muminkisathebest utworzono 4 sierpnia 2012 utworzono 4 sierpnia 2012 Witam, przy wgrywaniu program jDownloader wgrał mi się babylon. Pojawia się na stronie startowej w Chromie. Usunęłam to już w rozszerzeniach przeglądarki i w dodaj/usuń programy, no ale dalej nic. Jestem laikiem komputerowym, więc proszę o w miarę przystępne tłumaczenie. Z tego co widziałam ludzie przy podobnych problemach udostępniają logi. Ściągnęłam zatem OLT i starałam się postępować zgodnie z instrukcjami dotyczącymi tworzenia owych logów zamieszczonymi na tym forum. To co mi wyszło: plik OTL [i][b][log] [/b][/i] [b]OTL logfile created on: 2012-08-04 19:44:10 - Run 2[/b] OTL by OldTimer - Version 3.2.43.0 Folder = C:\Users\Ewa\Downloads Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation Internet Explorer (Version = 7.0.6000.16982) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 56,64% Memory free 6,17 Gb Paging File | 4,97 Gb Available in Paging File | 80,50% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 100,22 Gb Total Space | 61,07 Gb Free Space | 60,94% Space Free | Partition Type: NTFS Drive D: | 48,83 Gb Total Space | 48,68 Gb Free Space | 99,69% Space Free | Partition Type: NTFS Computer Name: EWA-PC | User Name: Ewa | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2012-08-04 19:08:35 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Users\Ewa\Downloads\OTL.exe PRC - [2012-07-31 07:36:16 | 001,229,848 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\chrome.exe PRC - [2012-07-09 18:01:17 | 000,116,648 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Update\GoogleUpdate.exe PRC - [2012-07-09 12:51:43 | 001,232,896 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe PRC - [2012-07-07 14:40:49 | 001,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe PRC - [2012-07-07 14:10:30 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe PRC - [2012-07-07 14:07:40 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsass.exe PRC - [2012-07-07 13:59:36 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\WmiPrvSE.exe PRC - [2012-07-07 13:52:25 | 002,605,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLsvc.exe PRC - [2012-07-03 18:21:30 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe PRC - [2012-07-03 18:21:29 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe PRC - [2011-06-06 12:55:28 | 000,937,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe PRC - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe PRC - [2011-05-13 18:57:36 | 000,026,168 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\hpservice.exe PRC - [2009-11-18 16:13:18 | 000,054,576 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe PRC - [2009-11-18 04:42:52 | 000,275,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2009-11-18 04:02:34 | 000,563,840 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe PRC - [2009-11-18 04:02:34 | 000,173,696 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2009-11-17 20:49:08 | 000,366,720 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe PRC - [2009-07-27 15:38:18 | 000,321,080 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe PRC - [2009-05-05 10:11:50 | 000,228,408 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\Com4QLBEx.exe PRC - [2009-04-30 15:58:44 | 000,229,944 | ---- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\Shared\hpqWmiEx.exe PRC - [2009-03-26 02:46:50 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) -- C:\Windows\System32\vfsFPService.exe PRC - [2008-09-13 07:13:00 | 000,196,608 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvvsvc.exe PRC - [2008-09-11 11:52:52 | 000,237,650 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\stacsv.exe PRC - [2008-09-11 11:50:38 | 000,446,556 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe PRC - [2008-06-27 15:53:08 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\AEstSrv.exe PRC - [2008-06-20 16:37:44 | 000,103,720 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe PRC - [2008-06-20 16:37:34 | 001,316,136 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe PRC - [2006-11-02 14:34:46 | 000,287,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SearchIndexer.exe PRC - [2006-11-02 14:34:30 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanext.exe PRC - [2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winlogon.exe PRC - [2006-11-02 11:45:57 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininit.exe PRC - [2006-11-02 11:45:48 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:47 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\svchost.exe [comLaunch] PRC - [2006-11-02 11:45:46 | 000,124,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spoolsv.exe PRC - [2006-11-02 11:45:45 | 000,062,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\smss.exe PRC - [2006-11-02 11:45:40 | 000,279,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\services.exe PRC - [2006-11-02 11:45:37 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe PRC - [2006-11-02 11:45:21 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lsm.exe PRC - [2006-11-02 11:45:04 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe PRC - [2006-11-02 11:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\csrss.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2012-08-04 19:08:35 | 000,595,456 | ---- | M] (OldTimer Tools) -- C:\Users\Ewa\Downloads\OTL.exe MOD - [2012-08-02 12:28:36 | 000,040,712 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\defs\12080400\uiext.dll MOD - [2012-07-31 07:36:16 | 001,229,848 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\chrome.exe MOD - [2012-07-31 07:36:14 | 000,442,392 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll MOD - [2012-07-31 07:36:13 | 012,235,288 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\PepperFlash\pepflashplayer.dll MOD - [2012-07-31 07:36:12 | 003,997,720 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll MOD - [2012-07-31 07:34:54 | 009,962,520 | ---- | M] (The ICU Project) -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\icudt.dll MOD - [2012-07-31 07:34:47 | 037,958,168 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\chrome.dll MOD - [2012-07-31 07:34:45 | 000,144,424 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\avutil-51.dll MOD - [2012-07-31 07:34:43 | 000,266,792 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\avformat-54.dll MOD - [2012-07-31 07:34:42 | 002,480,680 | ---- | M] () -- C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\avcodec-54.dll MOD - [2012-07-18 06:51:38 | 000,828,880 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Update\1.3.21.115\goopdate.dll MOD - [2012-07-10 18:37:23 | 003,780,424 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.mfc_1fc8b3b9a1e18e3b_9.0.30729.4148_none_4bf5400abf9d60b7\mfc90u.dll MOD - [2012-07-10 18:37:16 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4148_none_5090ab56bcba71c2\msvcr90.dll MOD - [2012-07-10 18:37:16 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.crt_1fc8b3b9a1e18e3b_9.0.30729.4148_none_5090ab56bcba71c2\msvcp90.dll MOD - [2012-07-10 18:37:08 | 000,159,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc90.atl_1fc8b3b9a1e18e3b_9.0.30729.4148_none_51ca66a2bbe76806\ATL90.dll MOD - [2012-07-09 18:01:17 | 000,116,648 | ---- | M] (Google Inc.) -- C:\Users\Ewa\AppData\Local\Google\Update\GoogleUpdate.exe MOD - [2012-07-09 13:02:17 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\lpk.dll MOD - [2012-07-09 13:02:17 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dciman32.dll MOD - [2012-07-09 13:01:20 | 000,832,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wininet.dll MOD - [2012-07-09 13:01:19 | 000,347,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtmsft.dll MOD - [2012-07-09 13:01:19 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dxtrans.dll MOD - [2012-07-09 13:01:18 | 006,067,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieframe.dll MOD - [2012-07-09 13:01:15 | 003,599,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.dll MOD - [2012-07-09 13:01:12 | 001,168,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\urlmon.dll MOD - [2012-07-09 13:01:11 | 000,268,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\iertutil.dll MOD - [2012-07-09 13:01:11 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pngfilt.dll MOD - [2012-07-09 12:59:48 | 000,467,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\riched20.dll MOD - [2012-07-09 12:59:47 | 000,564,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msftedit.dll MOD - [2012-07-09 12:59:06 | 000,241,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceApi.dll MOD - [2012-07-09 12:59:06 | 000,160,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PortableDeviceTypes.dll MOD - [2012-07-09 12:57:28 | 000,356,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemcomn.dll MOD - [2012-07-09 12:57:27 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wtsapi32.dll MOD - [2012-07-09 12:56:52 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanapi.dll MOD - [2012-07-09 12:56:25 | 001,260,032 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msxml3.dll MOD - [2012-07-09 12:53:47 | 000,378,368 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winhttp.dll MOD - [2012-07-09 12:52:40 | 000,268,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\es.dll MOD - [2012-07-09 12:51:43 | 001,232,896 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Sidebar\sidebar.exe MOD - [2012-07-09 12:51:29 | 000,162,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dnsapi.dll MOD - [2012-07-07 14:40:49 | 001,006,264 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MSASCui.exe MOD - [2012-07-07 14:40:49 | 000,670,392 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpRtMon.dll MOD - [2012-07-07 14:40:48 | 000,656,568 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MsMpRes.dll MOD - [2012-07-07 14:40:48 | 000,311,992 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpClient.dll MOD - [2012-07-07 14:38:51 | 000,434,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vbscript.dll MOD - [2012-07-07 14:37:47 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\atl.dll MOD - [2012-07-07 14:35:55 | 000,297,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gdi32.dll MOD - [2012-07-07 14:24:35 | 000,713,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl MOD - [2012-07-07 14:22:39 | 000,392,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FirewallAPI.dll MOD - [2012-07-07 14:21:43 | 000,425,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netapi32.dll MOD - [2012-07-07 14:19:37 | 001,744,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.0.6000.16782_none_9ea1072ec96e0be7\GdiPlus.dll MOD - [2012-07-07 14:16:35 | 011,315,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shell32.dll MOD - [2012-07-07 14:10:30 | 