Piotras89 utworzono 20 sierpnia 2012 utworzono 20 sierpnia 2012 (edytowane) Od wczoraj jak wszedłem na pewną stronę internetową, a dokładnie na stronę pewnego klubu piłkarskiego wyskoczyło okienko z javą security to dałem cancel, ale nie dało się tego wyłączyć więc dałem ok. Teraz za każdym razem jak uruchamiam komputer wyskakuje mi: [url="http://imageshack.us/f/10/53033916.jpg/"]http://imageshack.us...0/53033916.jpg/[/url] [imageshack.us] Piszę tam coś takiego: Hqaxais Failed to get data for ‘EnableLUA’ Czy ktoś wie o co w tym gównie chodzi? Strona “raczej” zawirusowana nie jest to zaczęło się od momentu wyskoczenia tej cholernej javy. Prosiłbym osobę naprawdę ogarniętą, która wie o co chodzi, która spotkała się z tym problemem, a nie osoby, która chce nabić sobie posty. Jak wyłączam komputer to sam muszę zakończyć proces “Hqaxais”. W google nie mogłem nic na ten temat znaleźć. Co mam usunąć, jak naprawić bo szlak mnie trafia z tymi komputerami.
nitro07 komentarz 20 sierpnia 2012 komentarz 20 sierpnia 2012 Zrób logi według tej instrukcji [url="http://www.forumpc.pl/index.php?showtopic=104338"]OTL[/url] i wstaw na forum. Poproszę moderatora o przeniesienie Twojego tematu do działu Bezpieczeństwo.
Piotras89 komentarz 20 sierpnia 2012 Autor komentarz 20 sierpnia 2012 (edytowane) [log]OTL Extras logfile created on: 2012-08-20 16:36:39 - Run 3 OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,73% Memory free 3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 24,83 Gb Free Space | 63,57% Space Free | Partition Type: NTFS Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation) "C:\Program Files\Tlen.pl\tlen.exe" = C:\Program Files\Tlen.pl\tlen.exe:*:Enabled:Komunikator Tlen.pl -- (o2.pl Sp. z o.o.) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\AVG\AVG2012\avgnsx.exe" = C:\Program Files\AVG\AVG2012\avgnsx.exe:*:Enabled:Ochrona Sieci -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG2012\avgdiagex.exe" = C:\Program Files\AVG\AVG2012\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2012 -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG2012\avgmfapx.exe" = C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Instalator AVG -- (AVG Technologies CZ, s.r.o.) "C:\Program Files\AVG\AVG2012\avgemcx.exe" = C:\Program Files\AVG\AVG2012\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail -- (AVG Technologies CZ, s.r.o.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher "{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33 "{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6D12EC75-E7D3-4EAD-AB10-E1F3AFF94AA6}" = AVG 2012 "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2 "{B143D835-EBAF-4A39-8B31-1868FF4166C1}" = AVG 2012 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "AVG" = AVG 2012 "Bink and Smacker" = Bink and Smacker "DAEMON Tools Lite" = DAEMON Tools Lite "ie8" = Windows Internet Explorer 8 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Nero - Burning Rom!UninstallKey" = Nero OEM "NVIDIA Drivers" = NVIDIA Drivers "RealAlt_is1" = Real Alternative 2.0.0 "STDU Viewer_is1" = STDU Viewer version 1.5.647.0 "SubEdit-Player_is1" = SubEdit-Player "The Walking Dead © 3_is1" = The Walking Dead © 3 version 1 "Tlen.pl" = Tlen.pl "Totalcmd" = Total Commander (Remove or Repair) "uTorrent" = µTorrent "VLC media player" = VLC media player 1.1.8 "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 12:36:24 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1101 Description = .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070005 Error - 2012-08-11 12:51:12 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1103 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown [ System Events ] Error - 2012-08-11 11:51:38 | Computer Name = PIOTRAS | Source = Windows Update Agent | ID = 20 Description = Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x8007f0f4: Aktualizacja dla odtwarzaczy multimedialnych obsługujących platformę WMDRM (KB902344). Error - 2012-08-11 12:21:31 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error - 2012-08-11 12:21:34 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} < End of report > [/[color=#0000FF]log[/color][color=#0000FF]][/color] [[color=#0000FF]log[/color][color=#0000FF]][/color] OTL logfile created on: 2012-08-20 16:36:39 - Run 3 OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,73% Memory free 3,85 Gb Paging File | 3,31 Gb Available in Paging File | 86,14% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 24,83 Gb Free Space | 63,57% Space Free | Partition Type: NTFS Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - File not found -- PRC - [2012-08-20 16:24:55 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe PRC - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe PRC - [2012-06-13 03:48:24 | 001,255,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe PRC - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2012-03-19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe PRC - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2012-02-14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe PRC - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe PRC - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe PRC - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [color=#E56717]========== Modules (All) ==========[/color] MOD - [2012-08-20 16:24:55 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe MOD - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe MOD - [2012-08-16 19:52:25 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll MOD - [2012-08-16 19:52:25 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll MOD - [2012-08-16 19:52:25 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll MOD - [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll MOD - [2012-08-16 19:52:24 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2012-08-16 19:52:24 | 000,573,920 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll MOD - [2012-08-16 19:52:24 | 000,068,576 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll MOD - [2012-08-16 19:52:24 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll MOD - [2012-08-16 19:52:23 | 000,829,920 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll MOD - [2012-08-16 19:52:22 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll MOD - [2012-08-16 19:52:22 | 000,358,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll MOD - [2012-08-16 19:52:22 | 000,170,976 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll MOD - [2012-08-16 19:52:22 | 000,095,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll MOD - [2012-08-16 19:52:22 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll MOD - [2012-08-16 19:52:22 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll MOD - [2012-08-16 19:52:22 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll MOD - [2012-08-16 19:52:21 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll MOD - [2012-08-16 19:52:21 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll MOD - [2012-08-16 19:52:21 