x-kom hosting

CLASSPNP.SYS - podczas uruchamiania zatrzymuje się przy ładowaniu tego pliku na około 30 sek.

klerzak
utworzono
utworzono

Podczas uruchamiania komputera przy ładowaniu plików systemowych komputer zatrzymuje się na około 30 sekund na pliku CLASSPNP.SYS. System był przywracany z kopii zapasowej robionej przy użyciu Windowsowego narzędzia, przed przywróceniem kopii zapasowej komputer uruchamiał się około minutę - teraz przy tych samych ustawieniach (te same programy w autostarcie/usługi) start Windowsa trwa około dwie minuty (doliczając że same programy z autostartu ładują się do tego z pół minuty = aby odpalić przeglądarkę muszę czekać grubo ponad dwie minuty po włączeniu komputera). Przed przywróceniem kopii zapasowej ładowanie plików systemowych przebiegało sprawnie - dosłownie tak szybko przelatywały, że ledwo było widać co się ładuje, a już się ekran logowania pojawiał, a teraz wszystkie pliki systemowe ładują się szybko, i zatrzymuje się jak wyżej napisałem na pliku CLASSPNP.SYS.

Czytałem że to może być wina urządzenia podpiętego pod komputer, i po prostu jest jakiś problem z zainstalowaniem tego urządzenia, jednak odłączyłem wszystko co możliwe i to samo się dzieje.

Logi zrobiłem wg. tego poradnika: http://www.forumpc.pl/index.php?showtopic=104338

[log]
OTL logfile created on: 2012-07-06 16:54:33 - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Administrator\Desktop\Pobrane - Firefox
64bit- Server Standard Edition (full installation) Service Pack 1 (Version = 6.1.7601) - Type = NTServer
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 60,53% Memory free
7,99 Gb Paging File | 6,23 Gb Available in Paging File | 77,94% Paging File free
Paging file location(s): f:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 40,00 Gb Total Space | 12,30 Gb Free Space | 30,75% Space Free | Partition Type: NTFS
Drive D: | 150,00 Gb Total Space | 87,15 Gb Free Space | 58,10% Space Free | Partition Type: NTFS
Drive E: | 220,00 Gb Total Space | 78,73 Gb Free Space | 35,79% Space Free | Partition Type: NTFS
Drive F: | 55,76 Gb Total Space | 49,31 Gb Free Space | 88,44% Space Free | Partition Type: NTFS