002,923,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe MOD - [2012-07-07 14:08:42 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wintrust.dll MOD - [2012-07-07 14:07:40 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\secur32.dll MOD - [2012-07-07 14:07:39 | 000,272,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\schannel.dll MOD - [2012-07-07 14:05:30 | 001,523,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NlsData0000.dll MOD - [2012-07-07 14:05:24 | 000,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NaturalLanguage6.dll MOD - [2012-07-07 14:01:30 | 001,585,664 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\setupapi.dll MOD - [2012-07-07 14:01:12 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srclient.dll MOD - [2012-07-07 14:01:09 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleaut32.dll MOD - [2012-07-07 13:59:36 | 000,614,912 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\fastprox.dll MOD - [2012-07-07 13:58:02 | 000,512,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript.dll MOD - [2012-07-07 13:53:17 | 000,875,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\kernel32.dll MOD - [2012-07-07 13:52:27 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SLC.dll MOD - [2012-07-07 13:51:34 | 000,712,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WindowsCodecs.dll MOD - [2012-07-07 13:49:25 | 001,984,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authui.dll MOD - [2012-07-07 13:49:25 | 000,204,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc.dll MOD - [2012-07-07 13:49:25 | 000,120,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcsvc6.dll MOD - [2012-07-07 13:16:42 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.vc80.crt_1fc8b3b9a1e18e3b_8.0.50727.3053_none_d08d7bba442a9b36\msvcr80.dll MOD - [2012-07-07 13:00:23 | 000,537,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\AppPatch\AcLayers.dll MOD - [2012-07-07 12:58:27 | 000,060,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msasn1.dll MOD - [2012-07-07 12:57:43 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imagehlp.dll MOD - [2012-07-07 12:57:28 | 000,788,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rpcrt4.dll MOD - [2012-07-07 12:55:12 | 000,974,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\crypt32.dll MOD - [2012-07-07 12:54:22 | 000,633,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\user32.dll MOD - [2012-07-03 18:21:41 | 000,237,936 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\1045\uiLangRes.dll MOD - [2012-07-03 18:21:41 | 000,095,784 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\1045\Base.dll MOD - [2012-07-03 18:21:30 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe MOD - [2012-07-03 18:21:27 | 000,234,840 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\snxhk.dll MOD - [2012-07-03 18:21:26 | 007,016,360 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\CommonRes.dll MOD - [2012-07-03 18:21:25 | 000,398,616 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswSqLt.dll MOD - [2012-07-03 18:21:25 | 000,027,296 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswUtil.dll MOD - [2012-07-03 18:21:23 | 002,162,488 | ---- | M] (AVAST! Software) -- C:\Program Files\AVAST Software\Avast\aswAra.dll MOD - [2012-07-03 18:21:23 | 000,217,336 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswLog.dll MOD - [2012-07-03 18:21:23 | 000,215,800 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswProperty.dll MOD - [2012-07-03 18:21:23 | 000,191,568 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswCmnIS.dll MOD - [2012-07-03 18:21:23 | 000,191,080 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswData.dll MOD - [2012-07-03 18:21:23 | 000,126,160 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswJsFlt.dll MOD - [2012-07-03 18:21:23 | 000,099,416 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswCmnOS.dll MOD - [2012-07-03 18:21:23 | 000,051,000 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswEngLdr.dll MOD - [2012-07-03 18:21:22 | 000,682,384 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswAux.dll MOD - [2012-07-03 18:21:22 | 000,346,080 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\aswCmnBS.dll MOD - [2012-07-03 18:21:21 | 000,424,360 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\ashBase.dll MOD - [2012-07-03 18:21:21 | 000,153,464 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\ashTask.dll MOD - [2012-07-03 18:21:21 | 000,121,528 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\ashShell.dll MOD - [2012-07-03 18:21:21 | 000,061,800 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\ashTaskEx.dll MOD - [2012-07-03 18:21:18 | 000,359,976 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\Aavm4h.dll MOD - [2012-07-03 18:21:18 | 000,140,104 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AhAScr.dll MOD - [2012-07-03 18:21:18 | 000,117,408 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AavmRpch.dll MOD - [2012-04-06 12:29:00 | 000,379,080 | ---- | M] (瑞创网络) -- C:\Program Files\HaoZip\HaoZipExt.dll MOD - [2011-06-06 12:55:28 | 000,937,920 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe MOD - [2010-01-29 20:27:38 | 001,176,192 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpodio08.dll MOD - [2010-01-29 20:27:38 | 000,542,848 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpotra08.dll MOD - [2010-01-29 20:27:38 | 000,297,600 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcob08.dll MOD - [2010-01-29 20:27:38 | 000,036,480 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpotra08.rsc MOD - [2010-01-29 20:27:36 | 000,279,168 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpotradd.dll MOD - [2009-11-18 16:13:18 | 000,054,576 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\HP Software Update\hpwuschd2.exe MOD - [2009-11-18 04:42:52 | 000,275,072 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe MOD - [2009-11-18 04:42:52 | 000,210,048 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpquio08.dll MOD - [2009-11-18 04:42:52 | 000,154,752 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtao08.dll MOD - [2009-11-18 04:42:52 | 000,128,640 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqcxm08.dll MOD - [2009-11-18 04:42:52 | 000,048,128 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.rsc MOD - [2009-11-18 04:16:42 | 000,217,728 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddcmn.dll MOD - [2009-11-18 04:16:42 | 000,053,888 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqddusr.dll MOD - [2009-11-18 04:02:36 | 000,953,344 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqsem08.rsc MOD - [2009-11-18 04:02:36 | 000,314,496 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqsti08.dll MOD - [2009-11-18 04:02:36 | 000,289,920 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqstp08.dll MOD - [2009-11-18 04:02:36 | 000,208,000 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqssm08.dll MOD - [2009-11-18 04:02:36 | 000,012,288 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqstp08.rsc MOD - [2009-11-18 04:02:34 | 000,563,840 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqbam08.exe MOD - [2009-11-18 04:02:34 | 000,499,840 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqwso08.dll MOD - [2009-11-18 04:02:34 | 000,173,696 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe MOD - [2009-11-18 04:02:34 | 000,062,080 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\HpqSplh08.dll MOD - [2009-11-18 00:46:00 | 000,117,760 | ---- | M] (Hewlett-Packard Co.) -- C:\Users\Ewa\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgutil.dll MOD - [2009-11-18 00:45:48 | 000,412,672 | ---- | M] (Hewlett-Packard Co.) -- C:\Users\Ewa\AppData\Local\Microsoft\Windows Sidebar\Gadgets\HPPhoto.gadget\x86\hpqgps01.dll MOD - [2009-11-17 22:58:02 | 000,342,656 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqmif08.dll MOD - [2009-11-17 22:58:00 | 000,559,232 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqusg.dll MOD - [2009-11-17 21:39:04 | 000,330,880 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqrif08.dll MOD - [2009-11-17 21:39:04 | 000,101,504 | ---- | M] (Hewlett Packard) -- C:\Program Files\HP\Digital Imaging\Product Assistant\bin\hprbevst.dll MOD - [2009-11-17 20:49:08 | 000,366,720 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpc01.exe MOD - [2009-11-17 20:49:08 | 000,045,184 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpb01.dll MOD - [2009-11-17 20:49:08 | 000,043,136 | ---- | M] (Hewlett-Packard) -- C:\Program Files\HP\Digital Imaging\bin\hpqgpreh.dll MOD - [2009-07-27 15:38:18 | 000,321,080 | ---- | M] ( Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBCTRL.exe MOD - [2009-07-15 11:18:18 | 000,359,992 | R--- | M] (Hewlett-Packard Development Company, L.P.) -- C:\Program Files\Hewlett-Packard\HP Quick Launch Buttons\QLBSERVICE.dll MOD - [2009-05-14 16:48:08 | 000,033,792 | ---- | M] (Hewlett-Packard) -- C:\Windows\System32\HPZipr12.dll MOD - [2009-05-14 16:48:06 | 000,049,152 | ---- | M] (Hewlett-Packard) -- C:\Windows\System32\HPZidr12.dll MOD - [2009-04-16 12:42:26 | 000,470,016 | ---- | M] (Hewlett Packard Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\hpfpa70w.dll MOD - [2009-04-16 12:42:22 | 001,486,848 | ---- | M] (Hewlett Packard Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\hpf3r70w.dll MOD - [2009-04-16 12:41:58 | 001,757,184 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\hpfui70w.dll MOD - [2009-04-16 12:37:48 | 001,166,336 | ---- | M] (Hewlett-Packard Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\hpfst70w.dll MOD - [2009-03-30 17:55:58 | 000,252,416 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\System32\spool\drivers\w32x86\3\hpfie70w.dll MOD - [2009-03-30 15:42:10 | 000,740,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\UNIDRVUI.DLL MOD - [2009-03-30 15:42:10 | 000,372,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spool\drivers\w32x86\3\UNIDRV.DLL MOD - [2008-09-13 07:13:00 | 005,963,776 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvd3dum.dll MOD - [2008-09-13 07:13:00 | 000,483,328 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvapi.dll MOD - [2008-09-13 07:13:00 | 000,092,704 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\nvmctray.dll MOD - [2008-09-11 11:50:38 | 000,446,556 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\sttray.exe MOD - [2008-09-11 11:50:12 | 000,427,008 | ---- | M] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll MOD - [2008-09-11 11:49:54 | 002,875,392 | ---- | M] (IDT, Inc.) -- C:\Program Files\IDT\WDM\stlang.dll MOD - [2008-06-20 16:37:44 | 000,103,720 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPHelper.exe MOD - [2008-06-20 16:37:34 | 001,316,136 | ---- | M] (Synaptics, Inc.) -- C:\Program Files\Synaptics\SynTP\SynTPEnh.exe MOD - [2008-06-20 