Sounder utworzono 4 lutego 2011 utworzono 4 lutego 2011 Witam. Niedawno miałem na komputerze megainfekcję wirusów. Jakoś udało mi się przywrócić system do normalnego stanu, ale procesor cały czas intensywnie pracuje, chociaż żadne operacje nie są wykonywane. Przypuszczam, że ma to związek z wieloma aktywnymi procesami svchost.exe. Komputer jest całkiem nowy. System to oczywiście Windows XP. Proszę o pomoc. Dziękuję
Sean komentarz 4 lutego 2011 komentarz 4 lutego 2011 Zobacz w menadżerze zadań czy, któryś z procesów svchost.exe obciąża Ci znacznie procesor. (nie powinieneś się przejmować tym, że pojawia on sie więcej niż jeden raz, tutaj masz opis procesu http://support.microsoft.com/kb/314056/pl) I wrzuć log z OTL oraz RSIT ... http://www.forumpc.pl/index.php?showtopic=168073
Sounder komentarz 4 lutego 2011 Autor komentarz 4 lutego 2011 Poza wysilającym się procesorem pojawiają się czasem przezroczyste ikony jakichś plików systemowych. Są w różnych folderach, albo na pulpicie. To nic szkodliwego? [log]OTL logfile created on: 2011-02-04 19:26:45 - Run 4 OTL by OldTimer - Version 3.2.20.2 Folder = C:\Documents and Settings\xxx\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 117,19 Gb Total Space | 34,04 Gb Free Space | 29,05% Space Free | Partition Type: NTFS Drive D: | 152,34 Gb Total Space | 137,05 Gb Free Space | 89,96% Space Free | Partition Type: NTFS Drive E: | 196,22 Gb Total Space | 165,87 Gb Free Space | 84,53% Space Free | Partition Type: NTFS Computer Name: JAREK | User Name: xxx | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011-01-14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe PRC - [2010-12-03 20:58:04 | 000,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe.exe PRC - [2010-12-03 20:58:04 | 000,016,856 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2010-04-21 09:40:00 | 011,985,504 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010-02-26 01:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccsvchst.exe PRC - [2009-07-01 17:37:06 | 000,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2006-11-24 01:06:38 | 000,487,424 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe PRC - [2006-11-13 15:17:38 | 000,872,448 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe PRC - [2006-10-13 09:11:16 | 000,983,040 | R--- | M] (Obigo AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe PRC - [2004-08-03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011-01-14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe MOD - [2010-09-20 20:26:01 | 000,415,088 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\asoehook.dll MOD - [2009-07-11 20:32:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll MOD - [2009-07-11 20:32:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll MOD - [2004-08-03 23:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2004-08-03 23:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2010-02-26 01:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe -- (NIS) SRV - [2009-05-05 02:15:50 | 000,124,256 | ---- | M] () [Auto | Stopped] -- C:\Program Files\AMD\OverDrive\AODAssist.exe -- (AODService) SRV - [2005-11-14 00:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011-01-09 13:03:17 | 000,431,672 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2011-01-08 17:32:51 | 001,360,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVEX15.SYS -- (NAVEX15) DRV - [2011-01-08 17:32:51 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2011-01-08 17:32:51 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2011-01-08 17:32:51 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVENG.SYS -- (NAVENG) DRV - [2011-01-08 15:11:27 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2010-12-01 01:03:34 | 000,341,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20110120.001\IDSXpx86.sys -- (IDSxpx86) DRV - [2010-11-23 03:34:08 | 000,691,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20110114.001\BHDrvx86.sys -- (BHDrvx86) DRV - [2010-05-06 05:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1108000.005\SYMTDI.SYS -- (SYMTDI) DRV - [2010-04-29 06:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\Ironx86.SYS -- (SymIRON) DRV - [2010-04-22 04:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMEFA.SYS -- (SymEFA) DRV - [2010-04-22 03:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1108000.005\SRTSP.SYS -- (SRTSP) DRV - [2010-04-22 03:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL) DRV - [2010-02-26 01:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\ccHPx86.sys -- (ccHP) DRV - [2009-09-10 14:55:52 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2009-08-30 01:17:18 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMDS.SYS -- (SymDS) DRV - [2009-07-24 18:33:24 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev) DRV - [2009-07-20 12:08:26 | 005,795,328 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009-06-25 12:22:30 | 004,125,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009-05-25 08:21:28 | 000,142,336 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2009-04-21 08:22:17 | 000,038,784 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvprt.sys -- (Axtmvprt) DRV - [2009-04-21 08:22:03 | 000,040,064 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvmdm.sys -- (Axtmvmdm) DRV - [2009-04-21 08:21:42 | 000,003,456 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvflt.sys -- (Axtmvflt) DRV - [2009-04-14 13:55:06 | 003,732,608 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtKHDMI.sys -- (RTHDMIAzAudService) DRV - [2009-02-08 23:02:16 | 000,022,328 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008-12-29 22:34:24 | 000,018,944 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\RushJ.sys -- (RushTopDevice_J) DRV - [2008-12-27 00:46:10 | 000,028,672 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\NTGLM7X.sys -- (DualCoreCenter) DRV - [2008-12-18 06:11:12 | 000,054,272 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\RushTop.sys -- (RushTopDevice2) DRV - [2008-08-05 13:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008-04-15 13:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007-10-11 14:40:00 | 000,009,096 | R--- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\amdide.sys -- (amdide) DRV - [2007-04-16 13:16:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2006-09-18 13:59:08 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27unic.sys -- (se27unic) Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM) DRV - [2006-09-18 13:59:02 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27obex.sys -- (SE27obex) DRV - [2006-09-18 13:59:00 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27nd5.sys -- (se27nd5) Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS) DRV - [2006-09-18 13:58:58 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mgmt.sys -- (SE27mgmt) Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM) DRV - [2006-09-18 13:58:54 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdm.sys -- (SE27mdm) DRV - [2006-09-18 13:58:52 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdfl.sys -- (SE27mdfl) DRV - [2006-07-04 17:17:52 | 000,053,921 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid7906.sys -- (hid7906) DRV - [2006-05-15 14:35:36 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27bus.sys -- (SE27bus) Sony Ericsson Device 039 Driver driver (WDM) DRV - [2006-01-04 08:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2004-08-03 22:03:36 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2001-08-18 00:54:18 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001-08-18 00:54:18 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.defaultthis.engineName: "" FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6 FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\IPSFFPlgn\ [2011-01-08 15:11:51 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\ [2011-01-09 10:59:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-01-16 14:31:59 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-01-16 14:29:13 | 000,000,000 | ---D | M] [2010-03-26 19:57:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Extensions [2011-02-04 18:42:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Firefox\Profiles\eoqhw044.default\extensions [2010-05-23 09:05:04 | 000,000,000 | ---D | M] (Free Lunch Design Toolbar) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Firefox\Profiles\eoqhw044.default\extensions\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} [2011-02-04 18:42:42 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010-08-01 13:01:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2011-01-09 10:59:13 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\COFFPLGN [2010-08-01 13:01:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010-08-01 13:01:34 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-12-03 18:54:54 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-12-03 18:54:54 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-12-03 18:54:54 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-12-03 18:54:54 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-12-03 18:54:54 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-12-03 18:54:54 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011-01-15 19:26:41 | 000,000,789 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ipsbho.dll (Symantec Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O3 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O7 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKU\S-1-5-21-1547161642-2147107749-1801674531-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O27 - HKLM IFEO\chrome.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\firefox.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\iexplore.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\opera.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010-03-26 14:58:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2011-02-03 20:18:18 | 000,000,000 | ---D | C] -- C:\Program Files\PermissionResearch [2011-01-23 20:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Sony Ericsson [2011-01-23 20:36:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Sony Ericsson [2011-01-23 20:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony Ericsson [2011-01-23 20:36:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Ericsson Shared [2011-01-23 20:36:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2011-01-23 20:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson [2011-01-23 20:36:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2011-01-23 11:33:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011-01-23 11:31:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2011-01-23 11:31:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2011-01-23 11:31:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2011-01-23 11:31:13 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2011-01-23 11:31:12 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2011-01-23 11:31:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2011-01-23 11:31:11 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2011-01-23 11:31:11 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2011-01-23 11:31:10 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2011-01-23 11:31:10 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2011-01-23 11:31:10 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2011-01-23 11:31:10 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2011-01-23 11:31:10 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2011-01-23 11:31:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2011-01-23 11:31:10 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2011-01-23 11:31:09 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2011-01-23 11:31:09 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2011-01-23 11:31:09 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2011-01-23 11:31:05 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2011-01-23 11:31:05 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2011-01-23 11:31:05 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2011-01-23 11:31:04 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2011-01-23 11:31:03 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2011-01-23 11:31:03 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2011-01-23 11:31:03 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2011-01-23 11:31:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2011-01-23 11:31:03 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2011-01-23 11:31:02 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2011-01-23 11:31:02 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2011-01-23 11:31:02 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2011-01-23 11:31:02 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2011-01-23 11:30:59 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2011-01-23 11:30:59 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2011-01-23 11:30:59 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2011-01-23 11:30:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2011-01-23 11:30:58 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2011-01-23 11:30:57 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2011-01-23 11:30:56 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2011-01-23 11:30:56 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2011-01-23 11:30:56 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2011-01-23 11:30:56 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2011-01-23 11:30:56 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2011-01-23 11:30:55 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2011-01-23 11:30:55 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2011-01-23 11:30:55 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2011-01-23 11:30:55 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2011-01-23 11:30:55 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2011-01-23 11:30:55 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2011-01-23 11:30:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2011-01-23 11:30:54 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2011-01-23 11:30:54 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2011-01-23 11:30:54 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2011-01-23 11:30:54 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2011-01-23 11:30:54 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2011-01-23 11:30:54 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2011-01-23 11:30:54 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2011-01-23 11:30:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2011-01-23 11:30:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2011-01-23 11:30:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2011-01-23 11:30:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2011-01-23 11:30:53 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2011-01-23 11:30:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2011-01-23 11:30:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2011-01-23 11:30:48 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2011-01-23 11:30:48 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2011-01-23 11:30:48 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2011-01-23 11:30:47 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2011-01-23 11:30:47 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2011-01-23 11:30:47 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2011-01-23 11:30:47 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2011-01-23 11:30:47 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2011-01-23 11:30:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2011-01-23 11:30:45 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2011-01-23 11:30:44 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2011-01-23 11:30:44 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2011-01-23 11:30:42 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2011-01-23 11:30:42 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2011-01-23 11:30:42 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2011-01-23 11:30:42 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2011-01-23 11:30:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2011-01-23 11:30:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2011-01-23 11:30:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2011-01-23 11:30:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2011-01-23 11:30:39 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2011-01-23 11:30:39 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2011-01-23 11:30:39 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2011-01-23 11:30:39 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2011-01-23 11:30:38 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2011-01-23 11:30:38 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2011-01-23 11:30:37 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2011-01-23 11:30:37 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2011-01-23 11:30:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2011-01-23 11:30:37 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2011-01-23 11:30:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2011-01-23 11:30:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2011-01-23 11:30:33 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2011-01-23 11:30:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2011-01-23 11:30:30 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2011-01-23 11:30:30 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2011-01-23 11:30:27 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2011-01-23 11:30:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2011-01-23 11:30:20 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2011-01-23 11:30:20 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2011-01-23 11:30:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2011-01-23 11:30:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2011-01-23 11:30:17 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2011-01-23 11:30:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2011-01-23 11:30:16 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2011-01-23 11:30:15 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2011-01-23 11:30:15 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2011-01-23 11:30:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2011-01-23 11:30:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2011-01-23 11:30:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2011-01-23 11:30:13 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2011-01-23 11:30:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2011-01-23 11:30:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2011-01-23 11:30:11 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2011-01-23 11:30:11 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2011-01-23 11:30:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2011-01-23 11:30:10 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2011-01-23 11:30:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2011-01-23 11:30:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2011-01-23 11:30:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2011-01-23 11:30:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2011-01-23 11:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2011-01-23 11:30:08 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2011-01-23 11:30:08 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2011-01-23 11:30:07 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2011-01-23 11:30:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2011-01-23 11:30:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2011-01-23 11:30:06 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2011-01-23 11:30:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2011-01-23 11:30:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2011-01-23 11:30:05 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2011-01-23 11:30:04 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2011-01-23 11:30:04 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2011-01-23 11:30:04 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2011-01-23 11:30:04 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2011-01-23 11:30:04 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2011-01-23 11:30:03 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2011-01-23 11:30:03 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2011-01-23 11:30:03 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2011-01-23 11:30:03 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2011-01-23 11:30:03 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2011-01-23 11:30:03 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2011-01-23 11:30:03 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2011-01-23 11:30:02 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2011-01-23 11:30:02 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2011-01-23 11:30:02 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2011-01-23 11:30:02 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2011-01-23 11:30:02 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2011-01-23 11:30:02 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2011-01-23 11:30:01 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2011-01-23 11:30:01 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2011-01-23 11:30:01 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2011-01-23 11:30:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2011-01-23 11:30:01 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2011-01-23 11:30:01 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2011-01-23 11:30:01 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2011-01-23 11:30:00 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2011-01-23 11:30:00 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2011-01-23 11:30:00 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2011-01-23 11:30:00 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2011-01-23 11:30:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2011-01-23 11:30:00 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2011-01-23 11:29:55 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2011-01-23 11:29:45 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2011-01-23 11:29:44 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2011-01-23 11:29:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2011-01-23 11:29:44 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2011-01-23 11:29:44 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2011-01-23 11:29:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2011-01-23 11:29:43 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2011-01-23 11:29:41 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2011-01-23 11:29:41 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2011-01-23 11:29:41 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2011-01-23 11:29:41 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2011-01-23 11:29:41 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2011-01-23 11:29:41 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2011-01-23 11:29:41 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2011-01-23 11:29:40 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2011-01-23 11:29:40 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2011-01-23 11:29:40 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2011-01-23 11:29:40 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2011-01-23 11:29:40 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2011-01-23 11:29:40 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2011-01-23 11:29:40 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2011-01-23 11:29:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2011-01-23 11:29:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2011-01-23 11:29:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2011-01-23 11:29:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2011-01-23 11:29:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2011-01-23 11:29:39 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2011-01-23 11:29:39 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2011-01-23 11:29:39 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2011-01-23 11:29:39 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2011-01-23 11:29:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2011-01-23 11:29:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2011-01-23 11:29:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2011-01-23 11:29:38 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2011-01-23 11:29:38 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2011-01-23 11:29:38 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2011-01-23 11:29:37 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2011-01-23 11:29:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2011-01-23 11:29:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2011-01-23 11:29:36 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2011-01-23 11:29:36 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2011-01-23 11:29:36 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2011-01-23 11:29:36 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2011-01-23 11:29:36 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2011-01-23 11:29:36 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2011-01-23 11:29:36 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2011-01-23 11:29:28 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2011-01-23 11:29:27 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2011-01-23 11:29:26 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2011-01-23 11:29:26 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2011-01-23 11:29:25 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2011-01-23 11:29:25 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2011-01-23 11:29:25 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2011-01-23 11:29:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2011-01-23 11:29:23 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2011-01-23 11:29:23 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2011-01-23 11:29:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2011-01-23 11:29:22 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2011-01-23 11:29:22 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2011-01-23 11:29:22 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2011-01-23 11:29:21 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2011-01-23 11:29:21 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2011-01-23 11:29:21 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2011-01-23 11:29:21 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2011-01-23 11:29:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2011-01-23 11:29:20 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2011-01-23 11:29:19 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2011-01-23 11:29:19 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2011-01-23 11:29:19 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2011-01-23 11:29:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2011-01-23 11:29:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2011-01-23 11:29:11 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2011-01-23 11:29:10 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2011-01-23 11:29:10 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2011-01-23 