Computer Name: MAREK | User Name: marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2012-07-06 16:52:43 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Administrator\Desktop\Pobrane - Firefox\OTL.exe
PRC - [2012-06-29 14:52:33 | 000,076,888 | ---- | M] () -- C:\Windows\SysWOW64\PnkBstrA.exe
PRC - [2012-06-27 12:29:26 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- F:\Hamachi\hamachi-2-ui.exe
PRC - [2012-06-15 00:18:11 | 000,016,864 | ---- | M] (Mozilla Corporation) -- F:\Mozilla Firefox\plugin-container.exe
PRC - [2012-06-15 00:17:36 | 000,913,888 | ---- | M] (Mozilla Corporation) -- F:\Mozilla Firefox\firefox.exe
PRC - [2012-05-24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe
PRC - [2012-05-04 10:12:58 | 010,591,232 | ---- | M] (Creative Team S.A.) -- F:\WapSter AQQ\AQQ.exe
PRC - [2012-04-04 07:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012-03-19 13:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH) -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe
PRC - [2012-03-17 02:05:26 | 000,108,544 | ---- | M] () -- F:\VLC\vlc.exe
PRC - [2011-09-10 11:43:18 | 000,018,432 | ---- | M] (Apache Software Foundation) -- C:\xampp\apache\bin\httpd.exe
PRC - [2011-09-09 19:46:10 | 008,158,720 | ---- | M] () -- C:\xampp\mysql\bin\mysqld.exe
PRC - [2011-06-07 21:29:16 | 000,630,272 | ---- | M] (FileZilla Project) -- C:\xampp\FileZillaFTP\FileZillaServer.exe
PRC - [2010-03-17 03:46:08 | 000,563,200 | ---- | M] () -- F:\Lightscreen\lightscreen.exe
PRC - [2007-09-02 14:58:52 | 000,495,616 | ---- | M] () -- F:\RocketDock\RocketDock.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2012-07-06 16:52:43 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Administrator\Desktop\Pobrane - Firefox\OTL.exe
MOD - [2012-06-27 20:25:26 | 008,797,856 | ---- | M] () -- C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll
MOD - [2012-06-27 12:29:26 | 001,996,200 | ---- | M] (LogMeIn Inc.) -- F:\Hamachi\hamachi-2-ui.exe
MOD - [2012-06-15 00:19:07 | 000,085,472 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\components\browsercomps.dll
MOD - [2012-06-15 00:19:04 | 015,757,792 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\xul.dll
MOD - [2012-06-15 00:18:20 | 000,019,424 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\xpcom.dll
MOD - [2012-06-15 00:18:17 | 000,145,376 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\ssl3.dll
MOD - [2012-06-15 00:18:15 | 000,155,104 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\softokn3.dll
MOD - [2012-06-15 00:18:13 | 000,091,104 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\smime3.dll
MOD - [2012-06-15 00:18:11 | 000,016,864 | ---- | M] (Mozilla Corporation) -- F:\Mozilla Firefox\plugin-container.exe
MOD - [2012-06-15 00:18:10 | 000,020,960 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\plds4.dll
MOD - [2012-06-15 00:18:09 | 000,021,472 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\plc4.dll
MOD - [2012-06-15 00:18:07 | 000,092,640 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\nssutil3.dll
MOD - [2012-06-15 00:18:06 | 000,095,712 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\nssdbm3.dll
MOD - [2012-06-15 00:18:04 | 000,358,368 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\nssckbi.dll
MOD - [2012-06-15 00:18:02 | 000,637,920 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\nss3.dll
MOD - [2012-06-15 00:17:59 | 000,170,464 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\nspr4.dll
MOD - [2012-06-15 00:17:58 | 000,829,920 | ---- | M] (sqlite.org) -- F:\Mozilla Firefox\mozsqlite3.dll
MOD - [2012-06-15 00:17:55 | 002,042,848 | ---- | M] () -- F:\Mozilla Firefox\mozjs.dll
MOD - [2012-06-15 00:17:51 | 000,043,488 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\mozglue.dll
MOD - [2012-06-15 00:17:49 | 000,016,352 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\mozalloc.dll
MOD - [2012-06-15 00:17:41 | 000,624,608 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\gkmedias.dll
MOD - [2012-06-15 00:17:38 | 000,258,528 | ---- | M] (Mozilla Foundation) -- F:\Mozilla Firefox\freebl3.dll
MOD - [2012-06-15 00:17:36 | 000,913,888 | ---- | M] (Mozilla Corporation) -- F:\Mozilla Firefox\firefox.exe
MOD - [2012-06-15 00:16:43 | 000,770,384 | ---- | M] (Microsoft Corporation) -- F:\Mozilla Firefox\msvcr100.dll
MOD - [2012-06-15 00:16:43 | 000,421,200 | ---- | M] (Microsoft Corporation) -- F:\Mozilla Firefox\msvcp100.dll
MOD - [2012-05-24 20:39:22 | 027,112,840 | ---- | M] (Dropbox, Inc.) -- C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe
MOD - [2012-05-23 04:08:34 | 000,924,160 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWOW64\aticfx32.dll
MOD - [2012-05-23 04:00:12 | 006,301,184 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWOW64\atidxx32.dll
MOD - [2012-05-23 03:07:42 | 000,042,496 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWOW64\atiuxpag.dll
MOD - [2012-05-18 01:11:00 | 012,314,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mshtml.dll
MOD - [2012-05-18 00:48:40 | 009,737,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ieframe.dll
MOD - [2012-05-18 00:45:37 | 001,800,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jscript9.dll
MOD - [2012-05-18 00:36:06 | 001,103,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\urlmon.dll
MOD - [2012-05-18 00:35:47 | 001,129,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wininet.dll
MOD - [2012-05-18 00:31:16 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jsproxy.dll
MOD - [2012-05-18 00:29:30 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\jscript.dll
MOD - [2012-05-18 00:27:18 | 001,793,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\iertutil.dll
MOD - [2012-05-04 10:12:58 | 010,591,232 | ---- | M] (Creative Team S.A.) -- F:\WapSter AQQ\AQQ.exe
MOD - [2012-05-04 09:24:38 | 000,971,776 | ---- | M] () -- F:\WapSter AQQ\System\Shared\Plugins\SMS.dll
MOD - [2012-05-04 09:16:48 | 000,310,272 | ---- | M] () -- F:\WapSter AQQ\System\Shared\Plugins\Contact.dll
MOD - [2012-04-30 11:26:10 | 001,178,624 | ---- | M] () -- F:\WapSter AQQ\System\Shared\Plugins\GGNet.dll
MOD - [2012-04-24 06:36:42 | 001,158,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\crypt32.dll
MOD - [2012-04-21 06:21:01 | 001,625,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
MOD - [2012-03-26 17:01:06 | 000,067,968 | ---- | M] (Microsoft Corporation) -- C:\Program Files (x86)\Microsoft Security Client\MpOAv.dll
MOD - [2012-03-23 21:40:28 | 004,308,992 | ---- | M] () -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\Pogoda.dll
MOD - [2012-03-17 02:05:26 | 000,111,104 | ---- | M] () -- F:\VLC\libvlc.dll
MOD - [2012-03-17 02:05:26 | 000,108,544 | ---- | M] () -- F:\VLC\vlc.exe
MOD - [2012-03-17 02:05:26 | 000,051,200 | ---- | M] () -- F:\VLC\plugins\audio_output\libwaveout_plugin.dll
MOD - [2012-03-17 02:05:26 | 000,049,664 | ---- | M] () -- F:\VLC\plugins\audio_output\libaout_directx_plugin.dll
MOD - [2012-03-17 02:05:26 | 000,037,376 | ---- | M] () -- F:\VLC\plugins\mmxext\libmemcpymmxext_plugin.dll
MOD - [2012-03-17 02:05:24 | 001,220,608 | ---- | M] () -- F:\VLC\plugins\demux\libmkv_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,973,312 | ---- | M] () -- F:\VLC\plugins\demux\libsid_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,671,744 | ---- | M] () -- F:\VLC\plugins\demux\liblive555_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,106,496 | ---- | M] () -- F:\VLC\plugins\demux\libplaylist_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,101,376 | ---- | M] () -- F:\VLC\plugins\demux\libogg_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,095,744 | ---- | M] () -- F:\VLC\plugins\demux\libmpc_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,092,160 | ---- | M] () -- F:\VLC\plugins\demux\libavi_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,073,728 | ---- | M] () -- F:\VLC\plugins\demux\libasf_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,045,568 | ---- | M] () -- F:\VLC\plugins\demux\libflacsys_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,044,032 | ---- | M] () -- F:\VLC\plugins\demux\libnuv_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,040,448 | ---- | M] () -- F:\VLC\plugins\demux\libwav_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,040,448 | ---- | M] () -- F:\VLC\plugins\demux\libsmf_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,037,888 | ---- | M] () -- F:\VLC\plugins\demux\libtta_plugin.dll
MOD - [2012-03-17 02:05:24 | 000,035,840 | ---- | M] () -- F:\VLC\plugins\demux\libdirac_plugin.dll
MOD - [2012-03-17 02:05:22 | 011,595,264 | ---- | M] () -- F:\VLC\plugins\gui\libqt4_plugin.dll
MOD - [2012-03-17 02:05:22 | 000,196,608 | ---- | M] () -- F:\VLC\plugins\demux\libmp4_plugin.dll
MOD - [2012-03-17 02:05:22 | 000,044,544 | ---- | M] () -- F:\VLC\plugins\demux\libes_plugin.dll
MOD - [2012-03-17 02:05:22 | 000,040,960 | ---- | M] () -- F:\VLC\plugins\demux\librawvid_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,386,560 | ---- | M] () -- F:\VLC\plugins\codec\libtheora_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,310,272 | ---- | M] () -- F:\VLC\plugins\lua\liblua_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,265,216 | ---- | M] () -- F:\VLC\plugins\codec\libflac_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,184,832 | ---- | M] () -- F:\VLC\plugins\codec\libpng_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,154,624 | ---- | M] () -- F:\VLC\plugins\codec\libspeex_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,051,200 | ---- | M] () -- F:\VLC\plugins\codec\libaraw_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,040,960 | ---- | M] () -- F:\VLC\plugins\codec\libcvdsub_plugin.dll
MOD - [2012-03-17 02:05:18 | 000,038,400 | ---- | M] () -- F:\VLC\plugins\codec\libcdg_plugin.dll
MOD - [2012-03-17 02:05:16 | 000,947,200 | ---- | M] () -- F:\VLC\plugins\codec\liblibass_plugin.dll
MOD - [2012-03-17 02:05:14 | 001,719,296 | ---- | M] () -- F:\VLC\plugins\codec\libvorbis_plugin.dll
MOD - [2012-03-17 02:05:14 | 001,318,912 | ---- | M] () -- F:\VLC\plugins\codec\libschroedinger_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,371,200 | ---- | M] () -- F:\VLC\plugins\codec\libfaad_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,258,560 | ---- | M] () -- F:\VLC\plugins\access\libdvdnav_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,238,080 | ---- | M] () -- F:\VLC\plugins\access\liblibbluray_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,219,648 | ---- | M] () -- F:\VLC\plugins\access\libdshow_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,093,696 | ---- | M] () -- F:\VLC\plugins\access\libaccess_bd_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,091,648 | ---- | M] () -- F:\VLC\plugins\access\libaccess_http_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,083,968 | ---- | M] () -- F:\VLC\plugins\access\libzip_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,047,616 | ---- | M] () -- F:\VLC\plugins\access\libaccess_vdr_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,043,008 | ---- | M] () -- F:\VLC\plugins\codec\liblpcm_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,043,008 | ---- | M] () -- F:\VLC\plugins\codec\libdts_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,042,496 | ---- | M] () -- F:\VLC\plugins\codec\libspudec_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,041,472 | ---- | M] () -- F:\VLC\plugins\codec\libmpeg_audio_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,038,912 | ---- | M] () -- F:\VLC\plugins\codec\libsvcdsub_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,037,376 | ---- | M] () -- F:\VLC\plugins\codec\librawvideo_plugin.dll
MOD - [2012-03-17 02:05:14 | 000,037,376 | ---- | M] () -- F:\VLC\plugins\codec\libaes3_plugin.dll
MOD - [2012-03-17 02:05:12 | 000,038,400 | ---- | M] () -- F:\VLC\plugins\access\libstream_filter_rar_plugin.dll
MOD - [2012-03-17 02:05:10 | 000,043,520 | ---- | M] () -- F:\VLC\plugins\access\libfilesystem_plugin.dll
MOD - [2012-03-17 02:05:08 | 001,304,576 | ---- | M] () -- F:\VLC\plugins\meta_engine\libtaglib_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,285,184 | ---- | M] () -- F:\VLC\plugins\services_discovery\libupnp_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,087,040 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_h264_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,085,504 | ---- | M] () -- F:\VLC\plugins\services_discovery\libsap_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,057,344 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_mpeg4audio_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,051,712 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_dirac_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,046,592 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_vc1_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,045,568 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_mpegvideo_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,044,032 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_flac_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,043,008 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_mpeg4video_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,042,496 | ---- | M] () -- F:\VLC\plugins\packetizer\libpacketizer_mlp_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,041,984 | ---- | M] () -- F:\VLC\plugins\services_discovery\libpodcast_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,038,400 | ---- | M] () -- F:\VLC\plugins\services_discovery\libmediadirs_plugin.dll
MOD - [2012-03-17 02:05:08 | 000,036,352 | ---- | M] () -- F:\VLC\plugins\services_discovery\libwindrive_plugin.dll
MOD - [2012-03-17 02:05:06 | 001,235,456 | ---- | M] () -- F:\VLC\plugins\misc\libxml_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,724,992 | ---- | M] () -- F:\VLC\plugins\stream_filter\libstream_filter_dash_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,440,832 | ---- | M] () -- F:\VLC\plugins\stream_filter\libstream_filter_httplive_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,070,144 | ---- | M] () -- F:\VLC\plugins\video_output\libdirectx_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,051,200 | ---- | M] () -- F:\VLC\plugins\control\libhotkeys_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,037,888 | ---- | M] () -- F:\VLC\plugins\control\libglobalhotkeys_plugin.dll
MOD - [2012-03-17 02:05:06 | 000,035,840 | ---- | M] () -- F:\VLC\plugins\stream_filter\libstream_filter_record_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,182,272 | ---- | M] () -- F:\VLC\plugins\audio_filter\libdtstofloat32_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,046,592 | ---- | M] () -- F:\VLC\plugins\audio_filter\libspeex_resampler_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,036,864 | ---- | M] () -- F:\VLC\plugins\audio_filter\libdtstospdif_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,036,864 | ---- | M] () -- F:\VLC\plugins\audio_filter\libconverter_fixed_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,035,328 | ---- | M] () -- F:\VLC\plugins\audio_filter\libugly_resampler_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,034,816 | ---- | M] () -- F:\VLC\plugins\audio_filter\liba52tospdif_plugin.dll
MOD - [2012-03-17 02:05:04 | 000,033,792 | ---- | M] () -- F:\VLC\plugins\audio_mixer\libfloat32_mixer_plugin.dll
MOD - [2012-03-17 02:05:02 | 002,285,056 | ---- | M] () -- F:\VLC\libvlccore.dll
MOD - [2012-03-17 02:05:02 | 001,518,080 | ---- | M] () -- F:\VLC\plugins\audio_filter\libsamplerate_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,135,168 | ---- | M] () -- F:\VLC\plugins\audio_filter\libmpgatofixed32_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,068,608 | ---- | M] () -- F:\VLC\plugins\audio_filter\liba52tofloat32_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,045,568 | ---- | M] () -- F:\VLC\plugins\audio_filter\libaudio_format_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,040,960 | ---- | M] () -- F:\VLC\plugins\audio_filter\libscaletempo_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,038,400 | ---- | M] () -- F:\VLC\plugins\audio_filter\libsimple_channel_mixer_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,036,352 | ---- | M] () -- F:\VLC\plugins\audio_filter\libtrivial_channel_mixer_plugin.dll
MOD - [2012-03-17 02:05:02 | 000,036,352 | ---- | M] () -- F:\VLC\plugins\audio_filter\libdolby_surround_decoder_plugin.dll
MOD - [2012-03-03 07:31:19 | 001,077,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\DWrite.dll
MOD - [2012-03-01 07:37:41 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wintrust.dll
MOD - [2012-02-15 02:32:48 | 000,094,208 | ---- | M] (Dropbox, Inc.) -- C:\Users\Administrator\AppData\Roaming\Dropbox\bin\DropboxExt.14.dll
MOD - [2012-01-23 23:32:26 | 001,197,568 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- F:\WapSter AQQ\libeay32.dll
MOD - [2012-01-23 23:32:26 | 000,303,104 | ---- | M] (The OpenSSL Project, http://www.openssl.org/) -- F:\WapSter AQQ\ssleay32.dll
MOD - [2012-01-08 15:41:12 | 000,093,696 | ---- | M] () -- F:\FileZilla FTP Client\fzshellext.dll
MOD - [2012-01-04 10:59:38 | 012,872,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shell32.dll
MOD - [2012-01-04 10:58:41 | 000,442,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntshrui.dll
MOD - [2011-12-30 07:29:14 | 000,499,712 | ---- | M] (Microsoft Corporation) -- C:\Users\Administrator\AppData\Roaming\Dropbox\bin\MSVCP71.dll
MOD - [2011-12-16 09:52:58 | 000,690,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcrt.dll
MOD - [2011-11-17 07:38:39 | 001,292,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdll.dll
MOD - [2011-11-17 07:34:52 | 000,224,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\schannel.dll
MOD - [2011-11-17 07:34:52 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\secur32.dll
MOD - [2011-11-17 07:28:48 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sspicli.dll
MOD - [2011-10-16 21:18:06 | 001,195,008 | ---- | M] (Krzysztof Grochocki (Beherit)) -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\FixUpdater.dll
MOD - [2011-08-27 06:26:27 | 000,571,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleaut32.dll
MOD - [2011-08-27 06:26:27 | 000,233,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oleacc.dll
MOD - [2011-07-16 06:24:22 | 001,114,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\kernel32.dll
MOD - [2011-07-16 06:24:22 | 000,272,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\KernelBase.dll
MOD - [2011-05-24 12:40:05 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\devobj.dll
MOD - [2011-05-24 12:39:38 | 000,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cfgmgr32.dll
MOD - [2011-04-04 15:29:31 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msls31.dll
MOD - [2011-03-11 07:33:59 | 001,137,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mfc42.dll
MOD - [2011-03-03 07:38:01 | 000,270,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dnsapi.dll
MOD - [2011-02-19 08:30:50 | 000,739,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d2d1.dll
MOD - [2011-01-17 07:47:13 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10_1.dll
MOD - [2010-11-20 14:21:39 | 000,040,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wtsapi32.dll
MOD - [2010-11-20 14:21:38 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ws2_32.dll
MOD - [2010-11-20 14:21:36 | 001,010,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WindowsCodecs.dll
MOD - [2010-11-20 14:21:36 | 000,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\Wldap32.dll
MOD - [2010-11-20 14:21:36 | 000,194,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winmm.dll
MOD - [2010-11-20 14:21:36 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wkscli.dll
MOD - [2010-11-20 14:21:33 | 000,626,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\usp10.dll
MOD - [2010-11-20 14:21:33 | 000,081,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\userenv.dll
MOD - [2010-11-20 14:21:27 | 000,380,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sxs.dll
MOD - [2010-11-20 14:21:26 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\srvcli.dll
MOD - [2010-11-20 14:21:19 | 000,350,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shlwapi.dll
MOD - [2010-11-20 14:21:15 | 000,179,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\shdocvw.dll
MOD - [2010-11-20 14:21:14 | 001,667,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\setupapi.dll
MOD - [2010-11-20 14:21:04 | 000,051,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samcli.dll
MOD - [2010-11-20 14:21:03 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\riched20.dll
MOD - [2010-11-20 14:21:03 | 000,046,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\RpcRtRemote.dll
MOD - [2010-11-20 14:21:03 | 000,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rtutils.dll
MOD - [2010-11-20 14:20:57 | 000,988,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\propsys.dll
MOD - [2010-11-20 14:20:49 | 001,414,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ole32.dll
MOD - [2010-11-20 14:20:49 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\olepro32.dll
MOD - [2010-11-20 14:20:48 | 000,573,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\odbc32.dll
MOD - [2010-11-20 14:20:30 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nlaapi.dll
MOD - [2010-11-20 14:20:29 | 000,022,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netutils.dll
MOD - [2010-11-20 14:20:28 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\netapi32.dll
MOD - [2010-11-20 14:19:56 | 001,390,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml6.dll
MOD - [2010-11-20 14:19:56 | 001,236,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msxml3.dll
MOD - [2010-11-20 14:19:56 | 000,232,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mswsock.dll
MOD - [2010-11-20 14:19:45 | 000,481,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mscms.dll
MOD - [2010-11-20 14:19:45 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msasn1.dll
MOD - [2010-11-20 14:19:39 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\MMDevAPI.dll
MOD - [2010-11-20 14:19:29 | 000,127,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\logoncli.dll
MOD - [2010-11-20 14:19:23 | 000,103,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\IPHLPAPI.DLL
MOD - [2010-11-20 14:19:03 | 000,216,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\FWPUCLNT.DLL
MOD - [2010-11-20 14:19:01 | 001,493,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ExplorerFrame.dll
MOD - [2010-11-20 14:18:36 | 000,508,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dxgi.dll
MOD - [2010-11-20 14:18:27 | 000,854,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dbghelp.dll
MOD - [2010-11-20 14:18:25 | 001,171,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10warp.dll
MOD - [2010-11-20 14:18:25 | 000,219,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10_1core.dll
MOD - [2010-11-20 14:18:25 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cscapi.dll
MOD - [2010-11-20 14:18:24 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\credssp.dll
MOD - [2010-11-20 14:18:23 | 000,530,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.17514_none_ec83dffa859149af\comctl32.dll
MOD - [2010-11-20 14:18:23 | 000,485,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\comdlg32.dll
MOD - [2010-11-20 14:18:05 | 000,195,584 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\AudioSes.dll
MOD - [2010-11-20 14:18:03 | 000,295,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\apphelp.dll
MOD - [2010-11-20 14:18:02 | 000,640,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\advapi32.dll
MOD - [2010-11-20 14:16:50 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winspool.drv
MOD - [2010-11-20 14:16:50 | 000,172,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wdmaud.drv
MOD - [2010-11-20 14:08:57 | 000,833,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\user32.dll
MOD - [2010-11-20 14:08:57 | 000,663,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rpcrt4.dll
MOD - [2010-11-20 14:08:51 | 000,311,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gdi32.dll
MOD - [2010-11-20 14:08:51 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\imm32.dll
MOD - [2010-11-20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-09-19 14:33:06 | 001,822,208 | ---- | M] (bartek-525) -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\ToDoList.dll
MOD - [2010-03-21 23:22:30 | 000,212,992 | ---- | M] () -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\AQQPajacykEx.dll
MOD - [2010-03-17 03:46:08 | 000,563,200 | ---- | M] () -- F:\Lightscreen\lightscreen.exe
MOD - [2010-02-16 19:09:36 | 000,936,448 | ---- | M] () -- F:\Lightscreen\QtCore4.dll
MOD - [2010-02-10 20:01:18 | 000,192,000 | ---- | M] () -- F:\Lightscreen\imageformats\qjpeg4.dll
MOD - [2010-02-10 16:43:38 | 003,844,096 | ---- | M] () -- F:\Lightscreen\QtGui4.dll
MOD - [2010-02-10 16:10:26 | 000,431,104 | ---- | M] () -- F:\Lightscreen\QtNetwork4.dll
MOD - [2009-12-25 23:34:02 | 000,961,024 | ---- | M] (Ethasoft) -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\SSynHi.dll
MOD - [2009-12-10 23:01:16 | 000,593,920 | ---- | M] (VOY) -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\Okrety.dll
MOD - [2009-08-20 16:22:38 | 000,197,632 | ---- | M] (Krzysztof Grochocki (Beherit)) -- C:\Users\Administrator\WapSter\AQQ Folder\Profiles\marek\Plugins\MimeTeX.dll
MOD - [2009-07-14 03:17:54 | 000,242,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rsaenh.dll
MOD - [2009-07-14 03:16:20 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wsock32.dll
MOD - [2009-07-14 03:16:20 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\wship6.dll
MOD - [2009-07-14 03:16:20 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\WSHTCPIP.DLL
MOD - [2009-07-14 03:16:19 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winrnr.dll
MOD - [2009-07-14 03:16:19 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\winnsi.dll
MOD - [2009-07-14 03:16:17 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\version.dll
MOD - [2009-07-14 03:16:15 | 000,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\slc.dll
MOD - [2009-07-14 03:16:14 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sfc_os.dll
MOD - [2009-07-14 03:16:13 | 000,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sechost.dll
MOD - [2009-07-14 03:16:13 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\samlib.dll
MOD - [2009-07-14 03:16:13 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\SensApi.dll
MOD - [2009-07-14 03:16:12 | 000,325,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasapi32.dll
MOD - [2009-07-14 03:16:12 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\powrprof.dll
MOD - [2009-07-14 03:16:12 | 000,103,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\oledlg.dll
MOD - [2009-07-14 03:16:12 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasman.dll
MOD - [2009-07-14 03:16:12 | 000,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\profapi.dll
MOD - [2009-07-14 03:16:12 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\rasadhlp.dll
MOD - [2009-07-14 03:16:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\psapi.dll
MOD - [2009-07-14 03:16:11 | 000,121,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntmarta.dll
MOD - [2009-07-14 03:16:11 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ntdsapi.dll
MOD - [2009-07-14 03:16:11 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\nsi.dll
MOD - [2009-07-14 03:16:02 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\NapiNSP.dll
MOD - [2009-07-14 03:15:50 | 000,406,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msvcp60.dll
MOD - [2009-07-14 03:15:44 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimtf.dll
MOD - [2009-07-14 03:15:44 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msimg32.dll
MOD - [2009-07-14 03:15:43 | 000,828,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msctf.dll
MOD - [2009-07-14 03:15:42 | 000,072,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.dll
MOD - [2009-07-14 03:15:41 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mpr.dll
MOD - [2009-07-14 03:15:40 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\mlang.dll
MOD - [2009-07-14 03:15:40 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\midimap.dll
MOD - [2009-07-14 03:15:36 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\linkinfo.dll
MOD - [2009-07-14 03:15:35 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\ksuser.dll
MOD - [2009-07-14 03:15:27 | 000,215,040 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\icm32.dll
MOD - [2009-07-14 03:15:22 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\gpapi.dll
MOD - [2009-07-14 03:15:21 | 000,462,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\FirewallAPI.dll
MOD - [2009-07-14 03:15:20 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\feclient.dll
MOD - [2009-07-14 03:15:14 | 000,189,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\EhStorShell.dll
MOD - [2009-07-14 03:15:13 | 000,717,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dui70.dll
MOD - [2009-07-14 03:15:13 | 000,453,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dsound.dll
MOD - [2009-07-14 03:15:13 | 000,181,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\duser.dll
MOD - [2009-07-14 03:15:13 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dwmapi.dll
MOD - [2009-07-14 03:15:11 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc.dll
MOD - [2009-07-14 03:15:11 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\dhcpcsvc6.dll
MOD - [2009-07-14 03:15:07 | 001,030,144 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10.dll
MOD - [2009-07-14 03:15:07 | 000,190,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\d3d10core.dll
MOD - [2009-07-14 03:15:07 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptsp.dll
MOD - [2009-07-14 03:15:07 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\cryptbase.dll
MOD - [2009-07-14 03:15:03 | 000,522,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\clbcatq.dll
MOD - [2009-07-14 03:14:58 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\avrt.dll
MOD - [2009-07-14 03:14:10 | 000,095,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msscript.ocx
MOD - [2009-07-14 03:14:08 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\msacm32.drv
MOD - [2009-07-14 03:11:24 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\uxtheme.dll
MOD - [2009-07-14 03:11:23 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\lpk.dll
MOD - [2009-07-14 03:10:22 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\sfc.dll
MOD - [2009-07-14 03:09:53 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\security.dll
MOD - [2009-07-14 03:09:14 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\odbcint.dll
MOD - [2009-07-14 03:09:00 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWOW64\normaliz.dll
MOD - [2009-06-22 20:42:42 | 000,043,008 | ---- | M] () -- F:\Lightscreen\libgcc_s_dw2-1.dll
MOD - [2009-01-10 12:32:40 | 000,011,362 | ---- | M] () -- F:\Lightscreen\mingwm10.dll
MOD - [2007-09-02 14:58:52 | 000,495,616 | ---- | M] () -- F:\RocketDock\RocketDock.exe
MOD - [2007-09-02 14:57:36 | 000,069,632 | ---- | M] () -- F:\RocketDock\RocketDock.dll
MOD - [2007-07-18 23:33:54 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Users\Administrator\AppData\Roaming\Dropbox\bin\MSVCR71.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV:[b]64bit:[/b] - [2012-05-23 04:02:36 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:[b]64bit:[/b] - [2012-03-26 18:49:56 | 000,291,696 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Security Client\NisSrv.exe -- (NisSrv)
SRV:[b]64bit:[/b] - [2012-03-26 18:49:56 | 000,012,600 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Microsoft Security Client\MsMpEng.exe -- (MsMpSvc)
SRV:[b]64bit:[/b] - [2011-09-27 21:04:08 | 000,359,192 | ---- | M] (Logitech, Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:53 | 000,014,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\sacsvr.dll -- (sacsvr)
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:52 | 000,025,600 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\FCRegSvc.dll -- (FCRegSvc)
SRV:[b]64bit:[/b] - [2009-07-14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV:[b]64bit:[/b] - [2009-07-14 03:39:31 | 000,091,648 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\rsopprov.exe -- (RSoPProv)
SRV - [2012-06-29 14:52:33 | 000,076,888 | ---- | M] () [Auto | Running] -- C:\Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012-06-27 12:29:24 | 002,369,960 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- F:\Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-06-07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Disabled | Stopped] -- F:\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-04-04 07:53:50 | 000,063,928 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012-03-19 13:38:47 | 002,666,880 | ---- | M] (TeamViewer GmbH) [Auto | Running] -- C:\Program Files (x86)\TeamViewer\Version7\TeamViewer_Service.exe -- (TeamViewer7)
SRV - [2011-09-10 11:43:18 | 000,018,432 | ---- | M] (Apache Software Foundation) [Auto | Running] -- C:\xampp\apache\bin\httpd.exe -- (Apache2.2)
SRV - [2011-09-09 19:46:10 | 008,158,720 | ---- | M] () [Auto | Running] -- C:\xampp\mysql\bin\mysqld.exe -- (mysql)
SRV - [2011-06-07 21:29:16 | 000,630,272 | ---- | M] (FileZilla Project) [Auto | Running] -- C:\xampp\FileZillaFTP\FileZillaServer.exe -- (FileZilla Server)
SRV - [2011-03-15 19:34:19 | 000,407,336 | ---- | M] (Valve Corporation) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2010-11-20 14:19:20 | 000,397,824 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\inetsrv\iisw3adm.dll -- (WAS)
SRV - [2010-11-20 14:18:03 | 000,061,440 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Windows\SysWOW64\inetsrv\apphostsvc.dll -- (AppHostSvc)
SRV - [2010-03-18 14:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-12-18 12:25:16 | 000,189,736 | ---- | M] (Seagate Technology LLC) [Disabled | Stopped] -- C:\Program Files (x86)\Seagate\SeagateManager\Sync\FreeAgentService.exe -- (FreeAgentGoNext Service)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2007-12-21 04:01:02 | 000,060,928 | ---- | M] () [On_Demand | Stopped] -- C:\xampp\service.exe -- (XAMPP)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV:[b]64bit:[/b] - [2012-06-29 18:43:52 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:[b]64bit:[/b] - [2012-06-05 16:03:52 | 000,147,288 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:[b]64bit:[/b] - [2012-05-23 05:15:36 | 010,248,704 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:[b]64bit:[/b] - [2012-05-23 03:08:40 | 000,367,616 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:[b]64bit:[/b] - [2012-03-20 20:44:12 | 000,098,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\NisDrvWFP.sys -- (NisDrv)
DRV:[b]64bit:[/b] - [2012-03-01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:[b]64bit:[/b] - [2011-12-02 06:17:41 | 000,120,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\storvsp.sys -- (storvsp)
DRV:[b]64bit:[/b] - [2011-09-02 08:30:46 | 000,042,776 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LUsbFilt.sys -- (LUsbFilt)
DRV:[b]64bit:[/b] - [2011-09-02 08:30:36 | 000,060,696 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LMouFilt.Sys -- (LMouFilt)
DRV:[b]64bit:[/b] - [2011-09-02 08:30:24 | 000,066,840 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\LHidFilt.Sys -- (LHidFilt)
DRV:[b]64bit:[/b] - [2011-03-11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-11-20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-20 11:57:17 | 000,181,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\Vid.sys -- (Vid)
DRV:[b]64bit:[/b] - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TFsExDisk.sys -- (TFsExDisk)
DRV:[b]64bit:[/b] - [2009-07-30 13:58:42 | 000,236,544 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:[b]64bit:[/b] - [2009-07-17 20:52:00 | 000,201,472 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtHDMIVX.sys -- (RTHDMIAzAudService)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:45 | 000,096,320 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Stopped] -- C:\Windows\SysNative\drivers\sacdrv.sys -- (sacdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:35:30 | 000,035,328 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\qd260x64.sys -- (ioatdma) Intel(R)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-03-18 17:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2010-11-20 10:42:43 | 000,115,712 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\mrxdav.sys -- (MRxDAV)
DRV - [2010-06-14 09:32:54 | 000,016,448 | ---- | M] (Teruten Inc) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\TFsExDisk.Sys -- (TFsExDisk)
DRV - [2009-07-14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE:[b]64bit:[/b] - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:[b]64bit:[/b] - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = res://iesetup.dll/HardAdmin.htm
IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Secondary_Page_URL =
IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://warofdragons.pl
IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC
IE - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - user.js - File not found

FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_2_202_235.dll ()
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.69: F:\Real Alternative\browser\plugins\nppl3260.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.69: F:\Real Alternative\browser\plugins\nprpjplug.dll File not found
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: F:\Adobe Reader\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll (Google Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Components: F:\Mozilla Firefox\components [2012-06-16 12:38:15 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 4.0\extensions\\Plugins: F:\Mozilla Firefox\plugins
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.9\extensions\\Components: F:\Mozilla Thunderbird\components [2011-12-26 10:30:16 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 3.1.9\extensions\\Plugins: F:\Mozilla Thunderbird\plugins

[2011-01-25 23:54:23 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Extensions
[2011-01-25 23:50:37 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6}
[2011-03-28 23:08:31 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\aca61u2j.default\extensions
[2011-03-28 23:08:31 | 000,000,000 | ---D | M] (Battlefield Heroes Updater) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\aca61u2j.default\extensions\battlefieldheroespatcher@ea.com
[2011-03-28 21:44:38 | 000,448,413 | ---- | M] () (No name found) -- C:\USERS\ADMINISTRATOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ACA61U2J.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI
[2011-03-20 22:14:39 | 000,612,183 | ---- | M] () (No name found) -- C:\USERS\ADMINISTRATOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ACA61U2J.DEFAULT\EXTENSIONS\{DDC359D1-844A-42A7-9AA1-88A850A938A8}.XPI
[2011-03-12 11:40:22 | 000,599,300 | ---- | M] () (No name found) -- C:\USERS\ADMINISTRATOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\ACA61U2J.DEFAULT\EXTENSIONS\TESTPILOT@LABS.MOZILLA.COM.XPI
File not found (No name found) -- F:\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
File not found (No name found) -- F:\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
File not found (No name found) -- F:\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}

[color=#E56717]========== Chrome ==========[/color]

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms},
CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Users\Administrator\AppData\Local\Google\Chrome\Application\20.0.1132.43\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Administrator\AppData\Local\Google\Chrome\Application\20.0.1132.43\pdf.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Administrator\AppData\Local\Google\Chrome\Application\20.0.1132.43\gcswf32.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_3_300_257.dll
CHR - plugin: Adobe Acrobat (Enabled) = F:\Adobe Reader\Reader\Browser\nppdf32.dll
CHR - plugin: Google Update (Enabled) = C:\Users\Administrator\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files (x86)\Microsoft Silverlight\4.1.10329.0\npctrl.dll
CHR - plugin: Java(TM) Platform SE 7 U4 (Enabled) = C:\Program Files (x86)\Oracle\JavaFX 2.1 Runtime\bin\plugin2\npjp2.dll
CHR - plugin: Java Deployment Toolkit 7.0.40.255 (Enabled) = C:\Windows\SysWOW64\npDeployJava1.dll
CHR - plugin: RealPlayer(tm) G2 LiveConnect-Enabled Plug-In (32-bit) (Enabled) = C:\Program Files (x86)\Real Alternative\browser\plugins\nppl3260.dll
CHR - plugin: RealPlayer Version Plugin (Enabled) = C:\Program Files (x86)\Real Alternative\browser\plugins\nprpjplug.dll
CHR - plugin: Unity Player (Enabled) = C:\Users\Administrator\AppData\LocalLow\Unity\WebPlayer\loader\npUnity3D32.dll
CHR - plugin: Shockwave for Director (Enabled) = C:\Windows\system32\Adobe\Director\np32dsw.dll
CHR - plugin: Windows Activation Technologies (Enabled) = C:\Windows\system32\Wat\npWatWeb.dll
CHR - plugin: VLC Web Plugin (Enabled) = F:\VLC\npvlc.dll
CHR - Extension: WOT = C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\bhmmomiinigofkjcapegjjndpbikblnp\1.2.14.6_0\
CHR - Extension: YouTube = C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Adblock Plus (Beta) = C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\cfhdojbkjhnklbpkdaibdccddilifddb\1.2_0\
CHR - Extension: Szukaj w Google = C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Gmail = C:\Users\Administrator\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2011-03-01 11:35:07 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O4:[b]64bit:[/b] - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.)
O4:[b]64bit:[/b] - HKLM..\Run: [itype] C:\Program Files\Microsoft IntelliType Pro\itype.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [MSC] C:\Program Files\Microsoft Security Client\msseces.exe (Microsoft Corporation)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500..\Run: [Clock Widget (HTC Home)] C:\Program Files (x86)\HTC Home\Clock.exe ()
O4 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500..\Run: [Lightscreen] F:\Lightscreen\lightscreen.exe ()
O4 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500..\Run: [RocketDock] F:\RocketDock\RocketDock.exe ()
O4 - Startup: C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk = C:\Users\Administrator\AppData\Roaming\Dropbox\bin\Dropbox.exe (Dropbox, Inc.)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: ShowSuperHidden = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: disablecad = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: VerboseStatus = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: LinkResolveIgnoreLinkInfo = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveSearch = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoResolveTrack = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoInternetOpenWith = 1
O7 - HKU\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoSMBalloonTip = 1
O13[b]64bit:[/b] - gopher Prefix: missing
O13 - gopher Prefix: missing
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 78.31.159.225
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F4F11991-FA10-4583-A4E5-EA3C00C525BD}: DhcpNameServer = 78.31.159.225
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{F4F11991-FA10-4583-A4E5-EA3C00C525BD}: NameServer = 8.26.56.26,156.154.70.22
O18:[b]64bit:[/b] - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~2\COMMON~1\Skype\SKYPE4~1.DLL (Skype Technologies)
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20:[b]64bit:[/b] - Winlogon\Notify\AutorunsDisabled: DllName - (Reg Error: Value error.) - Reg Error: Value error. File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O22:[b]64bit:[/b] - SharedTaskScheduler: {EC654325-1273-C2A9-2B7C-45D29BCE68FB} - Deskscapes - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\Shell - "" = AutoRun
O33 - MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\Shell\AutoRun\command - "" = H:\AutoRun.exe "0, AoE III PL, Microsoft"
O34 - HKLM BootExecute: (autocheck autochk *)
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

NetSvcs:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
NetSvcs:[b]64bit:[/b] sacsvr - C:\Windows\SysNative\sacsvr.dll (Microsoft Corporation)

MsConfig:64bit - State: "startup" - Reg Error: Key error.
MsConfig:64bit - State: "bootini" - Reg Error: Key error.

