x-kom hosting

Hqaxais - błąd po każdym uruchomieniu komputera.

Piotras89
utworzono
utworzono (edytowane)

Od wczoraj jak wszedłem na pewną stronę internetową, a dokładnie na stronę pewnego klubu piłkarskiego wyskoczyło okienko z javą security to dałem cancel, ale nie dało się tego wyłączyć więc dałem ok. Teraz za każdym razem jak uruchamiam komputer wyskakuje mi:

[url="http://imageshack.us/f/10/53033916.jpg/"]http://imageshack.us...0/53033916.jpg/[/url] [imageshack.us]

Piszę tam coś takiego:

Hqaxais

Failed to get data for ‘EnableLUA’

Czy ktoś wie o co w tym gównie chodzi? Strona “raczej” zawirusowana nie jest to zaczęło się od momentu wyskoczenia tej cholernej javy. Prosiłbym osobę naprawdę ogarniętą, która wie o co chodzi, która spotkała się z tym problemem, a nie osoby, która chce nabić sobie posty. Jak wyłączam komputer to sam muszę zakończyć proces “Hqaxais”. W google nie mogłem nic na ten temat znaleźć. Co mam usunąć, jak naprawić bo szlak mnie trafia z tymi komputerami.

nitro07
komentarz
komentarz

Zrób logi według tej instrukcji [url="http://www.forumpc.pl/index.php?showtopic=104338"]OTL[/url] i wstaw na forum.

Poproszę moderatora o przeniesienie Twojego tematu do działu Bezpieczeństwo.

Piotras89
komentarz
komentarz (edytowane)

[log]OTL Extras logfile created on: 2012-08-20 16:36:39 - Run 3
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,73% Memory free
3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 24,83 Gb Free Space | 63,57% Space Free | Partition Type: NTFS
Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS

Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\Tlen.pl\tlen.exe" = C:\Program Files\Tlen.pl\tlen.exe:*:Enabled:Komunikator Tlen.pl -- (o2.pl Sp. z o.o.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\AVG\AVG2012\avgnsx.exe" = C:\Program Files\AVG\AVG2012\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2012\avgdiagex.exe" = C:\Program Files\AVG\AVG2012\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2012 -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2012\avgmfapx.exe" = C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.)
"C:\Program Files\AVG\AVG2012\avgemcx.exe" = C:\Program Files\AVG\AVG2012\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.)


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33
"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D12EC75-E7D3-4EAD-AB10-E1F3AFF94AA6}" = AVG 2012
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2
"{B143D835-EBAF-4A39-8B31-1868FF4166C1}" = AVG 2012
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"AVG" = AVG 2012
"Bink and Smacker" = Bink and Smacker
"DAEMON Tools Lite" = DAEMON Tools Lite
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NVIDIA Drivers" = NVIDIA Drivers
"RealAlt_is1" = Real Alternative 2.0.0
"STDU Viewer_is1" = STDU Viewer version 1.5.647.0
"SubEdit-Player_is1" = SubEdit-Player
"The Walking Dead © 3_is1" = The Walking Dead © 3 version 1
"Tlen.pl" = Tlen.pl
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.8
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 12:36:24 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32)
- Failed to compile: System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
. Error code = 0x80070005

Error - 2012-08-11 12:51:12 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1103
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Tried to start a service that wasn't the latest version of CLR Optimization service.
Will shutdown

[ System Events ]
Error - 2012-08-11 11:51:38 | Computer Name = PIOTRAS | Source = Windows Update Agent | ID = 20
Description = Instalacja nie powiodła się: system Windows nie mógł zainstalować
następującej aktualizacji, ponieważ wystąpił błąd 0x8007f0f4: Aktualizacja dla odtwarzaczy
multimedialnych obsługujących platformę WMDRM (KB902344).

Error - 2012-08-11 12:21:31 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 2012-08-11 12:21:34 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


< End of report >

[/[color=#0000FF]log[/color][color=#0000FF]][/color]

[[color=#0000FF]log[/color][color=#0000FF]][/color] OTL logfile created on: 2012-08-20 16:36:39 - Run 3
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,73% Memory free
3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 24,83 Gb Free Space | 63,57% Space Free | Partition Type: NTFS
Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS

Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - File not found --
PRC - [2012-08-20 16:24:55 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
PRC - [2012-06-13 03:48:24 | 001,255,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
PRC - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2012-03-19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
PRC - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2012-02-14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
PRC - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
PRC - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
PRC - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2012-08-20 16:24:55 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe
MOD - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012-08-16 19:52:25 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012-08-16 19:52:25 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012-08-16 19:52:25 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012-08-16 19:52:24 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-08-16 19:52:24 | 000,573,920 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012-08-16 19:52:24 | 000,068,576 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012-08-16 19:52:24 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012-08-16 19:52:23 | 000,829,920 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012-08-16 19:52:22 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012-08-16 19:52:22 | 000,358,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012-08-16 19:52:22 | 000,170,976 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012-08-16 19:52:22 | 000,095,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012-08-16 19:52:22 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012-08-16 19:52:22 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012-08-16 19:52:22 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012-08-16 19:52:21 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012-08-16 19:52:21 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012-08-16 19:52:21 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012-08-16 19:52:19 | 016,060,384 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012-08-16 19:52:19 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012-08-14 23:31:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
MOD - [2012-08-11 14:47:05 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre6\bin\msvcr71.dll
MOD - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
MOD - [2012-07-06 15:58:56 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll
MOD - [2012-07-06 15:58:56 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll
MOD - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe
MOD - [2012-07-02 23:08:18 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll
MOD - [2012-07-02 19:38:19 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll
MOD - [2012-07-02 19:38:19 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll
MOD - [2012-07-02 19:38:18 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll
MOD - [2012-06-21 03:48:58 | 001,982,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwd.dll
MOD - [2012-06-15 15:08:50 | 005,481,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcorex.dll
MOD - [2012-06-13 03:48:54 | 000,386,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdwsc.dll
MOD - [2012-06-13 03:48:24 | 001,255,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe
MOD - [2012-06-13 03:48:06 | 000,507,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsrmx.dll
MOD - [2012-06-13 03:48:02 | 000,286,328 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avglogx.dll
MOD - [2012-06-08 16:25:47 | 008,491,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2012-06-04 06:32:39 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll
MOD - [2012-06-02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wups2.dll
MOD - [2012-06-02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll
MOD - [2012-05-31 15:22:04 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll
MOD - [2012-05-22 03:49:04 | 000,962,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgxpl.dll
MOD - [2012-05-14 11:23:06 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll
MOD - [2012-04-20 21:30:26 | 001,510,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll
MOD - [2012-04-20 21:30:25 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll
MOD - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
MOD - [2012-04-17 17:19:08 | 004,860,736 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll
MOD - [2012-04-17 17:18:40 | 003,725,120 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\Engine.dll
MOD - [2012-04-06 12:22:56 | 000,382,784 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools Lite\imgengine.dll
MOD - [2012-04-05 05:12:08 | 000,108,416 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgmvflx.dll
MOD - [2012-03-23 05:56:16 | 000,385,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgdecider.dll
MOD - [2012-03-23 05:55:54 | 000,437,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgchjwx.dll
MOD - [2012-03-23 05:55:52 | 000,248,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcertx.dll
MOD - [2012-03-19 05:18:22 | 000,475,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgadvisorx.dll
MOD - [2012-03-19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe
MOD - [2012-03-01 01:58:00 | 002,797,376 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
MOD - [2012-03-01 01:58:00 | 002,291,712 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvapi.dll
MOD - [2012-03-01 01:58:00 | 000,981,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
MOD - [2012-03-01 01:58:00 | 000,639,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
MOD - [2012-02-29 23:15:40 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvrspl.dll
MOD - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
MOD - [2012-02-29 22:30:23 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvmctray.dll
MOD - [2012-02-29 16:10:17 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll
MOD - [2012-02-29 16:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll
MOD - [2012-02-15 04:56:32 | 000,880,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidpsdkx.dll
MOD - [2012-02-14 04:53:22 | 003,175,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avguires.dll
MOD - [2012-02-14 04:53:02 | 000,595,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgvvx.dll
MOD - [2012-02-14 04:53:00 | 000,547,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsched.dll
MOD - [2012-02-14 04:53:00 | 000,366,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsysx.dll
MOD - [2012-02-14 04:53:00 | 000,158,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgse.dll
MOD - [2012-02-14 04:53:00 | 000,140,128 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgscanx.dll
MOD - [2012-02-14 04:52:58 | 000,889,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgntopensslx.dll
MOD - [2012-02-14 04:52:58 | 000,129,376 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgopensslx.dll
MOD - [2012-02-14 04:52:56 | 001,049,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcfgx.dll
MOD - [2012-02-14 04:52:56 | 000,853,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcslx.dll
MOD - [2012-02-14 04:52:56 | 000,176,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avglngx.dll
MOD - [2012-02-14 04:52:54 | 000,343,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidpmx.dll
MOD - [2012-02-14 04:52:38 | 000,362,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcclix.dll
MOD - [2012-02-14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe
MOD - [2012-02-14 04:52:38 | 000,256,864 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgclitx.dll
MOD - [2012-02-14 04:52:36 | 000,172,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgchclx.dll
MOD - [2012-02-09 17:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
MOD - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2011-12-24 23:49:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
MOD - [2011-11-16 16:21:48 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll
MOD - [2011-11-01 18:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2011-10-28 18:07:18 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\jscript.dll
MOD - [2011-10-14 16:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll
MOD - [2011-09-26 11:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll
MOD - [2011-05-17 09:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-03-03 08:55:00 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll
MOD - [2011-02-08 15:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll
MOD - [2010-12-22 14:34:22 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll
MOD - [2010-12-20 19:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2010-12-20 19:25:52 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll
MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-11-09 16:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll
MOD - [2010-08-27 10:03:47 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\t2embed.dll
MOD - [2010-08-27 07:54:13 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll
MOD - [2010-08-23 18:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-04-16 17:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll
MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll
MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll
MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll
MOD - [2010-03-18 10:09:00 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll
MOD - [2010-03-18 10:09:00 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll
MOD - [2010-03-15 11:28:22 | 000,142,336 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\RarExt.dll
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-10-13 12:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll
MOD - [2009-10-12 15:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll
MOD - [2009-10-12 15:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll
MOD - [2009-09-11 16:19:43 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll
MOD - [2009-09-04 23:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll
MOD - [2009-07-28 01:19:10 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll
MOD - [2009-07-17 21:04:02 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll
MOD - [2009-07-17 18:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll
MOD - [2009-07-12 00:02:02 | 003,780,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfc90u.dll
MOD - [2009-07-12 00:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll
MOD - [2009-07-12 00:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-06-25 10:27:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll
MOD - [2009-06-10 08:16:42 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-03-08 04:34:48 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll
MOD - [2009-03-08 04:32:48 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll
MOD - [2009-03-06 16:22:12 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll
MOD - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll
MOD - [2009-02-09 12:53:44 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll
MOD - [2009-02-09 12:53:43 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll
MOD - [2009-01-07 18:20:36 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-07-25 11:17:20 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
MOD - [2008-07-25 11:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
MOD - [2008-07-07 22:29:10 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll
MOD - [2008-07-06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
MOD - [2008-06-24 18:46:33 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll
MOD - [2008-06-20 18:04:23 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll
MOD - [2008-06-12 16:23:52 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll
MOD - [2008-06-12 16:23:52 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll
MOD - [2008-06-12 16:23:52 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll
MOD - [2008-04-14 22:51:58 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp
MOD - [2008-04-14 22:51:58 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:51:58 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp
MOD - [2008-04-14 22:51:58 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp
MOD - [2008-04-14 22:51:58 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp
MOD - [2008-04-14 22:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv
MOD - [2008-04-14 22:51:58 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp
MOD - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
MOD - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
MOD - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
MOD - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe
MOD - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
MOD - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
MOD - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
MOD - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
MOD - [2008-04-14 22:51:02 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll
MOD - [2008-04-14 22:51:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll
MOD - [2008-04-14 22:51:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll
MOD - [2008-04-14 22:51:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll
MOD - [2008-04-14 22:51:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll
MOD - [2008-04-14 22:51:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll
MOD - [2008-04-14 22:51:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll
MOD - [2008-04-14 22:51:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll
MOD - [2008-04-14 22:51:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll
MOD - [2008-04-14 22:51:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2008-04-14 22:51:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll
MOD - [2008-04-14 22:51:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll
MOD - [2008-04-14 22:51:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll
MOD - [2008-04-14 22:51:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wship6.dll
MOD - [2008-04-14 22:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll
MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 22:50:58 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll
MOD - [2008-04-14 22:50:58 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll
MOD - [2008-04-14 22:50:58 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll
MOD - [2008-04-14 22:50:58 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll
MOD - [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll
MOD - [2008-04-14 22:50:58 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll
MOD - [2008-04-14 22:50:58 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll
MOD - [2008-04-14 22:50:58 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll
MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 22:50:58 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll
MOD - [2008-04-14 22:50:58 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll
MOD - [2008-04-14 22:50:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll
MOD - [2008-04-14 22:50:58 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll
MOD - [2008-04-14 22:50:58 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll
MOD - [2008-04-14 22:50:58 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll
MOD - [2008-04-14 22:50:58 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll
MOD - [2008-04-14 22:50:58 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll
MOD - [2008-04-14 22:50:58 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll
MOD - [2008-04-14 22:50:58 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll
MOD - [2008-04-14 22:50:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll
MOD - [2008-04-14 22:50:58 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll
MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll
MOD - [2008-04-14 22:50:58 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll
MOD - [2008-04-14 22:50:48 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll
MOD - [2008-04-14 22:50:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll
MOD - [2008-04-14 22:50:48 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll
MOD - [2008-04-14 22:50:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\snmpapi.dll
MOD - [2008-04-14 22:50:48 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll
MOD - [2008-04-14 22:50:46 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll
MOD - [2008-04-14 22:50:46 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll
MOD - [2008-04-14 22:50:46 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll
MOD - [2008-04-14 22:50:46 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll
MOD - [2008-04-14 22:50:46 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll
MOD - [2008-04-14 22:50:46 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll
MOD - [2008-04-14 22:50:46 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll
MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll
MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll
MOD - [2008-04-14 22:50:46 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll
MOD - [2008-04-14 22:50:46 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll
MOD - [2008-04-14 22:50:46 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oledlg.dll
MOD - [2008-04-14 22:50:46 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll
MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 22:50:46 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll
MOD - [2008-04-14 22:50:46 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll
MOD - [2008-04-14 22:50:46 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll
MOD - [2008-04-14 22:50:46 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll
MOD - [2008-04-14 22:50:46 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll
MOD - [2008-04-14 22:50:46 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll
MOD - [2008-04-14 22:50:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll
MOD - [2008-04-14 22:50:46 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll
MOD - [2008-04-14 22:50:46 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
MOD - [2008-04-14 22:50:46 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll
MOD - [2008-04-14 22:50:46 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll
MOD - [2008-04-14 22:50:46 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll
MOD - [2008-04-14 22:50:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll
MOD - [2008-04-14 22:50:46 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll
MOD - [2008-04-14 22:50:46 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll
MOD - [2008-04-14 22:50:46 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll
MOD - [2008-04-14 22:50:46 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll
MOD - [2008-04-14 22:50:46 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll
MOD - [2008-04-14 22:50:46 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll
MOD - [2008-04-14 22:50:44 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll
MOD - [2008-04-14 22:50:44 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll
MOD - [2008-04-14 22:50:42 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll
MOD - [2008-04-14 22:50:42 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll
MOD - [2008-04-14 22:50:42 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll
MOD - [2008-04-14 22:50:42 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll
MOD - [2008-04-14 22:50:42 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll
MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 22:50:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll
MOD - [2008-04-14 22:50:42 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll
MOD - [2008-04-14 22:50:42 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll
MOD - [2008-04-14 22:50:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll
MOD - [2008-04-14 22:50:42 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll
MOD - [2008-04-14 22:50:42 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll
MOD - [2008-04-14 22:50:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll
MOD - [2008-04-14 22:50:42 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll
MOD - [2008-04-14 22:50:40 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll
MOD - [2008-04-14 22:50:40 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll
MOD - [2008-04-14 22:50:40 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:40 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll
MOD - [2008-04-14 22:50:40 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvfw32.dll
MOD - [2008-04-14 22:50:40 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll
MOD - [2008-04-14 22:50:40 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mydocs.dll
MOD - [2008-04-14 22:50:40 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll
MOD - [2008-04-14 22:50:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll
MOD - [2008-04-14 22:50:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll
MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2008-04-14 22:50:38 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll
MOD - [2008-04-14 22:50:36 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2008-04-14 22:50:36 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll
MOD - [2008-04-14 22:50:36 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll
MOD - [2008-04-14 22:50:36 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll
MOD - [2008-04-14 22:50:36 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll
MOD - [2008-04-14 22:50:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll
MOD - [2008-04-14 22:50:34 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll
MOD - [2008-04-14 22:50:34 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll
MOD - [2008-04-14 22:50:34 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icm32.dll
MOD - [2008-04-14 22:50:34 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll
MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-14 22:50:34 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll
MOD - [2008-04-14 22:50:34 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll
MOD - [2008-04-14 22:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll
MOD - [2008-04-14 22:50:34 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidserv.dll
MOD - [2008-04-14 22:50:34 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll
MOD - [2008-04-14 22:50:34 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll
MOD - [2008-04-14 22:50:32 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll
MOD - [2008-04-14 22:50:32 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll
MOD - [2008-04-14 22:50:32 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:32 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll
MOD - [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll
MOD - [2008-04-14 22:50:32 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll
MOD - [2008-04-14 22:50:32 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll
MOD - [2008-04-14 22:50:32 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll
MOD - [2008-04-14 22:50:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\feclient.dll
MOD - [2008-04-14 22:50:30 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll
MOD - [2008-04-14 22:50:30 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll
MOD - [2008-04-14 22:50:28 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll
MOD - [2008-04-14 22:50:28 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll
MOD - [2008-04-14 22:50:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll
MOD - [2008-04-14 22:50:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll
MOD - [2008-04-14 22:50:22 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll
MOD - [2008-04-14 22:50:22 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll
MOD - [2008-04-14 22:50:20 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll
MOD - [2008-04-14 22:50:20 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll
MOD - [2008-04-14 22:50:18 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll
MOD - [2008-04-14 22:50:18 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll
MOD - [2008-04-14 22:50:18 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll
MOD - [2008-04-14 22:50:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll
MOD - [2008-04-14 22:50:18 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll
MOD - [2008-04-14 22:50:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll
MOD - [2008-04-14 22:50:16 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:14 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll
MOD - [2008-04-14 22:50:14 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:12 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll
MOD - [2008-04-14 22:50:10 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll
MOD - [2008-04-14 22:50:08 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll
MOD - [2008-04-14 22:50:06 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll
MOD - [2008-04-14 22:50:04 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll
MOD - [2008-04-14 22:50:04 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll
MOD - [2008-04-14 22:50:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll
MOD - [2008-04-14 22:49:58 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll
MOD - [2008-04-14 22:49:56 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acgenral.dll
MOD - [2008-04-14 22:49:56 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll
MOD - [2008-04-14 22:49:56 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll
MOD - [2008-04-14 22:49:54 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acadproc.dll
MOD - [2008-04-14 22:48:50 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctfime.ime
MOD - [2008-04-14 21:39:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll
MOD - [2008-04-14 21:35:18 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll
MOD - [2008-04-14 00:08:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll
MOD - [2008-04-13 23:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll
MOD - [2008-04-13 23:07:58 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll
MOD - [2008-04-13 21:53:32 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll
MOD - [2007-05-10 22:54:08 | 000,372,736 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
MOD - [2007-03-28 18:24:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll
MOD - [2006-10-22 23:08:42 | 000,062,080 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2006-10-18 21:47:22 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WPDShServiceObj.dll
MOD - [2006-10-18 21:47:18 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceApi.dll
MOD - [2006-10-18 21:47:18 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceTypes.dll
MOD - [2006-03-02 14:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll
MOD - [2006-03-02 14:00:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll
MOD - [2006-03-02 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll
MOD - [2006-03-02 14:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv
MOD - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasctrs.dll
MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll
MOD - [2006-03-02 14:00:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll
MOD - [2006-03-02 14:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll
MOD - [2006-03-02 14:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll
MOD - [2006-03-02 14:00:00 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lz32.dll
MOD - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
MOD - [2005-01-17 08:43:42 | 000,006,144 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\NvRaidSvpl.dll
MOD - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
MOD - [2003-08-08 08:23:16 | 012,172,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL
MOD - [2003-08-03 18:51:02 | 001,354,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\System\MSMAPI\1045\MSMAPI32.DLL
MOD - [2003-06-19 01:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
MOD - [2003-06-19 01:31:48 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012-08-16 19:52:24 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-08-14 23:31:24 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a8w7fgbf)
DRV - [2012-08-11 14:11:56 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2012-04-19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012-03-19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012-02-22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012-01-31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011-12-23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011-12-23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011-12-23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011-12-23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2005-05-17 11:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2005-04-05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-04-05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-03-09 15:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-12-22 11:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2004-10-19 05:50:00 | 000,008,576 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2001-08-17 23:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=%7Breferrer:source?%7D"]http://search.live.c...ferrer:source?}[/url]