11:29:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2011-01-23 11:29:09 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2011-01-23 11:29:09 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2011-01-23 11:29:09 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2011-01-23 11:29:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2011-01-23 11:29:06 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2011-01-23 11:29:06 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2011-01-23 11:29:06 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2011-01-23 11:29:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2011-01-23 11:29:02 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2011-01-23 11:29:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2011-01-23 11:29:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2011-01-23 11:29:01 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2011-01-23 11:29:01 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2011-01-23 11:29:01 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2011-01-23 11:29:01 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2011-01-23 11:28:58 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2011-01-23 11:28:57 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2011-01-23 11:28:57 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2011-01-23 11:28:57 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2011-01-23 11:28:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2011-01-23 11:28:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2011-01-23 11:28:57 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2011-01-23 11:28:56 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2011-01-23 11:28:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2011-01-23 11:28:56 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2011-01-23 11:28:56 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2011-01-23 11:28:56 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2011-01-23 11:28:56 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2011-01-23 11:28:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2011-01-23 11:28:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2011-01-23 11:28:55 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2011-01-23 11:28:55 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2011-01-23 11:28:55 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2011-01-23 11:28:55 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2011-01-23 11:28:55 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2011-01-23 11:28:55 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2011-01-23 11:28:55 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2011-01-23 11:28:55 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2011-01-23 11:28:55 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2011-01-23 11:28:54 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2011-01-23 11:28:54 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2011-01-23 11:28:54 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2011-01-23 11:28:54 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2011-01-23 11:28:54 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2011-01-23 11:28:54 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2011-01-23 11:28:53 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2011-01-23 11:28:53 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2011-01-23 11:28:53 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2011-01-23 11:28:53 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2011-01-23 11:28:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2011-01-23 11:28:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2011-01-23 11:28:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2011-01-23 11:28:52 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2011-01-23 11:28:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2011-01-23 11:28:51 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2011-01-23 11:28:50 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2011-01-23 11:27:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2011-01-23 11:17:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2011-01-23 11:17:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2011-01-23 11:17:19 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2011-01-23 11:17:19 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2011-01-23 10:54:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Pulpit\Nowy folder [2011-01-22 12:49:01 | 000,501,888 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\cchpx86.sys [2011-01-22 12:49:01 | 000,361,904 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symtdi.sys [2011-01-22 12:49:01 | 000,339,504 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symtdiv.sys [2011-01-22 12:49:01 | 000,328,752 | R--- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symds.sys [2011-01-22 12:49:01 | 000,325,680 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtsp.sys [2011-01-22 12:49:01 | 000,173,104 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symefa.sys [2011-01-22 12:49:01 | 000,116,784 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\ironx86.sys [2011-01-22 12:49:01 | 000,043,696 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtspx.sys [2011-01-22 12:48:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS\1108000.005 [2011-01-16 16:04:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2011-01-16 11:36:46 | 009,289,416 | ---- | C] (Mozilla) -- C:\Documents and Settings\xxx\Pulpit\Firefox Setup 3.6.13.exe [2011-01-16 10:34:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox [2011-01-14 20:43:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\DoctorWeb [2011-01-14 20:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Moje dokumenty\Gry NES [2011-01-14 19:40:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe [2011-01-13 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com [2011-01-13 21:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\RAR Password Recovery Magic [2011-01-13 20:32:51 | 000,000,000 | ---D | C] -- C:\Program Files\Xenocode [2011-01-13 20:32:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\XSxS [2011-01-13 19:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\GridinSoft Trojan Killer [2011-01-10 20:13:34 | 000,000,000 | RHSD | C] -- C:\cmdcons [2011-01-10 20:13:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\setup.pss [2011-01-10 20:12:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\setupupd [2011-01-09 10:42:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\ConduitEngine [2011-01-09 10:42:37 | 000,000,000 | ---D | C] -- C:\Program Files\ConduitEngine [2011-01-09 09:50:18 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2011-01-09 09:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2011-01-09 09:50:18 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2011-01-09 09:45:55 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2011-01-09 09:45:22 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\tscupgrd.exe [2011-01-09 09:45:22 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tscupgrd.exe [2011-01-09 09:33:27 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dllcache\dgrpsetu.dll [2011-01-09 09:33:27 | 000,176,157 | ---- | C] (Digi International, Inc.) -- C:\WINDOWS\System32\dgrpsetu.dll [2011-01-09 09:33:26 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\EqnClass.Dll [2011-01-09 09:33:26 | 000,103,424 | ---- | C] (Equinox Systems Inc.) -- C:\WINDOWS\System32\dllcache\eqnclass.dll [2011-01-09 09:33:26 | 000,013,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WFWNET.DRV [2011-01-09 09:33:26 | 000,002,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\VGA.DRV [2011-01-09 09:33:25 | 000,070,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\AVICAP.DLL [2011-01-09 09:33:25 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\TIMER.DRV [2011-01-09 09:33:25 | 000,003,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SYSTEM.DRV [2011-01-09 09:33:25 | 000,002,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\MOUSE.DRV [2011-01-09 09:33:25 | 000,002,000 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\KEYBOARD.DRV [2011-01-09 09:33:25 | 000,001,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\SOUND.DRV [2011-01-09 09:33:24 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irenum.sys [2011-01-09 09:33:22 | 000,146,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System\WINSPOOL.DRV [2011-01-08 20:36:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PC Tools [2011-01-08 20:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2011-01-08 20:19:34 | 000,000,000 | ---D | C] -- C:\Program Files\Downloads [2011-01-08 20:19:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Dane aplikacji\GetRightToGo [2011-01-08 18:39:10 | 000,000,000 | R--D | C] -- C:\Documents and Settings\xxx\Menu Start\Programy\Narzędzia administracyjne [2011-01-08 15:11:27 | 000,124,976 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS [2011-01-08 15:11:27 | 000,060,808 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL [2011-01-08 15:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2011-01-08 15:11:27 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec [2011-01-08 15:10:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\NIS [2011-01-08 15:10:39 | 000,000,000 | ---D | C] -- C:\Program Files\Norton Internet Security [2011-01-08 15:10:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Norton Internet Security [2011-01-08 15:09:02 | 000,000,000 | ---D | C] -- C:\Program Files\NortonInstaller [2011-01-02 17:22:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\PLAY ONLINE [2011-01-02 17:22:32 | 000,112,640 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [2011-01-02 17:22:32 | 000,102,528 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [2011-01-02 17:22:32 | 000,100,736 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbdev.sys [2011-01-02 17:22:32 | 000,024,448 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [2011-01-02 17:22:00 | 000,000,000 | ---D | C] -- C:\Program Files\PLAY ONLINE [2010-04-05 11:30:58 | 002,869,264 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dotNetFx35setup.exe [2010-03-26 16:15:35 | 000,090,112 | R--- | C] (Axesstel) -- C:\Program Files\axesstel.dll [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2011-02-04 19:29:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\RSIT.exe [2011-02-04 19:15:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-02-04 19:15:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-02-04 18:55:43 | 000,219,120 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap [2011-02-04 18:48:16 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-01-30 15:13:02 | 000,848,094 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\Plan lekcji.bmp [2011-01-27 16:37:32 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-01-27 16:20:10 | 1878,220,800 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2011-01-26 10:07:40 | 000,448,334 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-01-26 10:07:40 | 000,392,432 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-01-26 10:07:40 | 000,074,434 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-01-26 10:07:40 | 000,058,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-01-24 22:59:55 | 000,043,520 | ---- | M] () -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-01-24 08:16:46 | 000,654,356 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\Cat.DB [2011-01-23 13:45:42 | 000,008,918 | ---- | M] () -- C:\Documents and Settings\xxx\Moje dokumenty\Mp3 - Jarek.pls [2011-01-23 11:33:21 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-01-23 11:31:37 | 000,000,287 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011-01-23 11:28:29 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011-01-23 11:28:28 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-01-23 11:28:28 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-01-23 11:28:15 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2011-01-23 11:26:00 | 000,023,060 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-01-23 11:24:24 | 000,000,327 | -HS- | M] () -- C:\boot.ini [2011-01-22 22:11:18 | 000,349,006 | ---- | M] () -- C:\WINDOWS\setupapi.old [2011-01-22 19:33:11 | 000,001,964 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Norton Internet Security.LNK [2011-01-17 18:57:52 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-01-16 15:34:47 | 000,004,382 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-01-16 14:38:26 | 000,000,672 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\Mozilla Firefox.exe.lnk [2011-01-16 14:26:37 | 009,289,416 | ---- | M] (Mozilla) -- C:\Documents and Settings\xxx\Pulpit\Firefox Setup 3.6.13.exe [2011-01-16 10:33:09 | 000,004,048 | ---- | M] () -- C:\WINDOWS\unins000.dat [2011-01-15 19:26:41 | 000,000,789 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2011-01-14 22:41:38 | 054,630,248 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\m6cfa7a4.exe [2011-01-14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe [2011-01-10 19:17:38 | 000,000,241 | -HS- | M] () -- C:\BOOT.BAK [2011-01-09 13:03:17 | 000,431,672 | ---- | M] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys [2011-01-09 09:55:05 | 000,114,968 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-01-08 15:11:27 | 000,124,976 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS [2011-01-08 15:11:27 | 000,060,808 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL [2011-01-08 15:11:27 | 000,007,443 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2011-01-08 15:11:27 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2011-01-02 17:22:46 | 000,000,718 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2010-12-26 14:36:03 | 000,001,797 | ---- | M] () -- C:\WINDOWS\System32\autoexec.nt [2010-12-25 22:21:29 | 000,002,072 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol [6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-04 19:28:41 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\RSIT.exe [2011-01-30 15:13:02 | 000,848,094 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\Plan lekcji.bmp [2011-01-23 11:30:39 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2011-01-23 11:30:13 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2011-01-23 11:30:04 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2011-01-23 11:30:03 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2011-01-23 11:30:01 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2011-01-23 11:29:49 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2011-01-23 11:29:43 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2011-01-23 11:29:38 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2011-01-23 11:29:22 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2011-01-23 11:16:55 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2011-01-23 11:16:55 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2011-01-23 11:16:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2011-01-23 11:16:55 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2011-01-23 11:16:55 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2011-01-23 11:16:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2011-01-23 11:16:55 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2011-01-23 11:16:55 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2011-01-23 11:16:55 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2011-01-23 11:16:55 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2011-01-23 11:16:55 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2011-01-23 11:16:55 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2011-01-23 11:16:55 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2011-01-23 11:16:54 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2011-01-23 11:16:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2011-01-23 11:16:54 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2011-01-22 19:32:39 | 000,654,356 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\Cat.DB [2011-01-22 12:49:01 | 000,007,873 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symefa.cat [2011-01-22 12:49:01 | 000,007,787 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symnetv.cat [2011-01-22 12:49:01 | 000,007,442 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtspx.cat [2011-01-22 12:49:01 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtsp.cat [2011-01-22 12:49:01 | 000,007,438 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\iron.cat [2011-01-22 12:49:01 | 000,007,425 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symds.cat [2011-01-22 12:49:01 | 000,007,396 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\cchpx86.cat [2011-01-22 12:49:01 | 000,007,368 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symnet.cat [2011-01-22 12:49:01 | 000,003,373 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symefa.inf [2011-01-22 12:49:01 | 000,002,793 | R--- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symds.inf [2011-01-22 12:49:01 | 000,001,754 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\cchpx86.inf [2011-01-22 12:49:01 | 000,001,473 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symnetv.inf [2011-01-22 12:49:01 | 000,001,445 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\symnet.inf [2011-01-22 12:49:01 | 000,001,388 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtspx.inf [2011-01-22 12:49:01 | 000,001,382 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\srtsp.inf [2011-01-22 12:49:01 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\iron.inf [2011-01-22 12:48:50 | 000,000,172 | ---- | C] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\isolate.ini [2011-01-16 16:09:48 | 1878,220,800 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP [2011-01-16 14:38:26 | 000,000,672 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\Mozilla Firefox.exe.lnk [2011-01-15 09:57:31 | 000,349,006 | ---- | C] () -- C:\WINDOWS\setupapi.old [2011-01-14 20:47:43 | 054,630,248 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\m6cfa7a4.exe [2011-01-10 20:13:55 | 000,000,241 | -HS- | C] () -- C:\BOOT.BAK [2011-01-10 20:13:51 | 000,262,400 | RHS- | C] () -- C:\cmldr [2011-01-09 09:32:54 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2011-01-08 15:11:27 | 000,007,443 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2011-01-08 15:11:27 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2011-01-08 15:11:17 | 000,001,964 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Norton Internet Security.LNK [2011-01-02 17:22:46 | 000,000,718 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2010-04-12 14:02:14 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010-04-11 15:56:59 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2010-04-10 11:20:53 | 000,043,520 | ---- | C] () -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-03-26 16:15:35 | 000,118,784 | R--- | C] () -- C:\Program Files\MSP_Uninstall.exe [2010-03-26 15:57:59 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll [2010-03-26 15:54:49 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2010-03-26 15:48:02 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-03-26 12:50:57 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\xxx\Dane aplikacji\default.pls [2010-03-26 12:49:24 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-03-26 12:42:17 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-03-26 12:42:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-03-26 12:42:15 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2010-03-26 12:42:15 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-03-26 12:42:15 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-03-26 12:42:14 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2004-08-04 01:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2004-08-03 23:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [1998-03-17 18:15:00 | 000,000,116 | ---- | C] () -- C:\WINDOWS\smp32.dll [color=#E56717]========== LOP Check ==========[/color] [2010-04-21 17:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-09-14 17:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Guitar Pro 6 [2010-08-03 08:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2011-01-23 20:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2011-01-16 09:46:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-08-19 08:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-04-26 19:31:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Edyta.XXX-FC5528AB88B\Dane aplikacji\Gadu-Gadu [2010-04-23 13:08:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Edyta.XXX-FC5528AB88B\Dane aplikacji\Gadu-Gadu 10 [2010-03-28 12:18:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Edyta.XXX-FC5528AB88B\Dane aplikacji\Tific [2010-08-01 10:18:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\avidemux [2010-04-21 16:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Gadu-Gadu [2010-11-12 19:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Gadu-Gadu 10 [2011-01-08 20:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\GetRightToGo [2010-09-15 17:11:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Guitar Pro 6 [2010-07-18 12:38:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\HTNetMeter [2010-04-04 07:24:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\InterTrust [2010-10-19 19:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Leadertech [2011-02-04 18:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2010-05-17 14:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\OpenFM [2010-04-21 15:20:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Opera [2011-01-05 16:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Teleca [2010-05-27 20:37:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Thinstall [2010-03-26 17:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Tific [2010-08-19 08:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Ubisoft [2010-04-04 08:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 195 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 < End of report > [/log] [log]OTL Extras logfile created on: 2011-02-04 19:26:45 - Run 4 OTL by OldTimer - Version 3.2.20.2 Folder = C:\Documents and Settings\xxx\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 52,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 79,00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 117,19 Gb Total Space | 34,04 Gb Free Space | 29,05% Space Free | Partition Type: NTFS Drive D: | 152,34 Gb Total Space | 137,05 Gb Free Space | 89,96% Space Free | Partition Type: NTFS Drive E: | 196,22 Gb Total Space | 165,87 Gb Free Space | 84,53% Space Free | Partition Type: NTFS Computer Name: JAREK | User Name: xxx | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_USERS\S-1-5-21-1547161642-2147107749-1801674531-1003\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- Reg Error: Key error. https [open] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009 "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Axesstel\AxessManager\AxessManager.exe" = C:\Program Files\Axesstel\AxessManager\AxessManager.exe:*:Enabled:AxessManager Application -- (Axesstel Inc.) "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe" = E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV -- (Sony DADC Austria AG) "E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe" = E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Disabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "E:\Guitar Pro 6\GuitarPro.exe" = E:\Guitar Pro 6\GuitarPro.exe:*:Enabled:Guitar Pro 6 "C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows "E:\Gry\EA11\Game\fifa.exe" = E:\Gry\EA11\Game\fifa.exe:*:Enabled:FIFA 11 -- (Electronic Arts) "C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe" = C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe:*:Enabled:RegnumOnline -- (NGD Studios) "D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe" = D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe:*:Enabled:mitmgeneric -- () "E:\Gry\LoD - Bitwa o Śródziemie\game.dat" = E:\Gry\LoD - Bitwa o Śródziemie\game.dat:*:Enabled:Bitwa o Śródziemie™ II "C:\Program Files\PermissionResearch\prmrsr.exe" = C:\Program Files\PermissionResearch\prmrsr.exe:*:Enabled:prmrsr.exe -- (TMRG, Inc.