SafeBootMin:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] Base - Driver Group
SafeBootMin:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] Boot file system - Driver Group
SafeBootMin:[b]64bit:[/b] File system - Driver Group
SafeBootMin:[b]64bit:[/b] Filter - Driver Group
SafeBootMin:[b]64bit:[/b] HelpSvc - Service
SafeBootMin:[b]64bit:[/b] MsMpSvc - C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootMin:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootMin:[b]64bit:[/b] Primary disk - Driver Group
SafeBootMin:[b]64bit:[/b] sacsvr - C:\Windows\SysNative\sacsvr.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootMin:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootMin:[b]64bit:[/b] vmms - Service
SafeBootMin:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootMin:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vmms - Service
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

SafeBootNet:[b]64bit:[/b] AppMgmt - C:\Windows\SysNative\appmgmts.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Base - Driver Group
SafeBootNet:[b]64bit:[/b] Boot Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] Boot file system - Driver Group
SafeBootNet:[b]64bit:[/b] File system - Driver Group
SafeBootNet:[b]64bit:[/b] Filter - Driver Group
SafeBootNet:[b]64bit:[/b] HelpSvc - Service
SafeBootNet:[b]64bit:[/b] Messenger - Service
SafeBootNet:[b]64bit:[/b] MsMpSvc - C:\Program Files\Microsoft Security Client\MsMpEng.exe (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] NativeWifiP - Service
SafeBootNet:[b]64bit:[/b] NDIS Wrapper - Driver Group
SafeBootNet:[b]64bit:[/b] NetBIOSGroup - Driver Group
SafeBootNet:[b]64bit:[/b] NetDDEGroup - Driver Group
SafeBootNet:[b]64bit:[/b] Network - Driver Group
SafeBootNet:[b]64bit:[/b] NetworkProvider - Driver Group
SafeBootNet:[b]64bit:[/b] PCI Configuration - Driver Group
SafeBootNet:[b]64bit:[/b] PNP Filter - Driver Group
SafeBootNet:[b]64bit:[/b] PNP_TDI - Driver Group
SafeBootNet:[b]64bit:[/b] Primary disk - Driver Group
SafeBootNet:[b]64bit:[/b] rdsessmgr - Service
SafeBootNet:[b]64bit:[/b] sacsvr - C:\Windows\SysNative\sacsvr.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] SCSI Class - Driver Group
SafeBootNet:[b]64bit:[/b] Streams Drivers - Driver Group
SafeBootNet:[b]64bit:[/b] System Bus Extender - Driver Group
SafeBootNet:[b]64bit:[/b] TDI - Driver Group
SafeBootNet:[b]64bit:[/b] vmms - Service
SafeBootNet:[b]64bit:[/b] WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation)
SafeBootNet:[b]64bit:[/b] Wlansvc - Service
SafeBootNet:[b]64bit:[/b] WudfUsbccidDriver - Driver
SafeBootNet:[b]64bit:[/b] {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet:[b]64bit:[/b] {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet:[b]64bit:[/b] {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet:[b]64bit:[/b] {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet:[b]64bit:[/b] {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet:[b]64bit:[/b] {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet:[b]64bit:[/b] {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet:[b]64bit:[/b] {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet:[b]64bit:[/b] {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet:[b]64bit:[/b] {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet:[b]64bit:[/b] {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet:[b]64bit:[/b] {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet:[b]64bit:[/b] {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet:[b]64bit:[/b] {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet:[b]64bit:[/b] {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet:[b]64bit:[/b] {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet:[b]64bit:[/b] {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet:[b]64bit:[/b] {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet:[b]64bit:[/b] {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet:[b]64bit:[/b] {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet:[b]64bit:[/b] {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet:[b]64bit:[/b] {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - F:\Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: HelpSvc - Service
SafeBootNet: Messenger - Service
SafeBootNet: NativeWifiP - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vmms - Service
SafeBootNet: Wlansvc - Service
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2012-06-29 21:25:39 | 000,000,000 | ---D | C] -- C:\ProgramData\VS
[2012-06-29 21:23:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight
[2012-06-29 21:22:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight
[2012-06-29 21:22:29 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2012-06-29 19:03:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\NE Beta
[2012-06-29 19:01:23 | 000,000,000 | ---D | C] -- C:\ProgramData\Age of Empires 3
[2012-06-29 18:48:07 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Games
[2012-06-29 18:43:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\DAEMON Tools Lite
[2012-06-29 18:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LogMeIn Hamachi
[2012-06-29 14:10:26 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Security Client
[2012-06-29 14:10:24 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Security Client
[2012-06-29 00:12:28 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Apache Friends
[2012-06-29 00:10:38 | 000,000,000 | ---D | C] -- C:\xampp
[2012-06-28 22:47:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Oracle VM VirtualBox
[2012-06-28 22:28:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\TeamViewer
[2012-06-27 20:25:26 | 000,419,488 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012-06-27 20:25:26 | 000,070,304 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-06-27 20:19:07 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Macromedia
[2012-06-27 20:19:00 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\Macromed
[2012-06-27 20:17:38 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Adobe
[2012-06-27 20:03:28 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Notepad++
[2012-06-27 20:02:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2012-06-27 20:02:42 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2012-06-27 19:56:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services
[2012-06-27 19:56:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition
[2012-06-27 19:56:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Synchronization Services
[2012-06-27 19:56:18 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SQL Server Compact Edition
[2012-06-27 19:54:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Visual Studio 2010 Express
[2012-06-27 19:52:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Visual Studio 10.0
[2012-06-27 19:52:25 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Merge Modules
[2012-06-27 19:51:44 | 000,000,000 | ---D | C] -- C:\Windows\symbols
[2012-06-27 19:51:44 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 10.0
[2012-06-27 19:51:43 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft SDKs
[2012-06-27 19:51:43 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Help Viewer
[2012-06-27 19:30:33 | 002,565,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\esent.dll
[2012-06-27 19:30:33 | 001,699,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\esent.dll
[2012-06-27 19:30:33 | 000,189,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storport.sys
[2012-06-27 19:30:33 | 000,107,904 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdsata.sys
[2012-06-27 19:30:33 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\fsutil.exe
[2012-06-27 19:30:33 | 000,074,240 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\fsutil.exe
[2012-06-27 19:30:33 | 000,027,008 | ---- | C] (Advanced Micro Devices) -- C:\Windows\SysNative\drivers\amdxata.sys
[2012-06-27 19:30:30 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2012-06-27 19:30:30 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
[2012-06-27 19:26:45 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\log
[2012-06-27 18:04:15 | 000,096,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012-06-27 18:04:15 | 000,073,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012-06-27 18:04:14 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012-06-27 18:04:14 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012-06-27 18:04:14 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012-06-27 18:04:14 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012-06-27 18:04:13 | 000,173,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012-06-27 18:04:13 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012-06-27 18:04:12 | 002,311,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012-06-27 18:04:12 | 001,494,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012-06-27 18:04:12 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012-06-27 18:04:12 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012-06-27 18:04:11 | 000,818,688 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012-06-27 17:50:53 | 000,220,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wintrust.dll
[2012-06-27 17:50:53 | 000,081,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\imagehlp.dll
[2012-06-27 17:50:53 | 000,023,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\fs_rec.sys
[2012-06-27 17:37:18 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Defraggler
[2012-06-27 17:37:17 | 000,000,000 | ---D | C] -- C:\Program Files\Defraggler
[2012-06-27 17:24:56 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\DfsRes.dll
[2012-06-27 17:24:56 | 000,082,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DfsRes.dll
[2012-06-27 17:24:42 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2012-06-27 17:24:42 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2012-06-27 17:24:42 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2012-06-27 17:24:42 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2012-06-27 17:24:42 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2012-06-27 17:24:42 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2012-06-27 17:24:42 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2012-06-27 17:24:42 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2012-06-27 17:24:42 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2012-06-27 17:24:42 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2012-06-27 17:24:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2012-06-27 17:24:42 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2012-06-27 17:24:41 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2012-06-27 17:24:41 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2012-06-27 17:24:41 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2012-06-27 17:24:41 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2012-06-27 17:24:41 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2012-06-27 17:24:41 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2012-06-27 17:24:41 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2012-06-27 17:24:41 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2012-06-27 17:24:41 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2012-06-27 17:24:41 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2012-06-27 17:24:39 | 001,572,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\quartz.dll
[2012-06-27 17:24:39 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\quartz.dll
[2012-06-27 17:24:37 | 000,509,952 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntshrui.dll
[2012-06-27 17:24:31 | 003,216,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msi.dll
[2012-06-27 17:24:28 | 001,395,712 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42.dll
[2012-06-27 17:24:28 | 001,359,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mfc42u.dll
[2012-06-27 17:24:28 | 001,164,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42u.dll
[2012-06-27 17:24:28 | 001,137,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc42.dll
[2012-06-27 17:24:28 | 000,142,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\poqexec.exe
[2012-06-27 17:24:28 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\poqexec.exe
[2012-06-27 17:24:27 | 001,544,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\DWrite.dll
[2012-06-27 17:24:26 | 000,642,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.efi
[2012-06-27 17:24:26 | 000,605,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winload.exe
[2012-06-27 17:24:26 | 000,566,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.efi
[2012-06-27 17:24:26 | 000,518,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winresume.exe
[2012-06-27 17:24:26 | 000,367,616 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysNative\atmfd.dll
[2012-06-27 17:24:26 | 000,294,912 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\atmfd.dll
[2012-06-27 17:24:26 | 000,046,080 | ---- | C] (Adobe Systems) -- C:\Windows\SysNative\atmlib.dll
[2012-06-27 17:24:26 | 000,034,304 | ---- | C] (Adobe Systems) -- C:\Windows\SysWow64\atmlib.dll
[2012-06-27 17:24:26 | 000,020,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdusb.dll
[2012-06-27 17:24:26 | 000,019,328 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kd1394.dll
[2012-06-27 17:24:26 | 000,017,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kdcom.dll
[2012-06-27 17:24:25 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2012-06-27 17:24:25 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2012-06-27 17:24:25 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2012-06-27 17:24:25 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2012-06-27 17:24:25 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2012-06-27 17:24:25 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2012-06-27 17:24:25 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2012-06-27 17:24:25 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2012-06-27 17:24:25 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2012-06-27 17:24:24 | 000,252,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\drvinst.exe
[2012-06-27 17:24:24 | 000,044,544 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\devrtl.dll
[2012-06-27 17:24:23 | 000,515,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\timedate.cpl
[2012-06-27 17:24:23 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\timedate.cpl
[2012-06-27 17:24:23 | 000,024,064 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sisbkup.dll
[2012-06-27 17:24:23 | 000,019,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\sisbkup.dll
[2012-06-27 17:24:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\prevhost.exe
[2012-06-27 17:24:22 | 000,031,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\prevhost.exe
[2012-06-27 17:24:21 | 000,634,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\msvcrt.dll
[2012-06-27 17:24:21 | 000,476,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsGdiConverter.dll
[2012-06-27 17:24:21 | 000,288,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsGdiConverter.dll
[2012-06-27 17:24:20 | 005,559,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2012-06-27 17:24:20 | 001,465,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\XpsPrint.dll
[2012-06-27 17:24:20 | 000,870,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\XpsPrint.dll
[2012-06-27 17:24:19 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2012-06-27 17:24:19 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2012-06-27 17:24:18 | 000,120,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\storvsp.sys
[2012-06-27 17:24:01 | 000,043,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\csrsrv.dll
[2012-06-27 17:21:03 | 001,731,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntdll.dll
[2012-06-27 17:21:02 | 001,447,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\lsasrv.dll
[2012-06-27 17:21:02 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\webio.dll
[2012-06-27 17:21:01 | 000,395,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\webio.dll
[2012-06-27 17:21:01 | 000,136,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspicli.dll
[2012-06-27 17:21:01 | 000,029,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\sspisrv.dll
[2012-06-27 17:21:01 | 000,028,160 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\secur32.dll
[2012-06-27 17:20:59 | 000,861,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleaut32.dll
[2012-06-27 17:20:59 | 000,331,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\oleacc.dll
[2012-06-27 17:20:58 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\packager.dll
[2012-06-27 17:20:58 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\packager.dll
[2012-06-27 17:20:56 | 000,199,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\xmllite.dll
[2012-06-27 17:19:41 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\qdvd.dll
[2012-06-27 17:19:41 | 000,366,592 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\qdvd.dll
[2012-06-27 17:19:37 | 000,357,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnsapi.dll
[2012-06-27 17:19:37 | 000,030,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\dnscacheugc.exe
[2012-06-27 17:19:37 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\dnscacheugc.exe
[2012-06-27 17:19:28 | 002,871,808 | ---- | C] (Microsoft Corporation) -- C:\Windows\explorer.exe
[2012-06-27 17:19:28 | 002,616,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\explorer.exe
[2012-06-27 17:19:27 | 000,625,152 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\colorui.dll
[2012-06-27 17:19:27 | 000,606,208 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\colorui.dll
[2012-06-27 17:19:19 | 001,031,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcore.dll
[2012-06-27 17:19:19 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\rdpcore.dll
[2012-06-27 17:19:16 | 001,462,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\crypt32.dll
[2012-06-27 17:19:16 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\cryptnet.dll
[2012-06-27 17:18:52 | 000,149,504 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpcorekmts.dll
[2012-06-27 17:18:52 | 000,077,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdpwsx.dll
[2012-06-27 17:18:52 | 000,009,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\rdrmemptylst.exe
[2012-06-27 17:18:17 | 000,027,520 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\Diskdump.sys
[2012-06-27 17:14:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HTC Home
[2012-06-27 17:14:05 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\HTC Home
[2012-06-27 17:13:48 | 002,622,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012-06-27 17:13:48 | 000,057,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012-06-27 17:13:48 | 000,044,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012-06-27 17:13:43 | 000,701,976 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012-06-27 17:13:43 | 000,099,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012-06-27 17:13:43 | 000,038,424 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012-06-27 17:13:39 | 000,186,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012-06-27 17:13:39 | 000,036,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012-06-27 17:00:00 | 000,000,000 | ---D | C] -- C:\Users\Administrator\.gimp-2.8
[2012-06-27 16:44:25 | 000,000,000 | ---D | C] -- C:\ProgramData\CPA_VA
[2012-06-27 16:41:22 | 000,000,000 | ---D | C] -- C:\Users\Public\Documents\COMODO
[2012-06-27 16:38:57 | 001,060,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2012-06-27 16:38:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Comodo Downloader
[2012-06-27 15:58:22 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup
[2012-06-27 15:58:22 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance
[2012-06-27 15:58:22 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools
[2012-06-27 15:58:22 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows 7 USB DVD Download Tool
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WapSter
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Ventrilo
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\theHunter
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Notepad++
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Mount&Blade Warband
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Lightscreen
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Jagged Alliance 2
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HTC Home
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Google Chrome
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Flux
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Dropbox
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\CCleaner
[2012-06-27 15:58:22 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AMD
[2012-06-27 15:49:54 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\LibreOffice 3.5
[2012-06-27 15:49:53 | 000,000,000 | ---D | C] -- C:\Windows\ShellNew
[2012-06-27 15:47:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ISO to USB
[2012-06-27 15:07:05 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Logishrd
[2012-06-27 15:06:36 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech
[2012-06-27 14:36:39 | 000,000,000 | -H-D | C] -- C:\Users\Administrator\Desktop\Xpadder_v5.6
[2012-06-27 14:36:34 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop\screeny
[2012-06-27 14:36:31 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop\Pobrane - Firefox
[2012-06-27 14:36:31 | 000,000,000 | -H-D | C] -- C:\Users\Administrator\Desktop\gry
[2012-06-27 14:36:30 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop\FTP for wybrani
[2012-06-27 14:36:07 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop\FTP for all
[2012-06-27 14:33:40 | 000,000,000 | ---D | C] -- C:\Users\Administrator\jagexcache
[2012-06-27 14:31:37 | 000,000,000 | -H-D | C] -- C:\Users\Administrator\firefox_profil
[2012-06-27 14:31:14 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Visual Studio 2010
[2012-06-27 14:31:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\TrackMania
[2012-06-27 14:31:00 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\OCCT
[2012-06-27 14:30:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Mount&Blade Warband Savegames
[2012-06-27 14:30:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Mount&Blade Warband
[2012-06-27 14:30:49 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Mount&Blade Savegames
[2012-06-27 14:30:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\EA Games
[2012-06-27 14:30:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Command and Conquer Generals Data
[2012-06-27 14:30:46 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\BioWare
[2012-06-27 14:30:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Battlefield Play4Free
[2012-06-27 14:30:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\ArmA 2
[2012-06-27 14:29:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Xfire
[2012-06-27 14:29:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\wargaming.net
[2012-06-27 14:29:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\uTorrent
[2012-06-27 14:29:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Unity
[2012-06-27 14:29:20 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Tremulous
[2012-06-27 14:28:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\six-zsync
[2012-06-27 14:28:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\six-updater
[2012-06-27 14:28:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\runic games
[2012-06-27 14:28:18 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\PowerUp Software
[2012-06-27 14:28:18 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Origin
[2012-06-27 14:28:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Notepad++
[2012-06-27 14:28:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Mount&Blade Warband
[2012-06-27 14:28:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Mount&Blade
[2012-06-27 14:28:08 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\minecraft
[2012-06-27 14:28:04 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\LolClient
[2012-06-27 14:28:02 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\LibreOffice
[2012-06-27 14:28:02 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\GetRightToGo
[2012-06-27 14:28:02 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\GameRanger
[2012-06-27 14:27:59 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\FreeAudioPack
[2012-06-27 14:27:55 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Dropbox
[2012-06-27 14:27:55 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Download Manager
[2012-06-27 14:27:55 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\COMODO
[2012-06-27 14:27:54 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\ArcaVirMicroScan
[2012-06-27 14:27:53 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\ArcaBit