16:18:50 | 000,147,456 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\SynTPAPI.dll MOD - [2008-06-20 16:06:28 | 000,163,840 | ---- | M] (Synaptics, Inc.) -- C:\Windows\System32\SynCOM.dll MOD - [2006-11-02 14:36:19 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uDWM.dll MOD - [2006-11-02 14:36:16 | 000,138,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\spp.dll MOD - [2006-11-02 14:36:03 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\HotStartUserAgent.dll MOD - [2006-11-02 14:35:58 | 002,536,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wpdshext.dll MOD - [2006-11-02 14:35:58 | 000,131,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WPDShServiceObj.dll MOD - [2006-11-02 14:35:38 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpnsp.dll MOD - [2006-11-02 14:35:30 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\ehome\ehSSO.dll MOD - [2006-11-02 14:35:09 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscapi.dll MOD - [2006-11-02 14:34:50 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AltTab.dll MOD - [2006-11-02 14:34:48 | 002,205,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SyncCenter.dll MOD - [2006-11-02 14:34:48 | 000,175,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\syncui.dll MOD - [2006-11-02 14:34:48 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\synceng.dll MOD - [2006-11-02 14:34:48 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\linkinfo.dll MOD - [2006-11-02 14:34:47 | 000,223,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wscntfy.dll MOD - [2006-11-02 14:34:46 | 000,052,224 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msstrc.dll MOD - [2006-11-02 14:34:46 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mssprxy.dll MOD - [2006-11-02 14:34:45 | 001,499,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll MOD - [2006-11-02 14:34:35 | 001,298,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TMM.dll MOD - [2006-11-02 14:34:33 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IconCodecService.dll MOD - [2006-11-02 11:47:26 | 001,162,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdll.dll MOD - [2006-11-02 11:47:18 | 000,228,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rsaenh.dll MOD - [2006-11-02 11:46:16 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\xmllite.dll MOD - [2006-11-02 11:46:14 | 000,288,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Wldap32.dll MOD - [2006-11-02 11:46:14 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winmm.dll MOD - [2006-11-02 11:46:14 | 000,178,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ws2_32.dll MOD - [2006-11-02 11:46:14 | 000,134,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winsta.dll MOD - [2006-11-02 11:46:14 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WinSCard.dll MOD - [2006-11-02 11:46:14 | 000,084,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wmiutils.dll MOD - [2006-11-02 11:46:14 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshbth.dll MOD - [2006-11-02 11:46:14 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winrnr.dll MOD - [2006-11-02 11:46:14 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winnsi.dll MOD - [2006-11-02 11:46:14 | 000,014,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll MOD - [2006-11-02 11:46:14 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\WSHTCPIP.DLL MOD - [2006-11-02 11:46:14 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wship6.dll MOD - [2006-11-02 11:46:14 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wlanutil.dll MOD - [2006-11-02 11:46:13 | 001,064,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shdocvw.dll MOD - [2006-11-02 11:46:13 | 000,994,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vssapi.dll MOD - [2006-11-02 11:46:13 | 000,869,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winbrand.dll MOD - [2006-11-02 11:46:13 | 000,586,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\stobject.dll MOD - [2006-11-02 11:46:13 | 000,502,784 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\usp10.dll MOD - [2006-11-02 11:46:13 | 000,377,344 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sxs.dll MOD - [2006-11-02 11:46:13 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shlwapi.dll MOD - [2006-11-02 11:46:13 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\srchadmin.dll MOD - [2006-11-02 11:46:13 | 000,244,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wevtapi.dll MOD - [2006-11-02 11:46:13 | 000,240,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\uxtheme.dll MOD - [2006-11-02 11:46:13 | 000,232,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\webcheck.dll MOD - [2006-11-02 11:46:13 | 000,191,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\tapi32.dll MOD - [2006-11-02 11:46:13 | 000,188,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemdisp.dll MOD - [2006-11-02 11:46:13 | 000,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SndVolSSO.dll MOD - [2006-11-02 11:46:13 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\shimeng.dll MOD - [2006-11-02 11:46:13 | 000,107,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\userenv.dll MOD - [2006-11-02 11:46:13 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\vsstrace.dll MOD - [2006-11-02 11:46:13 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\thumbcache.dll MOD - [2006-11-02 11:46:13 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemsvc.dll MOD - [2006-11-02 11:46:13 | 000,038,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc_os.dll MOD - [2006-11-02 11:46:13 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbem\wbemprox.dll MOD - [2006-11-02 11:46:13 | 000,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\version.dll MOD - [2006-11-02 11:46:13 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\TSChannel.dll MOD - [2006-11-02 11:46:13 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll MOD - [2006-11-02 11:46:13 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sfc.dll MOD - [2006-11-02 11:46:12 | 001,822,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnidui.dll MOD - [2006-11-02 11:46:12 | 001,380,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Query.dll MOD - [2006-11-02 11:46:12 | 001,314,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ole32.dll MOD - [2006-11-02 11:46:12 | 000,733,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\propsys.dll MOD - [2006-11-02 11:46:12 | 000,409,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbc32.dll MOD - [2006-11-02 11:46:12 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntshrui.dll MOD - [2006-11-02 11:46:12 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasapi32.dll MOD - [2006-11-02 11:46:12 | 000,214,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oleacc.dll MOD - [2006-11-02 11:46:12 | 000,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QAGENT.DLL MOD - [2006-11-02 11:46:12 | 000,162,816 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\onex.dll MOD - [2006-11-02 11:46:12 | 000,155,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\scrrun.dll MOD - [2006-11-02 11:46:12 | 000,120,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntmarta.dll MOD - [2006-11-02 11:46:12 | 000,101,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\oledlg.dll MOD - [2006-11-02 11:46:12 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\powrprof.dll MOD - [2006-11-02 11:46:12 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\olepro32.dll MOD - [2006-11-02 11:46:12 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ntdsapi.dll MOD - [2006-11-02 11:46:12 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\QUTIL.DLL MOD - [2006-11-02 11:46:12 | 000,070,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasman.dll MOD - [2006-11-02 11:46:12 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samlib.dll MOD - [2006-11-02 11:46:12 | 000,043,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pautoenr.dll MOD - [2006-11-02 11:46:12 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rtutils.dll MOD - [2006-11-02 11:46:12 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\PlaySndSrv.dll MOD - [2006-11-02 11:46:12 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\npmproxy.dll MOD - [2006-11-02 11:46:12 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\psapi.dll MOD - [2006-11-02 11:46:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rasadhlp.dll MOD - [2006-11-02 11:46:12 | 000,010,240 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nsi.dll MOD - [2006-11-02 11:46:12 | 000,008,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\SensApi.dll MOD - [2006-11-02 11:46:11 | 003,174,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netshell.dll MOD - [2006-11-02 11:46:11 | 000,193,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ncrypt.dll MOD - [2006-11-02 11:46:11 | 000,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\NapiNSP.dll MOD - [2006-11-02 11:46:11 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\nlaapi.dll MOD - [2006-11-02 11:46:10 | 000,681,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msvcrt.dll MOD - [2006-11-02 11:46:10 | 000,227,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mswsock.dll MOD - [2006-11-02 11:46:10 | 000,215,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msshsq.dll MOD - [2006-11-02 11:46:10 | 000,205,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mstask.dll MOD - [2006-11-02 11:46:10 | 000,162,304 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msutb.dll MOD - [2006-11-02 11:46:09 | 000,156,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msls31.dll MOD - [2006-11-02 11:46:07 | 002,095,616 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msi.dll MOD - [2006-11-02 11:46:07 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimtf.dll MOD - [2006-11-02 11:46:07 | 000,015,872 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msiltcfg.dll MOD - [2006-11-02 11:46:07 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msimg32.dll MOD - [2006-11-02 11:46:06 | 000,805,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msctf.dll MOD - [2006-11-02 11:46:06 | 000,708,608 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\System\ado\msado15.dll MOD - [2006-11-02 11:46:06 | 000,391,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mscms.dll MOD - [2006-11-02 11:46:06 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdart.dll MOD - [2006-11-02 11:46:06 | 000,073,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.dll MOD - [2006-11-02 11:46:06 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msdmo.dll MOD - [2006-11-02 11:46:06 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MsCtfMonitor.dll MOD - [2006-11-02 11:46:05 | 002,014,720 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\milcore.dll MOD - [2006-11-02 