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR "{023C9E50-C216-4E7A-A8A5-3457DE58106C}" = Catalyst Control Center - Branding "{03D8A0D6-8455-B550-A808-391C82127447}" = CCC Help Greek "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{09756AF6-AFAD-EF82-AB78-3297FD81E821}" = CCC Help Japanese "{10CD9AF7-5D3A-2772-F617-8BD9D82EC3A3}" = CCC Help Dutch "{1447E6D2-1015-AE95-5976-E15EF8684347}" = CCC Help Portuguese "{17B4113F-D6AA-3970-127A-C09D10886EB0}" = CCC Help German "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{187DC7F2-3C76-62C6-575B-03EC8B9B0BC8}" = Catalyst Control Center Graphics Full Existing "{1A4B2698-683C-769B-7E67-339F23858DEB}" = Catalyst Control Center Graphics Full New "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{200BFFBD-3B5F-47C7-F6DB-3162EF559880}" = Skins "{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD}" = AMD OverDrive "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{24A6F0B6-E6F3-46AE-BB7E-81D6AFA6E926}" = ATI AVIVO Codecs "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21 "{2EEEC858-21F8-419B-8FE2-820621BFFCD7}" = GetDataBack for FAT "{337A4845-48F0-3363-4424-5047FD6AB456}" = CCC Help Hungarian "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36177F72-8181-45D7-95D1-EA5B008A4DC9}" = Macro Vibration Joystick "{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder "{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{511CD3D6-8A90-8D4F-B16B-DA80BD0E0FBE}" = CCC Help Turkish "{53C06EDE-6FB0-643E-7193-7053F9C7190A}" = ccc-utility "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5C9C1AD9-CBA2-8EBD-8252-D39F40C29F4B}" = CCC Help Thai "{63717D97-103F-4310-E8E9-22F26F9E2C38}" = CCC Help Korean "{6A13436F-4D18-D4B5-181E-B6AC603BFED7}" = CCC Help Czech "{6C878433-FDDC-6C9E-2E6C-55F979761B30}" = Catalyst Control Center Core Implementation "{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com "{78D80EAF-1ADB-46A8-AF6F-EBB18B6ADBCE}" = ISO Creator 1.0 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8E0696CF-2869-578B-F8AB-C82B80F9EF12}" = CCC Help Italian "{90A8E958-F3F9-CE7C-B084-F90B8F40F3C3}" = Catalyst Control Center Graphics Light "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A51026AB-F833-413F-5BB3-AE1B3CF3F539}" = ccc-core-static "{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91045}" = Nero 8 Essentials "{A879106A-9275-0397-CA14-76B24943ACE3}" = CCC Help Swedish "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2 "{B22C04E5-C923-94E2-A33A-25B988686934}" = CCC Help Finnish "{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}" = AxessManager "{BB6BB891-CA30-060D-5D63-860F59DBD29D}" = CCC Help Spanish "{BFB91468-460B-68B6-C666-BB5CC09BC93B}" = Catalyst Control Center Localization All "{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CF287D73-E32C-19C1-E895-2EC4BC7334AE}" = CCC Help Chinese Traditional "{D85D835B-E26E-99E0-CB4E-9DEA34EC19FD}" = CCC Help Russian "{DA57EFCC-90DA-A202-9AC8-A1278918F481}" = CCC Help Polish "{DCB51FBC-68AD-42FF-8426-199F1FE2C4F5}" = AMD USB Filter Driver "{DD97597E-7AB9-8A67-5C18-31015D91B337}" = ccc-core-preinstall "{E2958428-E345-CB5E-239D-FE031BDA3A89}" = CCC Help Chinese Standard "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{EA36EFF1-DFB9-E5A7-29C0-9DBAF7EBAEF6}" = CCC Help English "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F3A4A3DA-D7E8-C3CD-966D-9B57762739FF}" = CCC Help French "{F8C3DA4D-3837-50E7-10B2-0EE0D656B63C}" = CCC Help Danish "{FC906D5C-91F9-4DA4-A765-6DCBB669F317}" = Sony Ericsson PC Suite "{FFB7426F-1531-6AB4-BFB9-3CC1336FE406}" = CCC Help Norwegian "Adobe Acrobat 5.0" = Adobe Acrobat 5.0 CE "Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player "All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI "ALLPlayer V2.4_is1" = ALLPlayer V2.4 "ATI Display Driver" = ATI Display Driver "Axesstel Data Modem Driver" = Axesstel Data Modem Driver "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "DVD Shrink_is1" = DVD Shrink 3.2 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "Free_Lunch_Design Toolbar" = Free_Lunch_Design Toolbar "Gadu-Gadu 10" = Gadu-Gadu 10 "GreenPowerCenterII_is1" = GreenPowerCenterII "Guitar Pro 5_is1" = Guitar Pro 5.0 "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.0.0 "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "Niezbędnik CD_is1" = Niezbędnik CD "NIS" = Norton Internet Security "OverclockingCenter_is1" = OverclockingCenter "PLAY ONLINE" = PLAY ONLINE "RAR Password Recovery Magic_is1" = RAR Password Recovery Magic v6.1.1.95 "Seven Remix XP" = Seven Remix XP 2.2 "SMAC 2.7" = SMAC 2.7 "SubEdit-Player_is1" = SubEdit-Player "TuxGuitar_0" = TuxGuitar 1.1 "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-02-02 12:56:58 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd plugin-container.exe, wersja 1.9.2.3989, moduł powodujący błąd ntdll.dll, wersja 5.1.2600.2180, adres błędu 0x00001010. Error - 2011-02-02 12:57:01 | Computer Name = JAREK | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca firefox.exe.exe, wersja 1.9.2.3989, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-02 12:57:07 | Computer Name = JAREK | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca firefox.exe.exe, wersja 1.9.2.3989, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-02-03 16:10:27 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd explorer.exe, wersja 6.0.2900.2180, moduł powodujący błąd wininet.dll, wersja 6.0.2900.2180, adres błędu 0x00003674. Error - 2011-02-04 01:15:00 | Computer Name = JAREK | Source = EventSystem | ID = 4609 Description = Podczas wewnętrznego przetwarzania system zdarzeń modelu COM+ wykrył zły kod powrotu. HRESULT to 80080005 z w wierszu 44 z d:\qxp_slp\com\com1x\src\events\tier1\eventsystemobj.cpp. Skontaktuj się z Pomocą techniczną firmy Microsoft i zgłoś ten błą Error - 2011-02-04 13:45:39 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd prmrsr.exe, wersja 1.3.328.330, moduł powodujący błąd prmrsr.exe, wersja 1.3.328.330, adres błędu 0x0018341c. Error - 2011-02-04 13:45:52 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd nmindexstoresvr.exe, wersja 3.3.8.0, moduł powodujący błąd nmindexstoresvr.exe, wersja 3.3.8.0, adres błędu 0x00006db5. Error - 2011-02-04 13:45:58 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd prmrsr.exe, wersja 1.3.328.330, moduł powodujący błąd prmrsr.exe, wersja 1.3.328.330, adres błędu 0x0018341c. Error - 2011-02-04 13:46:14 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd prmrsr.exe, wersja 1.3.328.330, moduł powodujący błąd prmrsr.exe, wersja 1.3.328.330, adres błędu 0x0018341c. Error - 2011-02-04 13:52:44 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd nmindexstoresvr.exe, wersja 3.3.8.0, moduł powodujący błąd nmindexstoresvr.exe, wersja 3.3.8.0, adres błędu 0x00006db5. [ System Events ] Error - 2011-01-28 13:53:35 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-28 13:53:37 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-28 13:53:39 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2011-01-29 04:49:39 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-29 04:49:50 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-29 04:49:52 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2011-01-29 08:55:13 | Computer Name = JAREK | Source = PlugPlayManager | ID = 12 Description = Urządzenie 'SAMSUNG SP0802N' (IDE\DiskSAMSUNG_SP0802N_________________________TK300-06\30534a30344a5930323539343633202020202020) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2011-01-29 12:33:26 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-29 12:33:41 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-29 12:33:42 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd < End of report > [/log] [log]info.txt logfile of random's system information tool 1.08 2011-02-04 19:53:10 ======Uninstall list====== -->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07} Adobe Acrobat 5.0 CE-->C:\WINDOWS\ISUN0415.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.dll" Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Reader 9.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A92000000001} Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf ALLPlayer V2.4-->"C:\Program Files\MarBit\ALLPlayer\unins000.exe" AMD OverDrive-->MsiExec.exe /X{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD} AMD Processor Driver-->C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe -runfromtemp -l0x0015 -removeonly AMD USB Filter Driver-->MsiExec.exe /X{DCB51FBC-68AD-42FF-8426-199F1FE2C4F5} Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe ATI AVIVO Codecs-->MsiExec.exe /I{24A6F0B6-E6F3-46AE-BB7E-81D6AFA6E926} ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0 ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7} AxessManager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}\setup.exe" -l0x9 Axesstel Data Modem Driver-->C:\Program Files\MSP_Uninstall.EXE Catalyst Control Center - Branding-->MsiExec.exe /I{023C9E50-C216-4E7A-A8A5-3457DE58106C} DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe" EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe" EVEREST Ultimate Edition v5.30-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe" FIFA 11-->MsiExec.exe /X{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C} Free_Lunch_Design Toolbar-->C:\PROGRA~1\FREE_L~1\UNWISE.EXE /U C:\PROGRA~1\FREE_L~1\INSTALL.LOG Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe GetDataBack for FAT-->"C:\Program Files\Runtime Software\GetDataBack\Uninstall.exe" "C:\Program Files\Runtime Software\GetDataBack\install.log" -u Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_4079369A224CB572.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} GreenPowerCenterII-->"C:\Program Files\MSI\GreenPowerCenterII\unins000.exe" Guitar Pro 5.0-->"C:\Program Files\Guitar Pro 5\unins000.exe" ISO Creator 1.0-->MsiExec.exe /I{78D80EAF-1ADB-46A8-AF6F-EBB18B6ADBCE} Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} K-Lite Mega Codec Pack 5.0.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Macro Vibration Joystick-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{36177F72-8181-45D7-95D1-EA5B008A4DC9}\setup.exe" -l0x9 Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13} Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Narzędzie Software Uninstall Utility firmy ATI-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe Nero 8 Essentials-->MsiExec.exe /X{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91045} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} Niezbędnik CD-->C:\WINDOWS\unins000.exe Norton Internet Security-->C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\17.8.0.5\InstStub.exe /X OverclockingCenter-->"C:\Program Files\MSI\OverclockingCenter\unins000.exe" PLAY ONLINE-->C:\Program Files\PLAY ONLINE\uninst.exe RAR Password Recovery Magic v6.1.1.95-->"C:\Program Files\RAR Password Recovery Magic\unins000.exe" REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\SETUP.EXE -runfromtemp -removeonly Realtek High Definition Audio Driver-->RtkUpd.exe -r -m Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly Seven Remix XP 2.2-->C:\WINDOWS\NiwradSoft Shell Pack\uninst.exe SMAC 2.7-->C:\PROGRA~1\KLC\SMAC\UNWISE.EXE C:\PROGRA~1\KLC\SMAC\INSTALL.LOG Sony Ericsson PC Suite-->MsiExec.exe /I{FC906D5C-91F9-4DA4-A765-6DCBB669F317} SubEdit-Player-->"C:\Program Files\Programy\SubEdit-Player\unins000.exe" TuxGuitar 1.1-->C:\Program Files\Programy\Uninstall.exe Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" ======Hosts File====== 127.0.0.1 localhost ======System event log====== Computer Name: JAREK Event Code: 7035 Message: Do usługi Karta wydajności WMI został pomyślnie wysłany kod sterowania uruchom. Record Number: 749 Source Name: Service Control Manager Time Written: 20110117152445.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: JAREK Event Code: 7036 Message: Usługa Karta wydajności WMI weszła w stan uruchomienia. Record Number: 748 Source Name: Service Control Manager Time Written: 20110117152445.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 7036 Message: Usługa NMIndexingService weszła w stan uruchomienia. Record Number: 747 Source Name: Service Control Manager Time Written: 20110117152445.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 7035 Message: Do usługi Usługa odnajdywania SSDP został pomyślnie wysłany kod sterowania uruchom. Record Number: 746 Source Name: Service Control Manager Time Written: 20110117152445.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: JAREK Event Code: 7036 Message: Usługa Menedżer połączeń usługi Dostęp zdalny weszła w stan uruchomienia. Record Number: 745 Source Name: Service Control Manager Time Written: 20110117152444.000000+060 Event Type: informacje User: =====Application event log===== Computer Name: JAREK Event Code: 0 Message: Record Number: 5701 Source Name: gupdate Time Written: 20101030172720.000000+120 Event Type: informacje User: Computer Name: JAREK Event Code: 1 Message: Record Number: 5700 Source Name: avg8emc Time Written: 20101030172647.000000+120 Event Type: informacje User: Computer Name: JAREK Event Code: 0 Message: Record Number: 5699 Source Name: gupdate Time Written: 20101030172644.000000+120 Event Type: informacje User: Computer Name: JAREK Event Code: 4354 Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionMadeNoQOCInfo dla subskrypcji {A82F0E80-1305-400C-BA56-375AE04264A1}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001. Record Number: 5698 Source Name: EventSystem Time Written: 20101030112448.000000+120 Event Type: ostrzeżenie User: Computer Name: JAREK Event Code: 20 Message: Record Number: 5697 Source Name: Google Update Time Written: 20101030111505.000000+120 Event Type: ostrzeżenie User: ZARZĄDZANIE NT\SYSTEM ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\WBEM;C:\Program Files\Common Files\Teleca Shared "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=16 "PROCESSOR_IDENTIFIER"=x86 Family 16 Model 5 Stepping 2, AuthenticAMD "PROCESSOR_REVISION"=0502 "NUMBER_OF_PROCESSORS"=4 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "RGSCLauncher"=C:\Program Files\Rockstar Games\Rockstar Games Social Club "RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0 -----------------EOF----------------- [/log] [log]Logfile of random's system information tool 1.08 (written by random/random) Run by xxx at 2011-02-04 19:55:30 Microsoft Windows XP Professional Dodatek Service Pack 2 System drive C: has 35 GB (29%) free of 120 GB Total RAM: 1791 MB (51% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 19:55:55, on 2011-02-04 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe C:\WINDOWS\system32\wscntfy.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Winamp\winampa.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\Program Files\Mozilla Firefox\firefox.exe.exe C:\Program Files\Mozilla Firefox\plugin-container.exe C:\Documents and Settings\xxx\Pulpit\RSIT.exe C:\Program Files\trend micro\xxx.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O8 - Extra context menu item: Funkcja Google Sidewiki - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{28C6B69E-EC58-4341-AF3F-EDED488DA439}: NameServer = 212.85.112.32,193.110.121.20 O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AODService - Unknown owner - C:\Program Files\AMD\OverDrive\AODAssist.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- End of file - 6767 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll [2010-09-04 396144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL [2010-05-14 79224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-13 297648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-24 843832] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-01 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-01 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll [2010-04-21 42080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-13 297648] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll [2010-09-04 396144] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-06-25 98304] "NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-07-09 570664] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2009-07-01 37888] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-07-20 18670592] "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424] "Gadu-Gadu 10"=C:\Program Files\Gadu-Gadu 10\gg.exe [2010-04-21 11985504] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-08-01 39408] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2009-06-25 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-06-30 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "authentication packages"=msv1_0 nwprovau [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableTaskMgr"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktopChanges"=0 "NoSetActiveDesktop"=0 "NoRun"=0 "NoFolderOptions"=0 "NoDriveTypeAutoRun"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoActiveDesktopChanges"=0 "NoSetActiveDesktop"=0 "NoRun"=0 "NoFolderOptions"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Axesstel\AxessManager\AxessManager.exe"="C:\Program Files\Axesstel\AxessManager\AxessManager.exe:*:Enabled:AxessManager Application" "C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV" "E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV" "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Disabled:Rockstar Games Social Club" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "E:\Guitar Pro 6\GuitarPro.exe"="E:\Guitar Pro 6\GuitarPro.exe:*:Enabled:Guitar Pro 6" "C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows" "E:\Gry\EA11\Game\fifa.exe"="E:\Gry\EA11\Game\fifa.exe:*:Enabled:FIFA 11" "C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe"="C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe:*:Enabled:RegnumOnline" "D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe"="D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe:*:Enabled:mitmgeneric" "E:\Gry\LoD - Bitwa o Śródziemie\game.dat"="E:\Gry\LoD - Bitwa o Śródziemie\game.dat:*:Enabled:Bitwa o Śródziemie™ II" "C:\Program Files\PermissionResearch\prmrsr.exe"="C:\Program Files\PermissionResearch\prmrsr.exe:*:Enabled:prmrsr.exe" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb ======List of files/folders created in the last 1 months====== 2011-02-04 19:52:40 ----D---- C:\Program Files\trend micro 2011-02-04 19:52:38 ----D---- C:\rsit 2011-02-03 20:18:18 ----D---- C:\Program Files\PermissionResearch 2011-01-23 20:36:34 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Sony Ericsson 2011-01-23 20:36:15 ----D---- C:\Program Files\Common Files\Sony Ericsson Shared 2011-01-23 20:36:10 ----D---- C:\Program Files\Sony Ericsson 2011-01-23 20:36:10 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Teleca 2011-01-23 20:36:06 ----D---- C:\WINDOWS\Downloaded Installations 2011-01-23 12:08:51 ----ASH---- C:\pagefile.sys 2011-01-23 11:33:26 ----D---- C:\WINDOWS\Prefetch 2011-01-23 11:27:29 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2011-01-23 11:17:20 ----A---- C:\WINDOWS\system32\irclass.dll 2011-01-23 11:17:19 ----A---- C:\WINDOWS\system32\spxcoins.dll 2011-01-23 11:16:51 ----RA---- C:\WINDOWS\SET40.tmp 2011-01-23 11:16:48 ----RA---- C:\WINDOWS\SET34.tmp 2011-01-23 11:16:46 ----RA---- C:\WINDOWS\SET31.tmp 2011-01-16 16:04:50 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II 2011-01-16 15:17:56 ----RA---- C:\WINDOWS\SET3F.tmp 2011-01-16 15:17:52 ----RA---- C:\WINDOWS\SET33.tmp 2011-01-16 15:17:51 ----RA---- C:\WINDOWS\SET30.tmp 2011-01-13 22:17:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com 2011-01-13 21:45:42 ----D---- C:\Program Files\RAR Password Recovery Magic 2011-01-13 20:32:51 ----D---- C:\Program Files\Xenocode 2011-01-13 20:32:50 ----D---- C:\WINDOWS\XSxS 2011-01-13 19:53:52 ----D---- C:\Program Files\GridinSoft Trojan Killer 2011-01-10 20:13:55 ----SH---- C:\BOOT.BAK 2011-01-10 20:13:34 ----RSHD---- C:\cmdcons 2011-01-10 20:13:34 ----A---- C:\WINDOWS\UPGRADE.TXT 2011-01-10 20:13:27 ----D---- C:\WINDOWS\setup.pss 2011-01-10 20:12:56 ----D---- C:\WINDOWS\setupupd 2011-01-09 10:42:37 ----D---- C:\Program Files\ConduitEngine 2011-01-09 09:50:18 ----D---- C:\WINDOWS\system32\xircom 2011-01-09 09:50:18 ----D---- C:\Program Files\xerox 2011-01-09 09:50:18 ----D---- C:\Program Files\microsoft frontpage 2011-01-09 09:50:01 ----A---- C:\WINDOWS\system32\wmpns.dll 2011-01-09 09:45:55 ----D---- C:\Program Files\ComPlus Applications 2011-01-09 09:45:22 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2011-01-09 09:33:27 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2011-01-09 09:33:26 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2011-01-09 09:33:24 ----A---- C:\WINDOWS\system32\drivers\irenum.sys 2011-01-08 20:36:48 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\PC Tools 2011-01-08 20:36:34 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2011-01-08 20:19:34 ----D---- C:\Program Files\Downloads 2011-01-08 20:19:31 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\GetRightToGo 2011-01-08 15:11:27 ----D---- C:\Program Files\Symantec 2011-01-08 15:11:27 ----D---- C:\Program Files\Common Files\Symantec Shared 2011-01-08 15:11:27 ----A---- C:\WINDOWS\system32\S32EVNT1.DLL 2011-01-08 15:11:27 ----A---- C:\WINDOWS\system32\drivers\SYMEVENT.SYS 2011-01-08 15:10:42 ----D---- C:\WINDOWS\system32\drivers\NIS 2011-01-08 15:10:39 ----D---- C:\Program Files\Norton Internet Security 2011-01-08 15:09:02 ----D---- C:\Program Files\NortonInstaller ======List of files/folders modified in the last 1 months====== 2011-02-04 19:52:40 ----RD---- C:\Program Files 2011-02-04 19:52:40 ----D---- C:\WINDOWS\Temp 2011-02-04 18:50:34 ----D---- C:\WINDOWS\system32\CatRoot2 2011-02-04 15:26:05 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Winamp 2011-02-04 13:53:58 ----SHD---- C:\System Volume Information 2011-02-04 06:22:36 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-02-03 20:18:24 ----SHD---- C:\WINDOWS\Installer 2011-02-02 19:16:37 ----HD---- C:\WINDOWS\inf 2011-01-28 16:51:01 ----D---- C:\WINDOWS\system32\drivers 2011-01-27 16:37:32 ----A---- C:\WINDOWS\NeroDigital.ini 2011-01-27 16:20:10 ----D---- C:\WINDOWS 2011-01-26 10:07:40 ----D---- C:\WINDOWS\system32 2011-01-26 10:07:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-01-24 15:32:47 ----RSHDC---- C:\WINDOWS\system32\dllcache 2011-01-24 08:22:58 ----D---- C:\WINDOWS\SoftwareDistribution 2011-01-24 08:22:53 ----D---- C:\WINDOWS\Help 2011-01-23 20:36:43 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-01-23 20:36:37 ----D---- C:\Program Files\Common Files\Teleca Shared 2011-01-23 20:36:15 ----D---- C:\Program Files\Common Files 2011-01-23 14:14:04 ----D---- C:\WINDOWS\security 2011-01-23 14:13:22 ----D---- C:\WINDOWS\Registration 2011-01-23 12:14:01 ----D---- C:\WINDOWS\system 2011-01-23 12:14:00 ----D---- C:\WINDOWS\system32\Setup 2011-01-23 12:13:50 ----D---- C:\WINDOWS\system32\usmt 2011-01-23 12:13:41 ----D---- C:\WINDOWS\AppPatch 2011-01-23 12:13:39 ----D---- C:\WINDOWS\ehome 2011-01-23 12:13:38 ----D---- C:\WINDOWS\ime 2011-01-23 12:13:37 ----RSD---- C:\WINDOWS\Fonts 2011-01-23 12:13:36 ----D---- C:\WINDOWS\Media 2011-01-23 12:13:24 ----D---- C:\WINDOWS\PeerNet 2011-01-23 12:13:12 ----D---- C:\WINDOWS\system32\npp 2011-01-23 12:13:05 ----D---- C:\WINDOWS\msagent 2011-01-23 12:10:59 ----D---- C:\WINDOWS\system32\1045 2011-01-23 12:10:51 ----D---- C:\WINDOWS\twain_32 2011-01-23 12:10:38 ----D---- C:\WINDOWS\system32\icsxml 2011-01-23 12:10:04 ----D---- C:\WINDOWS\system32\1033 2011-01-23 12:08:51 ----D---- C:\WINDOWS\Driver Cache 2011-01-23 11:35:06 ----A---- C:\WINDOWS\setuplog.txt 2011-01-23 11:34:31 ----D---- C:\WINDOWS\system32\Restore 2011-01-23 11:32:46 ----D---- C:\WINDOWS\system32\config 2011-01-23 11:31:37 ----D---- C:\WINDOWS\repair 2011-01-23 11:28:21 ----A---- C:\WINDOWS\OEWABLog.txt 2011-01-23 11:28:15 ----A---- C:\WINDOWS\ODBCINST.INI 2011-01-23 11:27:58 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2011-01-23 11:27:56 ----D---- C:\WINDOWS\system32\ias 2011-01-23 11:27:32 ----RD---- C:\WINDOWS\Web 2011-01-23 11:27:23 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2011-01-23 11:27:08 ----A---- C:\WINDOWS\win.ini 2011-01-23 11:27:03 ----D---- C:\WINDOWS\system32\oobe 2011-01-23 11:27:02 ----D---- C:\WINDOWS\srchasst 2011-01-23 11:27:01 ----D---- C:\Program Files\Windows Media Player 2011-01-23 11:26:58 ----D---- C:\Program Files\Movie Maker 2011-01-23 11:26:54 ----D---- C:\Program Files\Outlook Express 2011-01-23 11:26:53 ----D---- C:\Program Files\Common Files\System 2011-01-23 11:26:47 ----D---- C:\Program Files\Internet Explorer 2011-01-23 11:26:04 ----D---- C:\WINDOWS\system32\Com 2011-01-23 11:25:31 ----D---- C:\WINDOWS\system32\wbem 2011-01-23 11:24:24 ----SH---- C:\boot.ini 2011-01-23 11:18:33 ----D---- C:\WINDOWS\system32\CatRoot 2011-01-23 11:17:27 ----A---- C:\WINDOWS\system.ini 2011-01-23 11:17:10 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2011-01-23 11:03:36 ----A---- C:\WINDOWS\ntbtlog.txt 2011-01-23 11:00:05 ----D---- C:\Program Files\Windows NT 2011-01-23 10:58:28 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack 2011-01-18 10:36:17 ----D---- C:\WINDOWS\Minidump 2011-01-16 16:04:07 ----D---- C:\WINDOWS\system32\DirectX 2011-01-16 15:34:47 ----A---- C:\WINDOWS\imsins.BAK 2011-01-16 14:38:29 ----D---- C:\Program Files\Mozilla Firefox 2011-01-16 09:47:14 ----D---- C:\Program Files\Free_Lunch_Design 2011-01-15 19:26:41 ----D---- C:\WINDOWS\system32\drivers\etc 2011-01-14 17:13:21 ----D---- C:\Program Files\FLV Direct Player 2011-01-14 16:07:19 ----D---- C:\Documents and Settings 2011-01-09 09:47:32 ----D---- C:\Program Files\NetMeeting 2011-01-09 09:31:55 ----D---- C:\WINDOWS\WinSxS 2011-01-08 15:11:55 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Norton 2011-01-08 15:01:19 ----SD---- C:\Documents and Settings\xxx\Dane aplikacji\Microsoft 2011-01-08 15:00:35 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\avg8 2011-01-08 13:01:28 ----HD---- C:\$AVG8.VAULT$ 2011-01-05 16:50:06 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Teleca ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amdide;amdide; C:\WINDOWS\system32\DRIVERS\amdide.sys [2007-10-11 9096] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMDS.SYS [2009-08-30 328752] R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMEFA.SYS [2010-04-22 173104] R1 AmdPPM;Sterownik procesora AMD HwPState; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792] R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20110114.001\BHDrvx86.sys [] R1 ccHP;Symantec Hash Provider; C:\WINDOWS\system32\drivers\NIS\1108000.005\ccHPx86.sys [2010-02-26 501888] R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [] R1 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1108000.005\SRTSP.SYS [2010-04-22 325680] R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NIS\1108000.005\SRTSPX.SYS [2010-04-22 43696] R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NIS\1108000.005\Ironx86.SYS [2010-04-29 116784] R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1108000.005\SYMTDI.SYS [2010-05-06 361904] R1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-03 8832] R1 WS2IFSL;Środowisko wspomagające dostawcę usług innych niż IFS - Windows Socket 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-18 12032] R2 NwlnkIpx;Protokół transportowy zgodny z NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448] R2 NwlnkNb;System NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-18 63232] R2 NwlnkSpx;Protokół NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-18 55936] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-06-25 4125696] R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-18 9600] R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20110120.001\IDSxpx86.sys [] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-20 5795328] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVENG.SYS [] R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVEX15.SYS [] R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2004-08-03 163584] R3 RTHDMIAzAudService;Service for HDMI; C:\WINDOWS\system32\drivers\RtKHDMI.sys [2009-04-14 3732608] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-05-25 142336] R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [] R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2009-02-08 22328] S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-01-09 431672] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 Axtmvflt;Axesstel USB Filter Service; C:\WINDOWS\system32\DRIVERS\Axtmvflt.sys [2009-04-21 3456] S3 Axtmvmdm;Axesstel USB Modem; C:\WINDOWS\system32\DRIVERS\Axtmvmdm.sys [2009-04-21 40064] S3 Axtmvprt;Axesstel Diagnostic Port; C:\WINDOWS\System32\Drivers\Axtmvprt.sys [2009-04-21 38784] S3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\OverclockingCenter\NTGLM7X.sys [] S3 hid7906;hid7906; C:\WINDOWS\system32\drivers\hid7906.sys [2006-07-04 53921] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2009-09-10 102528] S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [2009-07-24 100736] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 MSICDSetup;MSICDSetup; \??\F:\CDriver.sys [] S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files\MSI\OverclockingCenter\RushJ.sys [] S3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\OverclockingCenter\RushTop.sys [] S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-05-15 61600] S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-09-18 9360] S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-09-18 97184] S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-09-18 88688] S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-09-18 18704] S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-09-18 86560] S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-09-18 90800] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-06-30 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-06-30 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-06-25 602112] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-01 153376] R2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe [2010-02-26 126392] R2 NWCWorkstation;Usługa klienta dla systemu NetWare; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336] R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896] S2 AODService;AODService; C:\Program Files\AMD\OverDrive\AODAssist.exe [2009-05-05 124256] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-01 135664] S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-08-01 182768] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] -----------------EOF----------------- [/log] [color="#FF0000"]//Logi wstawiamy w tagi //Poprawiam //Tom01[/color]
Tomek01 komentarz 4 lutego 2011 komentarz 4 lutego 2011 Rozszerz wątek, jakie wirusy miałeś, jakich programów użyłeś, masz jakieś raporty ? Przeskanuj na virustotal ten plik, chcę mieć pewność. C:\WINDOWS\system32\iesafemode.exe
Sounder komentarz 5 lutego 2011 Autor komentarz 5 lutego 2011 Najpierw było to: http://trojan-killer.net/malwareurl-check-com-browser-redirect-problem-how-to-get-rid-of-malwareurl-check-com-hijacker/?lang=pl Poza tym oczywiście duży zestaw innych wirusów i trojanów. Użyłem programu Dr.WEB Cure It. Pomógł, bo zanim go użyłem system nie chciał się nawet uruchomić. No i po całej akcji został tylko myślący bez przerwy procesor. A co do tego pliku, to nie ma takiego w tym folderze.