[2012-06-27 14:27:26 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Unity
[2012-06-27 14:27:25 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Turbine
[2012-06-27 14:27:25 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\theHunter
[2012-06-27 14:27:25 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\The Lord of the Rings Online
[2012-06-27 14:27:24 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\SmallBasic
[2012-06-27 14:27:24 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\SIX_Projects
[2012-06-27 14:27:24 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\SCE
[2012-06-27 14:27:24 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Risen
[2012-06-27 14:27:13 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\OCCT
[2012-06-27 14:27:13 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Oblivion
[2012-06-27 14:26:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Lucasarts
[2012-06-27 14:26:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\LogMeIn Hamachi
[2012-06-27 14:26:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\JA2_v1.13_Mod_Team
[2012-06-27 14:26:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\http___www.julien-manici
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Google
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\gegl-0.2
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\gegl-0.1
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Freemake
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\fontconfig
[2012-06-27 14:26:27 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ESN Sonar
[2012-06-27 14:26:26 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Electronic_Arts_Inc
[2012-06-27 14:26:26 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\EA Games
[2012-06-27 14:26:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ChomikBox
[2012-06-27 14:26:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ATI
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ArmA 2 OA DEMO
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ArmA 2 OA
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ArmA 2 Free
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Apps
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\ApplicationHistory
[2012-06-27 14:26:19 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\AMD
[2012-06-27 14:26:00 | 000,000,000 | ---D | C] -- C:\microsoft_programy
[2012-06-05 16:03:52 | 000,147,288 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys
[2012-06-05 16:02:22 | 000,320,856 | ---- | C] (Oracle Corporation) -- C:\Windows\SysNative\VBoxNetFltNobj.dll
[2012-05-23 05:15:36 | 010,248,704 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012-05-23 05:11:56 | 024,826,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012-05-23 04:43:24 | 020,467,200 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012-05-23 04:08:42 | 000,163,840 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012-05-23 04:08:34 | 000,924,160 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2012-05-23 04:03:26 | 000,442,368 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2012-05-23 04:01:18 | 000,120,320 | ---- | C] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012-05-23 04:01:04 | 000,021,504 | ---- | C] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012-05-23 04:00:58 | 000,059,392 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012-05-23 04:00:54 | 000,043,520 | ---- | C] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012-05-23 04:00:12 | 006,301,184 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2012-05-23 03:56:24 | 000,070,144 | ---- | C] (AMD) -- C:\Windows\SysNative\coinst_8.98.dll
[2012-05-23 03:31:04 | 004,246,528 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012-05-23 03:28:20 | 005,480,448 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2012-05-23 03:26:44 | 000,051,200 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012-05-23 03:26:42 | 000,046,080 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012-05-23 03:26:38 | 000,044,544 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012-05-23 03:26:36 | 000,044,032 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012-05-23 03:26:24 | 015,703,040 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012-05-23 03:23:34 | 004,729,344 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2012-05-23 03:22:10 | 013,277,696 | ---- | C] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012-05-23 03:19:28 | 006,605,312 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012-05-23 03:09:14 | 000,368,640 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012-05-23 03:09:02 | 000,017,920 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012-05-23 03:08:58 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012-05-23 03:08:58 | 000,014,848 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012-05-23 03:08:54 | 000,041,984 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012-05-23 03:08:48 | 000,033,280 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012-05-23 03:08:40 | 000,367,616 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012-05-23 03:07:42 | 000,042,496 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2012-05-23 03:07:36 | 000,045,056 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2012-05-23 03:07:28 | 000,032,768 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2012-05-23 03:06:54 | 000,053,248 | ---- | C] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2012-05-23 03:05:22 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012-05-23 03:05:22 | 000,056,320 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012-05-23 03:05:18 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012-05-23 03:05:18 | 000,056,832 | ---- | C] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[3 C:\Users\Administrator\AppData\Local\*.tmp files -> C:\Users\Administrator\AppData\Local\*.tmp -> ]
[2 C:\Users\Administrator\Documents\*.tmp files -> C:\Users\Administrator\Documents\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2012-07-06 15:27:21 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-07-06 15:27:21 | 000,017,296 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-07-06 15:24:04 | 001,699,032 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2012-07-06 15:24:04 | 000,748,654 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2012-07-06 15:24:04 | 000,661,984 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2012-07-06 15:24:04 | 000,163,064 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2012-07-06 15:24:04 | 000,127,118 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2012-07-06 15:18:42 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2012-07-05 22:23:45 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.xtr
[2012-07-05 22:23:45 | 000,282,296 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2012-07-05 22:23:25 | 000,215,128 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrB.ex0
[2012-07-03 16:48:58 | 000,024,321 | ---- | M] () -- C:\Users\Administrator\AppData\Local\recently-used.xbel
[2012-06-29 21:30:22 | 000,001,274 | ---- | M] () -- C:\Users\Administrator\Desktop\Zapora systemu.lnk
[2012-06-29 18:43:52 | 000,283,200 | ---- | M] (DT Soft Ltd) -- C:\Windows\SysNative\drivers\dtsoftbus01.sys
[2012-06-29 18:43:49 | 000,000,653 | ---- | M] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012-06-29 14:52:33 | 000,076,888 | ---- | M] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2012-06-29 14:10:39 | 000,001,945 | ---- | M] () -- C:\Windows\epplauncher.mif
[2012-06-29 14:10:29 | 001,718,126 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2012-06-29 13:58:21 | 001,474,832 | ---- | M] () -- C:\Windows\SysNative\drivers\sfi.dat
[2012-06-29 12:25:43 | 002,434,856 | ---- | M] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2012-06-28 23:05:42 | 000,001,168 | ---- | M] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012-06-28 22:47:39 | 000,000,612 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk
[2012-06-28 21:47:25 | 000,001,074 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3696311653-3475584151-1222543006-500UA.job
[2012-06-28 21:47:25 | 000,001,022 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3696311653-3475584151-1222543006-500Core.job
[2012-06-28 16:47:07 | 000,000,000 | ---- | M] () -- C:\Windows\SysNative\CoreTempStartup.xml
[2012-06-28 16:44:15 | 000,002,221 | ---- | M] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-06-28 14:41:03 | 000,001,115 | ---- | M] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-06-28 13:05:23 | 000,018,960 | ---- | M] (Logitech, Inc.) -- C:\Windows\SysNative\drivers\LNonPnP.sys
[2012-06-27 20:25:26 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerApp.exe
[2012-06-27 20:25:26 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-06-27 19:24:55 | 000,309,640 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2012-06-27 17:37:18 | 000,001,730 | ---- | M] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2012-06-27 16:38:57 | 001,060,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mfc71.dll
[2012-06-25 21:51:12 | 000,001,994 | -H-- | M] () -- C:\Users\Administrator\Documents\Default.rdp
[2012-06-21 20:46:04 | 000,007,609 | ---- | M] () -- C:\Users\Administrator\AppData\Local\resmon.resmoncfg
[2012-06-05 16:03:52 | 000,147,288 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys
[2012-06-05 16:02:22 | 000,320,856 | ---- | M] (Oracle Corporation) -- C:\Windows\SysNative\VBoxNetFltNobj.dll
[2012-06-04 22:42:12 | 000,001,015 | ---- | M] () -- C:\Users\Administrator\Desktop\Dropbox.lnk
[2012-06-04 22:38:44 | 000,001,025 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012-06-03 15:00:16 | 000,006,656 | ---- | M] () -- C:\Users\Administrator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-06-03 12:29:36 | 000,000,856 | ---- | M] () -- C:\Users\Administrator\Desktop\Xfire.lnk
[2012-06-03 00:19:46 | 000,038,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups.dll
[2012-06-03 00:19:42 | 000,057,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuauclt.exe
[2012-06-03 00:19:42 | 000,044,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wups2.dll
[2012-06-03 00:19:23 | 000,701,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapi.dll
[2012-06-03 00:15:31 | 002,622,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wucltux.dll
[2012-06-03 00:15:08 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wudriver.dll
[2012-06-02 15:19:42 | 000,186,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuwebv.dll
[2012-06-02 15:15:12 | 000,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wuapp.exe
[2012-05-27 22:10:22 | 000,002,526 | ---- | M] () -- C:\Users\Administrator\Desktop\Windows 7 USB DVD Download Tool.lnk
[2012-05-25 22:17:40 | 000,001,223 | ---- | M] () -- C:\Users\Administrator\Desktop\Twardziel.lnk
[2012-05-23 05:15:36 | 010,248,704 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmdag.sys
[2012-05-23 05:11:56 | 024,826,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atio6axx.dll
[2012-05-23 04:43:24 | 020,467,200 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atioglxx.dll
[2012-05-23 04:09:44 | 000,263,840 | ---- | M] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012-05-23 04:09:44 | 000,263,840 | ---- | M] () -- C:\Windows\SysNative\atiapfxx.blb
[2012-05-23 04:08:42 | 000,163,840 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiapfxx.exe
[2012-05-23 04:08:34 | 000,924,160 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\aticfx32.dll
[2012-05-23 04:06:46 | 001,090,560 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\aticfx64.dll
[2012-05-23 04:03:26 | 000,442,368 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\ATIDEMGX.dll
[2012-05-23 04:03:22 | 000,532,992 | ---- | M] (AMD) -- C:\Windows\SysNative\atieclxx.exe
[2012-05-23 04:02:36 | 000,239,616 | ---- | M] (AMD) -- C:\Windows\SysNative\atiesrxx.exe
[2012-05-23 04:01:18 | 000,120,320 | ---- | M] (AMD) -- C:\Windows\SysNative\atitmm64.dll
[2012-05-23 04:01:04 | 000,021,504 | ---- | M] (AMD) -- C:\Windows\SysNative\atimuixx.dll
[2012-05-23 04:00:58 | 000,059,392 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysNative\atiedu64.dll
[2012-05-23 04:00:54 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\Windows\SysWow64\ati2edxx.dll
[2012-05-23 04:00:12 | 006,301,184 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atidxx32.dll
[2012-05-23 03:56:24 | 000,070,144 | ---- | M] (AMD) -- C:\Windows\SysNative\coinst_8.98.dll
[2012-05-23 03:44:48 | 006,914,560 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atidxx64.dll
[2012-05-23 03:31:04 | 004,246,528 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd6a.dll
[2012-05-23 03:29:36 | 002,936,864 | ---- | M] () -- C:\Windows\SysNative\atiumd6a.cap
[2012-05-23 03:29:36 | 000,204,952 | ---- | M] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-05-23 03:29:36 | 000,204,952 | ---- | M] () -- C:\Windows\SysNative\ativvsvl.dat
[2012-05-23 03:29:36 | 000,157,144 | ---- | M] () -- C:\Windows\SysWow64\ativvsva.dat
[2012-05-23 03:29:36 | 000,157,144 | ---- | M] () -- C:\Windows\SysNative\ativvsva.dat
[2012-05-23 03:28:20 | 005,480,448 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdag.dll
[2012-05-23 03:26:44 | 000,051,200 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalrt64.dll
[2012-05-23 03:26:42 | 000,046,080 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalrt.dll
[2012-05-23 03:26:38 | 000,044,544 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticalcl64.dll
[2012-05-23 03:26:36 | 000,044,032 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticalcl.dll
[2012-05-23 03:26:24 | 015,703,040 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysNative\aticaldd64.dll
[2012-05-23 03:23:34 | 004,729,344 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiumdva.dll
[2012-05-23 03:22:10 | 013,277,696 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Windows\SysWow64\aticaldd.dll
[2012-05-23 03:22:06 | 002,971,136 | ---- | M] () -- C:\Windows\SysWow64\atiumdva.cap
[2012-05-23 03:19:28 | 006,605,312 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiumd64.dll
[2012-05-23 03:09:24 | 000,539,136 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\atiadlxx.dll
[2012-05-23 03:09:14 | 000,368,640 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysWow64\atiadlxy.dll
[2012-05-23 03:09:02 | 000,017,920 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6pxx.dll
[2012-05-23 03:08:58 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiglpxx.dll
[2012-05-23 03:08:58 | 000,014,848 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiglpxx.dll
[2012-05-23 03:08:54 | 000,041,984 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atig6txx.dll
[2012-05-23 03:08:48 | 000,033,280 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atigktxx.dll
[2012-05-23 03:08:40 | 000,367,616 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\atikmpag.sys
[2012-05-23 03:07:48 | 000,054,784 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiuxp64.dll
[2012-05-23 03:07:42 | 000,042,496 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiuxpag.dll
[2012-05-23 03:07:36 | 000,045,056 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atiu9p64.dll
[2012-05-23 03:07:28 | 000,032,768 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atiu9pag.dll
[2012-05-23 03:06:54 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Windows\SysNative\drivers\ati2erec.dll
[2012-05-23 03:05:22 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\atimpc64.dll
[2012-05-23 03:05:22 | 000,056,320 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysNative\amdpcom64.dll
[2012-05-23 03:05:18 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\atimpc32.dll
[2012-05-23 03:05:18 | 000,056,832 | ---- | M] (Advanced Micro Devices, Inc. ) -- C:\Windows\SysWow64\amdpcom32.dll
[2012-05-18 04:06:48 | 002,311,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2012-05-18 03:58:39 | 001,494,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\inetcpl.cpl
[2012-05-18 03:58:15 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2012-05-18 03:55:22 | 000,173,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieUnatt.exe
[2012-05-18 03:55:06 | 000,818,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2012-05-18 03:51:49 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2012-05-18 03:47:42 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2012-05-18 00:35:39 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\inetcpl.cpl
[2012-05-18 00:33:08 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2012-05-18 00:29:45 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieUnatt.exe
[2012-05-18 00:29:30 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2012-05-18 00:25:17 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2012-05-18 00:20:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2012-05-13 10:38:01 | 002,456,780 | ---- | M] () -- C:\Users\Administrator\Documents\AutoRuns.arn
[2012-05-10 10:27:52 | 000,011,914 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\TheHunterSettings_live.bin
[2012-05-10 10:26:08 | 000,000,048 | ---- | M] () -- C:\Users\Administrator\AppData\Roaming\TheHunterSettings_live.cfg
[3 C:\Users\Administrator\AppData\Local\*.tmp files -> C:\Users\Administrator\AppData\Local\*.tmp -> ]
[2 C:\Users\Administrator\Documents\*.tmp files -> C:\Users\Administrator\Documents\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-07-03 16:48:58 | 000,024,321 | ---- | C] () -- C:\Users\Administrator\AppData\Local\recently-used.xbel
[2012-06-29 21:30:22 | 000,001,274 | ---- | C] () -- C:\Users\Administrator\Desktop\Zapora systemu.lnk
[2012-06-29 18:43:49 | 000,000,653 | ---- | C] () -- C:\Users\Public\Desktop\DAEMON Tools Lite.lnk
[2012-06-29 14:10:39 | 000,001,945 | ---- | C] () -- C:\Windows\epplauncher.mif
[2012-06-29 14:10:33 | 000,001,921 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Security Essentials.lnk
[2012-06-29 12:25:43 | 002,434,856 | ---- | C] () -- C:\Windows\SysWow64\pbsvc_bc2.exe
[2012-06-28 23:05:42 | 000,001,180 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\TeamViewer 7.lnk
[2012-06-28 23:05:42 | 000,001,168 | ---- | C] () -- C:\Users\Public\Desktop\TeamViewer 7.lnk
[2012-06-28 22:47:39 | 000,000,612 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Oracle VM VirtualBox.lnk
[2012-06-28 16:47:07 | 000,000,000 | ---- | C] () -- C:\Windows\SysNative\CoreTempStartup.xml
[2012-06-28 16:44:15 | 000,002,221 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\Google Chrome.lnk
[2012-06-28 16:43:36 | 000,001,074 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3696311653-3475584151-1222543006-500UA.job
[2012-06-28 16:43:35 | 000,001,022 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3696311653-3475584151-1222543006-500Core.job
[2012-06-28 14:41:03 | 000,001,115 | ---- | C] () -- C:\Users\Public\Desktop\Malwarebytes Anti-Malware.lnk
[2012-06-27 20:17:40 | 000,002,441 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk
[2012-06-27 17:37:18 | 000,001,730 | ---- | C] () -- C:\Users\Public\Desktop\Defraggler.lnk
[2012-06-27 16:53:59 | 000,000,644 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GIMP 2.lnk
[2012-06-27 15:58:22 | 000,001,025 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Dropbox.lnk
[2012-06-27 14:36:45 | 000,003,053 | ---- | C] () -- C:\Users\Administrator\Desktop\System Monitor.lnk
[2012-06-27 14:36:45 | 000,002,526 | ---- | C] () -- C:\Users\Administrator\Desktop\Windows 7 USB DVD Download Tool.lnk
[2012-06-27 14:36:45 | 000,002,477 | ---- | C] () -- C:\Users\Administrator\Desktop\Camtasia Recorder.lnk
[2012-06-27 14:36:45 | 000,001,780 | ---- | C] () -- C:\Users\Administrator\Desktop\Keybinder.lnk
[2012-06-27 14:36:45 | 000,001,442 | ---- | C] () -- C:\Users\Administrator\Desktop\Lazarus.lnk
[2012-06-27 14:36:45 | 000,001,401 | ---- | C] () -- C:\Users\Administrator\Desktop\Keybinder SAMP.lnk
[2012-06-27 14:36:45 | 000,001,310 | ---- | C] () -- C:\Users\Administrator\Desktop\C++.lnk
[2012-06-27 14:36:45 | 000,001,284 | ---- | C] () -- C:\Users\Administrator\Desktop\Serwer Minecraft.lnk
[2012-06-27 14:36:45 | 000,001,243 | ---- | C] () -- C:\Users\Administrator\Desktop\cstrike_polish.lnk
[2012-06-27 14:36:45 | 000,001,223 | ---- | C] () -- C:\Users\Administrator\Desktop\Twardziel.lnk
[2012-06-27 14:36:45 | 000,001,114 | ---- | C] () -- C:\Users\Administrator\Desktop\minecraft.lnk
[2012-06-27 14:36:45 | 000,001,078 | ---- | C] () -- C:\Users\Administrator\Desktop\AoE 3.lnk
[2012-06-27 14:36:45 | 000,001,051 | ---- | C] () -- C:\Users\Administrator\Desktop\cspromod.lnk
[2012-06-27 14:36:45 | 000,001,015 | ---- | C] () -- C:\Users\Administrator\Desktop\Dropbox.lnk
[2012-06-27 14:36:45 | 000,000,998 | ---- | C] () -- C:\Users\Administrator\Desktop\XAMPP.lnk
[2012-06-27 14:36:45 | 000,000,870 | ---- | C] () -- C:\Users\Administrator\Desktop\Core Temp.lnk
[2012-06-27 14:36:45 | 000,000,856 | ---- | C] () -- C:\Users\Administrator\Desktop\Xfire.lnk
[2012-06-27 14:36:45 | 000,000,819 | ---- | C] () -- C:\Users\Administrator\Desktop\Jakieś tam.lnk
[2012-06-27 14:36:45 | 000,000,799 | ---- | C] () -- C:\Users\Administrator\Desktop\htdocs.lnk
[2012-06-27 14:36:45 | 000,000,787 | ---- | C] () -- C:\Users\Administrator\Desktop\M$P.lnk
[2012-06-27 14:36:45 | 000,000,762 | ---- | C] () -- C:\Users\Administrator\Desktop\windows_xp.lnk
[2012-06-27 14:36:45 | 000,000,732 | ---- | C] () -- C:\Users\Administrator\Desktop\Skrzyżowania.lnk
[2012-06-27 14:36:45 | 000,000,676 | ---- | C] () -- C:\Users\Administrator\Desktop\JDownloader.lnk
[2012-06-27 14:36:45 | 000,000,620 | ---- | C] () -- C:\Users\Administrator\Desktop\Xpadder.lnk
[2012-06-27 14:36:45 | 000,000,596 | ---- | C] () -- C:\Users\Administrator\Desktop\Testy B 2011.lnk
[2012-06-27 14:36:45 | 000,000,570 | ---- | C] () -- C:\Users\Administrator\Desktop\VirtualBox.lnk
[2012-06-27 14:36:45 | 000,000,528 | ---- | C] () -- C:\Users\Administrator\Desktop\Ventrilo.lnk
[2012-06-27 14:30:48 | 003,557,829 | ---- | C] () -- C:\Users\Administrator\Documents\kosmos_marek.themepack
[2012-06-27 14:30:47 | 000,001,994 | -H-- | C] () -- C:\Users\Administrator\Documents\Default.rdp
[2012-06-27 14:30:04 | 002,456,780 | ---- | C] () -- C:\Users\Administrator\Documents\AutoRuns.arn
[2012-06-27 14:29:05 | 000,011,914 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\TheHunterSettings_live.bin
[2012-06-27 14:29:05 | 000,000,048 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\TheHunterSettings_live.cfg
[2012-06-27 14:28:05 | 000,000,357 | ---- | C] () -- C:\Users\Administrator\Application Data\Microsoft\Internet Explorer\Quick Launch\ChomikBox.lnk
[2012-06-27 14:26:27 | 000,000,101 | ---- | C] () -- C:\Users\Administrator\AppData\Local\fusioncache.dat
[2012-05-23 04:09:44 | 000,263,840 | ---- | C] () -- C:\Windows\SysWow64\atiapfxx.blb
[2012-05-23 04:09:44 | 000,263,840 | ---- | C] () -- C:\Windows\SysNative\atiapfxx.blb
[2012-05-23 03:29:36 | 002,936,864 | ---- | C] () -- C:\Windows\SysNative\atiumd6a.cap
[2012-05-23 03:29:36 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012-05-23 03:29:36 | 000,204,952 | ---- | C] () -- C:\Windows\SysNative\ativvsvl.dat
[2012-05-23 03:29:36 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012-05-23 03:29:36 | 000,157,144 | ---- | C] () -- C:\Windows\SysNative\ativvsva.dat
[2012-05-23 03:22:06 | 002,971,136 | ---- | C] () -- C:\Windows\SysWow64\atiumdva.cap
[2011-09-13 00:06:16 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2011-04-15 15:05:48 | 000,000,080 | RHS- | C] () -- C:\Windows\SysWow64\D20B65C22F.dll
[2011-04-15 10:45:33 | 000,001,024 | ---- | C] () -- C:\Windows\SysWow64\Image2PDF.dat
[2011-03-17 21:42:42 | 000,000,248 | ---- | C] () -- C:\Windows\{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}_WiseFW.ini
[2011-03-15 22:34:05 | 000,065,536 | ---- | C] () -- C:\Windows\IFinst27.exe
[2011-03-08 23:27:35 | 000,000,101 | ---- | C] () -- C:\Users\Administrator\.gtk-bookmarks
[2011-03-01 17:50:20 | 000,282,296 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrB.exe
[2011-03-01 17:50:19 | 000,669,184 | ---- | C] () -- C:\Windows\SysWow64\pbsvc.exe
[2011-03-01 17:50:19 | 000,076,888 | ---- | C] () -- C:\Windows\SysWow64\PnkBstrA.exe
[2011-02-22 21:36:16 | 000,007,609 | ---- | C] () -- C:\Users\Administrator\AppData\Local\resmon.resmoncfg
[2011-02-14 21:46:07 | 000,005,024 | ---- | C] () -- C:\Windows\SysWow64\FilterData.dat
[2011-02-10 18:44:34 | 000,000,000 | ---- | C] () -- C:\Windows\synteza_DDE_klient.INI
[2011-01-31 00:11:03 | 000,006,656 | ---- | C] () -- C:\Users\Administrator\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-01-31 00:03:12 | 001,718,126 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011-01-25 23:19:16 | 000,000,000 | ---- | C] () -- C:\Windows\nsreg.dat
[2011-01-25 22:53:59 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2011-01-25 22:27:04 | 000,000,486 | RHS- | C] () -- C:\Users\Administrator\ntuser.pol
[2011-01-25 22:26:36 | 000,000,590 | RHS- | C] () -- C:\ProgramData\ntuser.pol
[2011-01-25 22:24:21 | 000,000,010 | ---- | C] () -- C:\Windows\GSetup.ini