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=IE-SearchBox&Form=IE8SRC"]http://search.live.c...Box&Form=IE8SRC[/url]
IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012-08-20 14:09:43 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-08-16 19:52:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-14 21:15:16 | 000,000,000 | ---D | M]

[2012-08-11 14:12:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions
[2012-08-15 22:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions
[2012-08-13 23:14:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012-08-14 20:13:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-08-11 14:47:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012-08-20 14:09:43 | 000,000,000 | ---D | M] (AVG Do Not Track) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX\DONOTTRACK
[2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-08-14 21:15:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-08-14 21:15:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-08-14 21:15:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-08-14 21:15:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-08-14 21:15:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-08-14 21:15:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" File not found
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe ()
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe (o2.pl Sp. z o.o.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-507921405-162531612-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.)
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [url="http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1344688896281"]http://windowsupdate...b?1344688896281[/url] (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [url="http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1344690717531"]http://update.micros...b?1344690717531[/url] (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C37BDEA6-B468-47B6-8AC6-7D031FA0B0AA}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error.
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2012-08-20 14:11:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012
[2012-08-20 14:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG
[2012-08-20 14:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012
[2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2012-08-20 14:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012-08-20 14:07:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2012-08-20 14:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2012-08-20 01:08:54 | 000,000,000 | ---D | C] -- C:\programdata
[2012-08-20 01:08:49 | 000,054,272 | ---- | C] (sdfsdfsda) -- C:\Documents and Settings\All Users\4xBd2lxm.exe
[2012-08-14 21:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2012-08-14 21:15:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-08-14 15:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Telltale Games
[2012-08-13 13:42:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED
[2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje wideo
[2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2012-08-11 20:21:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2012-08-11 18:33:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
[2012-08-11 17:55:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012-08-11 17:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012-08-11 17:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012-08-11 17:51:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Identities
[2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2012-08-11 17:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2012-08-11 17:47:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2012-08-11 17:12:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2012-08-11 17:12:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012-08-11 17:11:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2012-08-11 16:36:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\PrivacIE
[2012-08-11 16:35:04 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\IETldCache
[2012-08-11 16:19:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012-08-11 16:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012-08-11 16:18:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012-08-11 15:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage
[2012-08-11 15:53:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2012-08-11 15:51:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2012-08-11 15:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit\Wzór
[2012-08-11 15:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012-08-11 15:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012-08-11 15:43:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2012-08-11 15:41:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012-08-11 15:38:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012-08-11 15:38:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2012-08-11 15:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\WinRAR
[2012-08-11 15:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\vlc
[2012-08-11 14:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
[2012-08-11 14:46:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-08-11 14:46:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2012-08-11 14:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2012-08-11 14:46:48 | 000,000,000 | R--D | C] -- C:\Program Files
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2012-08-11 14:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
[2012-08-11 14:46:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012-08-11 14:44:22 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2012-08-11 14:44:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2012-08-11 14:43:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-08-11 14:43:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2012-08-11 14:41:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\UserData
[2012-08-11 14:37:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2012-08-11 14:37:31 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2012-08-11 14:37:31 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2012-08-11 14:37:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Macromedia
[2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Adobe
[2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\WinRAR
[2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR
[2012-08-11 14:21:39 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012-08-11 14:21:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Winamp
[2012-08-11 14:20:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN
[2012-08-11 14:19:55 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012-08-11 14:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2012-08-11 14:17:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent
[2012-08-11 14:15:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl
[2012-08-11 14:15:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Tlen.pl
[2012-08-11 14:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Tlen.pl
[2012-08-11 14:15:37 | 000,000,000 | ---D | C] -- C:\totalcmd
[2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SubEdit-Player
[2012-08-11 14:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\STDUViewer
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\STDUtility
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\STDUtility
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\STDU Viewer
[2012-08-11 14:14:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012-08-11 14:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative
[2012-08-11 14:14:34 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2012-08-11 14:14:33 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\RADVideo
[2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Bink and Smacker
[2012-08-11 14:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2012-08-11 14:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-08-11 14:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Sun
[2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Mozilla
[2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla
[2012-08-11 14:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-08-11 14:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2012-08-11 14:08:58 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2012-08-11 14:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:08:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:04:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2012-08-11 14:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Adobe
[2012-08-11 14:03:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-08-11 14:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ACE Mega CoDecS Pack
[2012-08-11 14:00:40 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll
[2012-08-11 14:00:40 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll
[2012-08-11 14:00:40 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll
[2012-08-11 14:00:39 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll
[2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll
[2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll
[2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll
[2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll
[2012-08-11 14:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack
[2012-08-11 13:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
[2012-08-11 13:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012-08-11 13:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012-08-11 13:54:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2012-08-11 13:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012-08-11 13:41:41 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012-08-11 13:37:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation
[2012-08-11 13:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA
[2012-08-11 13:36:07 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012-08-11 13:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012-08-11 13:35:17 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012-08-11 13:32:43 | 000,008,576 | R--- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\drivers\EIO.sys
[2012-08-11 13:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero
[2012-08-11 13:30:24 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2012-08-11 13:30:21 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2012-08-11 13:30:20 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2012-08-11 13:30:20 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2012-08-11 13:30:20 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2012-08-11 13:30:18 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2012-08-11 13:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2012-08-11 13:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2012-08-11 13:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CyberLink DVD Solution
[2012-08-11 13:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink DVD Solution
[2012-08-11 13:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2012-08-11 13:10:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NVIDIA Corporation
[2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager
[2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek Sound Manager
[2012-08-11 13:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack
[2012-08-11 13:07:45 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012-08-11 13:07:45 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2012-08-11 13:05:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2012-08-11 13:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012-08-11 13:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Identities
[2012-08-11 13:01:57 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje obrazy
[2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moja muzyka
[2012-08-11 13:01:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Microsoft
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\SendTo
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Recent
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Ulubione
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Akcesoria
[2012-08-11 13:01:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\Cookies
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Szablony
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\PrintHood
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\NetHood
[2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit
[2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 13:01:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne
[2012-08-11 12:59:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2012-08-11 12:59:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2012-08-11 12:59:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2012-08-11 12:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 12:58:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2012-08-11 12:58:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012-08-11 12:56:58 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2012-08-11 12:56:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2012-08-11 12:55:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2012-08-11 12:55:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2012-08-11 12:55:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2012-08-11 12:55:07 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2012-08-11 12:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2012-08-11 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2012-08-11 12:54:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2012-08-11 12:54:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2012-08-11 12:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012-08-11 12:54:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2012-08-11 12:54:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2012-08-11 12:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2012-08-11 12:53:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2012-08-11 12:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2012-08-11 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2012-08-11 12:53:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2012-08-11 12:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2012-08-11 12:53:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2012-08-11 12:53:14 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2012-08-11 12:53:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne
[2012-08-11 12:53:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2012-08-11 12:52:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry
[2012-08-11 12:52:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2012-08-11 12:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2012-08-11 12:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2012-08-11 12:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2012-08-11 12:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2012-08-11 12:51:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2012-08-11 12:51:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2012-08-11 12:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2012-08-20 16:31:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-08-20 16:20:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-08-20 14:13:15 | 104,413,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012-08-20 14:10:30 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2012.lnk
[2012-08-20 01:08:54 | 033,464,175 | ---- | M] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe
[2012-08-20 01:08:53 | 000,413,879 | ---- | M] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp
[2012-08-20 01:08:50 | 000,054,272 | ---- | M] (sdfsdfsda) -- C:\Documents and Settings\All Users\4xBd2lxm.exe
[2012-08-19 00:21:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-08-17 19:55:47 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-16 09:58:04 | 000,196,160 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-08-16 00:54:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-08-13 13:40:56 | 000,000,407 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk
[2012-08-11 19:05:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-08-11 18:47:46 | 000,540,820 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-08-11 18:47:46 | 000,480,696 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-08-11 18:47:46 | 000,098,710 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-08-11 18:47:46 | 000,079,152 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-08-11 18:33:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-08-11 17:50:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-08-11 17:50:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-08-11 17:49:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012-08-11 15:49:45 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2012-08-11 14:20:18 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2012-08-11 14:18:49 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2012-08-11 14:15:53 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk
[2012-08-11 14:15:37 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk
[2012-08-11 14:15:37 | 000,000,090 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012-08-11 14:15:22 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk
[2012-08-11 14:15:10 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk
[2012-08-11 14:12:21 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2012-08-11 14:12:16 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-08-11 14:11:57 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2012-08-11 14:03:14 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk
[2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012-08-11 13:58:56 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012-08-11 13:55:02 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012-08-11 13:36:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012-08-11 13:31:28 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2012-08-11 13:29:26 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk
[2012-08-11 13:14:08 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2012-08-11 13:11:40 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2012-08-11 13:11:40 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2012-08-11 13:08:49 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2012-08-11 13:02:11 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk
[2012-08-11 12:58:57 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2012-08-11 12:58:12 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-08-11 12:56:13 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-08-11 12:56:00 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012-08-11 12:53:23 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat
[5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-08-20 14:13:15 | 104,413,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012-08-20 14:10:30 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2012.lnk
[2012-08-20 01:08:53 | 033,464,175 | ---- | C] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe
[2012-08-20 01:08:50 | 000,413,879 | ---- | C] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp
[2012-08-14 21:15:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2012-08-13 13:40:56 | 000,000,407 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk
[2012-08-11 18:33:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-08-11 17:49:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012-08-11 17:44:45 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb
[2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012-08-11 15:44:39 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012-08-11 15:44:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012-08-11 15:44:39 | 000,074,010 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012-08-11 15:44:39 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012-08-11 15:44:39 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012-08-11 15:44:39 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012-08-11 15:44:39 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012-08-11 15:44:39 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012-08-11 15:44:38 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012-08-11 15:44:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012-08-11 15:44:38 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012-08-11 15:44:38 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012-08-11 15:44:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012-08-11 15:44:38 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012-08-11 15:44:38 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012-08-11 15:44:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012-08-11 15:44:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012-08-11 15:44:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012-08-11 15:44:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012-08-11 15:44:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012-08-11 15:44:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012-08-11 15:44:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012-08-11 15:44:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012-08-11 15:44:38 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012-08-11 15:44:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012-08-11 15:44:38 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012-08-11 15:44:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012-08-11 15:44:38 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012-08-11 15:44:38 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012-08-11 15:44:38 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012-08-11 15:44:38 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012-08-11 15:44:38 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012-08-11 15:44:38 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012-08-11 15:44:38 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012-08-11 15:44:38 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012-08-11 15:44:37 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012-08-11 15:44:37 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012-08-11 15:44:37 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012-08-11 15:44:37 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012-08-11 15:44:37 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012-08-11 15:44:37 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012-08-11 15:44:37 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012-08-11 15:44:37 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012-08-11 15:44:37 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012-08-11 15:44:37 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012-08-11 15:44:37 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012-08-11 15:44:37 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012-08-11 15:44:37 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012-08-11 15:44:37 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012-08-11 15:44:37 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012-08-11 15:44:37 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012-08-11 15:44:37 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012-08-11 15:44:36 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012-08-11 15:44:36 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012-08-11 15:44:36 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012-08-11 15:44:36 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012-08-11 15:44:36 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012-08-11 15:44:36 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012-08-11 15:44:36 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012-08-11 15:44:36 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012-08-11 15:44:36 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012-08-11 15:44:36 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012-08-11 15:44:36 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012-08-11 15:44:36 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012-08-11 15:44:36 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012-08-11 15:44:36 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012-08-11 15:44:36 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012-08-11 15:44:36 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012-08-11 15:41:16 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2012-08-11 15:41:15 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2012-08-11 15:41:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2012-08-11 14:46:55 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012-08-11 14:46:52 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-08-11 14:46:50 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2012-08-11 14:46:50 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2012-08-11 14:46:49 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2012-08-11 14:46:49 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2012-08-11 14:46:28 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2012-08-11 14:44:38 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2012-08-11 14:44:38 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012-08-11 14:44:38 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012-08-11 14:44:38 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012-08-11 14:44:38 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012-08-11 14:44:38 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012-08-11 14:44:38 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012-08-11 14:44:38 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2012-08-11 14:43:54 | 000,196,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-08-11 14:43:08 | 000,000,223 | RHS- | C] () -- C:\boot.ini
[2012-08-11 14:43:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-08-11 14:34:39 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-08-11 14:20:18 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2012-08-11 14:18:25 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2012-08-11 14:15:53 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk
[2012-08-11 14:15:37 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2012-08-11 14:15:37 | 000,000,090 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2012-08-11 14:15:22 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk
[2012-08-11 14:15:10 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk
[2012-08-11 14:12:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2012-08-11 14:12:16 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-08-11 14:11:57 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2012-08-11 14:08:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2012-08-11 14:08:01 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-11 14:03:14 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 8.lnk
[2012-08-11 14:03:14 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk
[2012-08-11 14:01:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl
[2012-08-11 14:00:42 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2012-08-11 14:00:42 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2012-08-11 14:00:42 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2012-08-11 14:00:39 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2012-08-11 14:00:39 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2012-08-11 14:00:36 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2012-08-11 14:00:34 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl
[2012-08-11 13:55:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012-08-11 13:36:20 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012-08-11 13:36:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012-08-11 13:36:06 | 002,784,050 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012-08-11 13:36:06 | 000,007,843 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012-08-11 13:31:28 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2012-08-11 13:29:26 | 000,001,900 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk
[2012-08-11 13:29:24 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2012-08-11 13:14:08 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2012-08-11 13:11:40 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2012-08-11 13:11:40 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2012-08-11 13:10:19 | 000,249,344 | R--- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe
[2012-08-11 13:10:19 | 000,223,232 | R--- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe
[2012-08-11 13:08:49 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2012-08-11 13:08:45 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2012-08-11 13:08:40 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2012-08-11 13:08:39 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012-08-11 13:08:34 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV
[2012-08-11 13:05:27 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2012-08-11 13:05:25 | 000,001,231 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2012-08-11 13:02:11 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk
[2012-08-11 13:01:58 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Outlook Express.lnk
[2012-08-11 13:01:57 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Internet Explorer.lnk
[2012-08-11 13:01:41 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Pomoc zdalna.lnk
[2012-08-11 13:01:41 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Windows Media Player.lnk
[2012-08-11 12:58:57 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2012-08-11 12:58:12 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-08-11 12:57:44 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012-08-11 12:57:31 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012-08-11 12:57:24 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012-08-11 12:57:23 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012-08-11 12:57:21 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012-08-11 12:57:16 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012-08-11 12:57:13 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012-08-11 12:57:00 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012-08-11 12:56:13 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2012-08-11 12:56:10 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-08-11 12:56:10 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-08-11 12:56:09 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012-08-11 12:55:07 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk
[2012-08-11 12:54:55 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2012-08-11 12:54:13 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2012-08-11 12:53:23 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-08-11 12:52:41 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk
[2012-08-11 12:52:14 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp
[2012-08-11 12:52:13 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp
[2012-08-11 12:52:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp
[2012-08-11 12:52:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp
[2012-08-11 12:52:13 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp
[2012-08-11 12:52:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2012-08-11 12:52:13 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp
[2012-08-11 12:52:13 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp
[2012-08-11 12:52:13 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp
[2012-08-11 12:52:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp
[2012-08-11 12:52:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp
[2012-08-11 12:52:09 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2012-08-11 12:52:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2012-08-11 12:52:08 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2012-08-11 12:52:01 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[color=#E56717]========== LOP Check ==========[/color]