Tomek01 komentarz 6 lutego 2011 komentarz 6 lutego 2011 Nie masz raportu z DrWeb'a ? W OTL, w oknie Custom scan/fixes wklej: :OTL [code]O27 - HKLM IFEO\chrome.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\firefox.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\iexplore.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\opera.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found :Files C:\WINDOWS\SET40.tmp C:\WINDOWS\SET34.tmp C:\WINDOWS\SET31.tmp C:\WINDOWS\SET3F.tmp C:\WINDOWS\SET33.tmp C:\WINDOWS\SET30.tmp :Commands [emptytemp][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT
Sounder komentarz 8 lutego 2011 Autor komentarz 8 lutego 2011 [log]Logfile of random's system information tool 1.08 (written by random/random) Run by xxx at 2011-02-08 20:22:11 Microsoft Windows XP Professional Dodatek Service Pack 2 System drive C: has 34 GB (29%) free of 120 GB Total RAM: 1791 MB (55% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 20:22:29, on 2011-02-08 Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\Ati2evxx.exe C:\WINDOWS\system32\spoolsv.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Winamp\winampa.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe C:\WINDOWS\RTHDCPL.EXE C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ccc.exe C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe C:\WINDOWS\system32\wbem\wmiapsrv.exe C:\WINDOWS\system32\wscntfy.exe C:\Program Files\Common Files\Teleca Shared\Generic.exe C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe C:\WINDOWS\system32\wuauclt.exe C:\Program Files\Gadu-Gadu 10\gg.exe C:\WINDOWS\system32\CTFMON.EXE C:\Documents and Settings\xxx\Pulpit\OTL.exe C:\Documents and Settings\xxx\Pulpit\RSIT.exe C:\Program Files\trend micro\xxx.exe R1 - HKCU\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896 R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza F2 - REG:system.ini: UserInit=C:\WINDOWS\system32\userinit.exe O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Symantec NCO BHO - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O2 - BHO: Symantec Intrusion Prevention - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL O2 - BHO: Google Toolbar Helper - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O2 - BHO: Google Toolbar Notifier BHO - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O2 - BHO: IEPluginBHO - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll O3 - Toolbar: Google Toolbar - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll O3 - Toolbar: Norton Toolbar - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll O4 - HKLM\..\Run: [StartCCC] "C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun O4 - HKLM\..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe O4 - HKLM\..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE O4 - HKLM\..\Run: [Sony Ericsson PC Suite] "C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe" /startoptions O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] "C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe" ASO-616B5711-6DAE-4795-A05F-39A1E5104020 O4 - HKCU\..\Run: [Gadu-Gadu 10] "C:\Program Files\Gadu-Gadu 10\gg.exe" O4 - HKCU\..\Run: [swg] "C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe" O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\CTFMON.EXE O8 - Extra context menu item: Funkcja Google Sidewiki - res://C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll/cmsidewiki.html O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O10 - Unknown file in Winsock LSP: c:\windows\system32\nwprovau.dll O17 - HKLM\System\CCS\Services\Tcpip\..\{28C6B69E-EC58-4341-AF3F-EDED488DA439}: NameServer = 212.85.112.32,193.110.121.20 O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: AODService - Unknown owner - C:\Program Files\AMD\OverDrive\AODAssist.exe O23 - Service: Ati HotKey Poller - ATI Technologies Inc. - C:\WINDOWS\system32\Ati2evxx.exe O23 - Service: Usługa Google Update (gupdate) (gupdate) - Google Inc. - C:\Program Files\Google\Update\GoogleUpdate.exe O23 - Service: Google Software Updater (gusvc) - Google - C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: Norton Internet Security (NIS) - Symantec Corporation - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe -- End of file - 6994 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{06849E9F-C8D7-4D59-B87D-784B7D6BE0B3}] Adobe PDF Reader Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll [2009-02-27 61816] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2009-02-27 75128] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{602ADB0E-4AFF-4217-8AA1-95DAC4DFA408}] Symantec NCO BHO - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll [2010-09-04 396144] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{6D53EC84-6AAE-4787-AEEE-F4628F01010C}] Symantec Intrusion Prevention - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\IPSBHO.DLL [2010-05-14 79224] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AA58ED58-01DD-4d91-8333-CF10577473F7}] Google Toolbar Helper - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-13 297648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AF69DE43-7D58-4638-B6FA-CE66B5AD205D}] Google Toolbar Notifier BHO - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll [2010-10-24 843832] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-08-01 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-08-01 79648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}] IEPluginBHO Class - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll [2010-04-21 42080] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] {2318C2B1-4965-11d4-9B18-009027A5CD4F} - Google Toolbar - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll [2010-12-13 297648] {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - Norton Toolbar - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coIEPlg.dll [2010-09-04 396144] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "StartCCC"=C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe [2009-06-25 98304] "NeroFilterCheck"=C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe [2008-07-09 570664] "WinampAgent"=C:\Program Files\Winamp\winampa.exe [2009-07-01 37888] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2009-10-03 35696] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-21 932288] "RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2009-07-20 18670592] "Sony Ericsson PC Suite"=C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe [2006-11-24 487424] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}"=C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe [2008-06-24 1840424] "Gadu-Gadu 10"=C:\Program Files\Gadu-Gadu 10\gg.exe [2010-04-21 11985504] "swg"=C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe [2010-08-01 39408] "ctfmon.exe"=C:\WINDOWS\system32\CTFMON.EXE [2004-08-03 15360] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\AtiExtEvent] C:\WINDOWS\system32\Ati2evxx.dll [2009-06-25 155648] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad] WPDShServiceObj - {AAA288BA-9A4C-45B0-95D7-94D524869DB5} - C:\WINDOWS\system32\WPDShServiceObj.dll [2009-06-30 133632] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa] "authentication packages"=msv1_0 nwprovau [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\System] "DisableTaskMgr"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 "DisableTaskMgr"=0 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoActiveDesktopChanges"=0 "NoSetActiveDesktop"=0 "NoRun"=0 "NoFolderOptions"=0 "NoDriveTypeAutoRun"=0 [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "HonorAutoRunSetting"=1 "NoActiveDesktopChanges"=0 "NoSetActiveDesktop"=0 "NoRun"=0 "NoFolderOptions"=0 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\Axesstel\AxessManager\AxessManager.exe"="C:\Program Files\Axesstel\AxessManager\AxessManager.exe:*:Enabled:AxessManager Application" "C:\Program Files\Gadu-Gadu\gg.exe"="C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny" "C:\WINDOWS\system32\dpvsetup.exe"="C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test" "C:\WINDOWS\system32\rundll32.exe"="C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację" "E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV" "E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe"="E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV" "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe"="C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Disabled:Rockstar Games Social Club" "C:\Program Files\Mozilla Firefox\firefox.exe"="C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox" "C:\Program Files\Gadu-Gadu 10\gg.exe"="C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10" "E:\Guitar Pro 6\GuitarPro.exe"="E:\Guitar Pro 6\GuitarPro.exe:*:Enabled:Guitar Pro 6" "C:\Program Files\Ares\Ares.exe"="C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows" "E:\Gry\EA11\Game\fifa.exe"="E:\Gry\EA11\Game\fifa.exe:*:Enabled:FIFA 11" "C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe"="C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe:*:Enabled:RegnumOnline" "D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe"="D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe:*:Enabled:mitmgeneric" "E:\Gry\LoD - Bitwa o Śródziemie\game.dat"="E:\Gry\LoD - Bitwa o Śródziemie\game.dat:*:Enabled:Bitwa o Śródziemie™ II" "C:\Program Files\PermissionResearch\prmrsr.exe"="C:\Program Files\PermissionResearch\prmrsr.exe:*:Enabled:prmrsr.exe" "C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe"="C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher" "E:\Assassin's Creed II\AssassinsCreedIIGame.exe"="E:\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II" "E:\Assassin's Creed II\AssassinsCreedII.exe"="E:\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update" "E:\Assassin's Creed II\UPlayBrowser.exe"="E:\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options] "Debugger="C:\WINDOWS\system32\iesafemode.exe -sb ======List of files/folders created in the last 1 months====== 2011-02-08 20:22:11 ----D---- C:\rsit 2011-02-08 19:53:11 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Help 2011-02-08 19:29:38 ----A---- C:\WINDOWS\h3bmaped.INI 2011-02-08 19:21:54 ----A---- C:\WINDOWS\H3WMAPED.INI 2011-02-08 19:05:12 ----D---- C:\WINDOWS\wb 2011-02-07 17:05:14 ----D---- C:\Program Files\Ubisoft 2011-02-05 19:21:44 ----A---- C:\WINDOWS\system32\drivers\gameenum.sys 2011-02-04 19:52:40 ----D---- C:\Program Files\trend micro 2011-01-23 20:36:34 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Sony Ericsson 2011-01-23 20:36:15 ----D---- C:\Program Files\Common Files\Sony Ericsson Shared 2011-01-23 20:36:10 ----D---- C:\Program Files\Sony Ericsson 2011-01-23 20:36:10 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Teleca 2011-01-23 20:36:06 ----D---- C:\WINDOWS\Downloaded Installations 2011-01-23 12:08:51 ----ASH---- C:\pagefile.sys 2011-01-23 11:33:26 ----D---- C:\WINDOWS\Prefetch 2011-01-23 11:27:29 ----RAH---- C:\WINDOWS\system32\logonui.exe.manifest 2011-01-23 11:17:20 ----A---- C:\WINDOWS\system32\irclass.dll 2011-01-23 11:17:19 ----A---- C:\WINDOWS\system32\spxcoins.dll 2011-01-16 16:04:50 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II 2011-01-13 22:17:31 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com 2011-01-13 21:45:42 ----D---- C:\Program Files\RAR Password Recovery Magic 2011-01-13 20:32:51 ----D---- C:\Program Files\Xenocode 2011-01-13 20:32:50 ----D---- C:\WINDOWS\XSxS 2011-01-13 19:53:52 ----D---- C:\Program Files\GridinSoft Trojan Killer 2011-01-10 20:13:55 ----SH---- C:\BOOT.BAK 2011-01-10 20:13:34 ----RSHD---- C:\cmdcons 2011-01-10 20:13:34 ----A---- C:\WINDOWS\UPGRADE.TXT 2011-01-10 20:13:27 ----D---- C:\WINDOWS\setup.pss 2011-01-10 20:12:56 ----D---- C:\WINDOWS\setupupd 2011-01-09 10:42:37 ----D---- C:\Program Files\ConduitEngine 2011-01-09 09:50:18 ----D---- C:\WINDOWS\system32\xircom 2011-01-09 09:50:18 ----D---- C:\Program Files\xerox 2011-01-09 09:50:18 ----D---- C:\Program Files\microsoft frontpage 2011-01-09 09:50:01 ----A---- C:\WINDOWS\system32\wmpns.dll 2011-01-09 09:45:55 ----D---- C:\Program Files\ComPlus Applications 2011-01-09 09:45:22 ----A---- C:\WINDOWS\system32\tscupgrd.exe 2011-01-09 09:33:27 ----A---- C:\WINDOWS\system32\dgrpsetu.dll 2011-01-09 09:33:26 ----A---- C:\WINDOWS\system32\EqnClass.Dll 2011-01-09 09:33:24 ----A---- C:\WINDOWS\system32\drivers\irenum.sys ======List of files/folders modified in the last 1 months====== 2011-02-08 20:01:57 ----D---- C:\WINDOWS\Temp 2011-02-08 19:29:38 ----D---- C:\WINDOWS 2011-02-08 14:36:25 ----D---- C:\Documents and Settings\xxx\Dane aplikacji\Winamp 2011-02-08 14:29:54 ----D---- C:\WINDOWS\system32\CatRoot2 2011-02-08 14:28:57 ----SHD---- C:\System Volume Information 2011-02-08 10:40:03 ----A---- C:\WINDOWS\SchedLgU.Txt 2011-02-07 17:05:14 ----RD---- C:\Program Files 2011-02-07 17:05:14 ----HD---- C:\Program Files\InstallShield Installation Information 2011-02-07 17:05:08 ----SHD---- C:\WINDOWS\Installer 2011-02-07 17:04:54 ----D---- C:\WINDOWS\system32\DirectX 2011-02-07 17:04:53 ----D---- C:\WINDOWS\system32 2011-02-07 17:04:52 ----HD---- C:\WINDOWS\inf 2011-02-07 17:04:09 ----RSD---- C:\WINDOWS\assembly 2011-02-07 15:24:01 ----A---- C:\WINDOWS\NeroDigital.ini 2011-02-05 19:26:03 ----SD---- C:\Documents and Settings\xxx\Dane aplikacji\Microsoft 2011-02-05 19:21:49 ----RSHDC---- C:\WINDOWS\system32\dllcache 2011-02-05 19:21:44 ----D---- C:\WINDOWS\system32\drivers 2011-01-26 10:07:40 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2011-01-24 08:22:58 ----D---- C:\WINDOWS\SoftwareDistribution 2011-01-24 08:22:53 ----D---- C:\WINDOWS\Help 2011-01-23 20:36:43 ----DC---- C:\WINDOWS\system32\DRVSTORE 2011-01-23 20:36:37 ----D---- C:\Program Files\Common Files\Teleca Shared 2011-01-23 20:36:15 ----D---- C:\Program Files\Common Files 2011-01-23 14:14:04 ----D---- C:\WINDOWS\security 2011-01-23 14:13:22 ----D---- C:\WINDOWS\Registration 2011-01-23 12:14:01 ----D---- C:\WINDOWS\system 2011-01-23 12:14:00 ----D---- C:\WINDOWS\system32\Setup 2011-01-23 12:13:50 ----D---- C:\WINDOWS\system32\usmt 2011-01-23 12:13:41 ----D---- C:\WINDOWS\AppPatch 2011-01-23 12:13:39 ----D---- C:\WINDOWS\ehome 2011-01-23 12:13:38 ----D---- C:\WINDOWS\ime 2011-01-23 12:13:37 ----RSD---- C:\WINDOWS\Fonts 2011-01-23 12:13:36 ----D---- C:\WINDOWS\Media 2011-01-23 12:13:24 ----D---- C:\WINDOWS\PeerNet 2011-01-23 12:13:12 ----D---- C:\WINDOWS\system32\npp 2011-01-23 12:13:05 ----D---- C:\WINDOWS\msagent 2011-01-23 12:10:59 ----D---- C:\WINDOWS\system32\1045 2011-01-23 12:10:51 ----D---- C:\WINDOWS\twain_32 2011-01-23 12:10:38 ----D---- C:\WINDOWS\system32\icsxml 2011-01-23 12:10:04 ----D---- C:\WINDOWS\system32\1033 2011-01-23 12:08:51 ----D---- C:\WINDOWS\Driver Cache 2011-01-23 11:35:06 ----A---- C:\WINDOWS\setuplog.txt 2011-01-23 11:34:31 ----D---- C:\WINDOWS\system32\Restore 2011-01-23 11:32:46 ----D---- C:\WINDOWS\system32\config 2011-01-23 11:31:37 ----D---- C:\WINDOWS\repair 2011-01-23 11:28:21 ----A---- C:\WINDOWS\OEWABLog.txt 2011-01-23 11:28:15 ----A---- C:\WINDOWS\ODBCINST.INI 2011-01-23 11:27:58 ----ASH---- C:\WINDOWS\fonts\desktop.ini 2011-01-23 11:27:56 ----D---- C:\WINDOWS\system32\ias 2011-01-23 11:27:32 ----RD---- C:\WINDOWS\Web 2011-01-23 11:27:23 ----RAH---- C:\WINDOWS\system32\cdplayer.exe.manifest 2011-01-23 11:27:08 ----A---- C:\WINDOWS\win.ini 2011-01-23 11:27:03 ----D---- C:\WINDOWS\system32\oobe 2011-01-23 11:27:02 ----D---- C:\WINDOWS\srchasst 2011-01-23 11:27:01 ----D---- C:\Program Files\Windows Media Player 2011-01-23 11:26:58 ----D---- C:\Program Files\Movie Maker 2011-01-23 11:26:54 ----D---- C:\Program Files\Outlook Express 2011-01-23 11:26:53 ----D---- C:\Program Files\Common Files\System 2011-01-23 11:26:47 ----D---- C:\Program Files\Internet Explorer 2011-01-23 11:26:04 ----D---- C:\WINDOWS\system32\Com 2011-01-23 11:25:31 ----D---- C:\WINDOWS\system32\wbem 2011-01-23 11:24:24 ----SH---- C:\boot.ini 2011-01-23 11:18:33 ----D---- C:\WINDOWS\system32\CatRoot 2011-01-23 11:17:27 ----A---- C:\WINDOWS\system.ini 2011-01-23 11:17:10 ----ASH---- C:\Documents and Settings\All Users\Dane aplikacji\desktop.ini 2011-01-23 11:03:36 ----A---- C:\WINDOWS\ntbtlog.txt 2011-01-23 11:00:05 ----D---- C:\Program Files\Windows NT 2011-01-23 10:58:28 ----HD---- C:\WINDOWS\NiwradSoft Shell Pack 2011-01-22 19:33:32 ----D---- C:\WINDOWS\system32\drivers\NIS 2011-01-18 10:36:17 ----D---- C:\WINDOWS\Minidump 2011-01-16 15:34:47 ----A---- C:\WINDOWS\imsins.BAK 2011-01-16 14:38:29 ----D---- C:\Program Files\Mozilla Firefox 2011-01-16 09:47:14 ----D---- C:\Program Files\Free_Lunch_Design 2011-01-16 09:46:49 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2011-01-16 09:46:43 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\PC Tools 2011-01-15 19:26:41 ----D---- C:\WINDOWS\system32\drivers\etc 2011-01-14 17:13:21 ----D---- C:\Program Files\FLV Direct Player 2011-01-14 16:07:19 ----D---- C:\Documents and Settings 2011-01-09 09:47:32 ----D---- C:\Program Files\NetMeeting 2011-01-09 09:31:55 ----D---- C:\WINDOWS\WinSxS ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 amdide;amdide; C:\WINDOWS\system32\DRIVERS\amdide.sys [2007-10-11 9096] R0 PxHelp20;PxHelp20; C:\WINDOWS\System32\Drivers\PxHelp20.sys [2009-04-28 44944] R0 SymDS;Symantec Data Store; C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMDS.SYS [2009-08-30 328752] R0 SymEFA;Symantec Extended File Attributes; C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMEFA.SYS [2010-04-22 173104] R1 AmdPPM;Sterownik procesora AMD HwPState; C:\WINDOWS\system32\DRIVERS\AmdPPM.sys [2007-04-16 33792] R1 BHDrvx86;BHDrvx86; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20110114.001\BHDrvx86.sys [] R1 ccHP;Symantec Hash Provider; C:\WINDOWS\system32\drivers\NIS\1108000.005\ccHPx86.sys [2010-02-26 501888] R1 eeCtrl;Symantec Eraser Control driver; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys [] R1 SRTSPX;Symantec Real Time Storage Protection (PEL); C:\WINDOWS\system32\drivers\NIS\1108000.005\SRTSPX.SYS [2010-04-22 43696] R1 SymIRON;Symantec Iron Driver; C:\WINDOWS\system32\drivers\NIS\1108000.005\Ironx86.SYS [2010-04-29 116784] R1 SYMTDI;Symantec Network Dispatch Driver; C:\WINDOWS\System32\Drivers\NIS\1108000.005\SYMTDI.SYS [2010-05-06 361904] R1 WmiAcpi;Interfejs zarządzania Microsoft Windows dla ACPI; C:\WINDOWS\system32\DRIVERS\wmiacpi.sys [2004-08-03 8832] R1 WS2IFSL;Środowisko wspomagające dostawcę usług innych niż IFS - Windows Socket 2.0; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-18 12032] R2 NwlnkIpx;Protokół transportowy zgodny z NWLink IPX/SPX/NetBIOS; C:\WINDOWS\system32\DRIVERS\nwlnkipx.sys [2004-08-03 88448] R2 NwlnkNb;System NetBIOS NWLink; C:\WINDOWS\system32\DRIVERS\nwlnknb.sys [2001-08-18 63232] R2 NwlnkSpx;Protokół NWLink SPX/SPXII; C:\WINDOWS\system32\DRIVERS\nwlnkspx.sys [2001-08-18 55936] R3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2009-06-25 4125696] R3 EraserUtilRebootDrv;EraserUtilRebootDrv; \??\C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [] R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-15 144384] R3 HidUsb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2001-08-18 9600] R3 IDSxpx86;IDSxpx86; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20110120.001\IDSxpx86.sys [] R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2009-07-20 5795328] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160] R3 NAVENG;NAVENG; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVENG.SYS [] R3 NAVEX15;NAVEX15; \??\C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVEX15.SYS [] R3 NWRDR;NetWare Rdr; C:\WINDOWS\system32\DRIVERS\nwrdr.sys [2004-08-03 163584] R3 RTHDMIAzAudService;Service for HDMI; C:\WINDOWS\system32\drivers\RtKHDMI.sys [2009-04-14 3732608] R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2009-05-25 142336] R3 SRTSP;Symantec Real Time Storage Protection; C:\WINDOWS\System32\Drivers\NIS\1108000.005\SRTSP.SYS [2010-04-22 325680] R3 SymEvent;SymEvent; \??\C:\WINDOWS\system32\Drivers\SYMEVENT.SYS [] R3 usbfilter;AMD USB Filter Driver; C:\WINDOWS\system32\DRIVERS\usbfilter.sys [2009-02-08 22328] S0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2011-01-09 431672] S3 Ambfilt;Ambfilt; C:\WINDOWS\system32\drivers\Ambfilt.sys [2008-08-05 1684736] S3 Axtmvflt;Axesstel USB Filter Service; C:\WINDOWS\system32\DRIVERS\Axtmvflt.sys [2009-04-21 3456] S3 Axtmvmdm;Axesstel USB Modem; C:\WINDOWS\system32\DRIVERS\Axtmvmdm.sys [2009-04-21 40064] S3 Axtmvprt;Axesstel Diagnostic Port; C:\WINDOWS\System32\Drivers\Axtmvprt.sys [2009-04-21 38784] S3 DualCoreCenter;DualCoreCenter; \??\C:\Program Files\MSI\OverclockingCenter\NTGLM7X.sys [] S3 hid7906;hid7906; C:\WINDOWS\system32\drivers\hid7906.sys [2006-07-04 53921] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2009-08-26 21568] S3 hwdatacard;Huawei DataCard USB Modem and USB Serial; C:\WINDOWS\system32\DRIVERS\ewusbmdm.sys [2009-09-10 102528] S3 hwusbdev;Huawei DataCard USB PNP Device; C:\WINDOWS\system32\DRIVERS\ewusbdev.sys [2009-07-24 100736] S3 Monfilt;Monfilt; C:\WINDOWS\system32\drivers\Monfilt.sys [2006-01-04 1389056] S3 MSICDSetup;MSICDSetup; \??\F:\CDriver.sys [] S3 RushTopDevice_J;RushTopDevice_J; \??\C:\Program Files\MSI\OverclockingCenter\RushJ.sys [] S3 RushTopDevice2;RushTopDevice2; \??