[color=#E56717]========== LOP Check ==========[/color]

[2012-06-27 14:27:52 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\.minecraft
[2012-06-27 14:27:53 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\ArcaBit
[2012-06-27 14:27:54 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\ArcaVirMicroScan
[2012-06-27 14:27:55 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Ashampoo
[2012-06-29 21:31:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\DAEMON Tools Lite
[2012-07-06 15:20:12 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Dropbox
[2011-02-25 17:55:26 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\EurekaLog
[2012-06-27 15:31:12 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\FileZilla
[2012-06-27 14:27:59 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\FreeAudioPack
[2011-02-23 19:17:03 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Gadu-Gadu 10
[2012-06-27 14:28:02 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\GameRanger
[2012-06-27 14:28:02 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\GetRightToGo
[2011-03-28 17:30:59 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\ITTerritory
[2011-01-25 23:12:30 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\JAM Software
[2011-01-25 23:13:32 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Leadertech
[2012-06-27 14:28:02 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\LibreOffice
[2012-06-27 14:28:04 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\LolClient
[2012-06-27 14:28:15 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\minecraft
[2011-04-11 16:55:55 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\ML
[2012-06-27 14:28:15 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mount&Blade
[2012-06-27 14:28:15 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Mount&Blade Warband
[2011-02-20 12:04:25 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\muvee Technologies
[2012-06-27 20:03:27 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Notepad++
[2011-03-09 17:20:15 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Noth2
[2011-01-25 23:35:22 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\OpenOffice.org
[2011-03-15 18:30:59 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Opera
[2012-06-27 14:28:18 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Origin
[2012-06-27 14:28:18 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\PowerUp Software
[2012-06-27 14:28:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\runic games
[2012-06-27 14:28:56 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\six-updater
[2012-06-27 14:28:56 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\six-zsync
[2011-02-27 20:32:49 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\SQLite Administrator
[2011-03-06 11:40:28 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\SystemRequirementsLab
[2012-06-28 22:28:54 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\TeamViewer
[2011-01-25 23:55:19 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Thunderbird
[2011-04-17 19:19:51 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Tibia
[2012-06-27 14:29:21 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Tremulous
[2012-06-27 14:29:23 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\TS3Client
[2012-06-27 14:29:23 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\Unity
[2012-06-27 14:29:23 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\uTorrent
[2012-06-27 14:29:23 | 000,000,000 | ---D | M] -- C:\Users\Administrator\AppData\Roaming\wargaming.net
[2011-03-22 15:56:05 | 000,032,612 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2010-05-27 21:38:08 | 000,000,630 | ---- | M] () -- C:\Add_Show_Hide_Hidden_Files_Option.reg
[2010-11-20 14:40:07 | 000,383,786 | RHS- | M] () -- C:\bootmgr
[2011-01-26 06:52:57 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK
[2010-05-30 16:48:06 | 000,000,446 | ---- | M] () -- C:\Show_Hidden_Files_On_Off.vbs

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2009-07-14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\drivers\AGP440.sys
[2009-07-14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\SysNative\DriverStore\FileRepository\machine.inf_amd64_neutral_a2f120466549d68b\AGP440.sys
[2009-07-14 03:52:21 | 000,061,008 | ---- | M] (Microsoft Corporation) MD5=608C14DBA7299D8CB6ED035A68A15799 -- C:\Windows\winsxs\amd64_machine.inf_31bf3856ad364e35_6.1.7601.17514_none_1838f2aad55063bb\AGP440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2009-07-14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\drivers\atapi.sys
[2009-07-14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\SysNative\DriverStore\FileRepository\mshdc.inf_amd64_neutral_aad30bdeec04ea5e\atapi.sys
[2009-07-14 03:52:21 | 000,024,128 | ---- | M] (Microsoft Corporation) MD5=02062C0B390B7729EDC9E69C680A6F3C -- C:\Windows\winsxs\amd64_mshdc.inf_31bf3856ad364e35_6.1.7601.17514_none_3b5e2d89382958dd\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2009-07-14 02:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\SysNative\drivers\beep.sys
[2009-07-14 02:00:13 | 000,006,656 | ---- | M] (Microsoft Corporation) MD5=16A47CE2DECC9B099349A5F840654746 -- C:\Windows\winsxs\amd64_microsoft-windows-beepsys_31bf3856ad364e35_6.1.7600.16385_none_201592fa214e4f02\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2010-11-20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\drivers\cdrom.sys
[2010-11-20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\SysNative\DriverStore\FileRepository\cdrom.inf_amd64_neutral_0b3d0d1942ab684b\cdrom.sys
[2010-11-20 11:19:21 | 000,147,456 | ---- | M] (Microsoft Corporation) MD5=F036CE71586E93D94DAB220D7BDF4416 -- C:\Windows\winsxs\amd64_cdrom.inf_31bf3856ad364e35_6.1.7601.17514_none_bdcf6151ba66f48b\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2009-12-20 00:00:00 | 000,037,520 | ---- | M] (perl.org) MD5=2852D57385C4709EAAE2F9DB01AD3672 -- C:\xampp\perl\site\lib\auto\Win32\EventLog\EventLog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2010-11-20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\SysNative\drivers\ndis.sys
[2010-11-20 15:33:45 | 000,951,680 | ---- | M] (Microsoft Corporation) MD5=79B47FD40D9A817E932F9D26FAC0A81C -- C:\Windows\winsxs\amd64_microsoft-windows-ndis_31bf3856ad364e35_6.1.7601.17514_none_05ed313632ae9759\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2012-04-04 15:56:38 | 000,199,240 | ---- | M] () MD5=097D0E812D7A9A3101CE46CB2BE0474D -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\Chameleon\winlogon.exe
[2010-11-20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\SysNative\winlogon.exe
[2010-11-20 15:25:30 | 000,390,656 | ---- | M] (Microsoft Corporation) MD5=1151B1BAA6F350B1DB6598E0FEA7C457 -- C:\Windows\winsxs\amd64_microsoft-windows-winlogon_31bf3856ad364e35_6.1.7601.17514_none_cde90685eb910636\winlogon.exe