[2012-08-20 14:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012
[2012-08-20 14:07:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-08-20 14:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2012-08-13 13:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED
[2012-08-20 14:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012
[2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl
[2012-08-20 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2006-03-02 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-08-11 13:10:33 | 000,000,032 | ---- | M] () -- C:\csb.log
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2006-03-02 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2012-08-20 16:20:27 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006-03-02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2006-03-02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006-03-02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2006-03-02 14:00:00 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >[/log]

komputerowiec19
komentarz
komentarz

Uruchom OTL i w sekcji (Własne opcje skanowania/Skrypt) wklej:

[quote]
:OTL
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a8w7fgbf)
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe ()

:Files
C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp
C:\Documents and Settings\All Users\UHTpJoPWI9.exe
C:\Documents and Settings\All Users\4xBd2lxm.exe

:Commands
[emptytemp]
[/quote]

Kliknij wykonaj skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, i kliknij skanuj.
Pokaż nowy log OTL.txt oraz raport z usuwania.

Piotras89
komentarz
komentarz (edytowane)

[log] All processes killed
========== OTL ==========
Error: No service named a8w7fgbf was found to stop!
Service\Driver key a8w7fgbf not found.
Registry value HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\HqaxaiS deleted successfully.
File move failed. c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe scheduled to be moved on reboot.
========== FILES ==========
C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp moved successfully.
C:\Documents and Settings\All Users\UHTpJoPWI9.exe moved successfully.
C:\Documents and Settings\All Users\4xBd2lxm.exe moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: LocalService
->Temp folder emptied: 66016 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: Piotr
->Temp folder emptied: 238875012 bytes
->Temporary Internet Files folder emptied: 676344916 bytes
->Java cache emptied: 264249 bytes
->FireFox cache emptied: 128516959 bytes
->Flash cache emptied: 3821 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 2148726 bytes
%systemroot%\System32 .tmp files removed: 2596 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 31692546 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 1 028,00 mb


OTL by OldTimer - Version 3.2.58.1 log created on 08202012_215444

Files\Folders moved on Reboot...
c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[/log]

[log] OTL Extras logfile created on: 2012-08-20 22:01:21 - Run 4
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,44% Memory free
3,85 Gb Paging File | 3,34 Gb Available in Paging File | 86,81% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 26,11 Gb Free Space | 66,86% Space Free | Partition Type: NTFS
Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS

Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Extra Registry (SafeList) ==========[/color]


[color=#E56717]========== File Associations ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*

[HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

[color=#E56717]========== Shell Spawning ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" ()
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" ()
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[color=#E56717]========== Security Center Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"FirewallDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 0
"FirewallOverride" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

[color=#E56717]========== System Restore Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

[color=#E56717]========== Firewall Settings ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1

[color=#E56717]========== Authorized Applications List ==========[/color]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"C:\Program Files\Tlen.pl\tlen.exe" = C:\Program Files\Tlen.pl\tlen.exe:*:Enabled:Komunikator Tlen.pl -- (o2.pl Sp. z o.o.)
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\AVG\AVG2012\avgnsx.exe" = C:\Program Files\AVG\AVG2012\avgnsx.exe:*:Enabled:Ochrona Sieci
"C:\Program Files\AVG\AVG2012\avgdiagex.exe" = C:\Program Files\AVG\AVG2012\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2012
"C:\Program Files\AVG\AVG2012\avgmfapx.exe" = C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Instalator AVG
"C:\Program Files\AVG\AVG2012\avgemcx.exe" = C:\Program Files\AVG\AVG2012\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail


[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher
"{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33
"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6D12EC75-E7D3-4EAD-AB10-E1F3AFF94AA6}" = AVG 2012
"{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2
"{B143D835-EBAF-4A39-8B31-1868FF4166C1}" = AVG 2012
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 296.10
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver
"{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX
"{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
"{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.5
"Bink and Smacker" = Bink and Smacker
"DAEMON Tools Lite" = DAEMON Tools Lite
"ie8" = Windows Internet Explorer 8
"Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP
"Nero - Burning Rom!UninstallKey" = Nero OEM
"NVIDIA Drivers" = NVIDIA Drivers
"RealAlt_is1" = Real Alternative 2.0.0
"STDU Viewer_is1" = STDU Viewer version 1.5.647.0
"SubEdit-Player_is1" = SubEdit-Player
"The Walking Dead © 3_is1" = The Walking Dead © 3 version 1
"Tlen.pl" = Tlen.pl
"Totalcmd" = Total Commander (Remove or Repair)
"uTorrent" = µTorrent
"VLC media player" = VLC media player 1.1.8
"Winamp" = Winamp
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"Windows Media Player" = Windows Media Player 11
"Windows XP Service Pack" = Windows XP Service Pack 3
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"wmp11" = Windows Media Player 11
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0

[color=#E56717]========== Last 20 Event Log Errors ==========[/color]

[ Application Events ]
Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026
Description =

Error - 2012-08-11 12:36:24 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1101
Description = .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32)
- Failed to compile: System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089
. Error code = 0x80070005

Error - 2012-08-11 12:51:12 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1103
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
- Tried to start a service that wasn't the latest version of CLR Optimization service.
Will shutdown

Error - 2012-08-20 10:53:50 | Computer Name = PIOTRAS | Source = MsiInstaller | ID = 11922
Description = SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2012 — Błąd
1922. SA_Error1922: StandardAction(0xC0070782): Usunięcie usługi 'AVGIDSAgent'
(AVGIDSAgent) nie powiodło się. Sprawdź, czy masz wystarczające uprawnienia do usuwania
usług systemowych.