11:46:05 | 001,162,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mfc42u.dll MOD - [2006-11-02 11:46:05 | 000,543,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FWPUCLNT.DLL MOD - [2006-11-02 11:46:05 | 000,316,928 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imapi2.dll MOD - [2006-11-02 11:46:05 | 000,213,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\icm32.dll MOD - [2006-11-02 11:46:05 | 000,187,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mlang.dll MOD - [2006-11-02 11:46:05 | 000,146,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MMDevAPI.dll MOD - [2006-11-02 11:46:05 | 000,115,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imm32.dll MOD - [2006-11-02 11:46:05 | 000,089,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\IPHLPAPI.DLL MOD - [2006-11-02 11:46:05 | 000,073,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\gpapi.dll MOD - [2006-11-02 11:46:05 | 000,069,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mpr.dll MOD - [2006-11-02 11:46:05 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\imgutil.dll MOD - [2006-11-02 11:46:05 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\hid.dll MOD - [2006-11-02 11:46:05 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\midimap.dll MOD - [2006-11-02 11:46:05 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ksuser.dll MOD - [2006-11-02 11:46:04 | 000,445,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dsound.dll MOD - [2006-11-02 11:46:04 | 000,183,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\duser.dll MOD - [2006-11-02 11:46:04 | 000,152,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappcfg.dll MOD - [2006-11-02 11:46:04 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fundisc.dll MOD - [2006-11-02 11:46:04 | 000,087,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmredir.dll MOD - [2006-11-02 11:46:04 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\eappprxy.dll MOD - [2006-11-02 11:46:04 | 000,039,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll MOD - [2006-11-02 11:46:04 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\fdProxy.dll MOD - [2006-11-02 11:46:04 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ExplorerFrame.dll MOD - [2006-11-02 11:46:03 | 001,788,416 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d9.dll MOD - [2006-11-02 11:46:03 | 001,210,880 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comsvcs.dll MOD - [2006-11-02 11:46:03 | 000,969,216 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptui.dll MOD - [2006-11-02 11:46:03 | 000,798,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dbghelp.dll MOD - [2006-11-02 11:46:03 | 000,528,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddraw.dll MOD - [2006-11-02 11:46:03 | 000,454,656 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\comdlg32.dll MOD - [2006-11-02 11:46:03 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptnet.dll MOD - [2006-11-02 11:46:03 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devenum.dll MOD - [2006-11-02 11:46:03 | 000,057,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptdll.dll MOD - [2006-11-02 11:46:03 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dimsjob.dll MOD - [2006-11-02 11:46:03 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ddrawex.dll MOD - [2006-11-02 11:46:03 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cscapi.dll MOD - [2006-11-02 11:46:03 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\credssp.dll MOD - [2006-11-02 11:46:03 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\d3d8thk.dll MOD - [2006-11-02 11:46:02 | 001,321,472 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\browseui.dll MOD - [2006-11-02 11:46:02 | 001,105,408 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\CertEnroll.dll MOD - [2006-11-02 11:46:02 | 000,770,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\advapi32.dll MOD - [2006-11-02 11:46:02 | 000,737,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\batmeter.dll MOD - [2006-11-02 11:46:02 | 000,523,776 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\clbcatq.dll MOD - [2006-11-02 11:46:02 | 000,398,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioEng.dll MOD - [2006-11-02 11:46:02 | 000,327,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\actxprxy.dll MOD - [2006-11-02 11:46:02 | 000,320,000 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\certcli.dll MOD - [2006-11-02 11:46:02 | 000,265,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bcrypt.dll MOD - [2006-11-02 11:46:02 | 000,171,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\apphelp.dll MOD - [2006-11-02 11:46:02 | 000,115,712 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AudioSes.dll MOD - [2006-11-02 11:46:02 | 000,078,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\authz.dll MOD - [2006-11-02 11:46:02 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cabinet.dll MOD - [2006-11-02 11:46:02 | 000,012,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\avrt.dll MOD - [2006-11-02 11:45:48 | 000,166,400 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskeng.exe MOD - [2006-11-02 11:45:37 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\rundll32.exe MOD - [2006-11-02 11:45:04 | 000,083,456 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwm.exe MOD - [2006-11-02 11:44:49 | 000,114,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wshom.ocx MOD - [2006-11-02 11:44:49 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msscript.ocx MOD - [2006-11-02 11:44:42 | 000,989,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bthprops.cpl MOD - [2006-11-02 11:44:42 | 000,255,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\winspool.drv MOD - [2006-11-02 11:44:42 | 000,168,448 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wdmaud.drv MOD - [2006-11-02 11:44:42 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\msacm32.drv MOD - [2006-11-02 11:42:17 | 000,229,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\odbcint.dll MOD - [2006-11-02 11:38:57 | 001,648,128 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6000.16386_none_5d07289e07e1d100\comctl32.dll MOD - [2006-11-02 11:38:56 | 000,537,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.6000.16386_none_87e0cb09378714f1\comctl32.dll MOD - [2006-11-02 10:33:06 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\normaliz.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2012-08-04 19:09:49 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\System32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-07-09 12:53:47 | 000,378,368 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- winhttp.dll -- (WinHttpAutoProxySvc) SRV - [2012-07-07 14:40:48 | 000,265,912 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2012-07-03 18:21:29 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus) SRV - [2012-06-15 00:17:46 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2011-06-06 12:55:28 | 000,064,952 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice) SRV - [2009-03-26 02:46:50 | 000,599,344 | ---- | M] (Validity Sensors, Inc.) [Auto | Running] -- C:\Windows\System32\vfsFPService.exe -- (vfsFPService) SRV - [2008-09-11 11:52:52 | 000,237,650 | ---- | M] (IDT, Inc.) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\stacsv.exe -- (STacSV) SRV - [2008-06-27 15:53:08 | 000,077,824 | ---- | M] (Andrea Electronics Corporation) [Auto | Running] -- C:\Windows\System32\DriverStore\FileRepository\stwrt.inf_805f33de\AEstSrv.exe -- (AESTFilters) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkfwd.sys -- (NwlnkFwd) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\nwlnkflt.sys -- (NwlnkFlt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ipinip.sys -- (IpInIp) DRV - File not found [Kernel | Disabled | Stopped] -- C:\Windows\system32\drivers\blbdrive.sys -- (blbdrive) DRV - [2012-07-03 18:21:54 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2012-07-03 18:21:53 | 000,721,000 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx) DRV - [2012-07-03 18:21:53 | 000,353,688 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2012-07-03 18:21:53 | 000,057,656 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2012-07-03 18:21:53 | 000,035,928 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr.sys -- (AswRdr) DRV - [2012-07-03 18:21:53 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2011-05-13 18:57:42 | 000,025,656 | ---- | M] (Hewlett-Packard Company) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\hpdskflt.sys -- (hpdskflt) DRV - [2011-05-13 18:57:20 | 000,035,896 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\Accelerometer.sys -- (Accelerometer) DRV - [2009-04-29 08:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr) DRV - [2008-09-13 07:13:00 | 007,391,392 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2008-09-11 11:54:44 | 000,389,120 | ---- | M] (IDT, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\stwrt.sys -- (STHDA) DRV - [2008-08-07 17:01:44 | 000,097,536 | ---- | M] (JMicron Technology Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\jmcr.sys -- (JMCR) DRV - [2008-08-06 03:29:26 | 000,044,576 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvhda32v.sys -- (NVHDA) DRV - [2006-11-02 11:15:23 | 000,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\WSDPrint.sys -- (WSDPrintDevice) DRV - [2006-11-02 10:55:05 | 000,031,616 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\winusb.sys -- (WinUSB) DRV - [2006-11-02 09:30:56 | 000,044,544 | ---- | M] (Realtek Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q={searchTerms}&amp;src={referrer:source?}"]http://search.live.c...ferrer:source?}[/url] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-3329426144-2811280917-3907908328-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://google.pl/"]http://google.pl/[/url] IE - HKU\S-1-5-21-3329426144-2811280917-3907908328-1000\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKU\S-1-5-21-3329426144-2811280917-3907908328-1000\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-3329426144-2811280917-3907908328-1000\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q={searchTerms}&amp;src={referrer:source?}"]http://search.live.c...ferrer:source?}[/url] IE - HKU\S-1-5-21-3329426144-2811280917-3907908328-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_270.