\C:\Program Files\MSI\OverclockingCenter\RushTop.sys [] S3 SE27bus;Sony Ericsson Device 039 Driver driver (WDM); C:\WINDOWS\system32\DRIVERS\SE27bus.sys [2006-05-15 61600] S3 SE27mdfl;Sony Ericsson Device 039 USB WMC Modem Filter; C:\WINDOWS\system32\DRIVERS\SE27mdfl.sys [2006-09-18 9360] S3 SE27mdm;Sony Ericsson Device 039 USB WMC Modem Driver; C:\WINDOWS\system32\DRIVERS\SE27mdm.sys [2006-09-18 97184] S3 SE27mgmt;Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM); C:\WINDOWS\system32\DRIVERS\SE27mgmt.sys [2006-09-18 88688] S3 se27nd5;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS); C:\WINDOWS\system32\DRIVERS\se27nd5.sys [2006-09-18 18704] S3 SE27obex;Sony Ericsson Device 039 USB WMC OBEX Interface; C:\WINDOWS\system32\DRIVERS\SE27obex.sys [2006-09-18 86560] S3 se27unic;Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM); C:\WINDOWS\system32\DRIVERS\se27unic.sys [2006-09-18 90800] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2004-08-03 31616] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2004-08-03 25856] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2004-08-03 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496] S3 WudfPf;Windows Driver Foundation - User-mode Driver Framework Platform Driver; C:\WINDOWS\system32\DRIVERS\WudfPf.sys [2009-06-30 77568] S3 WudfRd;Windows Driver Foundation - User-mode Driver Framework Reflector; C:\WINDOWS\system32\DRIVERS\wudfrd.sys [2009-06-30 82944] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 Ati HotKey Poller;Ati HotKey Poller; C:\WINDOWS\system32\Ati2evxx.exe [2009-06-25 602112] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-08-01 153376] R2 NIS;Norton Internet Security; C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe [2010-02-26 126392] R2 NWCWorkstation;Usługa klienta dla systemu NetWare; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336] R3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Nero\Lib\NMIndexingService.exe [2008-06-24 537896] S2 AODService;AODService; C:\Program Files\AMD\OverDrive\AODAssist.exe [2009-05-05 124256] S2 gupdate;Usługa Google Update (gupdate); C:\Program Files\Google\Update\GoogleUpdate.exe [2010-08-01 135664] S2 WudfSvc;Windows Driver Foundation - User-mode Driver Framework; C:\WINDOWS\system32\svchost.exe [2004-08-03 14336] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 gusvc;Google Software Updater; C:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe [2010-08-01 182768] S3 IDriverT;InstallDriver Table Manager; C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe [2005-11-14 69632] S3 WMPNetworkSvc;Usługa udostępniania w sieci programu Windows Media Player; C:\Program Files\Windows Media Player\WMPNetwk.exe [2006-12-01 918016] -----------------EOF----------------- [/log] [log]info.txt logfile of random's system information tool 1.08 2011-02-08 20:22:30 ======Uninstall list====== -->C:\Program Files\Nero\Nero8\\nero\uninstall\UNNERO.exe /UNINSTALL -->C:\WINDOWS\UNNeroMediaHome.exe /UNINSTALL -->C:\WINDOWS\UNNeroShowTime.exe /UNINSTALL -->C:\WINDOWS\UNNeroVision.exe /UNINSTALL -->C:\WINDOWS\UNRecode.exe /UNINSTALL -->rundll32.exe setupapi.dll,InstallHinfSection DefaultUninstall 132 C:\WINDOWS\INF\PCHealth.inf Acrobat.com-->C:\Program Files\Common Files\Adobe AIR\Versions\1.0\Adobe AIR Application Installer.exe -uninstall com.adobe.mauby 4875E02D9FB21EE389F73B8D1702B320485DF8CE.1 Acrobat.com-->MsiExec.exe /I{77DCDCE3-2DED-62F3-8154-05E745472D07} Adobe Acrobat 5.0 CE-->C:\WINDOWS\ISUN0415.EXE -f"C:\Program Files\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.isu" -c"C:\Program Files\Common Files\Adobe\Acrobat 5.0 CE\NT\Uninst.dll" Adobe AIR-->MsiExec.exe /I{00203668-8170-44A0-BE44-B632FA4D780F} Adobe Flash Player 10 Plugin-->C:\WINDOWS\system32\Macromed\Flash\FlashUtil10h_Plugin.exe -maintain plugin Adobe Flash Player ActiveX-->C:\WINDOWS\system32\Macromed\Flash\uninstall_activeX.exe Adobe Reader 9.2-->MsiExec.exe /I{AC76BA86-7AD7-1033-7B44-A92000000001} Adobe Shockwave Player-->C:\WINDOWS\system32\Macromed\SHOCKW~1\UNWISE.EXE C:\WINDOWS\system32\Macromed\SHOCKW~1\Install.log Aktualizacja zabezpieczeń dla systemu Windows XP (KB923789)-->C:\WINDOWS\system32\MacroMed\Flash\genuinst.exe C:\WINDOWS\system32\MacroMed\Flash\KB923789.inf ALLPlayer V2.4-->"C:\Program Files\MarBit\ALLPlayer\unins000.exe" AMD OverDrive-->MsiExec.exe /X{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD} AMD Processor Driver-->C:\Program Files\InstallShield Installation Information\{C151CE54-E7EA-4804-854B-F515368B0798}\setup.exe -runfromtemp -l0x0015 -removeonly AMD USB Filter Driver-->MsiExec.exe /X{DCB51FBC-68AD-42FF-8426-199F1FE2C4F5} Archiwizator WinRAR-->C:\Program Files\WinRAR\uninstall.exe Assassin's Creed II-->"C:\Program Files\InstallShield Installation Information\{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}\setup.exe" -runfromtemp -l0x0015 -removeonly ATI AVIVO Codecs-->MsiExec.exe /I{24A6F0B6-E6F3-46AE-BB7E-81D6AFA6E926} ATI Catalyst Control Center-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{055EE59D-217B-43A7-ABFF-507B966405D8}\setup.exe" -l0x0 ATI Display Driver-->rundll32 C:\WINDOWS\system32\atiiiexx.dll,_InfEngUnInstallINFFile_RunDLL@16 -force_restart -flags:0x2010001 -inf_class:DISPLAY -clean ATI Parental Control & Encoder-->MsiExec.exe /I{36CDA33B-909B-4719-97D1-C4B99309BDC7} AxessManager-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\09\01\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}\setup.exe" -l0x9 Axesstel Data Modem Driver-->C:\Program Files\MSP_Uninstall.EXE Catalyst Control Center - Branding-->MsiExec.exe /I{023C9E50-C216-4E7A-A8A5-3457DE58106C} DVD Shrink 3.2-->"C:\Program Files\DVD Shrink\unins000.exe" EVEREST Home Edition v2.20-->"C:\Program Files\Lavalys\EVEREST Home Edition\unins000.exe" EVEREST Ultimate Edition v5.30-->"C:\Program Files\Lavalys\EVEREST Ultimate Edition\unins000.exe" FIFA 11-->MsiExec.exe /X{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C} Free_Lunch_Design Toolbar-->C:\PROGRA~1\FREE_L~1\UNWISE.EXE /U C:\PROGRA~1\FREE_L~1\INSTALL.LOG Gadu-Gadu 10-->C:\Program Files\Gadu-Gadu 10\Uninstall.exe GetDataBack for FAT-->"C:\Program Files\Runtime Software\GetDataBack\Uninstall.exe" "C:\Program Files\Runtime Software\GetDataBack\install.log" -u Google Toolbar for Internet Explorer-->"C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarManager_4079369A224CB572.exe" /uninstall Google Toolbar for Internet Explorer-->MsiExec.exe /I{18455581-E099-4BA8-BC6B-F34B2F06600C} Google Update Helper-->MsiExec.exe /I{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2} GreenPowerCenterII-->"C:\Program Files\MSI\GreenPowerCenterII\unins000.exe" Guitar Pro 5.0-->"C:\Program Files\Guitar Pro 5\unins000.exe" ISO Creator 1.0-->MsiExec.exe /I{78D80EAF-1ADB-46A8-AF6F-EBB18B6ADBCE} Java(TM) 6 Update 21-->MsiExec.exe /X{26A24AE4-039D-4CA4-87B4-2F83216021FF} K-Lite Mega Codec Pack 5.0.0-->"C:\Program Files\K-Lite Codec Pack\unins000.exe" Macro Vibration Joystick-->RunDll32 C:\PROGRA~1\COMMON~1\INSTAL~1\PROFES~1\RunTime\0700\Intel32\Ctor.dll,LaunchSetup "C:\Program Files\InstallShield Installation Information\{36177F72-8181-45D7-95D1-EA5B008A4DC9}\setup.exe" -l0x9 Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{7299052b-02a4-4627-81f2-1818da5d550d} Microsoft Visual C++ 2005 Redistributable-->MsiExec.exe /X{837b34e3-7c30-493c-8f6a-2b0f04e2912c} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17-->MsiExec.exe /X{9A25302D-30C0-39D9-BD6F-21E6EC160475} Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148-->MsiExec.exe /X{1F1C2DFC-2D24-3E06-BCB8-725134ADF989} Microsoft WSE 3.0 Runtime-->MsiExec.exe /X{E3E71D07-CD27-46CB-8448-16D4FB29AA13} Mozilla Firefox (3.6.13)-->C:\Program Files\Mozilla Firefox\uninstall\helper.exe Narzędzie Software Uninstall Utility firmy ATI-->C:\Program Files\ATI Technologies\UninstallAll\AtiCimUn.exe Nero 8 Essentials-->MsiExec.exe /X{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91045} neroxml-->MsiExec.exe /I{56C049BE-79E9-4502-BEA7-9754A3E60F9B} Niezbędnik CD-->C:\WINDOWS\unins000.exe Norton Internet Security-->C:\Program Files\NortonInstaller\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS\A5E82D02\17.8.0.5\InstStub.exe /X OverclockingCenter-->"C:\Program Files\MSI\OverclockingCenter\unins000.exe" PLAY ONLINE-->C:\Program Files\PLAY ONLINE\uninst.exe RAR Password Recovery Magic v6.1.1.95-->"C:\Program Files\RAR Password Recovery Magic\unins000.exe" REALTEK GbE & FE Ethernet PCI-E NIC Driver-->C:\Program Files\InstallShield Installation Information\{C9BED750-1211-4480-B1A5-718A3BE15525}\SETUP.EXE -runfromtemp -removeonly Realtek High Definition Audio Driver-->RtkUpd.exe -r -m Rockstar Games Social Club-->"C:\Program Files\InstallShield Installation Information\{08B3869E-D282-424C-9AFC-870E04A4BA14}\setup.exe" -runfromtemp -l0x0009 -removeonly Seven Remix XP 2.2-->C:\WINDOWS\NiwradSoft Shell Pack\uninst.exe SMAC 2.7-->C:\PROGRA~1\KLC\SMAC\UNWISE.EXE C:\PROGRA~1\KLC\SMAC\INSTALL.LOG Sony Ericsson PC Suite-->MsiExec.exe /I{FC906D5C-91F9-4DA4-A765-6DCBB669F317} SubEdit-Player-->"C:\Program Files\Programy\SubEdit-Player\unins000.exe" TuxGuitar 1.1-->C:\Program Files\Programy\Uninstall.exe Ubisoft Game Launcher-->"C:\Program Files\InstallShield Installation Information\{888F1505-C2B3-4FDE-835D-36353EBD4754}\setup.exe" -runfromtemp -l0x0409 -removeonly Winamp-->"C:\Program Files\Winamp\UninstWA.exe" Windows Media Format 11 runtime-->"C:\Program Files\Windows Media Player\wmsetsdk.exe" /UninstallAll Windows Media Format 11 runtime-->"C:\WINDOWS\$NtUninstallWMFDist11$\spuninst\spuninst.exe" ======Hosts File====== 127.0.0.1 localhost ======System event log====== Computer Name: JAREK Event Code: 7035 Message: Do usługi Usługa odnajdywania SSDP został pomyślnie wysłany kod sterowania uruchom. Record Number: 1331 Source Name: Service Control Manager Time Written: 20110121184258.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM Computer Name: JAREK Event Code: 7035 Message: Do usługi Menedżer połączeń usługi Dostęp zdalny został pomyślnie wysłany kod sterowania uruchom. Record Number: 1330 Source Name: Service Control Manager Time Written: 20110121184258.000000+060 Event Type: informacje User: JAREK\xxx Computer Name: JAREK Event Code: 7036 Message: Usługa Telefonia weszła w stan uruchomienia. Record Number: 1329 Source Name: Service Control Manager Time Written: 20110121184258.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 7036 Message: Usługa NMIndexingService weszła w stan uruchomienia. Record Number: 1328 Source Name: Service Control Manager Time Written: 20110121184258.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 7035 Message: Do usługi NMIndexingService został pomyślnie wysłany kod sterowania uruchom. Record Number: 1327 Source Name: Service Control Manager Time Written: 20110121184257.000000+060 Event Type: informacje User: ZARZĄDZANIE NT\SYSTEM =====Application event log===== Computer Name: JAREK Event Code: 0 Message: Record Number: 5757 Source Name: gupdate Time Written: 20101102185108.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 4354 Message: System zdarzeń modelu COM+ nie mógł zwolnić metody ConnectionMadeNoQOCInfo dla subskrypcji {A82F0E80-1305-400C-BA56-375AE04264A1}-{00000000-0000-0000-0000-000000000000}-{00000000-0000-0000-0000-000000000000}. Subskrybent zwrócił HRESULT 80004001. Record Number: 5756 Source Name: EventSystem Time Written: 20101102150735.000000+060 Event Type: ostrzeżenie User: Computer Name: JAREK Event Code: 0 Message: Record Number: 5755 Source Name: gupdate Time Written: 20101102150714.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 0 Message: Record Number: 5754 Source Name: NMIndexingService Time Written: 20101102150706.000000+060 Event Type: informacje User: Computer Name: JAREK Event Code: 1 Message: Record Number: 5753 Source Name: avg8emc Time Written: 20101102150641.000000+060 Event Type: informacje User: ======Environment variables====== "ComSpec"=%SystemRoot%\system32\cmd.exe "Path"=%SystemRoot%\system32;%SystemRoot%;%SystemRoot%\system32\WBEM;C:\Program Files\Common Files\Teleca Shared "windir"=%SystemRoot% "FP_NO_HOST_CHECK"=NO "OS"=Windows_NT "PROCESSOR_ARCHITECTURE"=x86 "PROCESSOR_LEVEL"=16 "PROCESSOR_IDENTIFIER"=x86 Family 16 Model 5 Stepping 2, AuthenticAMD "PROCESSOR_REVISION"=0502 "NUMBER_OF_PROCESSORS"=4 "PATHEXT"=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH "TEMP"=%SystemRoot%\TEMP "TMP"=%SystemRoot%\TEMP "RGSCLauncher"=C:\Program Files\Rockstar Games\Rockstar Games Social Club "RGSC"=C:\Program Files\Rockstar Games\Rockstar Games Social Club\1_0_0_0 -----------------EOF----------------- [/log] [log]All processes killed Error: Unable to interpret <O27 - HKLM IFEO\chrome.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found> in the current context! Error: Unable to interpret <O27 - HKLM IFEO\firefox.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found> in the current context! Error: Unable to interpret <O27 - HKLM IFEO\iexplore.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found> in the current context! Error: Unable to interpret <O27 - HKLM IFEO\opera.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found> in the current context! ========== FILES ========== C:\WINDOWS\SET40.tmp moved successfully. C:\WINDOWS\SET34.tmp moved successfully. C:\WINDOWS\SET31.tmp moved successfully. C:\WINDOWS\SET3F.tmp moved successfully. C:\WINDOWS\SET33.tmp moved successfully. C:\WINDOWS\SET30.tmp moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: Administrator ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Edyta ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Edyta.XXX-FC5528AB88B ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 0 bytes ->Flash cache emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Windows User: xxx ->Temp folder emptied: 33472109 bytes ->Temporary Internet Files folder emptied: 4093289 bytes ->Java cache emptied: 7239934 bytes ->FireFox cache emptied: 57851848 bytes ->Flash cache emptied: 58937 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 1917246 bytes RecycleBin emptied: 1034242 bytes Total Files Cleaned = 101,00 mb OTL by OldTimer - Version 3.2.20.2 log created on 02082011_072547 Files\Folders moved on Reboot... File\Folder C:\WINDOWS\temp\Perflib_Perfdata_758.dat not found! Registry entries deleted on Reboot... [/log] [log]OTL logfile created on: 2/8/2011 8:18:52 PM - Run 5 OTL by OldTimer - Version 3.2.20.2 Folder = C:\Documents and Settings\xxx\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000409 | Country: Stany Zjednoczone | Language: ENU | Date Format: M/d/yyyy 2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 57.00% Memory free 4.00 Gb Paging File | 3.00 Gb Available in Paging File | 83.00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 117.19 Gb Total Space | 33.65 Gb Free Space | 28.72% Space Free | Partition Type: NTFS Drive D: | 152.34 Gb Total Space | 137.05 Gb Free Space | 89.96% Space Free | Partition Type: NTFS Drive E: | 196.22 Gb Total Space | 153.04 Gb Free Space | 77.99% Space Free | Partition Type: NTFS Drive F: | 464.21 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF Drive I: | 15.96 Gb Total Space | 15.90 Gb Free Space | 99.59% Space Free | Partition Type: NTFS Drive J: | 4.87 Gb Total Space | 4.84 Gb Free Space | 99.41% Space Free | Partition Type: NTFS Drive K: | 53.71 Gb Total Space | 53.63 Gb Free Space | 99.85% Space Free | Partition Type: NTFS Computer Name: JAREK | User Name: xxx | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2011/01/14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe PRC - [2010/04/21 09:40:00 | 011,985,504 | ---- | M] (GG Network S.A.) -- C:\Program Files\Gadu-Gadu 10\gg.exe PRC - [2010/02/26 01:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccsvchst.exe PRC - [2009/07/01 17:37:06 | 000,037,888 | ---- | M] () -- C:\Program Files\Winamp\winampa.exe PRC - [2008/06/24 12:36:06 | 001,840,424 | ---- | M] (Nero AG) -- C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe PRC - [2006/11/24 01:06:38 | 000,487,424 | R--- | M] () -- C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe PRC - [2006/11/13 15:17:38 | 000,872,448 | R--- | M] (Sony Ericsson Mobile Communications AB) -- C:\Program Files\Sony Ericsson\Mobile2\Mobile Phone Monitor\epmworker.exe PRC - [2006/10/13 09:11:16 | 000,983,040 | R--- | M] (Obigo AB) -- C:\Program Files\Common Files\Teleca Shared\Generic.exe PRC - [2004/08/03 23:44:20 | 001,033,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2011/01/14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe MOD - [2010/09/20 20:26:01 | 000,415,088 | R--- | M] (Symantec Corporation) -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\asoehook.dll MOD - [2009/07/11 20:32:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll MOD - [2009/07/11 20:32:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll MOD - [2004/08/03 23:44:04 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2004/08/03 23:43:52 | 001,852,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- -- (HidServ) SRV - [2010/02/26 01:21:50 | 000,126,392 | R--- | M] (Symantec Corporation) [Unknown | Running] -- C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ccSvcHst.exe -- (NIS) SRV - [2009/05/05 02:15:50 | 000,124,256 | ---- | M] () [Auto | Stopped] -- C:\Program Files\AMD\OverDrive\AODAssist.exe -- (AODService) SRV - [2005/11/14 00:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2011/01/09 13:03:17 | 000,431,672 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2011/01/08 17:32:51 | 001,360,760 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVEX15.SYS -- (NAVEX15) DRV - [2011/01/08 17:32:51 | 000,371,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2011/01/08 17:32:51 | 000,102,448 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys -- (EraserUtilRebootDrv) DRV - [2011/01/08 17:32:51 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\VirusDefs\20110114.035\NAVENG.SYS -- (NAVENG) DRV - [2011/01/08 15:11:27 | 000,124,976 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2010/12/01 01:03:34 | 000,341,944 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\IPSDefs\20110120.001\IDSXpx86.sys -- (IDSxpx86) DRV - [2010/11/23 03:34:08 | 000,691,248 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\Definitions\BASHDefs\20110114.001\BHDrvx86.sys -- (BHDrvx86) DRV - [2010/05/06 05:01:59 | 000,361,904 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\System32\Drivers\NIS\1108000.005\SYMTDI.SYS -- (SYMTDI) DRV - [2010/04/29 06:03:51 | 000,116,784 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\Ironx86.SYS -- (SymIRON) DRV - [2010/04/22 04:02:20 | 000,173,104 | ---- | M] (Symantec Corporation) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMEFA.SYS -- (SymEFA) DRV - [2010/04/22 03:29:50 | 000,325,680 | ---- | M] (Symantec Corporation) [File_System | On_Demand | Running] -- C:\WINDOWS\System32\Drivers\NIS\1108000.005\SRTSP.SYS -- (SRTSP) DRV - [2010/04/22 03:29:50 | 000,043,696 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SRTSPX.SYS -- (SRTSPX) Symantec Real Time Storage Protection (PEL) DRV - [2010/02/26 01:22:57 | 000,501,888 | ---- | M] (Symantec Corporation) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\ccHPx86.sys -- (ccHP) DRV - [2009/09/10 14:55:52 | 000,102,528 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard) DRV - [2009/08/30 01:17:18 | 000,328,752 | R--- | M] (Symantec Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\NIS\1108000.005\SYMDS.SYS -- (SymDS) DRV - [2009/07/24 18:33:24 | 000,100,736 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbdev.sys -- (hwusbdev) DRV - [2009/07/20 12:08:26 | 005,795,328 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2009/06/25 12:22:30 | 004,125,696 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2009/05/25 08:21:28 | 000,142,336 | R--- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp) DRV - [2009/04/21 08:22:17 | 000,038,784 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvprt.sys -- (Axtmvprt) DRV - [2009/04/21 08:22:03 | 000,040,064 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvmdm.sys -- (Axtmvmdm) DRV - [2009/04/21 08:21:42 | 000,003,456 | R--- | M] (Axesstel) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Axtmvflt.sys -- (Axtmvflt) DRV - [2009/04/14 13:55:06 | 003,732,608 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtKHDMI.sys -- (RTHDMIAzAudService) DRV - [2009/02/08 23:02:16 | 000,022,328 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\usbfilter.sys -- (usbfilter) DRV - [2008/12/29 22:34:24 | 000,018,944 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\RushJ.sys -- (RushTopDevice_J) DRV - [2008/12/27 00:46:10 | 000,028,672 | ---- | M] (MICRO-STAR INT'L CO., LTD.) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\NTGLM7X.sys -- (DualCoreCenter) DRV - [2008/12/18 06:11:12 | 000,054,272 | ---- | M] (Your Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\MSI\OverclockingCenter\RushTop.sys -- (RushTopDevice2) DRV - [2008/08/05 13:10:12 | 001,684,736 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2008/04/15 13:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus) DRV - [2007/10/11 14:40:00 | 000,009,096 | R--- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\amdide.sys -- (amdide) DRV - [2007/04/16 13:16:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM) DRV - [2006/09/18 13:59:08 | 000,090,800 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27unic.sys -- (se27unic) Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (WDM) DRV - [2006/09/18 13:59:02 | 000,086,560 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27obex.sys -- (SE27obex) DRV - [2006/09/18 13:59:00 | 000,018,704 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\se27nd5.sys -- (se27nd5) Sony Ericsson Device 039 USB Ethernet Emulation SEMC39 (NDIS) DRV - [2006/09/18 13:58:58 | 000,088,688 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mgmt.sys -- (SE27mgmt) Sony Ericsson Device 039 USB WMC Device Management Drivers (WDM) DRV - [2006/09/18 13:58:54 | 000,097,184 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdm.sys -- (SE27mdm) DRV - [2006/09/18 13:58:52 | 000,009,360 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27mdfl.sys -- (SE27mdfl) DRV - [2006/07/04 17:17:52 | 000,053,921 | ---- | M] (Compuware Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\hid7906.sys -- (hid7906) DRV - [2006/05/15 14:35:36 | 000,061,600 | R--- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SE27bus.sys -- (SE27bus) Sony Ericsson Device 039 Driver driver (WDM) DRV - [2006/01/04 08:41:48 | 001,389,056 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2004/08/03 23:08:22 | 000,010,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\gameenum.sys -- (gameenum) DRV - [2004/08/03 22:03:36 | 000,088,448 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkipx.sys -- (NwlnkIpx) DRV - [2001/08/18 00:54:18 | 000,063,232 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnknb.sys -- (NwlnkNb) DRV - [2001/08/18 00:54:18 | 000,055,936 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\nwlnkspx.sys -- (NwlnkSpx) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.defaultthis.engineName: "" FF - prefs.js..browser.search.defaulturl: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: {2D3F3651-74B9-4795-BDEC-6DA2F431CB62}:4.6 FF - HKLM\software\mozilla\Firefox\extensions\\{BBDA0591-3099-440a-AA10-41764D9DB4DB}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\IPSFFPlgn\ [2011/01/08 15:11:51 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Firefox\extensions\\{2D3F3651-74B9-4795-BDEC-6DA2F431CB62}: C:\Documents and Settings\All Users\Dane aplikacji\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\coFFPlgn\ [2011/01/09 10:59:13 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011/01/16 14:31:59 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011/01/16 14:29:13 | 000,000,000 | ---D | M] [2010/03/26 19:57:31 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Extensions [2011/02/04 19:31:30 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Firefox\Profiles\eoqhw044.default\extensions [2010/05/23 09:05:04 | 000,000,000 | ---D | M] (Free Lunch Design Toolbar) -- C:\Documents and Settings\xxx\Dane aplikacji\Mozilla\Firefox\Profiles\eoqhw044.default\extensions\{57cc715d-37ca-44e4-9ec2-8c2cbddb25ec} [2011/02/04 19:31:30 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2010/08/01 13:01:45 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2011/01/09 10:59:13 | 000,000,000 | ---D | M] (Norton Toolbar) -- C:\DOCUMENTS AND SETTINGS\ALL USERS\DANE APLIKACJI\NORTON\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NIS_17.0.0.136\COFFPLGN [2010/08/01 13:01:34 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF [2010/08/01 13:01:34 | 000,423,656 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010/12/03 18:54:54 | 000,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010/12/03 18:54:54 | 000,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010/12/03 18:54:54 | 000,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010/12/03 18:54:54 | 000,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010/12/03 18:54:54 | 000,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010/12/03 18:54:54 | 000,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2011/01/15 19:26:41 | 000,000,789 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Symantec NCO BHO) - {602ADB0E-4AFF-4217-8AA1-95DAC4DFA408} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O2 - BHO: (Symantec Intrusion Prevention) - {6D53EC84-6AAE-4787-AEEE-F4628F01010C} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\ipsbho.dll (Symantec Corporation) O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.6.5805.1910\swg.dll (Google Inc.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10\_userdata\ggbho.2.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKLM\..\Toolbar: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O3 - HKCU\..\Toolbar\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\Program Files\Google\Google Toolbar\GoogleToolbar_32.dll (Google Inc.) O3 - HKCU\..\Toolbar\WebBrowser: (Norton Toolbar) - {7FEBEFE3-6B19-4349-98D2-FFB09D4B49CA} - C:\Program Files\Norton Internet Security\Engine\17.8.0.5\coieplg.dll (Symantec Corporation) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG) O4 - HKLM..\Run: [Sony Ericsson PC Suite] C:\Program Files\Sony Ericsson\Mobile2\Application Launcher\Application Launcher.exe () O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [WinampAgent] C:\Program Files\Winamp\winampa.exe () O4 - HKCU..\Run: [Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe (GG Network S.A.) O4 - HKCU..\Run: [IndxStoreSvr_{79662E04-7C6C-4d9f-84C7-88D8A56B10AA}] C:\Program Files\Common Files\Nero\Lib\NMIndexStoreSvr.exe (Nero AG) O4 - HKCU..\Run: [swg] C:\Program Files\Google\GoogleToolbarNotifier\GoogleToolbarNotifier.exe (Google Inc.) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 0 O8 - Extra context menu item: Funkcja Google Sidewiki - C:\Program Files\Google\Google Toolbar\Component\GoogleToolbarDynamic_mui_en_E11712C84EA7E12B.dll (Google Inc.) O10 - NameSpace_Catalog5\Catalog_Entries\000000000001 [] - C:\WINDOWS\system32\nwprovau.dll (Microsoft Corporation) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_21-windows-i586.cab (Java Plug-in 1.6.0_21) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O27 - HKLM IFEO\chrome.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\firefox.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\iexplore.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O27 - HKLM IFEO\opera.exe: Debugger - C:\WINDOWS\system32\iesafemode.exe -sb File not found O30 - LSA: Authentication Packages - (nwprovau) - C:\WINDOWS\System32\nwprovau.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2010/03/26 14:58:44 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010/03/26 14:06:39 | 000,000,000 | ---- | M] () - I:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O34 - HKLM BootExecute: (sprestrt) - C:\WINDOWS\System32\sprestrt.exe (Microsoft Corporation) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2011-02-08 19:53:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Help [2011-02-08 19:53:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Dane aplikacji\Help [2011-02-08 19:05:12 | 000,000,000 | ---D | C] -- C:\WINDOWS\wb [2011-02-07 17:05:14 | 000,000,000 | ---D | C] -- C:\Program Files\Ubisoft [2011-02-07 17:03:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Ubisoft [2011-02-05 19:21:44 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\gameenum.sys [2011-02-05 19:21:44 | 000,010,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gameenum.sys [2011-02-04 19:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\trend micro [2011-01-23 20:40:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\Sony Ericsson [2011-01-23 20:36:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Sony Ericsson [2011-01-23 20:36:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sony Ericsson [2011-01-23 20:36:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Sony Ericsson Shared [2011-01-23 20:36:10 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2011-01-23 20:36:10 | 000,000,000 | ---D | C] -- C:\Program Files\Sony Ericsson [2011-01-23 20:36:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\Downloaded Installations [2011-01-23 11:33:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2011-01-23 11:31:14 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winzm.ime [2011-01-23 11:31:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winsp.ime [2011-01-23 11:31:13 | 000,156,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winpy.ime [2011-01-23 11:31:13 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winime.ime [2011-01-23 11:31:12 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\winar30.ime [2011-01-23 11:31:12 | 000,069,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wingb.ime [2011-01-23 11:31:11 | 000,041,600 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.dll [2011-01-23 11:31:11 | 000,031,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\weitekp9.sys [2011-01-23 11:31:10 | 000,366,080 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svc.dll [2011-01-23 11:31:10 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wam51.dll [2011-01-23 11:31:10 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ext.dll [2011-01-23 11:31:10 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamreg51.dll [2011-01-23 11:31:10 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamps51.dll [2011-01-23 11:31:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3svapi.dll [2011-01-23 11:31:10 | 000,004,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w3ctrs51.dll [2011-01-23 11:31:09 | 000,426,041 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicepad.dll [2011-01-23 11:31:09 | 000,086,073 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\voicesub.dll [2011-01-23 11:31:09 | 000,048,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\w32.dll [2011-01-23 11:31:05 | 000,103,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uihelper.dll [2011-01-23 11:31:05 | 000,076,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\uniime.dll [2011-01-23 11:31:05 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\unicdime.ime [2011-01-23 11:31:04 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tsprof.exe [2011-01-23 11:31:03 | 000,571,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlgnt.ime [2011-01-23 11:31:03 | 000,455,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintsetp.exe [2011-01-23 11:31:03 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tintlphr.exe [2011-01-23 11:31:03 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tools.dll [2011-01-23 11:31:03 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tmigrate.dll [2011-01-23 11:31:02 | 000,185,344 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\thawbrkr.dll [2011-01-23 11:31:02 | 000,021,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdipx.sys [2011-01-23 11:31:02 | 000,019,464 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdspx.sys [2011-01-23 11:31:02 | 000,013,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tdasync.sys [2011-01-23 11:30:59 | 000,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\svcext51.dll [2011-01-23 11:30:59 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sspifilt.dll [2011-01-23 11:30:59 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ssinc51.dll [2011-01-23 11:30:59 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\status.dll [2011-01-23 11:30:58 | 000,101,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\srusbusd.dll [2011-01-23 11:30:57 | 000,143,422 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\softkey.dll [2011-01-23 11:30:56 | 000,188,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpsmir.dll [2011-01-23 11:30:56 | 000,040,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpthrd.dll [2011-01-23 11:30:56 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpstup.dll [2011-01-23 11:30:56 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmptrap.exe [2011-01-23 11:30:56 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_snprfdll.dll [2011-01-23 11:30:55 | 000,464,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsvc.dll [2011-01-23 11:30:55 | 000,358,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpincl.dll [2011-01-23 11:30:55 | 000,259,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpcl.dll [2011-01-23 11:30:55 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmp.exe [2011-01-23 11:30:55 | 000,012,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_smtpctrs.dll [2011-01-23 11:30:55 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpapi.dll [2011-01-23 11:30:55 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\snmpmib.dll [2011-01-23 11:30:54 | 000,236,544 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smi2smir.exe [2011-01-23 11:30:54 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm9aw.dll [2011-01-23 11:30:54 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smb6w.dll [2011-01-23 11:30:54 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sma3w.dll [2011-01-23 11:30:54 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm93w.dll [2011-01-23 11:30:54 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm92w.dll [2011-01-23 11:30:54 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsm.dll [2011-01-23 11:30:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smimsgif.dll [2011-01-23 11:30:54 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smierrsy.dll [2011-01-23 11:30:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm87w.dll [2011-01-23 11:30:53 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm81w.dll [2011-01-23 11:30:53 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8cw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm90w.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8dw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm8aw.dll [2011-01-23 11:30:53 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm89w.dll [2011-01-23 11:30:53 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\sm59w.dll [2011-01-23 11:30:51 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\simptcp.dll [2011-01-23 11:30:48 | 000,221,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\seo.dll [2011-01-23 11:30:48 | 000,057,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_scripto.dll [2011-01-23 11:30:48 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_seos.dll [2011-01-23 11:30:47 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2011-01-23 11:30:47 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2011-01-23 11:30:47 | 000,026,624 | ---- | C] (RICOH Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rw330ext.dll [2011-01-23 11:30:47 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rw001ext.dll [2011-01-23 11:30:47 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rwnh.dll [2011-01-23 11:30:46 | 000,004,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rpcref.dll [2011-01-23 11:30:45 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\romanime.ime [2011-01-23 11:30:44 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_regtrace.exe [2011-01-23 11:30:44 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\register.exe [2011-01-23 11:30:42 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quick.ime [2011-01-23 11:30:42 | 000,020,736 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ramdisk.sys [2011-01-23 11:30:42 | 000,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quser.exe [2011-01-23 11:30:42 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\query.exe [2011-01-23 11:30:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pwsdata.dll [2011-01-23 11:30:40 | 000,131,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxviceo.dll [2011-01-23 11:30:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxmcro.dll [2011-01-23 11:30:40 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmxgl.dll [2011-01-23 11:30:39 | 000,482,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlgnt.ime [2011-01-23 11:30:39 | 000,070,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlphr.exe [2011-01-23 11:30:39 | 000,067,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pmigrate.dll [2011-01-23 11:30:39 | 000,053,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pintlcsd.dll [2011-01-23 11:30:38 | 000,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\phon.ime [2011-01-23 11:30:38 | 000,020,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\permchk.dll [2011-01-23 11:30:37 | 000,036,927 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs411.dll [2011-01-23 11:30:37 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pagecnt.dll [2011-01-23 11:30:37 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs404.dll [2011-01-23 11:30:37 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs804.dll [2011-01-23 11:30:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\padrs412.dll [2011-01-23 11:30:34 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_ntfsdrv.dll [2011-01-23 11:30:33 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nsepm.dll [2011-01-23 11:30:32 | 000,053,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\nextlink.dll [2011-01-23 11:30:30 | 000,229,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\multibox.dll [2011-01-23 11:30:30 | 000,111,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mtstocom.exe [2011-01-23 11:30:27 | 001,875,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.lex [2011-01-23 11:30:26 | 000,098,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msir3jp.dll [2011-01-23 11:30:20 | 000,092,416 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.sys [2011-01-23 11:30:20 | 000,092,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mga.dll [2011-01-23 11:30:20 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\migregdb.exe [2011-01-23 11:30:19 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\metada51.dll [2011-01-23 11:30:17 | 000,037,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\md5filt.dll [2011-01-23 11:30:17 | 000,026,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mdsync.dll [2011-01-23 11:30:16 | 000,065,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_mailmsg.dll [2011-01-23 11:30:15 | 000,023,040 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lpdsvc.dll [2011-01-23 11:30:15 | 000,022,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logscrpt.dll [2011-01-23 11:30:15 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lprmon.dll [2011-01-23 11:30:15 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lonsint.dll [2011-01-23 11:30:14 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\lmmib2.dll [2011-01-23 11:30:13 | 000,070,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\korwbrkr.dll [2011-01-23 11:30:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth3.dll [2011-01-23 11:30:12 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth2.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdvntc.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdusa.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdurdu.dll [2011-01-23 11:30:12 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth1.dll [2011-01-23 11:30:11 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecat.dll [2011-01-23 11:30:11 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnecnt.dll [2011-01-23 11:30:11 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdnec95.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdth0.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr2.dll [2011-01-23 11:30:11 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdsyr1.dll [2011-01-23 11:30:10 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41a.dll [2011-01-23 11:30:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdlk41j.dll [2011-01-23 11:30:10 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinpun.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintel.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdintam.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinmar.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinkan.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinhin.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdinguj.dll [2011-01-23 11:30:10 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdindev.dll [2011-01-23 11:30:09 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdibm02.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdheb.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdfa.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv2.dll [2011-01-23 11:30:09 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbddiv1.dll [2011-01-23 11:30:09 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdgeo.dll [2011-01-23 11:30:08 | 000,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jupiw.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdax2.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd106n.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101a.dll [2011-01-23 11:30:08 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbd101.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda3.