< End of report >

[/log]

[log]
OTL Extras logfile created on: 2012-07-06 16:54:33 - Run 1
OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Administrator\Desktop\Pobrane - Firefox
64bit- Server Standard Edition (full installation) Service Pack 1 (Version = 6.1.7601) - Type = NTServer
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

4,00 Gb Total Physical Memory | 2,42 Gb Available Physical Memory | 60,53% Memory free
7,99 Gb Paging File | 6,23 Gb Available in Paging File | 77,94% Paging File free
Paging file location(s): f:\pagefile.sys 0 0 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 40,00 Gb Total Space | 12,30 Gb Free Space | 30,75% Space Free | Partition Type: NTFS
Drive D: | 150,00 Gb Total Space | 87,15 Gb Free Space | 58,10% Space Free | Partition Type: NTFS
Drive E: | 220,00 Gb Total Space | 78,73 Gb Free Space | 35,79% Space Free | Partition Type: NTFS
Drive F: | 55,76 Gb Total Space | 49,31 Gb Free Space | 88,44% Space Free | Partition Type: NTFS

Computer Name: MAREK | User Name: marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_USERS\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- F:\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "F:\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [openNew] -- explorer %1 (Microsoft Corporation)
Directory [PlayWithVLC] -- "F:\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "F:\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [openNew] -- explorer %1 (Microsoft Corporation)
Directory [PlayWithVLC] -- "F:\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Directory [runas] -- cmd.exe /c takeown /f "%1" /r /d y && icacls "%1" /grant administrators:F /t (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
"DisableUnicastResponsesToMulticastBroadcast" = 0

[color=#E56717]========== Authorized Applications List ==========[/color]


[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0119FEFF-4D2F-4816-AA9F-162E7936D3C7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{05C1271A-E0B6-433F-8B06-9B9CD63BB9B2}" = lport=137 | protocol=17 | dir=in | app=system |
"{076C91D6-84C0-4075-9DA3-9305D61660E2}" = rport=138 | protocol=17 | dir=out | app=system |
"{077E4277-9806-48A0-A980-C6063B110A29}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0CF00FD0-7B4F-49FC-9995-5DFDDF0F10A6}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{0DBDD038-F9D1-4F15-AEB7-060BC4838705}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{150705F2-66B2-4AA4-8012-B16E1FE01A26}" = lport=139 | protocol=6 | dir=in | app=system |
"{181ADA15-94C8-4592-B1A1-BA6E8947B564}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{1DC52A06-ACD6-4EAE-B8EE-64336819BC02}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{21BE4FA6-A9F1-451D-B977-ED5A84CB01B7}" = rport=137 | protocol=17 | dir=out | app=system |
"{238277E3-E346-41B5-AC2E-C46C05895E85}" = rport=139 | protocol=6 | dir=out | app=system |
"{24E387B1-8A9B-411F-8396-0021AC11D83E}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{270EBF43-FAD1-4068-9AFC-0DDE0E8636D0}" = rport=445 | protocol=6 | dir=out | app=system |
"{2D399B83-9D4D-426A-8218-E4350AF79591}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{2E47E3E5-74A4-4BFC-BF29-9AB31889DB7C}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{2FC4F966-62EA-449E-AE9A-9942B3E51AB7}" = rport=5357 | protocol=6 | dir=out | app=system |
"{49D258FF-6324-4190-812E-AFA7C6F5AF2E}" = lport=139 | protocol=6 | dir=in | app=system |
"{4A8CE7D3-CE22-435D-A2FA-7F5EF3689523}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{4D3B3EDC-538E-4141-9D57-DA8A15ECBC06}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{525E62BF-DDAE-41E2-B281-FA8F0D0F325F}" = lport=445 | protocol=6 | dir=in | app=system |
"{53C43832-792A-4B6E-952D-56524D197D01}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{5D42AA02-04D3-4004-9AF5-147F611049B3}" = lport=137 | protocol=17 | dir=in | app=system |
"{5D62E3DD-B95F-461D-98AD-64A0FF0E5982}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe |
"{65B1EA37-30D9-40D1-A47D-05E02700B719}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{76E514A4-6BB6-4195-991D-F72C1C73D5A2}" = rport=137 | protocol=17 | dir=out | app=system |
"{79ACEDE8-ACAC-4D8F-8B40-A18F4B4CB9F6}" = rport=5358 | protocol=6 | dir=out | app=system |
"{7C2E88DC-8432-4505-8443-105385026FE4}" = lport=137 | protocol=17 | dir=in | app=system |
"{7F0DCA6A-D155-460F-8F43-C6989B6EEC77}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{8652C9FD-2021-4E6F-AC63-26450D07D1ED}" = lport=138 | protocol=17 | dir=in | app=system |
"{89080A7C-D643-4FBB-AF38-3BDFF2063E73}" = rport=138 | protocol=17 | dir=out | app=system |
"{8F5F1CF2-CDF2-4BEC-87B1-F053E06A4EED}" = rport=137 | protocol=17 | dir=out | app=system |
"{90F5672C-9A1B-48A6-ACBE-08308848C64D}" = lport=138 | protocol=17 | dir=in | app=system |
"{94E927E6-FBE0-45C5-8A3F-BE171F2542B9}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{98297E50-16BF-4398-B2A0-C29408371788}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{9DF09B29-AF34-47BA-A06D-3E2027B37D22}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{A38341C5-D73D-417B-B621-B2218309B129}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{A5260C66-3620-4273-A584-F4A987A77255}" = lport=445 | protocol=6 | dir=in | app=system |
"{A5EE3ED5-4DF7-4054-978F-B930FB331C08}" = rport=5358 | protocol=6 | dir=out | app=system |
"{A6F8CE95-CE01-40A1-94BB-4ACB036ACE1F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{AE9E78D7-F7E8-435D-99A8-1962BB3EEFD0}" = lport=5358 | protocol=6 | dir=in | app=system |
"{B0FBA973-3923-4C74-A3FC-6C4F0A56B90A}" = rport=137 | protocol=17 | dir=out | app=system |
"{B1099781-EA8D-4970-9DD9-DC0B3E7331AA}" = rport=139 | protocol=6 | dir=out | app=system |
"{B186E0B2-7AE6-4C6C-93D6-5798291289EE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{B7FF8BC4-B436-4194-A4FB-8A4365BBC422}" = lport=5357 | protocol=6 | dir=in | app=system |
"{BF28512A-89D4-4C37-89E3-7FE34952FEEE}" = rport=138 | protocol=17 | dir=out | app=system |
"{C28BE89C-2BBF-40DF-B19C-953426213853}" = lport=5358 | protocol=6 | dir=in | app=system |
"{C5E49285-59A4-4FD3-9E65-837DC586F24C}" = lport=138 | protocol=17 | dir=in | app=system |
"{C7806BBD-4B57-4FB4-B5C5-8378695CDED3}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{C93DB76E-5A2F-45A7-B9B1-496DCCD30903}" = rport=5357 | protocol=6 | dir=out | app=system |
"{CD61DC4E-28BC-44CC-830F-EA81BA2ED697}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{CE321816-D115-4C11-AA19-94DE3B372E77}" = lport=5357 | protocol=6 | dir=in | app=system |
"{DC4CC1FD-6EB5-4BE6-94FF-A26F560F5F0B}" = lport=138 | protocol=17 | dir=in | app=system |
"{F2A16FBF-DCE3-432B-80D7-680AD0688391}" = rport=138 | protocol=17 | dir=out | app=system |
"{F3235343-FBB0-4D75-96A0-DAB5FD631E00}" = lport=2869 | protocol=6 | dir=in | app=system |
"{F8C38F37-A60A-4431-BD45-CE20025906C8}" = rport=445 | protocol=6 | dir=out | app=system |
"{FAB8F76F-CA6D-4985-A7A5-B350A9470032}" = lport=137 | protocol=17 | dir=in | app=system |
"{FCAAF976-1C1A-4879-B5BC-4A29923E5CF0}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe |
"{FE650281-436A-4904-967B-404FF0BB3B17}" = lport=2869 | protocol=6 | dir=in | app=system |

[color=#E56717]========== Vista Active Application Exception List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{07AC2C64-AB4C-4662-8951-20642D445991}" = protocol=17 | dir=in | app=d:\age of empires 3\age3x.exe |
"{0B3388F9-CD6C-4AC5-B2BC-CE2D99502B44}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{17AE9C64-AA74-49F3-A0D2-4B295F200599}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{2268C476-9BDA-4653-9DF3-6D30286AFE62}" = protocol=6 | dir=in | app=d:\age of empires 3\age3y.exe |
"{2F079EFA-A59A-4C04-865E-75CE8EE1B365}" = protocol=6 | dir=in | app=d:\steam\steamapps\klerzak\condition zero\hl.exe |
"{34FE9747-5B31-40E2-8CA2-D5AC08C3D98D}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{38404B75-679B-47A7-9898-49D93D4B5035}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{3BA4E81E-389E-4229-9E2A-459118AB03EC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5266D5BE-B313-4693-A45F-472A7C8CEB9C}" = protocol=6 | dir=in | app=d:\steam\steam.exe |
"{54F0D5A0-DBB5-457D-8D3B-79B83965FCFA}" = protocol=6 | dir=in | app=f:\ventrilo\ventrilo.exe |
"{594EB351-3945-4408-9C4F-65417DB031A0}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{5BC091DB-1954-4260-BA68-AB9B83CD1577}" = protocol=17 | dir=in | app=d:\steam\steamapps\klerzak\counter-strike\hl.exe |
"{5BC3A7BC-E40C-4A7C-8B9F-5C0BA5E39E51}" = protocol=17 | dir=in | app=d:\steam\steamapps\klerzak\condition zero\hl.exe |
"{5D0341C5-DEF7-4F31-A35B-76061DE4EF13}" = protocol=6 | dir=in | app=d:\age of empires 3\age3x.exe |
"{6274EEB3-8681-432C-8735-3CB89DAEA74E}" = protocol=17 | dir=in | app=f:\ventrilo\ventrilo.exe |
"{67482D90-184C-4E8F-A2BA-4588EE7B41AE}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{692F5D9A-F69E-442E-87A2-D966BFE2D5BF}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{6DE854AB-4D84-45DA-B800-F461EF038DDC}" = dir=in | app=%systemdrive%\xampp\filezillaftp\filezillaserver.exe |
"{734A57F7-4991-4896-AAD6-C07B47679EFF}" = protocol=6 | dir=out | app=system |
"{74925664-8584-4AF3-AFF4-8CE1C6AD31E3}" = dir=in | app=f:\skype\phone\skype.exe |
"{830142BB-C2B9-407A-A314-169DB19FDEEB}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{9D05685E-9368-4FCA-B5F5-0280B8664415}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe |
"{A47CDA30-B252-4A2C-99CD-002556636ED8}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{A862020D-E155-46A9-9878-BCAF6F23AAD5}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe |
"{AE2EA711-3074-4831-8B56-FE2800EE5D9E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{AE7922AE-4EAE-431A-8BF6-0D22252322A0}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{B0952D13-9C0A-422E-AD96-84E09CFBEC1B}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{BA5B3493-640B-46E7-92B5-F989B172B3F6}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe |
"{BA683268-832A-46DF-9E2A-B5E21711EF35}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{BA9ECCBF-79AA-4FA5-BC19-CFA8E8D14801}" = protocol=6 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"{BDAE8933-78BE-4971-85B6-F694978FE084}" = protocol=17 | dir=in | app=%systemdrive%\xampp\xampp-control-3-beta.exe |
"{BEEEE5C3-154C-458A-A763-2B7DB27A7C9A}" = protocol=17 | dir=in | app=d:\age of empires 3\age3y.exe |
"{BF9A7FA3-8B16-479C-87F8-1DC3F6550B03}" = protocol=17 | dir=in | app=d:\steam\steam.exe |
"{CA51EC3E-7600-428E-90C4-6BEF3F5BF36A}" = protocol=6 | dir=in | app=d:\steam\steamapps\klerzak\counter-strike\hl.exe |
"{D20DB042-DD66-4C7E-BD0E-E642208582DA}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe |
"{E852FDF5-4EDA-462C-945C-22DF09673D9C}" = protocol=6 | dir=in | app=d:\steam\steamapps\klerzak\counter-strike\hl.exe |
"{ECE4735A-3800-487E-A69A-5A618F152B3E}" = protocol=17 | dir=in | app=d:\steam\steamapps\klerzak\counter-strike\hl.exe |
"{F2D5D1B7-EF08-4EDA-B914-C2DDADFB9121}" = protocol=6 | dir=out | app=system |
"{F7F3D7A2-397D-4B90-9AAF-61A6A1D7FA5D}" = protocol=17 | dir=in | app=d:\battlefield bad company 2\bfbc2updater.exe |
"TCP Query User{24F6D19B-D67A-436A-B79E-CA075E3F2E92}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe |
"TCP Query User{7AED445B-8C29-45B1-9BDB-8E81C82295ED}D:\battlefield bad company 2\bfbc2game.exe" = protocol=6 | dir=in | app=d:\battlefield bad company 2\bfbc2game.exe |
"TCP Query User{F24182F5-0472-45E9-92C4-2FB80EA98A69}F:\wapster aqq\aqq.exe" = protocol=6 | dir=in | app=f:\wapster aqq\aqq.exe |
"UDP Query User{12495170-6A7E-46E2-B8EB-2068A419F9D8}F:\wapster aqq\aqq.exe" = protocol=17 | dir=in | app=f:\wapster aqq\aqq.exe |
"UDP Query User{420B9927-4278-4D3D-A651-20A5EB98C07A}D:\battlefield bad company 2\bfbc2game.exe" = protocol=17 | dir=in | app=d:\battlefield bad company 2\bfbc2game.exe |
"UDP Query User{98AD11C0-531A-400A-B768-BA6656F62AB1}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe |

[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{1C7C8AAF-A16D-32E8-89E5-F6D165DE0BCE}" = Microsoft Visual C++ 2010 x64 Runtime - 10.0.40219
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022
"{4EE61784-10C6-4B7C-A0B2-5BED17B05741}" = Oracle VM VirtualBox 4.1.18
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{98C8DF59-BE5F-4EC2-9B12-FD2A54928EDB}" = Microsoft IntelliType Pro 8.0
"{9D046B26-7978-47CD-91E6-AC3C1DFBC3D0}" = Microsoft Security Client
"{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{BCA26999-EC22-3007-BB79-638913079C9A}" = Microsoft Visual Studio 2010 Express Prerequisites x64 - ENU
"{C3600AE6-93A0-3DB7-B7AA-45BD58F133B5}" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"{D4AD39AD-091E-4D33-BB2B-59F6FCB8ADC3}" = Microsoft SQL Server Compact 3.5 SP2 x64 ENU
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319
"{E5748D30-7E6D-3A8E-BFE6-C1D02C6DDABB}" = Microsoft Help Viewer 1.1
"{EEB3F6BB-318D-4CE5-989F-8191FCBFB578}" = Ventrilo Client for Windows x64
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"CCleaner" = CCleaner
"Defraggler" = Defraggler
"GIMP-2_is1" = GIMP 2.8.0
"Lazarus_is1" = Lazarus 0.9.30
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft Help Viewer 1.1" = Microsoft Help Viewer 1.1
"Microsoft Security Client" = Microsoft Security Essentials
"Microsoft Visual Studio 2010 Tools for Office Runtime (x64)" = Microsoft Visual Studio 2010 Tools for Office Runtime (x64)
"sp6" = Logitech SetPoint 6.32
"TeamSpeak 3 Client" = TeamSpeak 3 Client

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0E8E4718-0702-4D33-B007-5E95849BAB3C}" = LibreOffice 3.5
"{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319
"{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"{2F8B731A-5F2D-3EA8-8B25-C3E5E43F4BDB}" = Microsoft Visual C++ Compilers 2010 Standard - enu - x86
"{3A9FC03D-C685-4831-94CF-4EDFD3749497}" = Microsoft SQL Server Compact 3.5 SP2 ENU
"{3AC8457C-0385-4BEA-A959-E095F05D6D67}" = Battlefield: Bad Company™ 2
"{3EE9BCAE-E9A9-45E5-9B1C-83A4D357E05C}" = eReg
"{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"{46F8CF66-AB83-38A7-99B2-A5BE507EE472}" = Microsoft Visual C++ 2010 Express - ENU
"{5449FB4F-1802-4D5B-A6D8-087DB1142147}" = Realtek HDMI Audio Driver for ATI
"{5AB7D739-1735-3A9E-BE73-C43507CB4E6F}" = Microsoft Visual Studio 2010 Service Pack 1
"{5D9ED403-94DE-3BA0-B1D6-71F4BDA412E6}" = Microsoft Visual C++ 2010 x86 Runtime - 10.0.40219
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{78E9A751-5616-233F-1249-16AC5758C646}" = muvee Reveal Seagate Edition
"{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"{7FB413C8-3CAD-49F7-A67C-6EFEB4B04050}" = LogMeIn Hamachi
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"{95120000-00B9-0409-0000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A589DA26-51BD-475D-8C32-E19E34145842}" = Camtasia Studio 6
"{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Polish
"{B7E38540-E355-3503-AFD7-635B2F2F76E1}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4974
"{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"{CFEF48A8-BFB8-3EAC-8BA5-DE4F8AA267CE}" = Microsoft .NET Framework 4 Multi-Targeting Pack
"{D08A30AC-A663-4EA8-8D81-B98E17F19F1C}_is1" = ISO to USB
"{DF57E946-4885-4EEA-A958-D5F82CB21B99}" = DesignPro 5
"{DF5A03CC-D5AA-43D8-B948-D9903F2AF94A}" = Counter-Strike(TM)
"{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"{E503B4BF-F7BB-3D5F-8BC8-F694B1CFF942}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022.218
"{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AQQ" = WapSter AQQ
"Ashampoo Burning Studio 2012_is1" = Ashampoo Burning Studio 2012 v10.0.15
"DAEMON Tools Lite" = DAEMON Tools Lite
"FileZilla Client" = FileZilla Client 3.4.0
"HTC Home Apis" = HTC Home Apis
"InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs
"InstallShield_{3F5CFC1C-653B-4B22-9153-2BDDF2E03C0E}" = Seagate Manager Installer
"InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III
"InstallShield_{8A15B7D9-908A-4EF9-BA84-5AEDE61743EE}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.6 Patch
"InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch
"InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties
"InstallShield_{DF57E946-4885-4EEA-A958-D5F82CB21B99}" = DesignPro 5
"InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM)
"JDownloader" = JDownloader
"Lightscreen" = Lightscreen
"LogMeIn Hamachi" = LogMeIn Hamachi
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.61.0.1400
"Microsoft Visual C++ 2010 Express - ENU" = Microsoft Visual C++ 2010 Express - ENU
"Microsoft Visual Studio 2010 Service Pack 1" = Microsoft Visual Studio 2010 Service Pack 1
"Mozilla Firefox 4.0 (x86 pl)" = Mozilla Firefox 13.0.1
"Mozilla Thunderbird (3.1.9)" = Mozilla Thunderbird 13.0.1
"Napoleonic Era Open Beta 2" = Napoleonic Era Open Beta 2
"Notepad++" = Notepad++
"PhotoFiltre" = PhotoFiltre
"PunkBusterSvc" = PunkBuster Services
"RocketDock_is1" = RocketDock 1.3.5
"Steam App 5" = Dedicated Server
"TeamViewer 7" = TeamViewer 7
"Tibia_is1" = Tibia
"TmNationsForever_is1" = TmNationsForever
"TreeSize Free_is1" = TreeSize Free V2.5
"VLC media player" = VLC media player 1.1.7
"xampp" = XAMPP 1.7.7

[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]

[HKEY_USERS\S-1-5-21-3696311653-3475584151-1222543006-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2011-04-18 14:07:47 | Computer Name = marek | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: hlmv.exe, wersja: 1.3.6.0, sygnatura
czasowa: 0x473aca37 Nazwa modułu powodującego błąd: ntdll.dll, wersja: 6.1.7601.17514,
sygnatura czasowa: 0x4ce7ba58 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x000343b0
Identyfikator
procesu powodującego błąd: 0xc98 Godzina uruchomienia aplikacji powodującej błąd:
0x01cbfdf37a576c65 Ścieżka aplikacji powodującej błąd: F:\Jed's Half-Life Model
Viewer 1.3.6\hlmv.exe Ścieżka modułu powodującego błąd: C:\Windows\SysWOW64\ntdll.dll
Identyfikator
raportu: c3c83d4d-69e6-11e0-bd2b-00241ddd9ec0

Error - 2012-06-27 08:23:15 | Computer Name = marek | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

Error - 2012-06-27 08:23:15 | Computer Name = marek | Source = Microsoft-Windows-CAPI2 | ID = 4107
Description = Nie można wyodrębnić listy głównej innych firm z pliku cab automatycznej
aktualizacji z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootstl.cab>,
wystąpił błąd: A required certificate is not within its validity period when verifying
against the current system clock or the timestamp in the signed file. .

Error - 2012-06-27 08:23:53 | Computer Name = marek | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: Explorer.EXE, wersja: 6.1.7601.17514,
sygnatura czasowa: 0x4ce7a144 Nazwa modułu powodującego błąd: msieftp.dll, wersja:
6.1.7601.17514, sygnatura czasowa: 0x4ce7c806 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x0000000000018b90 Identyfikator procesu powodującego błąd: 0x7b4 Godzina
uruchomienia aplikacji powodującej błąd: 0x01cd545f689cac1a Ścieżka aplikacji powodującej
błąd: C:\Windows\Explorer.EXE Ścieżka modułu powodującego błąd: C:\Windows\system32\msieftp.dll
Identyfikator
raportu: f4ec0c57-c052-11e1-9501-00241ddd9ec0

Error - 2012-06-27 09:16:55 | Computer Name = marek | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: MsiExec.exe, wersja: 5.0.7601.17514,
sygnatura czasowa: 0x4ce792c4 Nazwa modułu powodującego błąd: QuickTime.qts_unloaded,
wersja: 0.0.0.0, sygnatura czasowa: 0x4cf4536a Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x700dbb89 Identyfikator procesu powodującego błąd: 0xd5c Godzina uruchomienia
aplikacji powodującej błąd: 0x01cd54671f3fef62 Ścieżka aplikacji powodującej błąd:
C:\Windows\syswow64\MsiExec.exe Ścieżka modułu powodującego błąd: QuickTime.qts Identyfikator
raportu: 5d4bb14d-c05a-11e1-853a-00241ddd9ec0

Error - 2012-06-27 09:58:57 | Computer Name = marek | Source = MsiInstaller | ID = 11706
Description =

Error - 2012-06-27 09:59:28 | Computer Name = marek | Source = MsiInstaller | ID = 11905
Description =

Error - 2012-06-27 15:20:36 | Computer Name = marek | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 2012-06-27 15:20:36 | Computer Name = marek | Source = .NET Runtime Optimization Service | ID = 1101
Description =

Error - 2012-06-28 04:31:34 | Computer Name = marek | Source = SideBySide | ID = 16842815
Description = Nie można wygenerować kontekstu aktywacji dla "f:\wapster aqq\System\DelZip179.dll".
Błąd w pliku manifestu lub w pliku zasad "f:\wapster aqq\System\DelZip179.dll"
w wierszu 8. Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa.

[ System Events ]
Error - 2011-02-28 10:53:57 | Computer Name = marek | Source = Service Control Manager | ID = 7024
Description = Usługa Apache2.2 zakończyła działanie; wystąpił specyficzny dla niej
błąd %%1.

Error - 2011-02-28 11:49:06 | Computer Name = marek | Source = W3SVC | ID = 1004
Description =

Error - 2011-02-28 11:49:06 | Computer Name = marek | Source = HTTP | ID = 15005
Description =

Error - 2011-02-28 17:49:51 | Computer Name = marek | Source = Service Control Manager | ID = 7030
Description = Usługa FileZilla Server FTP server jest oznaczona jako usługa interakcyjna.
System jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne,
dlatego ta usługa może nie działać właściwie.

Error - 2011-02-28 18:08:36 | Computer Name = marek | Source = Service Control Manager | ID = 7024
Description = Usługa Apache2.2 zakończyła działanie; wystąpił specyficzny dla niej
błąd %%1.

Error - 2011-03-01 05:07:03 | Computer Name = marek | Source = W3SVC | ID = 1004
Description =

Error - 2011-03-01 05:07:03 | Computer Name = marek | Source = HTTP | ID = 15005
Description =

Error - 2011-03-01 08:45:02 | Computer Name = marek | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 13:42:27 na ?2011-?03-?01 było
nieoczekiwane.

Error - 2011-03-01 08:45:36 | Computer Name = marek | Source = W3SVC | ID = 1004
Description =

Error - 2011-03-01 08:45:36 | Computer Name = marek | Source = HTTP | ID = 15005
Description =


< End of report >

[/log]

Natsuki Kuga
komentarz
komentarz

Do OTL wklej:
[code]
:OTL
O33 - MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\Shell - "" = AutoRun
O33 - MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\Shell\AutoRun\command - "" = H:\AutoRun.exe "0, AoE III PL, Microsoft"

:Commands
[emptytemp]
[/code]
[b]Wykonaj skrypt,[/b] pokaż raport.

Do [url="http://jpshortstuff.247fixes.com/SystemLook.exe"][b]SystemLook[/b][/url] wklej:
[code]
:file
C:\Windows\IFinst27.exe
[/code]
[b]Look,[/b] pokaż raport.

[quote]
[2010-05-27 21:38:08 | 000,000,630 | ---- | M] () -- C:\Add_Show_Hide_Hidden_Files_Option.reg
[2010-05-30 16:48:06 | 000,000,446 | ---- | M] () -- C:\Show_Hidden_Files_On_Off.vbs
[/quote]
Czy coś nie tak jest u ciebie z widocznością plików ukrytych?

Naciśnij Logo Windows + R -> cmd -> sfc /scannow . Napisz, czy wykryło jakieś błędy.

klerzak
komentarz
komentarz (edytowane)

Te wpisy są od gry Age of Empire 3.
[log]
All processes killed
========== OTL ==========
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\ not found.
Registry key HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{f71f73cb-c205-11e1-ad07-00241ddd9ec0}\ not found.
File H:\AutoRun.exe "0, AoE III PL, Microsoft" not found.
========== COMMANDS ==========

[EMPTYTEMP]

User: Administrator
->Temp folder emptied: 289303 bytes
->Temporary Internet Files folder emptied: 1555382 bytes
->Java cache emptied: 5041744 bytes
->FireFox cache emptied: 205020744 bytes
->Google Chrome cache emptied: 1642864 bytes
->Opera cache emptied: 0 bytes
->Flash cache emptied: 3042 bytes

User: All Users

User: Classic .NET AppPool
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Public

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 9074 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 11219684 bytes
RecycleBin emptied: 163796801 bytes

Total Files Cleaned = 371,00 mb


OTL by OldTimer - Version 3.2.53.1 log created on 07062012_205534

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[/log]

[log]
SystemLook 30.07.11 by jpshortstuff
Log created at 21:00 on 06/07/2012 by marek
Administrator - Elevation successful
WARNING: SystemLook running under WOW64. Use SystemLook_x64 for accurate results.

========== file ==========

C:\Windows\IFinst27.exe - File found and opened.
MD5: 9C17BCA3EF837BACDED7E4299508E71D
Created at 20:34 on 15/03/2011
Modified at 20:34 on 15/03/2011
Size: 65536 bytes
Attributes: --a----
No version information available.

-= EOF =-
[/log]

Co do wpisu do rejestru i skryptu, który podałeś, to jest opcja do menu kontekstowego Pulpitu/Eksploratora Windows, aby szybko włączać/wyłączać widoczność plików - to można wykluczyć, ponieważ od bardzo dawna mam ten skrypt, był nawet jak dobrze działał komputer.

Wpis do rejestru wygląda tak:
[CODE]
Windows Registry Editor Version 5.00
;Created by Vishal Gupta for AskVG.com
[HKEY_CLASSES_ROOT\Directory\Background\shell\Show / Hide Hidden Files]
"HasLUAShield"=""
[HKEY_CLASSES_ROOT\Directory\Background\shell\Show / Hide Hidden Files\command]
@="cmd.exe /c start C:\\Show_Hidden_Files_On_Off.vbs"

[/CODE]

Natomiast skrypt następująco:
[CODE]
Hidden = "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\Hidden"
SHidden = "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced\ShowSuperHidden"
Set Sh = WScript.CreateObject("WScript.Shell")
St = Sh.RegRead(Hidden)
If St = 2 Then
Sh.RegWrite Hidden, 1, "REG_DWORD"
Sh.RegWrite SHidden, 1, "REG_DWORD"
Else
Sh.RegWrite Hidden, 2, "REG_DWORD"
Sh.RegWrite SHidden, 0, "REG_DWORD"
End If
Sh.SendKeys("{F5}")
[/CODE]

System File Checker nic nie znalazł.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.