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\Windows\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Users\Ewa\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Users\Ewa\AppData\Local\Google\Update\1.3.21.115\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF [2012-07-10 18:46:40 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-07-19 18:11:36 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-07-09 11:55:02 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: C:\Program Files\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2012-07-19 18:11:36 | 000,000,000 | ---D | M] [2012-07-09 11:56:24 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ewa\AppData\Roaming\mozilla\Extensions [2012-08-03 14:34:43 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Ewa\AppData\Roaming\mozilla\Firefox\Profiles\r0ibzdma.default\extensions [2012-08-04 19:06:50 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-08-04 19:06:50 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012-06-15 00:19:07 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-06-15 01:13:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-08-03 14:33:59 | 000,002,364 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [2012-06-15 01:13:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-06-15 01:13:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-06-15 01:13:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-06-15 01:13:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-06-15 01:13:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&amp;{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}sourceid=chrome&amp;ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&amp;hl={language}&amp;q={searchTerms}, CHR - plugin: Remoting Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\pdf.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Users\Ewa\AppData\Local\Google\Chrome\Application\21.0.1180.60\gcswf32.dll CHR - plugin: Shockwave Flash (Enabled) = C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll CHR - plugin: Google Update (Enabled) = C:\Users\Ewa\AppData\Local\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Windows Presentation Foundation (Enabled) = c:\Windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - Extension: YouTube = C:\Users\Ewa\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Szukaj w Google = C:\Users\Ewa\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: avast! WebRep = C:\Users\Ewa\AppData\Local\Google\Chrome\User Data\Default\Extensions\icmlaeflemplmjndnaapfdbbnpncnbda\7.0.1456_0\ CHR - Extension: Gmail = C:\Users\Ewa\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2006-09-18 23:41:30 | 000,000,761 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O3 - HKLM\..\Toolbar: (avast! WebRep) - {8E5E2654-AD2D-48bf-AC2D-D17F00898D06} - C:\Program Files\AVAST Software\Avast\aswWebRepIE.dll (AVAST Software) O4 - HKLM..\Run: [] File not found O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software) O4 - HKLM..\Run: [NvCplDaemon] C:\Windows\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\Windows\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [SysTrayApp] C:\Program Files\IDT\WDM\sttray.exe (IDT, Inc.) O4 - HKLM..\Run: [Windows Defender] C:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKU\S-1-5-19..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\Run: [WindowsWelcomeCenter] C:\Windows\System32\oobefldr.dll (Microsoft Corporation) O8 - Extra context menu item: Add to Google Photos Screensa&amp;ver - C:\Windows\System32\GPhotos.scr (Google Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 62.179.1.63 62.179.1.62 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A9D970DB-4FE1-4DF1-B223-DE252392282B}: DhcpNameServer = 62.179.1.63 62.179.1.62 O18 - Protocol\Filter\application/octet-stream {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-complus {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O18 - Protocol\Filter\application/x-msdownload {1E66F26B-79EE-11D2-8710-00C04F79ED0D} - mscoree.dll (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation) O24 - Desktop WallPaper: C:\Windows\Web\Wallpaper\img24.jpg O24 - Desktop BackupWallPaper: C:\Windows\Web\Wallpaper\img24.jpg O29 - HKLM SecurityProviders - (credssp.dll) - credssp.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ] O33 - MountPoints2\{8e818fad-c811-11e1-9124-002186ec38d9}\Shell - "" = AutoRun O33 - MountPoints2\{8e818fad-c811-11e1-9124-002186ec38d9}\Shell\AutoRun\command - "" = G:\LaunchU3.exe -a O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - C:\Windows\System32\ias.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found SafeBootMin: AppMgmt - Service SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: HelpSvc - Service SafeBootMin: NTDS - File not found SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: sacsvr - Service SafeBootMin: SCSI Class - Driver Group SafeBootMin: System Bus Extender - Driver Group SafeBootMin: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices SafeBootNet: AppMgmt - Service SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: HelpSvc - Service SafeBootNet: Messenger - Service SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: NTDS - File not found SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: rdsessmgr - Service SafeBootNet: sacsvr - Service SafeBootNet: SCSI Class - Driver Group SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: WinDefend - C:\Program Files\Windows Defender\MpSvc.dll (Microsoft Corporation) SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2012-08-04 19:07:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012-08-04 19:05:42 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012-08-04 19:03:24 | 000,000,000 | ---D | C] -- C:\ProgramData\McAfee [2012-08-04 18:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun [2012-08-04 18:51:04 | 000,000,000 | ---D | C] -- C:\Program Files\JDownloader [2012-08-04 00:19:54 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\WinRAR [2012-08-03 14:34:53 | 000,000,000 | ---D | C] -- C:\Program Files\DownloadManager [2012-08-03 14:33:42 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Babylon [2012-08-03 14:33:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Babylon [2012-07-24 12:27:13 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Adobe [2012-07-20 03:01:20 | 000,000,000 | ---D | C] -- C:\Program Files\MSXML 4.0 [2012-07-20 00:33:28 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\OpenOffice.org [2012-07-20 00:27:52 | 000,000,000 | --SD | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\OpenOffice.org 3.4 [2012-07-20 00:26:21 | 000,000,000 | ---D | C] -- C:\Program Files\OpenOffice.org 3 [2012-07-20 00:24:55 | 000,000,000 | ---D | C] -- C:\Users\Ewa\Desktop\OpenOffice.org 3.4 (en-US) Installation Files [2012-07-19 18:52:19 | 000,000,000 | ---D | C] -- C:\ProgramData\WEBREG [2012-07-19 18:52:19 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\HP [2012-07-19 18:11:59 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\HpUpdate [2012-07-19 18:10:35 | 000,000,000 | ---D | C] -- C:\ProgramData\HP Product Assistant [2012-07-19 18:08:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2012-07-19 18:08:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2012-07-19 18:07:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\HP [2012-07-19 17:41:55 | 000,000,000 | ---D | C] -- C:\Program Files\HP [2012-07-19 17:40:49 | 000,000,000 | ---D | C] -- C:\ProgramData\HP [2012-07-10 19:08:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\K-Lite Codec Pack [2012-07-10 19:08:37 | 000,000,000 | ---D | C] -- C:\Program Files\K-Lite Codec Pack [2012-07-10 18:37:52 | 000,021,256 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2012-07-10 18:37:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus [2012-07-10 18:37:51 | 000,353,688 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys [2012-07-10 18:37:48 | 000,035,928 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys [2012-07-10 18:37:39 | 000,054,232 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys [2012-07-10 18:37:38 | 000,721,000 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys [2012-07-10 18:37:38 | 000,057,656 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2012-07-10 18:36:37 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr [2012-07-10 18:36:36 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [2012-07-10 18:36:23 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Nero [2012-07-10 18:36:09 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software [2012-07-10 18:36:09 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software [2012-07-10 18:26:42 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Nero [2012-07-10 18:26:06 | 000,000,000 | ---D | C] -- C:\Program Files\Nero [2012-07-10 18:25:41 | 000,000,000 | ---D | C] -- C:\ProgramData\Nero [2012-07-10 18:25:41 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Nero [2012-07-10 18:20:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2012-07-10 18:12:31 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Picasa 3 [2012-07-10 18:12:19 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2012-07-10 18:10:18 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HaoZip [2012-07-10 18:10:17 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\HaoZip [2012-07-10 18:10:16 | 000,000,000 | ---D | C] -- C:\Program Files\HaoZip [2012-07-10 18:08:25 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2012-07-10 18:08:25 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2012-07-10 18:07:35 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe [2012-07-09 18:01:18 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Google [2012-07-09 12:00:04 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Macromedia [2012-07-09 11:56:22 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Mozilla [2012-07-09 11:56:22 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Mozilla [2012-07-09 11:55:02 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-07-09 11:55:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla [2012-07-09 11:54:59 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-07-07 11:47:58 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Macromedia [2012-07-07 11:47:58 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Adobe [2012-07-07 11:47:53 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed [2012-07-07 11:45:55 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\hpqLog [2012-07-07 11:45:16 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2012-07-07 11:41:14 | 000,000,000 | ---D | C] -- C:\Program Files\Validity Sensors, Inc [2012-07-07 11:41:03 | 000,000,000 | -HSD | C] -- C:\Windows\Installer [2012-07-07 11:32:55 | 000,000,000 | ---D | C] -- C:\Windows\System32\no-NO [2012-07-07 11:32:48 | 000,000,000 | ---D | C] -- C:\Program Files\Broadcom [2012-07-07 11:32:47 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\InstallShield [2012-07-07 11:31:11 | 000,000,000 | ---D | C] -- C:\Program Files\Synaptics [2012-07-07 11:27:18 | 000,000,000 | ---D | C] -- C:\Windows\JMCR_DIR [2012-07-07 11:22:36 | 010,641,500 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtcpl.cpl [2012-07-07 11:22:36 | 000,532,480 