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda2.dll [2011-01-23 11:30:08 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbda1.dll [2011-01-23 11:30:08 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarmw.dll [2011-01-23 11:30:08 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdarme.dll [2011-01-23 11:30:07 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iscomlog.dll [2011-01-23 11:30:07 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iwrps.dll [2011-01-23 11:30:07 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isapips.dll [2011-01-23 11:30:06 | 000,035,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iprip.dll [2011-01-23 11:30:05 | 000,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infocomm.dll [2011-01-23 11:30:05 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetin51.exe [2011-01-23 11:30:05 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoctrs.dll [2011-01-23 11:30:04 | 000,471,102 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskdic.dll [2011-01-23 11:30:04 | 000,315,452 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imskf.dll [2011-01-23 11:30:04 | 000,274,489 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputyc.dll [2011-01-23 11:30:04 | 000,102,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imlang.dll [2011-01-23 11:30:04 | 000,059,904 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imkrinst.exe [2011-01-23 11:30:03 | 000,307,257 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.exe [2011-01-23 11:30:03 | 000,262,200 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjputy.exe [2011-01-23 11:30:03 | 000,233,527 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjprw.exe [2011-01-23 11:30:03 | 000,208,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpmig.exe [2011-01-23 11:30:03 | 000,155,705 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdsvr.exe [2011-01-23 11:30:03 | 000,081,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdct.dll [2011-01-23 11:30:03 | 000,045,109 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpuex.exe [2011-01-23 11:30:02 | 000,811,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81k.dll [2011-01-23 11:30:02 | 000,716,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcus.dll [2011-01-23 11:30:02 | 000,368,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpcic.dll [2011-01-23 11:30:02 | 000,340,023 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjp81.ime [2011-01-23 11:30:02 | 000,311,359 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsv.exe [2011-01-23 11:30:02 | 000,057,398 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imjpdadm.exe [2011-01-23 11:30:01 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrcic.dll [2011-01-23 11:30:01 | 000,102,463 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imepadsm.dll [2011-01-23 11:30:01 | 000,094,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekr61.ime [2011-01-23 11:30:01 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmbx.dll [2011-01-23 11:30:01 | 000,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\imekrmig.exe [2011-01-23 11:30:01 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iissync.exe [2011-01-23 11:30:01 | 000,003,584 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismui.dll [2011-01-23 11:30:00 | 000,145,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iische51.dll [2011-01-23 11:30:00 | 000,079,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iislog51.dll [2011-01-23 11:30:00 | 000,060,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisclex4.dll [2011-01-23 11:30:00 | 000,025,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisadmin.dll [2011-01-23 11:30:00 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iiscrmap.dll [2011-01-23 11:30:00 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisfecnv.dll [2011-01-23 11:29:55 | 010,129,408 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxkor.dll [2011-01-23 11:29:45 | 010,096,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hwxcht.dll [2011-01-23 11:29:44 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpext.dll [2011-01-23 11:29:44 | 000,061,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpod51.dll [2011-01-23 11:29:44 | 000,039,936 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hostmib.dll [2011-01-23 11:29:44 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\httpmb51.dll [2011-01-23 11:29:43 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hanjadic.dll [2011-01-23 11:29:43 | 000,032,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gzip.dll [2011-01-23 11:29:41 | 000,562,688 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsst.dll [2011-01-23 11:29:41 | 000,400,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsxp32.dll [2011-01-23 11:29:41 | 000,397,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxstiff.dll [2011-01-23 11:29:41 | 000,268,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssvc.exe [2011-01-23 11:29:41 | 000,246,272 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxst30.dll [2011-01-23 11:29:41 | 000,194,560 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxswzrd.dll [2011-01-23 11:29:41 | 000,155,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsui.dll [2011-01-23 11:29:40 | 000,285,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscomex.dll [2011-01-23 11:29:40 | 000,233,472 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscover.exe [2011-01-23 11:29:40 | 000,137,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclntr.dll [2011-01-23 11:29:40 | 000,072,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscom.dll [2011-01-23 11:29:40 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsevent.dll [2011-01-23 11:29:40 | 000,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsroute.dll [2011-01-23 11:29:40 | 000,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsdrv.dll [2011-01-23 11:29:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsmon.dll [2011-01-23 11:29:40 | 000,023,552 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsext32.dll [2011-01-23 11:29:40 | 000,011,264 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxssend.exe [2011-01-23 11:29:40 | 000,008,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsperf.dll [2011-01-23 11:29:40 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsres.dll [2011-01-23 11:29:39 | 000,452,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsapi.dll [2011-01-23 11:29:39 | 000,143,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxsclnt.exe [2011-01-23 11:29:39 | 000,126,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsv251.dll [2011-01-23 11:29:39 | 000,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fxscfgwz.dll [2011-01-23 11:29:39 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpctrs2.dll [2011-01-23 11:29:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpmib.dll [2011-01-23 11:29:39 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftlx041e.dll [2011-01-23 11:29:38 | 000,024,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmcgi.exe [2011-01-23 11:29:38 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpadmdll.dll [2011-01-23 11:29:38 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\flattemp.exe [2011-01-23 11:29:37 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_fcachdll.dll [2011-01-23 11:29:37 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\exstrace.dll [2011-01-23 11:29:37 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\f3ahvoas.dll [2011-01-23 11:29:36 | 000,105,984 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntagnt.dll [2011-01-23 11:29:36 | 000,093,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntwin.exe [2011-01-23 11:29:36 | 000,057,856 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esuimgd.dll [2011-01-23 11:29:36 | 000,045,056 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esunid.dll [2011-01-23 11:29:36 | 000,031,744 | ---- | C] (SEIKO EPSON CORP.) -- C:\WINDOWS\System32\dllcache\esucmd.dll [2011-01-23 11:29:36 | 000,026,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\evntcmd.exe [2011-01-23 11:29:36 | 000,025,856 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\et4000.sys [2011-01-23 11:29:28 | 000,078,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dayi.ime [2011-01-23 11:29:27 | 000,042,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\davcdata.exe [2011-01-23 11:29:26 | 000,057,399 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cplexe.exe [2011-01-23 11:29:26 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cprofile.exe [2011-01-23 11:29:25 | 000,056,832 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\convlog.exe [2011-01-23 11:29:25 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\controt.dll [2011-01-23 11:29:25 | 000,020,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\counters.dll [2011-01-23 11:29:24 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\compfilt.dll [2011-01-23 11:29:23 | 000,480,256 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintsetp.exe [2011-01-23 11:29:23 | 000,198,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintime.dll [2011-01-23 11:29:23 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cintlgnt.ime [2011-01-23 11:29:22 | 000,838,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtbrkr.dll [2011-01-23 11:29:22 | 000,097,792 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtmbx.dll [2011-01-23 11:29:22 | 000,056,320 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chtskdic.dll [2011-01-23 11:29:21 | 001,677,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chsbrkr.dll [2011-01-23 11:29:21 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgport.exe [2011-01-23 11:29:21 | 000,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chgusr.exe [2011-01-23 11:29:21 | 000,013,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chglogon.exe [2011-01-23 11:29:21 | 000,009,728 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\change.exe [2011-01-23 11:29:20 | 000,078,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\chajei.ime [2011-01-23 11:29:19 | 000,218,112 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_g18030.dll [2011-01-23 11:29:19 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2011-01-23 11:29:19 | 000,010,752 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_iscii.dll [2011-01-23 11:29:19 | 000,006,656 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\c_is2022.dll [2011-01-23 11:29:13 | 000,045,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\browscap.dll [2011-01-23 11:29:11 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\authfilt.dll [2011-01-23 11:29:10 | 000,373,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asp51.dll [2011-01-23 11:29:10 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\asptxn.dll [2011-01-23 11:29:10 | 000,010,240 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aspperf.dll [2011-01-23 11:29:09 | 000,333,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\aqueue.dll [2011-01-23 11:29:09 | 000,109,568 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\appconf.dll [2011-01-23 11:29:09 | 000,045,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_aqadmin.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0804.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0412.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0411.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt040d.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0404.dll [2011-01-23 11:29:08 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\agt0401.dll [2011-01-23 11:29:07 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\EXCH_adsiisex.dll [2011-01-23 11:29:06 | 000,050,176 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adrot.dll [2011-01-23 11:29:06 | 000,029,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admexs.dll [2011-01-23 11:29:06 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admxprox.dll [2011-01-23 11:29:03 | 000,007,168 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wamregps.dll [2011-01-23 11:29:02 | 000,032,827 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptest.exe [2011-01-23 11:29:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\tcptsat.dll [2011-01-23 11:29:02 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\staxmem.dll [2011-01-23 11:29:01 | 002,134,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpsnap.dll [2011-01-23 11:29:01 | 000,189,440 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\smtpadm.dll [2011-01-23 11:29:01 | 000,020,536 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.dll [2011-01-23 11:29:01 | 000,016,437 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\shtml.exe [2011-01-23 11:28:58 | 000,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\logui.ocx [2011-01-23 11:28:57 | 000,836,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.dll [2011-01-23 11:28:57 | 000,171,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisui.dll [2011-01-23 11:28:57 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isatq.dll [2011-01-23 11:28:57 | 000,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetsloc.dll [2011-01-23 11:28:57 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\infoadmn.dll [2011-01-23 11:28:57 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetmgr.exe [2011-01-23 11:28:56 | 000,133,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrtl.dll [2011-01-23 11:28:56 | 000,068,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisext51.dll [2011-01-23 11:28:56 | 000,064,512 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iismap.dll [2011-01-23 11:28:56 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstas.exe [2011-01-23 11:28:56 | 000,020,538 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpremadm.exe [2011-01-23 11:28:56 | 000,015,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisreset.exe [2011-01-23 11:28:56 | 000,006,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ftpsapi2.dll [2011-01-23 11:28:56 | 000,005,632 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iisrstap.dll [2011-01-23 11:28:55 | 000,876,653 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awel.dll [2011-01-23 11:28:55 | 000,598,071 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmc.dll [2011-01-23 11:28:55 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpmmcsat.dll [2011-01-23 11:28:55 | 000,188,494 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpcount.exe [2011-01-23 11:28:55 | 000,109,328 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98swin.exe [2011-01-23 11:28:55 | 000,049,212 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4awebs.dll [2011-01-23 11:28:55 | 000,032,826 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avss.dll [2011-01-23 11:28:55 | 000,020,541 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fpexedll.dll [2011-01-23 11:28:55 | 000,014,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp98sadm.exe [2011-01-23 11:28:54 | 000,184,435 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4amsft.dll [2011-01-23 11:28:54 | 000,147,513 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4apws.dll [2011-01-23 11:28:54 | 000,102,509 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4atxt.dll [2011-01-23 11:28:54 | 000,082,035 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4anscp.dll [2011-01-23 11:28:54 | 000,049,210 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4areg.dll [2011-01-23 11:28:54 | 000,041,020 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\fp4avnb.dll [2011-01-23 11:28:53 | 000,278,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certwiz.ocx [2011-01-23 11:28:53 | 000,188,480 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cfgwiz.exe [2011-01-23 11:28:53 | 000,095,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\certmap.ocx [2011-01-23 11:28:53 | 000,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\cnfgprts.ocx [2011-01-23 11:28:53 | 000,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\coadmin.dll [2011-01-23 11:28:53 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.dll [2011-01-23 11:28:53 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\author.exe [2011-01-23 11:28:52 | 000,290,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\adsiis51.dll [2011-01-23 11:28:51 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admwprox.dll [2011-01-23 11:28:51 | 000,016,439 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.exe [2011-01-23 11:28:50 | 000,020,540 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\admin.dll [2011-01-23 11:27:02 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\isignup.exe [2011-01-23 11:17:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irclass.dll [2011-01-23 11:17:20 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irclass.dll [2011-01-23 11:17:19 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\spxcoins.dll [2011-01-23 11:17:19 | 000,024,661 | ---- | C] (Perle Systems Ltd.) -- C:\WINDOWS\System32\dllcache\spxcoins.dll [2011-01-23 10:54:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Pulpit\Nowy folder [2011-01-16 16:04:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2011-01-16 11:36:46 | 009,289,416 | ---- | C] (Mozilla) -- C:\Documents and Settings\xxx\Pulpit\Firefox Setup 3.6.13.exe [2011-01-16 10:34:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox [2011-01-14 20:43:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\DoctorWeb [2011-01-14 20:04:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\xxx\Moje dokumenty\Gry NES [2011-01-14 19:40:01 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe [2011-01-13 22:17:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\SUPERAntiSpyware.com [2011-01-13 21:45:42 | 000,000,000 | ---D | C] -- C:\Program Files\RAR Password Recovery Magic [2011-01-13 20:32:51 | 000,000,000 | ---D | C] -- C:\Program Files\Xenocode [2011-01-13 20:32:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\XSxS [2011-01-13 19:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\GridinSoft Trojan Killer [2011-01-10 20:13:34 | 000,000,000 | RHSD | C] -- C:\cmdcons [2011-01-10 20:13:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\setup.pss [2011-01-10 20:12:56 | 000,000,000 | ---D | C] -- C:\WINDOWS\setupupd [2010-04-05 11:30:58 | 002,869,264 | ---- | C] (Microsoft Corporation) -- C:\Program Files\dotNetFx35setup.exe [2010-03-26 16:15:35 | 000,090,112 | R--- | C] (Axesstel) -- C:\Program Files\axesstel.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2011-02-08 20:15:00 | 000,001,030 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job [2011-02-08 19:29:38 | 000,000,098 | ---- | M] () -- C:\WINDOWS\h3bmaped.INI [2011-02-08 19:21:54 | 000,000,098 | ---- | M] () -- C:\WINDOWS\H3WMAPED.INI [2011-02-08 19:15:00 | 000,001,026 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job [2011-02-08 14:29:13 | 000,219,120 | ---- | M] () -- C:\WINDOWS\System32\ativvaxx.cap [2011-02-08 14:29:13 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-02-07 17:14:45 | 000,000,605 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\Assassins Creed II.lnk [2011-02-07 17:07:06 | 000,002,228 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-02-07 17:04:14 | 000,659,444 | ---- | M] () -- C:\WINDOWS\System32\drivers\NIS\1108000.005\Cat.DB [2011-02-07 15:24:01 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2011-02-04 19:29:05 | 000,339,991 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\RSIT.exe [2011-01-30 15:13:02 | 000,848,094 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\Plan lekcji.bmp [2011-01-27 16:20:10 | 1878,220,800 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2011-01-26 10:07:40 | 000,448,334 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-01-26 10:07:40 | 000,392,432 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-01-26 10:07:40 | 000,074,434 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-01-26 10:07:40 | 000,058,732 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-01-24 22:59:55 | 000,043,520 | ---- | M] () -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2011-01-23 13:45:42 | 000,008,918 | ---- | M] () -- C:\Documents and Settings\xxx\Moje dokumenty\Mp3 - Jarek.pls [2011-01-23 11:31:37 | 000,000,287 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2011-01-23 11:28:29 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2011-01-23 11:28:28 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-01-23 11:28:28 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-01-23 11:28:15 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2011-01-23 11:26:00 | 000,023,060 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [2011-01-23 11:24:24 | 000,000,327 | -HS- | M] () -- C:\boot.ini [2011-01-22 22:11:18 | 000,349,006 | ---- | M] () -- C:\WINDOWS\setupapi.old [2011-01-22 19:33:11 | 000,001,964 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Norton Internet Security.LNK [2011-01-17 18:57:52 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-01-16 15:34:47 | 000,004,382 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2011-01-16 14:38:26 | 000,000,672 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\Mozilla Firefox.exe.lnk [2011-01-16 14:26:37 | 009,289,416 | ---- | M] (Mozilla) -- C:\Documents and Settings\xxx\Pulpit\Firefox Setup 3.6.13.exe [2011-01-16 10:33:09 | 000,004,048 | ---- | M] () -- C:\WINDOWS\unins000.dat [2011-01-15 19:26:41 | 000,000,789 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts [2011-01-14 22:41:38 | 054,630,248 | ---- | M] () -- C:\Documents and Settings\xxx\Pulpit\m6cfa7a4.exe [2011-01-14 19:42:03 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\xxx\Pulpit\OTL.exe [2011-01-10 19:17:38 | 000,000,241 | -HS- | M] () -- C:\BOOT.BAK [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-02-08 19:29:38 | 000,000,098 | ---- | C] () -- C:\WINDOWS\h3bmaped.INI [2011-02-08 19:21:54 | 000,000,098 | ---- | C] () -- C:\WINDOWS\H3WMAPED.INI [2011-02-07 17:14:47 | 000,000,605 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\Assassins Creed II.lnk [2011-02-04 19:28:41 | 000,339,991 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\RSIT.exe [2011-01-30 15:13:02 | 000,848,094 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\Plan lekcji.bmp [2011-01-23 11:30:39 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2011-01-23 11:30:13 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2011-01-23 11:30:04 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2011-01-23 11:30:03 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2011-01-23 11:30:01 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2011-01-23 11:29:49 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2011-01-23 11:29:43 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2011-01-23 11:29:38 | 000,094,208 | ---- | C] () -- C:\WINDOWS\System32\dllcache\fpencode.dll [2011-01-23 11:29:22 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2011-01-23 11:16:55 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2011-01-23 11:16:55 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2011-01-23 11:16:55 | 000,141,702 | ---- | C] () -- C:\WINDOWS\System32\dllcache\netfx.cat [2011-01-23 11:16:55 | 000,102,826 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tabletpc.cat [2011-01-23 11:16:55 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2011-01-23 11:16:55 | 000,031,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mediactr.cat [2011-01-23 11:16:55 | 000,030,983 | ---- | C] () -- C:\WINDOWS\System32\dllcache\FP4.CAT [2011-01-23 11:16:55 | 000,014,043 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IMS.CAT [2011-01-23 11:16:55 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2011-01-23 11:16:55 | 000,009,581 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSMSGS.CAT [2011-01-23 11:16:55 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2011-01-23 11:16:55 | 000,007,382 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2011-01-23 11:16:55 | 000,007,245 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MSTSWEB.CAT [2011-01-23 11:16:54 | 001,896,400 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5.CAT [2011-01-23 11:16:54 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2011-01-23 11:16:54 | 000,620,500 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5INF.CAT [2011-01-16 16:09:48 | 1878,220,800 | ---- | C] () -- C:\WINDOWS\MEMORY.DMP [2011-01-16 14:38:26 | 000,000,672 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\Mozilla Firefox.exe.lnk [2011-01-15 09:57:31 | 000,349,006 | ---- | C] () -- C:\WINDOWS\setupapi.old [2011-01-14 20:47:43 | 054,630,248 | ---- | C] () -- C:\Documents and Settings\xxx\Pulpit\m6cfa7a4.exe [2011-01-10 20:13:55 | 000,000,241 | -HS- | C] () -- C:\BOOT.BAK [2011-01-10 20:13:51 | 000,262,400 | RHS- | C] () -- C:\cmldr [2010-04-12 14:02:14 | 000,000,427 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2010-04-11 15:56:59 | 000,000,030 | ---- | C] () -- C:\WINDOWS\TextSpy.ini [2010-04-10 11:20:53 | 000,043,520 | ---- | C] () -- C:\Documents and Settings\xxx\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-03-26 16:15:35 | 000,118,784 | R--- | C] () -- C:\Program Files\MSP_Uninstall.exe [2010-03-26 15:57:59 | 000,217,088 | ---- | C] () -- C:\WINDOWS\NVGfxOgl.dll [2010-03-26 15:54:49 | 000,073,728 | R--- | C] () -- C:\WINDOWS\System32\RtNicProp32.dll [2010-03-26 15:48:02 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2010-03-26 12:50:57 | 000,000,131 | ---- | C] () -- C:\Documents and Settings\xxx\Dane aplikacji\default.pls [2010-03-26 12:49:24 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2010-03-26 12:42:17 | 000,168,448 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2010-03-26 12:42:16 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini [2010-03-26 12:42:15 | 003,596,288 | ---- | C] () -- C:\WINDOWS\System32\qt-dx331.dll [2010-03-26 12:42:15 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2010-03-26 12:42:15 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-03-26 12:42:14 | 000,085,504 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2004-08-04 01:44:10 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2004-08-03 23:44:00 | 000,081,920 | ---- | C] () -- C:\WINDOWS\System32\ieencode.dll [2004-07-17 10:36:38 | 000,027,440 | ---- | C] () -- C:\WINDOWS\System32\drivers\secdrv.sys [1998-03-17 18:15:00 | 000,000,116 | ---- | C] () -- C:\WINDOWS\smp32.dll [color=#E56717]========== LOP Check ==========[/color] [2010-04-21 17:10:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-09-14 17:23:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Guitar Pro 6 [2010-08-03 08:43:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2011-01-23 20:36:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Teleca [2011-01-16 09:46:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-08-19 08:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ubisoft [2010-08-01 10:18:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\avidemux [2010-04-21 16:15:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Gadu-Gadu [2010-11-12 19:12:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Gadu-Gadu 10 [2011-01-08 20:36:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\GetRightToGo [2010-09-15 17:11:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Guitar Pro 6 [2010-07-18 12:38:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\HTNetMeter [2010-04-04 07:24:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\InterTrust [2010-10-19 19:38:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Leadertech [2011-02-04 18:51:47 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Moje pliki Bitwy o Śródziemie™ II [2010-05-17 14:54:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\OpenFM [2010-04-21 15:20:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Opera [2011-01-05 16:50:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Teleca [2010-05-27 20:37:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Thinstall [2010-03-26 17:59:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Tific [2010-08-19 08:08:38 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\Ubisoft [2010-04-04 08:49:23 | 000,000,000 | ---D | M] -- C:\Documents and Settings\xxx\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 195 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 < End of report > [/log] [log]OTL Extras logfile created on: 2/8/2011 8:18:52 PM - Run 5 OTL by OldTimer - Version 3.2.20.2 Folder = C:\Documents and Settings\xxx\Pulpit Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000409 | Country: Stany Zjednoczone | Language: ENU | Date Format: M/d/yyyy 2.00 Gb Total Physical Memory | 1.00 Gb Available Physical Memory | 57.00% Memory free 4.00 Gb Paging File | 3.00 Gb Available in Paging File | 83.00% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 117.19 Gb Total Space | 33.65 Gb Free Space | 28.72% Space Free | Partition Type: NTFS Drive D: | 152.34 Gb Total Space | 137.05 Gb Free Space | 89.96% Space Free | Partition Type: NTFS Drive E: | 196.22 Gb Total Space | 153.04 Gb Free Space | 77.99% Space Free | Partition Type: NTFS Drive F: | 464.21 Mb Total Space | 0.00 Mb Free Space | 0.00% Space Free | Partition Type: UDF Drive I: | 15.96 Gb Total Space | 15.90 Gb Free Space | 99.59% Space Free | Partition Type: NTFS Drive J: | 4.87 Gb Total Space | 4.84 Gb Free Space | 99.41% Space Free | Partition Type: NTFS Drive K: | 53.71 Gb Total Space | 53.63 Gb Free Space | 99.85% Space Free | Partition Type: NTFS Computer Name: JAREK | User Name: xxx | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- Reg Error: Key error. https [open] -- Reg Error: Key error. piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "3389:TCP" = 3389:TCP:*:Enabled:@xpsp2res.dll,-22009 "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Axesstel\AxessManager\AxessManager.exe" = C:\Program Files\Axesstel\AxessManager\AxessManager.exe:*:Enabled:AxessManager Application -- (Axesstel Inc.) "C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe" = E:\Gry\GTA IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV -- (Sony DADC Austria AG) "E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe" = E:\Gry\GTA IV\Grand Theft Auto IV\Grand Theft Auto IV\LaunchGTAIV.exe:*:Disabled:Grand Theft Auto IV "C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe" = C:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe:*:Disabled:Rockstar Games Social Club -- (Take-Two Interactive Software, Inc.) "C:\Program Files\Mozilla Firefox\firefox.exe" = C:\Program Files\Mozilla Firefox\firefox.exe:*:Enabled:Firefox "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) "E:\Guitar Pro 6\GuitarPro.exe" = E:\Guitar Pro 6\GuitarPro.exe:*:Enabled:Guitar Pro 6 "C:\Program Files\Ares\Ares.exe" = C:\Program Files\Ares\Ares.exe:*:Enabled:Ares p2p for windows "E:\Gry\EA11\Game\fifa.exe" = E:\Gry\EA11\Game\fifa.exe:*:Enabled:FIFA 11 -- (Electronic Arts) "C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe" = C:\Documents and Settings\xxx\Moje dokumenty\Regnum\Regnum Online\LiveServer\ROClientGame.exe:*:Enabled:RegnumOnline -- (NGD Studios) "D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe" = D:\ac2\Assassin's Creed II\DRM\mitmgeneric.exe:*:Enabled:mitmgeneric -- () "E:\Gry\LoD - Bitwa o Śródziemie\game.dat" = E:\Gry\LoD - Bitwa o Śródziemie\game.dat:*:Enabled:Bitwa o Śródziemie™ II "C:\Program Files\PermissionResearch\prmrsr.exe" = C:\Program Files\PermissionResearch\prmrsr.exe:*:Enabled:prmrsr.exe "C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- (Ubisoft) "E:\Assassin's Creed II\AssassinsCreedIIGame.exe" = E:\Assassin's Creed II\AssassinsCreedIIGame.exe:*:Enabled:Assassin's Creed II -- () "E:\Assassin's Creed II\AssassinsCreedII.exe" = E:\Assassin's Creed II\AssassinsCreedII.exe:*:Enabled:Assassin's Creed II Update -- (Ubisoft) "E:\Assassin's Creed II\UPlayBrowser.exe" = E:\Assassin's Creed II\UPlayBrowser.exe:*:Enabled:Assassin's Creed II Uplay -- (Ubisoft Entertainment) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR "{023C9E50-C216-4E7A-A8A5-3457DE58106C}" = Catalyst Control Center - Branding "{03D8A0D6-8455-B550-A808-391C82127447}" = CCC Help Greek "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{08B3869E-D282-424C-9AFC-870E04A4BA14}" = Rockstar Games Social Club "{09756AF6-AFAD-EF82-AB78-3297FD81E821}" = CCC Help Japanese "{10CD9AF7-5D3A-2772-F617-8BD9D82EC3A3}" = CCC Help Dutch "{1447E6D2-1015-AE95-5976-E15EF8684347}" = CCC Help Portuguese "{17B4113F-D6AA-3970-127A-C09D10886EB0}" = CCC Help German "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{187DC7F2-3C76-62C6-575B-03EC8B9B0BC8}" = Catalyst Control Center Graphics Full Existing "{1A4B2698-683C-769B-7E67-339F23858DEB}" = Catalyst Control Center Graphics Full New "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{200BFFBD-3B5F-47C7-F6DB-3162EF559880}" = Skins "{20AEA7B1-6155-44A2-B58E-430F2C9F4ABD}" = AMD OverDrive "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{24A6F0B6-E6F3-46AE-BB7E-81D6AFA6E926}" = ATI AVIVO Codecs "{26A24AE4-039D-4CA4-87B4-2F83216021FF}" = Java(TM) 6 Update 21 "{2EEEC858-21F8-419B-8FE2-820621BFFCD7}" = GetDataBack for FAT "{337A4845-48F0-3363-4424-5047FD6AB456}" = CCC Help Hungarian "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36177F72-8181-45D7-95D1-EA5B008A4DC9}" = Macro Vibration Joystick "{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder "{3FEA6CD1-EA13-4CE7-A74E-A74A4A0A7B5C}" = FIFA 11 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{511CD3D6-8A90-8D4F-B16B-DA80BD0E0FBE}" = CCC Help Turkish "{53C06EDE-6FB0-643E-7193-7053F9C7190A}" = ccc-utility "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{5C9C1AD9-CBA2-8EBD-8252-D39F40C29F4B}" = CCC Help Thai "{63717D97-103F-4310-E8E9-22F26F9E2C38}" = CCC Help Korean "{6A13436F-4D18-D4B5-181E-B6AC603BFED7}" = CCC Help Czech "{6C878433-FDDC-6C9E-2E6C-55F979761B30}" = Catalyst Control Center Core Implementation "{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0 "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com "{78D80EAF-1ADB-46A8-AF6F-EBB18B6ADBCE}" = ISO Creator 1.0 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8570BEE8-0CA3-4977-9AB1-80ED93F0513C}" = Assassin's Creed II "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8E0696CF-2869-578B-F8AB-C82B80F9EF12}" = CCC Help Italian "{90A8E958-F3F9-CE7C-B084-F90B8F40F3C3}" = Catalyst Control Center Graphics Light "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A51026AB-F833-413F-5BB3-AE1B3CF3F539}" = ccc-core-static "{A5CCD0C8-6D5E-4515-BDD7-2A22D5D91045}" = Nero 8 Essentials "{A879106A-9275-0397-CA14-76B24943ACE3}" = CCC Help Swedish "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2 "{B22C04E5-C923-94E2-A33A-25B988686934}" = CCC Help Finnish "{B52D7A21-03E5-4C0C-82FA-FD8EB4C92149}" = AxessManager "{BB6BB891-CA30-060D-5D63-860F59DBD29D}" = CCC Help Spanish "{BFB91468-460B-68B6-C666-BB5CC09BC93B}" = Catalyst Control Center Localization All "{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CF287D73-E32C-19C1-E895-2EC4BC7334AE}" = CCC Help Chinese Traditional "{D85D835B-E26E-99E0-CB4E-9DEA34EC19FD}" = CCC Help Russian "{DA57EFCC-90DA-A202-9AC8-A1278918F481}" = CCC Help Polish "{DCB51FBC-68AD-42FF-8426-199F1FE2C4F5}" = AMD USB Filter Driver "{DD97597E-7AB9-8A67-5C18-31015D91B337}" = ccc-core-preinstall "{E2958428-E345-CB5E-239D-FE031BDA3A89}" = CCC Help Chinese Standard "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{EA36EFF1-DFB9-E5A7-29C0-9DBAF7EBAEF6}" = CCC Help English "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F3A4A3DA-D7E8-C3CD-966D-9B57762739FF}" = CCC Help French "{F8C3DA4D-3837-50E7-10B2-0EE0D656B63C}" = CCC Help Danish "{FC906D5C-91F9-4DA4-A765-6DCBB669F317}" = Sony Ericsson PC Suite "{FFB7426F-1531-6AB4-BFB9-3CC1336FE406}" = CCC Help Norwegian "Adobe Acrobat 5.0" = Adobe Acrobat 5.0 CE "Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player "All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI "ALLPlayer V2.4_is1" = ALLPlayer V2.4 "ATI Display Driver" = ATI Display Driver "Axesstel Data Modem Driver" = Axesstel Data Modem Driver "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "DVD Shrink_is1" = DVD Shrink 3.2 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.30 "Free_Lunch_Design Toolbar" = Free_Lunch_Design Toolbar "Gadu-Gadu 10" = Gadu-Gadu 10 "GreenPowerCenterII_is1" = GreenPowerCenterII "Guitar Pro 5_is1" = Guitar Pro 5.0 "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.0.0 "Mozilla Firefox (3.6.13)" = Mozilla Firefox (3.6.13) "Niezbędnik CD_is1" = Niezbędnik CD "NIS" = Norton Internet Security "OverclockingCenter_is1" = OverclockingCenter "PLAY ONLINE" = PLAY ONLINE "RAR Password Recovery Magic_is1" = RAR Password Recovery Magic v6.1.1.95 "Seven Remix XP" = Seven Remix XP 2.2 "SMAC 2.7" = SMAC 2.7 "SubEdit-Player_is1" = SubEdit-Player "TuxGuitar_0" = TuxGuitar 1.1 "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-02-08 14:53:03 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes33.exe, wersja 3.2.0.0, moduł powodujący błąd heroes33.exe, wersja 3.2.0.0, adres błędu 0x000fb370. Error - 2011-02-08 14:56:18 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes3.exe, wersja 3.2.0.0, moduł powodujący błąd heroes3.exe, wersja 3.2.0.0, adres błędu 0x000faaa0. Error - 2011-02-08 15:02:38 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes3.exe, wersja 3.2.0.0, moduł powodujący błąd heroes3.exe, wersja 3.2.0.0, adres błędu 0x000faaa0. Error - 2011-02-08 15:05:18 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes3.exe, wersja 3.2.0.0, moduł powodujący błąd heroes3.exe, wersja 3.2.0.0, adres błędu 0x000faaa0. Error - 2011-02-08 15:09:34 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd h3wmaped.exe, wersja 3.0.0.0, moduł powodujący błąd h3wmaped.exe, wersja 3.0.0.0, adres błędu 0x000e4b28. Error - 2011-02-08 15:09:37 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes3.exe, wersja 3.2.0.0, moduł powodujący błąd heroes3.exe, wersja 3.2.0.0, adres błędu 0x000faaa0. Error - 2011-02-08 15:09:39 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes33.exe, wersja 3.2.0.0, moduł powodujący błąd heroes33.exe, wersja 3.2.0.0, adres błędu 0x000fb370. Error - 2011-02-08 15:13:17 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes3.exe, wersja 3.2.0.0, moduł powodujący błąd heroes3.exe, wersja 3.2.0.0, adres błędu 0x000faaa0. Error - 2011-02-08 15:13:53 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd heroes33.exe, wersja 3.2.0.0, moduł powodujący błąd heroes33.exe, wersja 3.2.0.0, adres błędu 0x000fb370. Error - 2011-02-08 15:14:00 | Computer Name = JAREK | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd h3blade.exe, wersja 2.0.0.0, moduł powodujący błąd h3blade.exe, wersja 2.0.0.0, adres błędu 0x000ee400. [ System Events ] Error - 2011-01-28 10:03:50 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-28 11:43:21 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-28 11:43:26 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2011-01-28 11:43:26 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-28 13:53:35 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-28 13:53:37 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-28 13:53:39 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd Error - 2011-01-29 04:49:39 | Computer Name = JAREK | Source = sptd | ID = 262148 Description = Sterownik wykrył błąd wewnętrzny w swoich strukturach danych dla . Error - 2011-01-29 04:49:50 | Computer Name = JAREK | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Driver Foundation - User-mode Driver Framework zakończyła działanie; wystąpił następujący błąd: %%31 Error - 2011-01-29 04:49:52 | Computer Name = JAREK | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: sptd < End of report > [/log]
Tomek01 komentarz 8 lutego 2011 komentarz 8 lutego 2011 Do [url=http://images.malwareremoval.com/jpshortstuff/SystemLook.exe][b]System Look[/b][/url] wklej: [code]:file C:\WINDOWS\system32\iesafemode.exe[/code] Wciśnij look, pokaż co wyskoczy.
Sounder komentarz 9 lutego 2011 Autor komentarz 9 lutego 2011 [log]SystemLook 04.09.10 by jpshortstuff Log created at 19:10 on 09/02/2011 by xxx Administrator - Elevation successful ========== file ========== C:\WINDOWS\system32\iesafemode.exe - Unable to find/read file. -= EOF =-[/log] Słyszałem, że Norton(zwłaszcza ten nowszy) słynie z tego, że zamula komputery. Próbowałem się nim wtedy posłużyć(bez skutku) i mam go do tej pory. Możliwe, że to przez niego są problemy?
Tomek01 komentarz 9 lutego 2011 komentarz 9 lutego 2011 Kiedy ostatnio robiłeś porządki, defragmentacja, CCleanr, ATFCleaner, etc ? Wyłącz a następnie włącz przywracanie systemu na wszystkich partycjach. Użyj ATF Cleaner, zaznacz trzy pierwsze fajki i empty selected. Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] i jakby coś wykryły raporty pokaż na forum.
Sounder komentarz 11 lutego 2011 Autor komentarz 11 lutego 2011 Użyłem ATFCleaner'a i CCleaner'a. DrWeb nic nie znalazł. Malwarebytes Anti-Malware coś wykrył, ale po usunięciu tych infekcji nic się nie poprawiło. log z szybkiego skanowania Malwarebytes Anti-Malware: [log]Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Wersja bazy: 5741 Windows 5.1.2600 Dodatek Service Pack 2 Internet Explorer 6.0.2900.2180 2011-02-11 17:40:00 mbam-log-2011-02-11 (17-39-55).txt Typ skanowania: Szybkie skanowanie Przeskanowano obiektów: 166513 Upłynęło: 1 minut(y), 38 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 4 Zainfekowanych wartości rejestru: 1 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 1 Zainfekowanych plików: 2 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe (Security.Hijack) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe (Security.Hijack) -> No action taken. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\opera.exe (Security.Hijack) -> No action taken. Zainfekowanych wartości rejestru: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe\Debugger (Security.Hijack) -> Value: Debugger -> No action taken. Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: c:\program files\flv direct player (Adware.BHO.FL) -> No action taken. Zainfekowanych plików: c:\documents and settings\localservice\oashdihasidhasuidhiasdhiashdiuasdhasd (Malware.Trace) -> No action taken. c:\documents and settings\xxx\oashdihasidhasuidhiasdhiashdiuasdhasd (Malware.Trace) -> No action taken. [/log] Pełne skanowanie: [log]Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Wersja bazy: 5741 Windows 5.1.2600 Dodatek Service Pack 2 Internet Explorer 6.0.2900.2180 2011-02-11 18:27:27 mbam-log-2011-02-11 (18-27-25).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|) Przeskanowano obiektów: 223611 Upłynęło: 16 minut(y), 4 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 0 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 0 Zainfekowanych plików: 3 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: (Nie znaleziono zagrożeń) Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: (Nie znaleziono zagrożeń) Zainfekowanych plików: c:\program files\Ubisoft\ubisoft game launcher\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> No action taken. e:\assassin's creed ii\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> No action taken. e:\Gry\assassin's creed ii\a.c.2.skidr\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> No action taken. [/log]
Tomek01 komentarz 16 lutego 2011 komentarz 16 lutego 2011 Ja nie widzę jednak żebyś usuwał za pomocą Mbam'a to co wykrył ?
Sounder komentarz 17 lutego 2011 Autor komentarz 17 lutego 2011 No bo to są logi, które wyskoczyły zaraz po zakończeniu skanowania. Tu są te późniejsze: [log]Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Wersja bazy: 5741 Windows 5.1.2600 Dodatek Service Pack 2 Internet Explorer 6.0.2900.2180 2011-02-11 18:27:39 mbam-log-2011-02-11 (18-27-39).txt Typ skanowania: Pełne skanowanie (C:\|D:\|E:\|) Przeskanowano obiektów: 223611 Upłynęło: 16 minut(y), 4 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 0 Zainfekowanych wartości rejestru: 0 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 0 Zainfekowanych plików: 3 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: (Nie znaleziono zagrożeń) Zainfekowanych wartości rejestru: (Nie znaleziono zagrożeń) Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: (Nie znaleziono zagrożeń) Zainfekowanych plików: c:\program files\Ubisoft\ubisoft game launcher\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Quarantined and deleted successfully. e:\assassin's creed ii\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Quarantined and deleted successfully. e:\Gry\assassin's creed ii\a.c.2.skidr\ubiorbitapi_r2.dll (Trojan.Agent.CK) -> Quarantined and deleted successfully. [/log] [log]Malwarebytes' Anti-Malware 1.50.1.1100 www.malwarebytes.org Wersja bazy: 5741 Windows 5.1.2600 Dodatek Service Pack 2 Internet Explorer 6.0.2900.2180 2011-02-11 17:40:38 mbam-log-2011-02-11 (17-40-38).txt Typ skanowania: Szybkie skanowanie Przeskanowano obiektów: 166513 Upłynęło: 1 minut(y), 38 sekund(y) Zainfekowanych procesów w pamięci: 0 Zainfekowanych modułów w pamięci: 0 Zainfekowanych kluczy rejestru: 4 Zainfekowanych wartości rejestru: 1 Zainfekowane informacje rejestru systemowego: 0 Zainfekowanych folderów: 1 Zainfekowanych plików: 2 Zainfekowanych procesów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych modułów w pamięci: (Nie znaleziono zagrożeń) Zainfekowanych kluczy rejestru: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Zones\ (Hijack.Zones) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\chrome.exe (Security.Hijack) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\firefox.exe (Security.Hijack) -> Quarantined and deleted successfully. HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\opera.exe (Security.Hijack) -> Quarantined and deleted successfully. Zainfekowanych wartości rejestru: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\iexplore.exe\Debugger (Security.Hijack) -> Value: Debugger -> Quarantined and deleted successfully. Zainfekowane informacje rejestru systemowego: (Nie znaleziono zagrożeń) Zainfekowanych folderów: c:\program files\flv direct player (Adware.BHO.FL) -> Quarantined and deleted successfully. Zainfekowanych plików: c:\documents and settings\localservice\oashdihasidhasuidhiasdhiashdiuasdhasd (Malware.Trace) -> Quarantined and deleted successfully. c:\documents and settings\xxx\oashdihasidhasuidhiasdhiashdiuasdhasd (Malware.Trace) -> Quarantined and deleted successfully. [/log] Ostatnio (może od tego ostatniego skanowania) zauważyłem, że po włączeniu komputera procesor pracuje normalnie, ale jak się wykona jakąś cięższą operację (np. nagrywanie płyty) to po zakończeniu działania nie przestaje pracować aż do wyłączenia komputera. Jak już się go zmusi do nadmiernego wysiłku to ciągnie tak do końca.
Tomek01 komentarz 20 lutego 2011 komentarz 20 lutego 2011 Wg tego co piszesz to może znaczyć że masz za słaby procesor. Zaktualizuj system do SP3.
Sounder komentarz 20 lutego 2011 Autor komentarz 20 lutego 2011 Możliwe, że trzeba zaktualizować, bo podczas walki z wirusami robiłem naprawę systemu przez Windows XP SP2. Ale jak to możliwe, że na SP2 procesor jest za słaby, a na SP3 będzie dobry? Poza tym znajomy mówił coś o podkręcaniu procesora. Jest sens się w to bawić?
Tomek01 komentarz 20 lutego 2011 komentarz 20 lutego 2011 Nie eksperymentowałem, nie potrafię Ci poradzić na ten temat.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.