- File: system32\drivers\ctaud2k.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\CTAudSvcService]
-- File: C:\Program Files\Creative\Shared Files\CTAudSvc.exe -- [417792] -- [2008-04-30 04:27]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ctljystk]
-- File: system32\DRIVERS\ctljystk.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\DualCoreCenter]
-- File: \??\C:\Program Files\MSI\DualCoreCenter\NTGLM7X.sys -- [?]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\ehdrv]
-- File: system32\DRIVERS\ehdrv.sys -- [?]


--- SAFEBOOT MINIMAL SERVICES ---

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal
{533C5B84-EC70-11D2-9505-00C04F79DEAF}


--- SAFEBOOT Network SERVICES ---

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Network
DnsCache


--- BOOTEXECUTE regkey ---

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
"BootExecute"= autocheck autochk *\0\0


--- PENDINGFILERENAMEOPERATIONS regkey ---

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager]
PendingFileRenameOperations key not found


--- WOW-CMDLINE regkeys ---

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\WOW]
"cmdline" = %SystemRoot%\system32\ntvdm.exe
"cmdline" = %SystemRoot%\system32\ntvdm.exe -a %SystemRoot%\system32\krnl386


--- NETSVCS regkey ---

[HKEY_LOCAL_MACHINE\software\Microsoft\Windows NT\CurrentVersion\Svchost] -- NETSVCS
only standard values found


--- DNS SERVER regkeys ---

no "NameServer" values found


--- File associations ---

.BAT files: ("%1" %*)
.COM files: ("%1" %*)
.EXE files: ("%1" %*)
.HLP files: (%SystemRoot%\System32\winhlp32.exe %1)
.INF files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.INI files: (%SystemRoot%\System32\NOTEPAD.EXE %1)
.JS files: (%SystemRoot%\System32\WScript.exe "%1" %*)
.PIF files: ("%1" %*)
.REG files: (regedit.exe "%1")
.SCR files: ("%1" /S)
.TXT files: (%SystemRoot%\system32\NOTEPAD.EXE %1)
.VBS files: (%SystemRoot%\System32\WScript.exe "%1" %*)


--- STARTUP FOLDERS ---

C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\Adobe Gamma.lnk -- [999] -- [2010-01-02 00:28]
C:\Documents and Settings\Kamilek&Misiek\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42]
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2010-09-01 14:50]
C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\DualCoreCenter.lnk -- [869] -- [2008-09-13 19:58]
C:\WINDOWS\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42]
C:\WINDOWS\system32\config\systemprofile\Menu Start\Programy\Autostart\desktop.ini -- [84] -- [2008-09-13 19:42]


--- TASK SCHEDULER JOBS ---

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003Core.job -- [1116] -- [2010-09-02 21:47]
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-1708537768-706699826-725345543-1003UA.job -- [1168] -- [2010-09-03 18:47]


Scan completed: 2010-09-04 1:34:29,76
FINISHED
[/log]

Czekam na dalsze instrukcje :)

Tomek01
komentarz
komentarz

Teraz powinno być ok.

Odinstaluj ComboFix’a
Start >>> Uruchom >>> combofix /u [i naciskasz OK]

Skasuj ręcznie kwarantannę: C:/Qoobox

Zastosuj ATF CLeaner, zaznacz trzy pierwsze fajki i empty selected.
Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach.

Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] jeśli coś wykryją, wyniki podaj na forum.

kamilek073
komentarz
komentarz (edytowane)

DrWeb cos wykryl.
http://img837.imageshack.us/i/wirusi.jpg/

Malwarebytes Anti-Malware w porzadku.

Tomek01
komentarz
komentarz

Wrzuć raport z DrWeb.

kamilek073
komentarz
komentarz (edytowane)

[quote name='Tomek01' timestamp='1283617273' post='1082567']
Wrzuć raport z DrWeb.
[/quote]
po skanowaniu wyłączylem Dr.Web i raport sie chyba nie zapisal, a jak zapsial to nie wiem gdzie. Uruchomic skan jeszcze raz?

podalem link z obrazkiem z tym co wykryl.

Tomek01
komentarz
komentarz

Ale widzę, że zrobiłeś szybki skan a miałeś zrobić full. Zrób jeszcze raz i wrzuć raport.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.