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\idtmini1.exe [2012-07-07 11:22:36 | 000,446,556 | ---- | C] (IDT, Inc.) -- C:\Windows\sttray.exe [2012-07-07 11:22:35 | 002,875,392 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stlang.dll [2012-07-07 11:22:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\SRSLabs [2012-07-07 11:21:54 | 000,168,960 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\staco.dll [2012-07-07 11:21:18 | 000,671,744 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapo.dll [2012-07-07 11:21:18 | 000,427,008 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stapi32.dll [2012-07-07 11:21:18 | 000,404,480 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\stcplx.dll [2012-07-07 11:21:18 | 000,389,120 | ---- | C] (IDT, Inc.) -- C:\Windows\System32\drivers\stwrt.sys [2012-07-07 11:21:15 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2012-07-07 11:21:15 | 000,000,000 | ---D | C] -- C:\Program Files\IDT [2012-07-07 11:21:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2012-07-07 11:20:04 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA [2012-07-07 11:05:58 | 000,053,248 | ---- | C] (Windows XP Bundled build C-Centric Single User) -- C:\Windows\System32\CSVer.dll [2012-07-07 11:05:58 | 000,000,000 | ---D | C] -- C:\Program Files\Intel [2012-07-07 11:05:47 | 000,000,000 | ---D | C] -- C:\Intel [2012-07-07 11:05:46 | 000,000,000 | ---D | C] -- C:\swsetup [2012-07-07 10:59:10 | 000,000,000 | ---D | C] -- C:\dv5-1210ew [2012-07-06 18:33:05 | 000,000,000 | ---D | C] -- C:\Windows\Panther [2012-07-06 18:32:51 | 000,000,000 | -HSD | C] -- C:\Boot [2012-07-06 17:53:34 | 000,000,000 | R--D | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup [2012-07-06 17:53:34 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Searches [2012-07-06 17:53:34 | 000,000,000 | R--D | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools [2012-07-06 17:53:26 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Identities [2012-07-06 17:53:25 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Contacts [2012-07-06 17:53:24 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\VirtualStore [2012-07-06 17:53:21 | 000,000,000 | --SD | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Videos [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Saved Games [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Pictures [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Music [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Links [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Favorites [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Downloads [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Documents [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\Desktop [2012-07-06 17:53:21 | 000,000,000 | R--D | C] -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Ustawienia lokalne [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\AppData\Local\Temporary Internet Files [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Szablony [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\SendTo [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Recent [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\PrintHood [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\NetHood [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Documents\Moje wideo [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Documents\Moje obrazy [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Moje dokumenty [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Documents\Moja muzyka [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Menu Start [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\AppData\Local\Historia [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Dane aplikacji [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\AppData\Local\Dane aplikacji [2012-07-06 17:53:21 | 000,000,000 | -HSD | C] -- C:\Users\Ewa\Cookies [2012-07-06 17:53:21 | 000,000,000 | -H-D | C] -- C:\Users\Ewa\AppData [2012-07-06 17:53:21 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Temp [2012-07-06 17:53:21 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Local\Microsoft [2012-07-06 17:53:21 | 000,000,000 | ---D | C] -- C:\Users\Ewa\AppData\Roaming\Media Center Programs [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty [2012-07-06 17:51:43 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji [2012-07-06 17:36:34 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution [2012-07-06 17:35:17 | 000,000,000 | ---D | C] -- C:\Windows\System32\catroot2 [2012-07-06 17:35:07 | 000,000,000 | ---D | C] -- C:\Windows\Debug [2012-07-06 17:33:52 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch [2012-07-06 17:33:42 | 000,000,000 | -HSD | C] -- C:\System Volume Information [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2012-08-04 19:52:16 | 001,048,576 | -HS- | M] () -- C:\Users\Ewa\NTUSER.DAT [2012-08-04 19:09:51 | 000,000,930 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-08-04 18:57:23 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2012-08-04 18:57:23 | 000,003,552 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2012-08-04 18:57:09 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT [2012-08-04 18:57:07 | 000,031,681 | ---- | M] () -- C:\ProgramData\nvModes.001 [2012-08-04 18:57:00 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat [2012-08-04 18:56:57 | 3218,296,832 | -HS- | M] () -- C:\hiberfil.sys [2012-08-04 18:56:07 | 000,000,012 | ---- | M] () -- C:\Windows\bthservsdp.dat [2012-08-04 18:56:04 | 001,870,043 | -H-- | M] () -- C:\Users\Ewa\AppData\Local\IconCache.db [2012-08-04 18:56:00 | 000,001,050 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3329426144-2811280917-3907908328-1000UA.job [2012-08-04 18:11:13 | 000,002,032 | ---- | M] () -- C:\Users\Ewa\Desktop\Google Chrome.lnk [2012-08-04 17:18:52 | 001,352,524 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI [2012-08-04 17:18:52 | 000,618,960 | ---- | M] () -- C:\Windows\System32\perfh009.dat [2012-08-04 17:18:52 | 000,545,652 | ---- | M] () -- C:\Windows\System32\perfh015.dat [2012-08-04 17:18:52 | 000,106,744 | ---- | M] () -- C:\Windows\System32\perfc009.dat [2012-08-04 17:18:52 | 000,090,024 | ---- | M] () -- C:\Windows\System32\perfc015.dat [2012-08-04 17:14:05 | 000,001,829 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012-08-04 17:14:02 | 000,002,577 | ---- | M] () -- C:\Windows\System32\config.nt [2012-08-04 17:12:20 | 001,048,576 | -HS- | M] () -- C:\Users\Ewa\ntuser.dat_previous [2012-07-24 23:23:20 | 000,018,646 | ---- | M] () -- C:\Users\Ewa\Documents\Missing girl found.odt [2012-07-23 22:24:42 | 000,014,838 | ---- | M] () -- C:\Users\Ewa\Documents\Tragic collision.odt [2012-07-22 22:04:38 | 000,014,785 | ---- | M] () -- C:\Users\Ewa\Documents\UFO Sighted.odt [2012-07-22 20:42:13 | 000,017,704 | ---- | M] () -- C:\Users\Ewa\Documents\Bank robbed of millions.odt [2012-07-22 16:15:07 | 000,055,560 | ---- | M] () -- C:\Users\Ewa\AppData\Local\GDIPFONTCACHEV1.DAT [2012-07-22 16:14:15 | 000,255,552 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT [2012-07-20 01:52:00 | 000,014,555 | ---- | M] () -- C:\Users\Ewa\Documents\Leisure centre.odt [2012-07-20 00:27:53 | 000,001,033 | ---- | M] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.lnk [2012-07-19 18:43:46 | 000,211,225 | ---- | M] () -- C:\Windows\hpoins46.dat [2012-07-19 18:43:38 | 000,000,179 | ---- | M] () -- C:\Windows\win.ini [2012-07-19 18:09:12 | 000,001,972 | ---- | M] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2012-07-19 17:52:59 | 000,000,998 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3329426144-2811280917-3907908328-1000Core.job [2012-07-10 18:12:39 | 000,000,899 | ---- | M] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012-07-10 18:12:02 | 000,031,681 | ---- | M] () -- C:\ProgramData\nvModes.dat [2012-07-10 18:08:29 | 000,001,892 | ---- | M] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2012-07-09 12:59:47 | 000,001,820 | ---- | M] () -- C:\Windows\System32\rasctrnm.h [2012-07-09 12:56:52 | 001,657,350 | ---- | M] () -- C:\Windows\System32\wlan.tmf [2012-07-09 12:40:03 | 031,588,352 | ---- | M] () -- C:\Windows\ocsetup_install_NetFx3.etl [2012-07-09 12:40:03 | 000,327,680 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf [2012-07-09 12:40:03 | 000,065,536 | ---- | M] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx [2012-07-09 11:50:38 | 000,000,749 | RH-- | M] () -- C:\Windows\WindowsShell.Manifest [2012-07-07 11:41:42 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf [2012-07-07 11:41:41 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf [2012-07-07 11:41:35 | 000,000,003 | ---- | M] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01007_Inbox_Critical.Wdf [2012-07-07 11:33:15 | 000,885,782 | ---- | M] () -- C:\Windows\System32\oem11.inf [2012-07-07 11:32:45 | 000,006,656 | ---- | M] () -- C:\Windows\System32\bcmwlrc.dll [2012-07-07 11:31:18 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2012-07-07 11:27:39 | 000,000,125 | ---- | M] () -- C:\Windows\xUninstall.bat [2012-07-07 11:14:53 | 000,000,680 | ---- | M] () -- C:\Users\Ewa\AppData\Local\d3d9caps.dat [2012-07-07 11:03:27 | 000,003,584 | ---- | M] () -- C:\Users\Ewa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-07 11:03:20 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\UMDF\Msft_User_WpdFs_01_00_00.Wdf [2012-07-06 18:39:55 | 000,524,288 | -HS- | M] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms [2012-07-06 18:39:55 | 000,524,288 | -HS- | M] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2012-07-06 18:39:55 | 000,065,536 | -HS- | M] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2012-07-06 18:32:52 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2012-07-06 17:53:21 | 000,000,020 | -HS- | M] () -- C:\Users\Ewa\ntuser.ini [2012-07-06 17:37:25 | 000,065,580 | ---- | M] () -- C:\Windows\System32\license.rtf [2012-07-03 18:21:54 | 000,054,232 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys [2012-07-03 18:21:53 | 000,721,000 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys [2012-07-03 18:21:53 | 000,353,688 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys [2012-07-03 18:21:53 | 000,057,656 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys [2012-07-03 18:21:53 | 000,035,928 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr.sys [2012-07-03 18:21:53 | 000,021,256 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys [2012-07-03 18:21:32 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr [2012-07-03 18:21:28 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-08-04 17:14:05 | 000,001,829 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk [2012-07-23 20:31:15 | 000,014,838 | ---- | C] () -- C:\Users\Ewa\Documents\Tragic collision.odt [2012-07-23 19:06:54 | 