Error - 2012-08-20 11:05:25 | Computer Name = PIOTRAS | Source = MsiInstaller | ID = 11922
Description = SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2012 — Błąd
1922. SA_Error1922: StandardAction(0xC0070782): Usunięcie usługi 'AVGIDSAgent'
(AVGIDSAgent) nie powiodło się. Sprawdź, czy masz wystarczające uprawnienia do usuwania
usług systemowych.

[ System Events ]
Error - 2012-08-11 11:51:38 | Computer Name = PIOTRAS | Source = Windows Update Agent | ID = 20
Description = Instalacja nie powiodła się: system Windows nie mógł zainstalować
następującej aktualizacji, ponieważ wystąpił błąd 0x8007f0f4: Aktualizacja dla odtwarzaczy
multimedialnych obsługujących platformę WMDRM (KB902344).

Error - 2012-08-11 12:21:31 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}

Error - 2012-08-11 12:21:34 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi
WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39}


< End of report >

[/log]

[log] OTL logfile created on: 2012-08-20 22:01:21 - Run 4
OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,44% Memory free
3,85 Gb Paging File | 3,34 Gb Available in Paging File | 86,81% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 26,11 Gb Free Space | 66,86% Space Free | Partition Type: NTFS
Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS

Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
PRC - [2012-08-20 21:53:58 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe
PRC - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
PRC - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2012-06-02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
PRC - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe
PRC - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-01-11 22:16:38 | 000,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
PRC - [2007-10-16 12:53:12 | 006,234,112 | ---- | M] (o2.pl Sp. z o.o.) -- C:\Program Files\Tlen.pl\tlen.exe
PRC - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
PRC - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
PRC - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
MOD - [2012-08-20 21:53:58 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe
MOD - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
MOD - [2012-08-16 19:52:25 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll
MOD - [2012-08-16 19:52:25 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll
MOD - [2012-08-16 19:52:25 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll
MOD - [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll
MOD - [2012-08-16 19:52:24 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll
MOD - [2012-08-16 19:52:24 | 000,573,920 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll
MOD - [2012-08-16 19:52:24 | 000,068,576 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll
MOD - [2012-08-16 19:52:24 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll
MOD - [2012-08-16 19:52:23 | 000,829,920 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll
MOD - [2012-08-16 19:52:22 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll
MOD - [2012-08-16 19:52:22 | 000,358,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll
MOD - [2012-08-16 19:52:22 | 000,170,976 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll
MOD - [2012-08-16 19:52:22 | 000,095,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll
MOD - [2012-08-16 19:52:22 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll
MOD - [2012-08-16 19:52:22 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll
MOD - [2012-08-16 19:52:22 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll
MOD - [2012-08-16 19:52:21 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll
MOD - [2012-08-16 19:52:21 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll
MOD - [2012-08-16 19:52:21 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll
MOD - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe
MOD - [2012-08-16 19:52:19 | 016,060,384 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll
MOD - [2012-08-16 19:52:19 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll
MOD - [2012-08-14 23:31:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll
MOD - [2012-08-11 14:47:05 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre6\bin\msvcr71.dll
MOD - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
MOD - [2012-07-06 15:58:56 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll
MOD - [2012-07-06 15:58:56 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll
MOD - [2012-07-02 23:08:18 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll
MOD - [2012-07-02 19:38:19 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll
MOD - [2012-07-02 19:38:19 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll
MOD - [2012-07-02 19:38:18 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll
MOD - [2012-06-08 16:25:47 | 008,491,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2012-06-05 17:49:57 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml3.dll
MOD - [2012-06-04 06:32:39 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll
MOD - [2012-06-02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe
MOD - [2012-06-02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wups2.dll
MOD - [2012-06-02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll
MOD - [2012-05-31 15:22:04 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll
MOD - [2012-05-14 11:23:06 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll
MOD - [2012-04-20 21:30:26 | 001,510,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll
MOD - [2012-04-20 21:30:25 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll
MOD - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
MOD - [2012-04-17 17:19:08 | 004,860,736 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll
MOD - [2012-04-17 17:18:40 | 003,725,120 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\Engine.dll
MOD - [2012-04-06 12:22:56 | 000,382,784 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools Lite\imgengine.dll
MOD - [2012-03-01 01:58:00 | 002,797,376 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll
MOD - [2012-03-01 01:58:00 | 002,291,712 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvapi.dll
MOD - [2012-03-01 01:58:00 | 000,981,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll
MOD - [2012-03-01 01:58:00 | 000,639,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll
MOD - [2012-02-29 23:15:40 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvrspl.dll
MOD - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
MOD - [2012-02-29 22:30:23 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvmctray.dll
MOD - [2012-02-29 16:10:17 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll
MOD - [2012-02-29 16:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll
MOD - [2012-02-09 17:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
MOD - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2011-12-24 23:49:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll
MOD - [2011-11-16 16:21:48 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll
MOD - [2011-11-01 18:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2011-10-14 16:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll
MOD - [2011-09-26 11:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll
MOD - [2011-05-17 09:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2011-03-03 08:55:00 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll
MOD - [2011-02-08 15:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll
MOD - [2010-12-22 14:34:22 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll
MOD - [2010-12-20 19:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2010-12-20 19:25:52 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll
MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-11-09 16:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll
MOD - [2010-08-27 10:03:47 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\t2embed.dll
MOD - [2010-08-27 07:54:13 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll
MOD - [2010-08-23 18:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll
MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-04-16 17:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll
MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll
MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll
MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll
MOD - [2010-03-18 10:09:00 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll
MOD - [2010-03-18 10:09:00 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll
MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-10-13 12:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll
MOD - [2009-10-12 15:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll
MOD - [2009-10-12 15:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll
MOD - [2009-09-11 16:19:43 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll
MOD - [2009-09-04 23:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll
MOD - [2009-07-28 01:19:10 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll
MOD - [2009-07-17 21:04:02 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll
MOD - [2009-07-17 18:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll
MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-06-25 10:27:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll
MOD - [2009-06-10 08:16:42 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll
MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2009-03-08 04:34:48 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll
MOD - [2009-03-08 04:32:48 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll
MOD - [2009-03-06 16:22:12 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll
MOD - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll
MOD - [2009-02-09 12:53:44 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll
MOD - [2009-02-09 12:53:43 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll
MOD - [2009-01-07 18:20:36 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll
MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-07-25 11:17:20 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll
MOD - [2008-07-25 11:17:20 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll
MOD - [2008-07-25 11:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
MOD - [2008-07-07 22:29:10 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll
MOD - [2008-07-06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
MOD - [2008-06-24 18:46:33 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll
MOD - [2008-06-20 18:04:23 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll
MOD - [2008-06-12 16:23:52 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll
MOD - [2008-06-12 16:23:52 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll
MOD - [2008-06-12 16:23:52 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll
MOD - [2008-04-14 22:51:58 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp
MOD - [2008-04-14 22:51:58 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp
MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-14 22:51:58 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp
MOD - [2008-04-14 22:51:58 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp
MOD - [2008-04-14 22:51:58 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp
MOD - [2008-04-14 22:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv
MOD - [2008-04-14 22:51:58 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp
MOD - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
MOD - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
MOD - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
MOD - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe
MOD - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe
MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe
MOD - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
MOD - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
MOD - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
MOD - [2008-04-14 22:51:02 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll
MOD - [2008-04-14 22:51:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll
MOD - [2008-04-14 22:51:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll
MOD - [2008-04-14 22:51:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll
MOD - [2008-04-14 22:51:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll
MOD - [2008-04-14 22:51:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll
MOD - [2008-04-14 22:51:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll
MOD - [2008-04-14 22:51:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll
MOD - [2008-04-14 22:51:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll
MOD - [2008-04-14 22:51:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2008-04-14 22:51:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll
MOD - [2008-04-14 22:51:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll
MOD - [2008-04-14 22:51:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll
MOD - [2008-04-14 22:51:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wship6.dll
MOD - [2008-04-14 22:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll
MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-14 22:50:58 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll
MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-14 22:50:58 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll
MOD - [2008-04-14 22:50:58 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll
MOD - [2008-04-14 22:50:58 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll
MOD - [2008-04-14 22:50:58 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll
MOD - [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll
MOD - [2008-04-14 22:50:58 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll
MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2008-04-14 22:50:58 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll
MOD - [2008-04-14 22:50:58 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll
MOD - [2008-04-14 22:50:58 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll
MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2008-04-14 22:50:58 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll
MOD - [2008-04-14 22:50:58 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll
MOD - [2008-04-14 22:50:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll
MOD - [2008-04-14 22:50:58 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll
MOD - [2008-04-14 22:50:58 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll
MOD - [2008-04-14 22:50:58 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll
MOD - [2008-04-14 22:50:58 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll
MOD - [2008-04-14 22:50:58 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll
MOD - [2008-04-14 22:50:58 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcons.dll
MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-14 22:50:58 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll
MOD - [2008-04-14 22:50:58 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll
MOD - [2008-04-14 22:50:58 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll
MOD - [2008-04-14 22:50:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll
MOD - [2008-04-14 22:50:58 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll
MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll
MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll
MOD - [2008-04-14 22:50:58 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll
MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-14 22:50:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll
MOD - [2008-04-14 22:50:48 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll
MOD - [2008-04-14 22:50:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll
MOD - [2008-04-14 22:50:48 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll
MOD - [2008-04-14 22:50:48 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll
MOD - [2008-04-14 22:50:46 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll
MOD - [2008-04-14 22:50:46 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll
MOD - [2008-04-14 22:50:46 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll
MOD - [2008-04-14 22:50:46 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll
MOD - [2008-04-14 22:50:46 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll
MOD - [2008-04-14 22:50:46 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll
MOD - [2008-04-14 22:50:46 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll
MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll
MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll
MOD - [2008-04-14 22:50:46 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll
MOD - [2008-04-14 22:50:46 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll
MOD - [2008-04-14 22:50:46 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oledlg.dll
MOD - [2008-04-14 22:50:46 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll
MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-14 22:50:46 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll
MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2008-04-14 22:50:46 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll
MOD - [2008-04-14 22:50:46 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll
MOD - [2008-04-14 22:50:46 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll
MOD - [2008-04-14 22:50:46 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll
MOD - [2008-04-14 22:50:46 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll
MOD - [2008-04-14 22:50:46 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll
MOD - [2008-04-14 22:50:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll
MOD - [2008-04-14 22:50:46 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll
MOD - [2008-04-14 22:50:46 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
MOD - [2008-04-14 22:50:46 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll
MOD - [2008-04-14 22:50:46 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll
MOD - [2008-04-14 22:50:46 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll
MOD - [2008-04-14 22:50:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll
MOD - [2008-04-14 22:50:46 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll
MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-14 22:50:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll
MOD - [2008-04-14 22:50:46 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll
MOD - [2008-04-14 22:50:46 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll
MOD - [2008-04-14 22:50:46 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll
MOD - [2008-04-14 22:50:46 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll
MOD - [2008-04-14 22:50:46 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll
MOD - [2008-04-14 22:50:44 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll
MOD - [2008-04-14 22:50:44 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll
MOD - [2008-04-14 22:50:42 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll
MOD - [2008-04-14 22:50:42 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll
MOD - [2008-04-14 22:50:42 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll
MOD - [2008-04-14 22:50:42 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll
MOD - [2008-04-14 22:50:42 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll
MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2008-04-14 22:50:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll
MOD - [2008-04-14 22:50:42 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll
MOD - [2008-04-14 22:50:42 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll
MOD - [2008-04-14 22:50:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll
MOD - [2008-04-14 22:50:42 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll
MOD - [2008-04-14 22:50:42 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll
MOD - [2008-04-14 22:50:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll
MOD - [2008-04-14 22:50:42 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll
MOD - [2008-04-14 22:50:40 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll
MOD - [2008-04-14 22:50:40 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll
MOD - [2008-04-14 22:50:40 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll
MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-14 22:50:40 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll
MOD - [2008-04-14 22:50:40 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll
MOD - [2008-04-14 22:50:40 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll
MOD - [2008-04-14 22:50:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll
MOD - [2008-04-14 22:50:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll
MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll
MOD - [2008-04-14 22:50:38 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll
MOD - [2008-04-14 22:50:36 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2008-04-14 22:50:36 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll
MOD - [2008-04-14 22:50:36 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll
MOD - [2008-04-14 22:50:36 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll
MOD - [2008-04-14 22:50:36 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll
MOD - [2008-04-14 22:50:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll
MOD - [2008-04-14 22:50:34 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll
MOD - [2008-04-14 22:50:34 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll
MOD - [2008-04-14 22:50:34 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icm32.dll
MOD - [2008-04-14 22:50:34 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll
MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2008-04-14 22:50:34 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll
MOD - [2008-04-14 22:50:34 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll
MOD - [2008-04-14 22:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll
MOD - [2008-04-14 22:50:34 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidserv.dll
MOD - [2008-04-14 22:50:34 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll
MOD - [2008-04-14 22:50:34 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll
MOD - [2008-04-14 22:50:32 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll
MOD - [2008-04-14 22:50:32 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll
MOD - [2008-04-14 22:50:32 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll
MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-14 22:50:32 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll
MOD - [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll
MOD - [2008-04-14 22:50:32 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll
MOD - [2008-04-14 22:50:32 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll
MOD - [2008-04-14 22:50:32 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll
MOD - [2008-04-14 22:50:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\feclient.dll
MOD - [2008-04-14 22:50:30 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll
MOD - [2008-04-14 22:50:30 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll
MOD - [2008-04-14 22:50:28 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll
MOD - [2008-04-14 22:50:28 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll
MOD - [2008-04-14 22:50:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll
MOD - [2008-04-14 22:50:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll
MOD - [2008-04-14 22:50:22 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll
MOD - [2008-04-14 22:50:22 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll
MOD - [2008-04-14 22:50:20 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll
MOD - [2008-04-14 22:50:20 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll
MOD - [2008-04-14 22:50:18 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll
MOD - [2008-04-14 22:50:18 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll
MOD - [2008-04-14 22:50:18 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll
MOD - [2008-04-14 22:50:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll
MOD - [2008-04-14 22:50:18 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll
MOD - [2008-04-14 22:50:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll
MOD - [2008-04-14 22:50:16 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll
MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2008-04-14 22:50:14 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll
MOD - [2008-04-14 22:50:14 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll
MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2008-04-14 22:50:12 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll
MOD - [2008-04-14 22:50:10 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll
MOD - [2008-04-14 22:50:08 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll
MOD - [2008-04-14 22:50:06 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll
MOD - [2008-04-14 22:50:04 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll
MOD - [2008-04-14 22:50:04 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll
MOD - [2008-04-14 22:50:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll
MOD - [2008-04-14 22:49:58 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll
MOD - [2008-04-14 22:49:56 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acgenral.dll
MOD - [2008-04-14 22:49:56 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll
MOD - [2008-04-14 22:49:56 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll
MOD - [2008-04-14 22:49:54 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acadproc.dll
MOD - [2008-04-14 22:48:50 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll
MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctfime.ime
MOD - [2008-04-14 21:43:18 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdoclc.dll
MOD - [2008-04-14 21:39:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll
MOD - [2008-04-14 21:35:18 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll
MOD - [2008-04-14 00:08:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll
MOD - [2008-04-13 23:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll
MOD - [2008-04-13 23:07:58 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll
MOD - [2008-04-13 21:53:32 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll
MOD - [2008-01-11 22:16:38 | 000,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe
MOD - [2007-10-16 12:53:12 | 006,234,112 | ---- | M] (o2.pl Sp. z o.o.) -- C:\Program Files\Tlen.pl\tlen.exe
MOD - [2007-10-16 12:44:18 | 000,030,720 | ---- | M] () -- C:\Program Files\Tlen.pl\languages\polish.dll
MOD - [2007-10-05 15:00:58 | 000,181,248 | ---- | M] () -- C:\Program Files\Tlen.pl\libutil.dll
MOD - [2007-09-17 11:36:40 | 001,500,160 | ---- | M] (Borland Corporation) -- C:\Program Files\Tlen.pl\cc3260mt.dll
MOD - [2007-09-17 11:36:40 | 000,618,496 | ---- | M] () -- C:\Program Files\Tlen.pl\stlpmt45.dll
MOD - [2007-09-17 11:36:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Tlen.pl\libgadu.dll
MOD - [2007-09-17 11:36:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Tlen.pl\libexpat2.dll
MOD - [2007-09-17 11:36:40 | 000,022,016 | ---- | M] (Borland Software Corporation) -- C:\Program Files\Tlen.pl\borlndmm.dll
MOD - [2007-05-10 22:54:08 | 000,372,736 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
MOD - [2007-03-28 18:24:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll
MOD - [2006-10-22 23:08:42 | 000,062,080 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
MOD - [2006-10-18 21:47:22 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WPDShServiceObj.dll
MOD - [2006-10-18 21:47:18 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceApi.dll
MOD - [2006-10-18 21:47:18 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceTypes.dll
MOD - [2006-03-02 14:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll
MOD - [2006-03-02 14:00:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll
MOD - [2006-03-02 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll
MOD - [2006-03-02 14:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv
MOD - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe
MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll
MOD - [2006-03-02 14:00:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll
MOD - [2006-03-02 14:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll
MOD - [2006-03-02 14:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll
MOD - [2006-03-02 14:00:00 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lz32.dll
MOD - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe
MOD - [2005-01-17 08:43:42 | 000,006,144 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\NvRaidSvpl.dll
MOD - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE
MOD - [2003-08-08 08:23:16 | 012,172,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL
MOD - [2003-08-03 18:51:02 | 001,354,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\System\MSMAPI\1045\MSMAPI32.DLL
MOD - [2003-06-19 01:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
MOD - [2003-06-19 01:31:48 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - File not found [Auto | Stopped] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd)
SRV - File not found [Auto | Stopped] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent)
SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt)
SRV - [2012-08-16 19:52:24 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-08-14 23:31:24 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt)
DRV - File not found [Kernel | System | Stopped] -- -- (Changer)
DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a4tfn1h0)
DRV - [2012-08-11 14:11:56 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd)
DRV - [2012-04-19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX)
DRV - [2012-03-19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix)
DRV - [2012-02-22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86)
DRV - [2012-01-31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86)
DRV - [2011-12-23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86)
DRV - [2011-12-23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim)
DRV - [2011-12-23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter)
DRV - [2011-12-23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver)
DRV - [2005-05-17 11:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus)
DRV - [2005-04-05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2005-04-05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2005-03-09 15:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8)
DRV - [2004-12-22 11:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM)
DRV - [2004-10-19 05:50:00 | 000,008,576 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO)
DRV - [2001-08-17 23:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=%7Breferrer:source?%7D"]http://search.live.c...ferrer:source?}[/url]


IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=IE-SearchBox&Form=IE8SRC"]http://search.live.c...Box&Form=IE8SRC[/url]
IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.startup.homepage: "www.google.pl"
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - user.js - File not found

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-08-16 19:52:25 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-14 21:15:16 | 000,000,000 | ---D | M]

[2012-08-11 14:12:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions
[2012-08-15 22:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions
[2012-08-13 23:14:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions\{20a82645-c095-46ed-80e3-08825760534b}
[2012-08-14 20:13:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-08-11 14:47:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}
[2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2012-08-14 21:15:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2012-08-14 21:15:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2012-08-14 21:15:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2012-08-14 21:15:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2012-08-14 21:15:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2012-08-14 21:15:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll File not found
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.)
O4 - HKLM..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" File not found
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe ()
O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.)
O4 - HKLM..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" File not found
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe ()
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe (o2.pl Sp. z o.o.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-507921405-162531612-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll File not found
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [url="http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1344688896281"]http://windowsupdate...b?1344688896281[/url] (WUWebControl Class)
O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [url="http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1344690717531"]http://update.micros...b?1344690717531[/url] (MUWebControl Class)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C37BDEA6-B468-47B6-8AC6-7D031FA0B0AA}: DhcpNameServer = 192.168.2.1
O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll File not found
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

NetSvcs: 6to4 - File not found
NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
NetSvcs: Ias - File not found
NetSvcs: Iprip - File not found
NetSvcs: NWCWorkstation - File not found
NetSvcs: Nwsapagent - File not found
NetSvcs: WmdmPmSp - File not found


SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vds - Service
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error.
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2012-08-20 21:54:44 | 000,000,000 | ---D | C] -- C:\_OTL
[2012-08-20 14:11:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012
[2012-08-20 14:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG
[2012-08-20 14:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG
[2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012
[2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG
[2012-08-20 14:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVG
[2012-08-20 14:07:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2012-08-20 14:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2012-08-20 01:08:54 | 000,000,000 | ---D | C] -- C:\programdata
[2012-08-14 21:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla
[2012-08-14 21:15:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service
[2012-08-14 15:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Telltale Games
[2012-08-13 13:42:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED
[2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje wideo
[2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo
[2012-08-11 20:21:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2012-08-11 18:33:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\ApplicationHistory
[2012-08-11 17:55:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2012-08-11 17:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2012-08-11 17:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2012-08-11 17:51:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Identities
[2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search
[2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy
[2012-08-11 17:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2
[2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF
[2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles
[2012-08-11 17:47:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP
[2012-08-11 17:12:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly
[2012-08-11 17:12:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US
[2012-08-11 17:11:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET
[2012-08-11 16:36:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\PrivacIE
[2012-08-11 16:35:04 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\IETldCache
[2012-08-11 16:19:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates
[2012-08-11 16:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM
[2012-08-11 16:18:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8
[2012-08-11 15:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage
[2012-08-11 15:53:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall
[2012-08-11 15:51:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution
[2012-08-11 15:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit\Wzór
[2012-08-11 15:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch
[2012-08-11 15:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas
[2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits
[2012-08-11 15:43:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles
[2012-08-11 15:41:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic
[2012-08-11 15:38:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$
[2012-08-11 15:38:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome
[2012-08-11 15:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\WinRAR
[2012-08-11 15:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\vlc
[2012-08-11 14:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie
[2012-08-11 14:46:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-08-11 14:46:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer
[2012-08-11 14:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC
[2012-08-11 14:46:48 | 000,000,000 | R--D | C] -- C:\Program Files
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared
[2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files
[2012-08-11 14:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty
[2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
[2012-08-11 14:46:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony
[2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione
[2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit
[2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2
[2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot
[2012-08-11 14:44:22 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
[2012-08-11 14:44:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji
[2012-08-11 14:43:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information
[2012-08-11 14:43:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings
[2012-08-11 14:41:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\UserData
[2012-08-11 14:37:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts
[2012-08-11 14:37:31 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache
[2012-08-11 14:37:31 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web
[2012-08-11 14:37:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\security
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\java
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028
[2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025
[2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Macromedia
[2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Adobe
[2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\WinRAR
[2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR
[2012-08-11 14:21:39 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2012-08-11 14:21:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp
[2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Winamp
[2012-08-11 14:20:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN
[2012-08-11 14:19:55 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN
[2012-08-11 14:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2012-08-11 14:17:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent
[2012-08-11 14:15:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl
[2012-08-11 14:15:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Tlen.pl
[2012-08-11 14:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Tlen.pl
[2012-08-11 14:15:37 | 000,000,000 | ---D | C] -- C:\totalcmd
[2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player
[2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SubEdit-Player
[2012-08-11 14:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\STDUViewer
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\STDUtility
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\STDUtility
[2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\STDU Viewer
[2012-08-11 14:14:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe
[2012-08-11 14:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative
[2012-08-11 14:14:34 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2012-08-11 14:14:33 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative
[2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\RADVideo
[2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Bink and Smacker
[2012-08-11 14:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2012-08-11 14:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-08-11 14:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Sun
[2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Mozilla
[2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla
[2012-08-11 14:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-08-11 14:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2012-08-11 14:08:58 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys
[2012-08-11 14:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:08:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:04:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2012-08-11 14:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Adobe
[2012-08-11 14:03:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2012-08-11 14:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ACE Mega CoDecS Pack
[2012-08-11 14:00:40 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll
[2012-08-11 14:00:40 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll
[2012-08-11 14:00:40 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll
[2012-08-11 14:00:39 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll
[2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll
[2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll
[2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll
[2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll
[2012-08-11 14:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack
[2012-08-11 13:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
[2012-08-11 13:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2012-08-11 13:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2012-08-11 13:54:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2012-08-11 13:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office
[2012-08-11 13:41:41 | 000,000,000 | -HSD | C] -- C:\RECYCLER
[2012-08-11 13:37:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation
[2012-08-11 13:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA
[2012-08-11 13:36:07 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2012-08-11 13:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2012-08-11 13:35:17 | 000,000,000 | ---D | C] -- C:\NVIDIA
[2012-08-11 13:32:43 | 000,008,576 | R--- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\drivers\EIO.sys
[2012-08-11 13:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero
[2012-08-11 13:30:24 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll
[2012-08-11 13:30:21 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll
[2012-08-11 13:30:20 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll
[2012-08-11 13:30:20 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll
[2012-08-11 13:30:20 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll
[2012-08-11 13:30:18 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe
[2012-08-11 13:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead
[2012-08-11 13:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead
[2012-08-11 13:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CyberLink DVD Solution
[2012-08-11 13:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink DVD Solution
[2012-08-11 13:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang
[2012-08-11 13:10:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NVIDIA Corporation
[2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager
[2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek Sound Manager
[2012-08-11 13:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack
[2012-08-11 13:07:45 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2012-08-11 13:07:45 | 000,000,000 | ---D | C] -- C:\Program Files\AMD
[2012-08-11 13:05:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups
[2012-08-11 13:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield
[2012-08-11 13:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Identities
[2012-08-11 13:01:57 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information
[2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje obrazy
[2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moja muzyka
[2012-08-11 13:01:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Microsoft
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\SendTo
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Recent
[2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Ulubione
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart
[2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Akcesoria
[2012-08-11 13:01:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\Cookies
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Szablony
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\PrintHood
[2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\NetHood
[2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit
[2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 13:01:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne
[2012-08-11 12:59:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution
[2012-08-11 12:59:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft
[2012-08-11 12:59:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft
[2012-08-11 12:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 12:58:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2012-08-11 12:58:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll
[2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll
[2012-08-11 12:56:58 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\xerox
[2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage
[2012-08-11 12:56:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$
[2012-08-11 12:55:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM
[2012-08-11 12:55:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files
[2012-08-11 12:55:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages
[2012-08-11 12:55:07 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate
[2012-08-11 12:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online
[2012-08-11 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX
[2012-08-11 12:54:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services
[2012-08-11 12:54:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks
[2012-08-11 12:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap
[2012-08-11 12:54:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst
[2012-08-11 12:54:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed
[2012-08-11 12:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker
[2012-08-11 12:53:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore
[2012-08-11 12:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting
[2012-08-11 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express
[2012-08-11 12:53:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System
[2012-08-11 12:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer
[2012-08-11 12:53:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy
[2012-08-11 12:53:14 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications
[2012-08-11 12:53:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne
[2012-08-11 12:53:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration
[2012-08-11 12:52:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry
[2012-08-11 12:52:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka
[2012-08-11 12:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player
[2012-08-11 12:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger
[2012-08-11 12:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone
[2012-08-11 12:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT
[2012-08-11 12:51:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc
[2012-08-11 12:51:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com
[2012-08-11 12:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2012-08-20 22:03:42 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\PcjwpcP.sys
[2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
[2012-08-20 22:00:08 | 000,413,879 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp
[2012-08-20 21:57:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2012-08-20 21:54:44 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\ArvgpyT.sys
[2012-08-20 21:36:35 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\WhfwyuQ.sys
[2012-08-20 21:31:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-08-20 19:15:53 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\PukdekO.sys
[2012-08-20 19:14:17 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\SbvhmhV.sys
[2012-08-20 19:03:15 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\LttpnrM.sys
[2012-08-20 18:44:39 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\FntcjtL.sys
[2012-08-20 18:01:51 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\KgjokaG.sys
[2012-08-20 16:59:49 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\KcyaiuK.sys
[2012-08-20 14:13:15 | 104,413,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012-08-19 00:21:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2012-08-17 19:55:47 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-16 09:58:04 | 000,196,160 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-08-16 00:54:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-08-13 13:40:56 | 000,000,407 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk
[2012-08-11 19:05:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2012-08-11 18:47:46 | 000,540,820 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2012-08-11 18:47:46 | 000,480,696 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2012-08-11 18:47:46 | 000,098,710 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2012-08-11 18:47:46 | 000,079,152 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2012-08-11 18:33:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-08-11 17:50:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-08-11 17:50:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-08-11 17:49:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012-08-11 15:49:45 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx
[2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2012-08-11 14:20:18 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2012-08-11 14:18:49 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2012-08-11 14:15:53 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk
[2012-08-11 14:15:37 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk
[2012-08-11 14:15:37 | 000,000,090 | ---- | M] () -- C:\WINDOWS\wincmd.ini
[2012-08-11 14:15:22 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk
[2012-08-11 14:15:10 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk
[2012-08-11 14:12:21 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat
[2012-08-11 14:12:16 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-08-11 14:11:57 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2012-08-11 14:03:14 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk
[2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012-08-11 13:58:56 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012-08-11 13:55:02 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI
[2012-08-11 13:36:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012-08-11 13:31:28 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2012-08-11 13:29:26 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk
[2012-08-11 13:14:08 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak
[2012-08-11 13:11:40 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2012-08-11 13:11:40 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2012-08-11 13:08:49 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2012-08-11 13:02:11 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk
[2012-08-11 12:58:57 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD
[2012-08-11 12:58:12 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-08-11 12:56:13 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-08-11 12:56:00 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI
[2012-08-11 12:53:23 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2012-08-20 22:00:26 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\PcjwpcP.sys
[2012-08-20 22:00:08 | 034,629,158 | ---- | C] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
[2012-08-20 22:00:05 | 000,413,879 | ---- | C] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp
[2012-08-20 21:52:17 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\ArvgpyT.sys
[2012-08-20 20:36:10 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\WhfwyuQ.sys
[2012-08-20 19:15:46 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\PukdekO.sys
[2012-08-20 19:04:50 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\SbvhmhV.sys
[2012-08-20 18:58:21 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\LttpnrM.sys
[2012-08-20 18:03:15 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\FntcjtL.sys
[2012-08-20 17:01:53 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\KgjokaG.sys
[2012-08-20 16:51:03 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\KcyaiuK.sys
[2012-08-20 14:13:15 | 104,413,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm
[2012-08-14 21:15:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk
[2012-08-13 13:40:56 | 000,000,407 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk
[2012-08-11 18:33:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat
[2012-08-11 17:49:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf
[2012-08-11 17:44:45 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb
[2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll
[2012-08-11 15:44:39 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm
[2012-08-11 15:44:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav
[2012-08-11 15:44:39 | 000,074,010 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm
[2012-08-11 15:44:39 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm
[2012-08-11 15:44:39 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta
[2012-08-11 15:44:39 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css
[2012-08-11 15:44:39 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf
[2012-08-11 15:44:39 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js
[2012-08-11 15:44:38 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav
[2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav
[2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav
[2012-08-11 15:44:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv
[2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav
[2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav
[2012-08-11 15:44:38 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav
[2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav
[2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav
[2012-08-11 15:44:38 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf
[2012-08-11 15:44:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf
[2012-08-11 15:44:38 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif
[2012-08-11 15:44:38 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif
[2012-08-11 15:44:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf
[2012-08-11 15:44:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif
[2012-08-11 15:44:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif
[2012-08-11 15:44:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif
[2012-08-11 15:44:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif
[2012-08-11 15:44:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif
[2012-08-11 15:44:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif
[2012-08-11 15:44:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif
[2012-08-11 15:44:38 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif
[2012-08-11 15:44:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif
[2012-08-11 15:44:38 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js
[2012-08-11 15:44:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif
[2012-08-11 15:44:38 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif
[2012-08-11 15:44:38 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif
[2012-08-11 15:44:38 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif
[2012-08-11 15:44:38 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif
[2012-08-11 15:44:38 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf
[2012-08-11 15:44:38 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif
[2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif
[2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif
[2012-08-11 15:44:38 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif
[2012-08-11 15:44:38 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm
[2012-08-11 15:44:37 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv
[2012-08-11 15:44:37 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv
[2012-08-11 15:44:37 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm
[2012-08-11 15:44:37 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz
[2012-08-11 15:44:37 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl
[2012-08-11 15:44:37 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl
[2012-08-11 15:44:37 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl
[2012-08-11 15:44:37 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl
[2012-08-11 15:44:37 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl
[2012-08-11 15:44:37 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl
[2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl
[2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl
[2012-08-11 15:44:37 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl
[2012-08-11 15:44:37 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl
[2012-08-11 15:44:37 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl
[2012-08-11 15:44:37 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl
[2012-08-11 15:44:37 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl
[2012-08-11 15:44:37 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl
[2012-08-11 15:44:37 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl
[2012-08-11 15:44:36 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv
[2012-08-11 15:44:36 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv
[2012-08-11 15:44:36 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz
[2012-08-11 15:44:36 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf
[2012-08-11 15:44:36 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip
[2012-08-11 15:44:36 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css
[2012-08-11 15:44:36 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm
[2012-08-11 15:44:36 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js
[2012-08-11 15:44:36 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js
[2012-08-11 15:44:36 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif
[2012-08-11 15:44:36 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif
[2012-08-11 15:44:36 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif
[2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif
[2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif
[2012-08-11 15:44:36 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif
[2012-08-11 15:44:36 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif
[2012-08-11 15:44:36 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif
[2012-08-11 15:44:36 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip
[2012-08-11 15:41:16 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod
[2012-08-11 15:41:15 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty
[2012-08-11 15:41:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img
[2012-08-11 14:46:55 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK
[2012-08-11 14:46:52 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-08-11 14:46:50 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd
[2012-08-11 14:46:50 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf
[2012-08-11 14:46:49 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa
[2012-08-11 14:46:49 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa
[2012-08-11 14:46:28 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT
[2012-08-11 14:44:38 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT
[2012-08-11 14:44:38 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT
[2012-08-11 14:44:38 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT
[2012-08-11 14:44:38 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT
[2012-08-11 14:44:38 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT
[2012-08-11 14:44:38 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT
[2012-08-11 14:44:38 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT
[2012-08-11 14:44:38 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat
[2012-08-11 14:43:54 | 000,196,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-08-11 14:43:08 | 000,000,223 | RHS- | C] () -- C:\boot.ini
[2012-08-11 14:43:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf
[2012-08-11 14:34:39 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2012-08-11 14:20:18 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk
[2012-08-11 14:18:25 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk
[2012-08-11 14:15:53 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk
[2012-08-11 14:15:37 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2012-08-11 14:15:37 | 000,000,090 | ---- | C] () -- C:\WINDOWS\wincmd.ini
[2012-08-11 14:15:22 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk
[2012-08-11 14:15:10 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk
[2012-08-11 14:12:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2012-08-11 14:12:16 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk
[2012-08-11 14:11:57 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk
[2012-08-11 14:08:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2012-08-11 14:08:01 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2012-08-11 14:03:14 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 8.lnk
[2012-08-11 14:03:14 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk
[2012-08-11 14:01:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl
[2012-08-11 14:00:42 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini
[2012-08-11 14:00:42 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini
[2012-08-11 14:00:42 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini
[2012-08-11 14:00:39 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2012-08-11 14:00:39 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll
[2012-08-11 14:00:36 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2012-08-11 14:00:34 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl
[2012-08-11 13:55:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI
[2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2012-08-11 13:36:20 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2012-08-11 13:36:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2012-08-11 13:36:06 | 002,784,050 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2012-08-11 13:36:06 | 000,007,843 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2012-08-11 13:31:28 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk
[2012-08-11 13:29:26 | 000,001,900 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk
[2012-08-11 13:29:24 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe
[2012-08-11 13:14:08 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak
[2012-08-11 13:11:40 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav
[2012-08-11 13:11:40 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav
[2012-08-11 13:10:19 | 000,249,344 | R--- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe
[2012-08-11 13:10:19 | 000,223,232 | R--- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe
[2012-08-11 13:08:49 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk
[2012-08-11 13:08:45 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2012-08-11 13:08:40 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2012-08-11 13:08:39 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe
[2012-08-11 13:08:34 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV
[2012-08-11 13:05:27 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu
[2012-08-11 13:05:25 | 000,001,231 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu
[2012-08-11 13:02:11 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk
[2012-08-11 13:01:58 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Outlook Express.lnk
[2012-08-11 13:01:57 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Internet Explorer.lnk
[2012-08-11 13:01:41 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Pomoc zdalna.lnk
[2012-08-11 13:01:41 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Windows Media Player.lnk
[2012-08-11 12:58:57 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD
[2012-08-11 12:58:12 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-08-11 12:57:44 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll
[2012-08-11 12:57:31 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex
[2012-08-11 12:57:24 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe
[2012-08-11 12:57:23 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe
[2012-08-11 12:57:21 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex
[2012-08-11 12:57:16 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll
[2012-08-11 12:57:13 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex
[2012-08-11 12:57:00 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll
[2012-08-11 12:56:13 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT
[2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS
[2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT
[2012-08-11 12:56:10 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb
[2012-08-11 12:56:10 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb
[2012-08-11 12:56:09 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx
[2012-08-11 12:55:07 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk
[2012-08-11 12:54:55 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex
[2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp
[2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp
[2012-08-11 12:54:13 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf
[2012-08-11 12:53:23 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2012-08-11 12:52:41 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk
[2012-08-11 12:52:14 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp
[2012-08-11 12:52:13 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp
[2012-08-11 12:52:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp
[2012-08-11 12:52:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp
[2012-08-11 12:52:13 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp
[2012-08-11 12:52:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp
[2012-08-11 12:52:13 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp
[2012-08-11 12:52:13 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp
[2012-08-11 12:52:13 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp
[2012-08-11 12:52:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp
[2012-08-11 12:52:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp
[2012-08-11 12:52:09 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h
[2012-08-11 12:52:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd
[2012-08-11 12:52:08 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h
[2012-08-11 12:52:01 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc

[color=#E56717]========== LOP Check ==========[/color]

[2012-08-20 14:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012
[2012-08-20 14:07:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files
[2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2012-08-20 17:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData
[2012-08-13 13:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED
[2012-08-20 14:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012
[2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite
[2012-08-11 14:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl
[2012-08-20 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent

[color=#E56717]========== Purity Check ==========[/color]



[color=#E56717]========== Custom Scans ==========[/color]

[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini
[2006-03-02 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-08-11 13:10:33 | 000,000,032 | ---- | M] () -- C:\csb.log
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2006-03-02 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2012-08-20 21:57:47 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys

[color=#A23BEC]< MD5 for: AGP440.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys
[2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys

[color=#A23BEC]< MD5 for: ATAPI.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys
[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
[2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys
[2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys

[color=#A23BEC]< MD5 for: BEEP.SYS >[/color]
[2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys

[color=#A23BEC]< MD5 for: CDROM.SYS >[/color]
[2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys
[2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2006-03-02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys

[color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color]
[2006-03-02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll
[2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll

[color=#A23BEC]< MD5 for: NDIS.SYS >[/color]
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys
[2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
[2006-03-02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys

[color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color]
[2006-03-02 14:00:00 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe
[2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe

< End of report >

[/log]

komputerowiec19
komentarz
komentarz

Uruchom OTL i w sekcji (Własne opcje skanowania/Skrypt) wklej:

[quote]
:Processes
killallprocesses

:OTL
PRC - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
MOD - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe ()

:Files
C:\Documents and Settings\All Users\bY7mwcjpnKof.exe
C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp
C:\WINDOWS\System32\PcjwpcP.sys
C:\WINDOWS\System32\ArvgpyT.sys
C:\WINDOWS\System32\WhfwyuQ.sys
C:\WINDOWS\System32\PukdekO.sys
C:\WINDOWS\System32\SbvhmhV.sys
C:\WINDOWS\System32\LttpnrM.sys
C:\WINDOWS\System32\FntcjtL.sys
C:\WINDOWS\System32\KgjokaG.sys
C:\WINDOWS\System32\KcyaiuK.sys

:Commands
[emptytemp]
[/quote]

Kliknij wykonaj skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie i przedstaw go na forum.

Piotras89
komentarz
komentarz

[log] All processes killed
========== PROCESSES ==========
========== OTL ==========
No active process named bY7mwcjpnKof.exe was found!
Registry value HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\HqaxaiS not found.
File c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe not found.
========== FILES ==========
File\Folder C:\Documents and Settings\All Users\bY7mwcjpnKof.exe not found.
File\Folder C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp not found.
C:\WINDOWS\System32\PcjwpcP.sys moved successfully.
C:\WINDOWS\System32\ArvgpyT.sys moved successfully.
C:\WINDOWS\System32\WhfwyuQ.sys moved successfully.
C:\WINDOWS\System32\PukdekO.sys moved successfully.
C:\WINDOWS\System32\SbvhmhV.sys moved successfully.
C:\WINDOWS\System32\LttpnrM.sys moved successfully.
C:\WINDOWS\System32\FntcjtL.sys moved successfully.
C:\WINDOWS\System32\KgjokaG.sys moved successfully.
C:\WINDOWS\System32\KcyaiuK.sys moved successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Piotr
->Temp folder emptied: 79 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 17582680 bytes
->Flash cache emptied: 0 bytes

User: UpdatusUser
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 0 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 17,00 mb


OTL by OldTimer - Version 3.2.58.1 log created on 08212012_103421

Files\Folders moved on Reboot...

PendingFileRenameOperations files...

Registry entries deleted on Reboot...

[/log]

Nic już mi nie wyskakuje podczas uruchamiania. Wielkie Dzięki. Mam pytanie czy foldery _OLD i programdata mogę usunąć czy muszą pozostać?

komputerowiec19
komentarz
komentarz

Uruchom OTL i użyj opcji sprzątanie - to go usunie razem z jego kwarantanną.

Na wszelki wypadek pozmieniaj hasła logowania do serwisów w sieci.

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.