000,018,646 | ---- | C] () -- C:\Users\Ewa\Documents\Missing girl found.odt [2012-07-22 22:04:36 | 000,014,785 | ---- | C] () -- C:\Users\Ewa\Documents\UFO Sighted.odt [2012-07-22 19:19:38 | 000,017,704 | ---- | C] () -- C:\Users\Ewa\Documents\Bank robbed of millions.odt [2012-07-20 01:51:58 | 000,014,555 | ---- | C] () -- C:\Users\Ewa\Documents\Leisure centre.odt [2012-07-20 00:27:53 | 000,001,033 | ---- | C] () -- C:\Users\Public\Desktop\OpenOffice.org 3.4.lnk [2012-07-19 18:09:12 | 000,001,972 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\HP Digital Imaging Monitor.lnk [2012-07-19 18:02:19 | 000,211,225 | ---- | C] () -- C:\Windows\hpoins46.dat [2012-07-19 18:02:19 | 000,000,532 | ---- | C] () -- C:\Windows\hpomdl46.dat [2012-07-10 19:25:04 | 000,031,681 | ---- | C] () -- C:\ProgramData\nvModes.001 [2012-07-10 19:08:45 | 000,175,616 | ---- | C] () -- C:\Windows\System32\unrar.dll [2012-07-10 18:12:39 | 000,000,899 | ---- | C] () -- C:\Users\Public\Desktop\Picasa 3.lnk [2012-07-10 18:12:02 | 000,031,681 | ---- | C] () -- C:\ProgramData\nvModes.dat [2012-07-10 18:08:29 | 000,001,892 | ---- | C] () -- C:\Users\Public\Desktop\Adobe Reader X.lnk [2012-07-10 18:08:29 | 000,001,804 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Adobe Reader X.lnk [2012-07-09 18:02:01 | 000,002,032 | ---- | C] () -- C:\Users\Ewa\Desktop\Google Chrome.lnk [2012-07-09 18:01:20 | 000,001,050 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3329426144-2811280917-3907908328-1000UA.job [2012-07-09 18:01:18 | 000,000,998 | ---- | C] () -- C:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-3329426144-2811280917-3907908328-1000Core.job [2012-07-09 12:59:47 | 000,001,820 | ---- | C] () -- C:\Windows\System32\rasctrnm.h [2012-07-09 12:56:52 | 001,657,350 | ---- | C] () -- C:\Windows\System32\wlan.tmf [2012-07-09 11:55:04 | 000,000,858 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk [2012-07-07 13:18:54 | 031,588,352 | ---- | C] () -- C:\Windows\ocsetup_install_NetFx3.etl [2012-07-07 13:18:54 | 000,327,680 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.perf [2012-07-07 13:18:54 | 000,065,536 | ---- | C] () -- C:\Windows\ocsetup_cbs_install_NetFx3.dpx [2012-07-07 11:47:55 | 000,000,930 | ---- | C] () -- C:\Windows\tasks\Adobe Flash Player Updater.job [2012-07-07 11:41:42 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_WinUSB_01007.Wdf [2012-07-07 11:41:41 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf [2012-07-07 11:41:35 | 000,000,003 | ---- | C] () -- C:\Windows\System32\drivers\MsftWdf_Kernel_01007_Inbox_Critical.Wdf [2012-07-07 11:33:29 | 000,885,782 | ---- | C] () -- C:\Windows\System32\oem11.inf [2012-07-07 11:32:51 | 000,006,656 | ---- | C] () -- C:\Windows\System32\bcmwlrc.dll [2012-07-07 11:31:18 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_SynTP_01000.Wdf [2012-07-07 11:27:39 | 000,000,125 | ---- | C] () -- C:\Windows\xUninstall.bat [2012-07-07 11:03:27 | 000,003,584 | ---- | C] () -- C:\Users\Ewa\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-07-06 18:39:52 | 001,870,043 | -H-- | C] () -- C:\Users\Ewa\AppData\Local\IconCache.db [2012-07-06 18:32:52 | 000,008,192 | R-S- | C] () -- C:\BOOTSECT.BAK [2012-07-06 18:32:51 | 000,438,840 | RHS- | C] () -- C:\bootmgr [2012-07-06 17:53:41 | 000,055,560 | ---- | C] () -- C:\Users\Ewa\AppData\Local\GDIPFONTCACHEV1.DAT [2012-07-06 17:53:35 | 000,000,949 | ---- | C] () -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk [2012-07-06 17:53:34 | 000,000,944 | ---- | C] () -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Media Player.lnk [2012-07-06 17:53:25 | 000,000,915 | ---- | C] () -- C:\Users\Ewa\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows Mail.lnk [2012-07-06 17:53:22 | 000,000,680 | ---- | C] () -- C:\Users\Ewa\AppData\Local\d3d9caps.dat [2012-07-06 17:53:21 | 001,048,576 | -HS- | C] () -- C:\Users\Ewa\ntuser.dat_previous [2012-07-06 17:53:21 | 001,048,576 | -HS- | C] () -- C:\Users\Ewa\NTUSER.DAT [2012-07-06 17:53:21 | 000,524,288 | -HS- | C] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000002.regtrans-ms [2012-07-06 17:53:21 | 000,524,288 | -HS- | C] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms [2012-07-06 17:53:21 | 000,065,536 | -HS- | C] () -- C:\Users\Ewa\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf [2012-07-06 17:53:21 | 000,000,020 | -HS- | C] () -- C:\Users\Ewa\ntuser.ini [2012-07-06 17:38:55 | 3218,296,832 | -HS- | C] () -- C:\hiberfil.sys [2012-07-06 17:37:19 | 000,000,604 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows Live.lnk [2012-07-06 17:37:01 | 000,000,012 | ---- | C] () -- C:\Windows\bthservsdp.dat [color=#E56717]========== LOP Check ==========[/color] [2012-08-03 14:33:42 | 000,000,000 | ---D | M] -- C:\Users\Ewa\AppData\Roaming\Babylon [2012-08-04 18:48:04 | 000,000,000 | ---D | M] -- C:\Users\Ewa\AppData\Roaming\HaoZip [2012-07-20 00:33:28 | 000,000,000 | ---D | M] -- C:\Users\Ewa\AppData\Roaming\OpenOffice.org [2012-08-04 18:56:08 | 000,007,996 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2006-09-18 23:43:36 | 000,000,024 | ---- | M] () -- C:\autoexec.bat [2006-11-02 11:53:57 | 000,438,840 | RHS- | M] () -- C:\bootmgr [2012-07-06 18:32:52 | 000,008,192 | R-S- | M] () -- C:\BOOTSECT.BAK [2006-09-18 23:43:37 | 000,000,010 | ---- | M] () -- C:\config.sys [2008-04-11 10:07:18 | 000,003,820 | ---- | M] () -- C:\eula.1028.txt [2008-04-11 10:07:18 | 000,015,428 | ---- | M] () -- C:\eula.1031.txt [2008-04-11 10:07:18 | 000,010,058 | ---- | M] () -- C:\eula.1033.txt [2008-04-11 10:07:18 | 000,012,246 | ---- | M] () -- C:\eula.1036.txt [2008-04-11 10:07:18 | 000,013,912 | ---- | M] () -- C:\eula.1040.txt [2008-04-11 10:07:18 | 000,005,868 | ---- | M] () -- C:\eula.1041.txt [2008-04-11 10:07:18 | 000,005,970 | ---- | M] () -- C:\eula.1042.txt [2008-04-11 10:07:18 | 000,010,134 | ---- | M] () -- C:\eula.1049.txt [2008-04-11 10:07:18 | 000,003,814 | ---- | M] () -- C:\eula.2052.txt [2008-04-11 10:07:18 | 000,012,936 | ---- | M] () -- C:\eula.3082.txt [2008-04-11 10:07:18 | 000,001,110 | ---- | M] () -- C:\globdata.ini [2012-08-04 18:56:57 | 3218,296,832 | -HS- | M] () -- C:\hiberfil.sys [2008-04-11 08:03:48 | 000,562,688 | ---- | M] (Microsoft Corporation) -- C:\install.exe [2008-04-11 10:07:18 | 000,000,843 | ---- | M] () -- C:\install.ini [2008-04-11 08:03:48 | 000,076,304 | ---- | M] (Microsoft Corporation) -- C:\install.res.1028.dll [2008-04-11 08:03:48 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.1031.dll [2008-04-11 08:03:48 | 000,091,152 | ---- | M] (Microsoft Corporation) -- C:\install.res.1033.dll [2008-04-11 08:03:48 | 000,097,296 | ---- | M] (Microsoft Corporation) -- C:\install.res.1036.dll [2008-04-11 08:03:48 | 000,095,248 | ---- | M] (Microsoft Corporation) -- C:\install.res.1040.dll [2008-04-11 08:03:48 | 000,081,424 | ---- | M] (Microsoft Corporation) -- C:\install.res.1041.dll [2008-04-11 08:03:48 | 000,079,888 | ---- | M] (Microsoft Corporation) -- C:\install.res.1042.dll [2008-04-11 10:09:24 | 000,093,200 | ---- | M] (Microsoft Corporation) -- C:\install.res.1049.dll [2008-04-11 08:03:48 | 000,075,792 | ---- | M] (Microsoft Corporation) -- C:\install.res.2052.dll [2008-04-11 08:03:48 | 000,096,272 | ---- | M] (Microsoft Corporation) -- C:\install.res.3082.dll [2012-08-04 18:56:55 | 3532,226,560 | -HS- | M] () -- C:\pagefile.sys [2008-04-11 10:07:18 | 000,005,686 | ---- | M] () -- C:\vcredist.bmp [2008-04-11 10:09:38 | 003,797,292 | ---- | M] () -- C:\VC_RED.cab [2008-04-11 10:11:40 | 000,233,472 | ---- | M] () -- C:\VC_RED.MSI [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\drivers\AGP440.sys [2006-11-02 11:49:52 | 000,053,864 | ---- | M] (Microsoft Corporation) MD5=EF23439CDD587F64C2C1B8825CEAD7D8 -- C:\Windows\System32\DriverStore\FileRepository\machine.inf_920a2c1f\AGP440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2006-11-02 11:49:36 | 000,019,048 | ---- | M] (Microsoft Corporation) MD5=4F4FCB8B6EA06784FB6D475B7EC7300F -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_c6c2e699\atapi.sys [2012-07-07 14:12:03 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\drivers\atapi.sys [2012-07-07 14:12:03 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\System32\DriverStore\FileRepository\mshdc.inf_7de13c21\atapi.sys [2012-07-07 14:12:03 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=B35CFCEF838382AB6490B321C87EDF17 -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.16632_none_db337a442479c42c\atapi.sys [2012-07-07 14:12:02 | 000,021,560 | ---- | M] (Microsoft Corporation) MD5=E03E8C99D15D0381E02743C36AFC7C6F -- C:\Windows\winsxs\x86_mshdc.inf_31bf3856ad364e35_6.0.6000.20757_none_dbac78a93da31a8b\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2006-11-02 10:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=AC3DD1708B22761EBD7CBE14DCC3B5D7 -- C:\Windows\System32\drivers\beep.sys [2006-11-02 10:51:03 | 000,006,144 | ---- | M] (Microsoft Corporation) MD5=AC3DD1708B22761EBD7CBE14DCC3B5D7 -- C:\Windows\winsxs\x86_microsoft-windows-beepsys_31bf3856ad364e35_6.0.6000.16386_none_c1e9df570ab23787\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2006-11-02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\drivers\cdrom.sys [2006-11-02 10:51:44 | 000,067,072 | ---- | M] (Microsoft Corporation) MD5=8D1866E61AF096AE8B582454F5E4D303 -- C:\Windows\System32\DriverStore\FileRepository\cdrom.inf_e487f727\cdrom.sys [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2006-11-02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\System32\drivers\ndis.sys [2006-11-02 11:51:42 | 000,500,840 | ---- | M] (Microsoft Corporation) MD5=227C11E1E7CF6EF8AFB2A238D209760C -- C:\Windows\winsxs\x86_microsoft-windows-ndis_31bf3856ad364e35_6.0.6000.16386_none_a59069cb1f23fc44\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\System32\winlogon.exe [2006-11-02 11:45:57 | 000,308,224 | ---- | M] (Microsoft Corporation) MD5=9F75392B9128A91ABAFB044EA350BAAD -- C:\Windows\winsxs\x86_microsoft-windows-winlogon_31bf3856ad364e35_6.0.6000.16386_none_6d8c3f1ad8066b21\winlogon.exe < End of report > [/log] plik Extras [log] OTL Extras logfile created on: 2012-08-04 19:44:10 - Run 2 OTL by OldTimer - Version 3.2.43.0 Folder = C:\Users\Ewa\Downloads Windows Vista Home Premium Edition (Version = 6.0.6000) - Type = NTWorkstation Internet Explorer (Version = 7.0.6000.16982) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 1,70 Gb Available Physical Memory | 56,64% Memory free 6,17 Gb Paging File | 4,97 Gb Available in Paging File | 80,50% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 100,22 Gb Total Space | 61,07 Gb Free Space | 60,94% Space Free | Partition Type: NTFS Drive D: | 48,83 Gb Total Space | 48,68 Gb Free Space | 99,69% Space Free | Partition Type: NTFS Computer Name: EWA-PC | User Name: Ewa | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: Off | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-3329426144-2811280917-3907908328-1000] "EnableNotifications" = 0 "EnableNotificationsRef" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{3AA6EF8A-3406-4A38-9CA1-AA7D949BF1D8}" = rport=427 | protocol=17 | dir=in | svc=hpslpsvc | app=c:\windows\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{271B02DF-D08D-4B4A-96B8-AE9F337F6631}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqkygrp.exe | "{35D5370C-9A00-470A-BECE-FA0E7E3217CC}" = dir=in | app=c:\program files\hp\digital imaging\smart web printing\smartwebprintexe.exe | "{3C42F05C-3D88-4DF2-A0D3-757B1E8B4A0F}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqtra08.exe | "{67A887E0-B0A2-442F-BC5F-86C44620888B}" = dir=in | app=c:\program files\hp\digital imaging\bin\hposid01.exe | "{68A611AE-D935-48AE-A459-483A034ADE47}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgh.exe | "{83F87F58-60C9-4D0F-BFD5-643EF0823B67}" = dir=in | app=c:\program files\hp\hp software update\hpwucli.exe | "{8917A6CB-DCFC-465B-80A5-91669312AFB4}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpfccopy.exe | "{9664F2B6-8893-4097-9B10-B0198D32441A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqusgm.exe | "{99FDBD0F-65D1-4D80-994E-7BCD2366D18A}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqste08.exe | "{ABB9E942-8A8F-47C4-91C8-118603F5B586}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgplgtupl.exe | "{AD005DD7-66C4-48FA-BA13-D60C7C9F0FAF}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpoews01.exe | "{CDF752D8-CB77-4F51-99B1-3A87F317D471}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqcopy2.exe | "{D83CB27A-B6FA-4610-A097-DDEF2EEFCDA1}" = dir=in | app=c:\users\ewa\appdata\local\temp\7zs0ba9\setup\hpznui01.exe | "{ECBE887D-54F8-4010-9419-3B1CA783642D}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpiscnapp.exe | "{F75AA2CF-63C2-4D0F-9206-A3BFFEC3F07D}" = dir=in | app=c:\program files\hp\digital imaging\bin\hpqgpc01.exe | "TCP Query User{165CD4AC-9B33-4945-B4E3-023024099DD6}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "UDP Query User{ACBC62BD-150F-40F1-8D09-14A30A9F0045}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{06A1D88C-E102-4527-AF70-29FFD7AF215A}" = Scan "{097CDB1E-07C9-40F1-9972-F0F9F3A287E4}" = Network "{0AFFEA39-60AF-4C4F-BB47-4A1F7CB12129}" = HP Deskjet F4500 All-in-One Driver Software 14.0 Rel. 6 "{1458BB78-1DC5-4BC0-B9A3-2B644F5A8105}" = DeviceDiscovery "{150B6201-E9E6-4DFB-960E-CCBD53FBDDED}" = HPProductAssistant "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2376AAB2-F4D9-48D7-A42B-4E80B8967A8B}" = F4500 "{26604C7E-A313-4D12-867F-7C6E7820BE4C}" = JMicron JMB38X Flash Media Controller "{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33 "{292F0F52-B62D-4E71-921B-89A682402201}" = Toolbox "{2FB9EA69-51D4-4913-9AD5-762C034DE811}" = Status "{34D2AB40-150D-475D-AE32-BD23FB5EE355}" = HP Quick Launch Buttons "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4E8C27C2-D727-4C00-A90E-C3F6376EEE70}" = Nero ControlCenter "{51071D66-D034-4239-94E0-723FCA10B6FE}" = OpenOffice.org 3.4 "{595A3116-40BB-4E0F-A2E8-D7951DA56270}" = NeroExpress "{5DA8F6CD-C70E-39D8-8430-3D9808D6BD17}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30411 "{5DCF0E4B-F8EA-4229-A0BD-5CA6D4AFB749}" = SolutionCenter "{60FFB3E0-6D5B-4D73-AE5B-07E58B83AF0C}" = 32 Bit HP CIO Components Installer "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{74DC0593-6BC6-4001-AD5F-D810AFB68D86}" = HP Update "{83202942-84B3-4C50-8622-B8C0AA2D2885}" = Nero Express Help "{85498904-0748-45AA-9482-6DB8EA971B91}" = DJ_AIO_06_F4500_SW_MIN "{8EE94FD8-5F52-4463-A340-185D16328158}" = WebReg "{8FF6F5CA-4E30-4E3B-B951-204CAAA2716A}" = SmartWebPrinting "{961D53EA-40DC-4156-AD74-25684CE05F81}" = Nero Installer "{9A875B56-A35C-46BA-A3AA-DF8D03EE9F2F}" = Nero ControlCenter "{9BE466FF-70B7-4DA8-807C-DB4C3610FDAA}" = Copy "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{9F3523F8-DAD7-AE52-6DA7-45CDDDF33726}" = Advertising Center "{A8F2089B-1F79-4BF6-B385-A2C2B0B9A74D}" = ImagXpress "{AC35A885-0F8F-4857-B7DA-6E8DFB43E6B3}" = HPSSupply "{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.0) - Polish "{B1ADF008-E898-4FE2-8A1F-690D9A06ACAF}" = DolbyFiles "{B78120A0-CF84-4366-A393-4D0A59BC546C}" = Menu Templates - Starter Kit "{BB3447F6-9553-4AA9-960E-0DB5310C5779}" = GPBaseService2 "{BD7204BA-DD64-499E-9B55-6A282CDF4FA4}" = Destinations "{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade "{CAE4213F-F797-439D-BD9E-79B71D115BE3}" = HPPhotoGadget "{CD31E63D-47FD-491C-8117-CF201D0AFAB5}" = TrayApp "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D360FA88-17C8-4F14-B67F-13AAF9607B12}" = MarketResearch "{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio "{eb3de334-b4d7-4235-824a-16b02006bda9}" = Nero 9 Essentials "{F1D7AC58-554A-4A58-B784-B61558B1449A}" = QLBCASL "{F65B8208-5221-43D9-AA12-DDEA64EC4AF6}" = Validity Sensors software "{FA0FF682-CC70-4C57-93CD-E276F3E7537E}" = BufferChm "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "avast" = avast! Free Antivirus "Broadcom 802.11b Network Adapter" = Broadcom 802.11 Wireless LAN Adapter "HaoZip" = HaoZip "HP Imaging Device Functions" = HP Imaging Device Functions 14.0 "HP Smart Web Printing" = HP Smart Web Printing 4.60 "HP Solution Center &amp; Imaging Support Tools" = HP Solution Center 14.0 "HPExtendedCapabilities" = HP Customer Participation Program 14.0 "KLiteCodecPack_is1" = K-Lite Codec Pack 8.8.0 (Full) "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 13.0.1 (x86 pl)" = Mozilla Firefox 13.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NVIDIA Drivers" = NVIDIA Drivers "Picasa 3" = Picasa 3 "Shop for HP Supplies" = Shop for HP Supplies "SynTPDeinstKey" = Synaptics Pointing Device Driver [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-3329426144-2811280917-3907908328-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-07-31 20:03:41 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x000013FC Cleanup: 1 Error - 2012-08-01 16:08:01 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x00001E08 Cleanup: 1 Error - 2012-08-02 16:07:25 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x00001420 Cleanup: 1 Error - 2012-08-02 20:00:31 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x000020DC Cleanup: 1 Error - 2012-08-02 20:01:35 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x000020DC Cleanup: 1 Error - 2012-08-03 12:37:42 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x0000284C Cleanup: 1 Error - 2012-08-03 12:39:57 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x0000198C Cleanup: 1 Error - 2012-08-04 10:46:30 | Computer Name = Ewa-PC | Source = ESENT | ID = 623 Description = wuaueng.dll (1056) SUS20ClientDataStore: The version store for this instance (0) has reached its maximum size of 8Mb. It is likely that a long-running transaction is preventing cleanup of the version store and causing it to build up in size. Updates will be rejected until the long-running transaction has been completely committed or rolled back. Possible long-running transaction: SessionId: 0x014F0320 Session-context: 0x00000000 Session-context ThreadId: 0x00002108 Cleanup: 1 Error - 2012-08-04 13:13:35 | Computer Name = Ewa-PC | Source = Application Hang | ID = 1002 Description = Program OTL.exe w wersji 3.2.43.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania raportami i rozwiązaniami problemów. Identyfikator procesu: 410 Godzina rozpoczęcia: 01cd7263cd8204ea Godzina zakończenia: 31 Error - 2012-08-04 13:38:38 | Computer Name = Ewa-PC | Source = Application Hang | ID = 1002 Description = Program OTL.exe w wersji 3.2.43.0 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania raportami i rozwiązaniami problemów. Identyfikator procesu: 338 Godzina rozpoczęcia: 01cd7264c2aa558a Godzina zakończenia: 0 [ System Events ] Error - 2012-07-30 15:55:15 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X SD/MMC Host Controller&#39; (PCI\VEN_197B&amp;DEV_2382&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;01E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 15:55:15 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X SD Host Controller&#39; (PCI\VEN_197B&amp;DEV_2381&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;02E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 15:55:15 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X MS Host Controller&#39; (PCI\VEN_197B&amp;DEV_2383&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;03E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 15:55:15 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X xD Host Controller&#39; (PCI\VEN_197B&amp;DEV_2384&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;04E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 17:03:55 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;Kontroler hosta IEEE 1394 zgodny z OHCI&#39; (PCI\VEN_197B&amp;DEV_2380&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;00E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 17:03:55 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X SD/MMC Host Controller&#39; (PCI\VEN_197B&amp;DEV_2382&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;01E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 17:03:55 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X SD Host Controller&#39; (PCI\VEN_197B&amp;DEV_2381&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;02E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 17:03:55 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X MS Host Controller&#39; (PCI\VEN_197B&amp;DEV_2383&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;03E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-30 17:03:55 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;JMB38X xD Host Controller&#39; (PCI\VEN_197B&amp;DEV_2384&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;04E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. Error - 2012-07-31 16:36:41 | Computer Name = Ewa-PC | Source = PlugPlayManager | ID = 12 Description = Urządzenie &#39;Kontroler hosta IEEE 1394 zgodny z OHCI&#39; (PCI\VEN_197B&amp;DEV_2380&amp;SUBSYS_3603103C&amp;REV_00\4&amp;1b6d51b3&amp;0&amp;00E4) zniknęło z systemu bez uprzedniego przygotowania go do usunięcia. < End of report > [/log]
Gość komentarz 4 sierpnia 2012 komentarz 4 sierpnia 2012 Spróbuj adwcleanera http://general-changelog-team.fr/downloads/viewdownload/20-outils-de-xplode/2-adwcleaner Opcja delete
muminkisathebest komentarz 10 sierpnia 2012 Autor komentarz 10 sierpnia 2012 Zrobiłam to co było trzeba, myślałam, że pomogło, bo po włączeniu chroma miałam normalną stronę startową, ale sprawdziłam ponownie i znowu włączył się babylon. Proszę o dalsze rady.Może jeszcze jakieś rady? Sama nie mam pojęcia, co mogłaby jeszcze zrobić.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.