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll MOD - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe MOD - [2012-08-16 19:52:19 | 016,060,384 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll MOD - [2012-08-16 19:52:19 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll MOD - [2012-08-14 23:31:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll MOD - [2012-08-11 14:47:05 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre6\bin\msvcr71.dll MOD - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe MOD - [2012-07-06 15:58:56 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll MOD - [2012-07-06 15:58:56 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll MOD - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidsagent.exe MOD - [2012-07-02 23:08:18 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll MOD - [2012-07-02 19:38:19 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll MOD - [2012-07-02 19:38:19 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll MOD - [2012-07-02 19:38:18 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll MOD - [2012-06-21 03:48:58 | 001,982,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwd.dll MOD - [2012-06-15 15:08:50 | 005,481,592 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcorex.dll MOD - [2012-06-13 03:48:54 | 000,386,160 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgwdwsc.dll MOD - [2012-06-13 03:48:24 | 001,255,544 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgnsx.exe MOD - [2012-06-13 03:48:06 | 000,507,512 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsrmx.dll MOD - [2012-06-13 03:48:02 | 000,286,328 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avglogx.dll MOD - [2012-06-08 16:25:47 | 008,491,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2012-06-04 06:32:39 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll MOD - [2012-06-02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wups2.dll MOD - [2012-06-02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll MOD - [2012-05-31 15:22:04 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll MOD - [2012-05-22 03:49:04 | 000,962,680 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgxpl.dll MOD - [2012-05-14 11:23:06 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll MOD - [2012-04-20 21:30:26 | 001,510,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll MOD - [2012-04-20 21:30:25 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll MOD - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe MOD - [2012-04-17 17:19:08 | 004,860,736 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll MOD - [2012-04-17 17:18:40 | 003,725,120 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\Engine.dll MOD - [2012-04-06 12:22:56 | 000,382,784 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools Lite\imgengine.dll MOD - [2012-04-05 05:12:08 | 000,108,416 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgmvflx.dll MOD - [2012-03-23 05:56:16 | 000,385,920 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgdecider.dll MOD - [2012-03-23 05:55:54 | 000,437,120 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgchjwx.dll MOD - [2012-03-23 05:55:52 | 000,248,192 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcertx.dll MOD - [2012-03-19 05:18:22 | 000,475,520 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgadvisorx.dll MOD - [2012-03-19 05:18:12 | 000,979,840 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgemcx.exe MOD - [2012-03-01 01:58:00 | 002,797,376 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll MOD - [2012-03-01 01:58:00 | 002,291,712 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvapi.dll MOD - [2012-03-01 01:58:00 | 000,981,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll MOD - [2012-03-01 01:58:00 | 000,639,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll MOD - [2012-02-29 23:15:40 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvrspl.dll MOD - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe MOD - [2012-02-29 22:30:23 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvmctray.dll MOD - [2012-02-29 16:10:17 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll MOD - [2012-02-29 16:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll MOD - [2012-02-15 04:56:32 | 000,880,480 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidpsdkx.dll MOD - [2012-02-14 04:53:22 | 003,175,264 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avguires.dll MOD - [2012-02-14 04:53:02 | 000,595,808 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgvvx.dll MOD - [2012-02-14 04:53:00 | 000,547,168 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsched.dll MOD - [2012-02-14 04:53:00 | 000,366,432 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgsysx.dll MOD - [2012-02-14 04:53:00 | 000,158,560 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgse.dll MOD - [2012-02-14 04:53:00 | 000,140,128 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgscanx.dll MOD - [2012-02-14 04:52:58 | 000,889,696 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgntopensslx.dll MOD - [2012-02-14 04:52:58 | 000,129,376 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgopensslx.dll MOD - [2012-02-14 04:52:56 | 001,049,440 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcfgx.dll MOD - [2012-02-14 04:52:56 | 000,853,344 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcslx.dll MOD - [2012-02-14 04:52:56 | 000,176,992 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avglngx.dll MOD - [2012-02-14 04:52:54 | 000,343,392 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgidpmx.dll MOD - [2012-02-14 04:52:38 | 000,362,848 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcclix.dll MOD - [2012-02-14 04:52:38 | 000,338,784 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgcsrvx.exe MOD - [2012-02-14 04:52:38 | 000,256,864 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgclitx.dll MOD - [2012-02-14 04:52:36 | 000,172,896 | ---- | M] (AVG Technologies CZ, s.r.o.) -- C:\Program Files\AVG\AVG2012\avgchclx.dll MOD - [2012-02-09 17:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll MOD - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe MOD - [2011-12-24 23:49:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll MOD - [2011-11-16 16:21:48 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll MOD - [2011-11-01 18:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2011-10-28 18:07:18 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\jscript.dll MOD - [2011-10-14 16:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll MOD - [2011-09-26 11:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll MOD - [2011-05-17 09:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll MOD - [2011-03-03 08:55:00 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll MOD - [2011-02-08 15:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll MOD - [2010-12-22 14:34:22 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll MOD - [2010-12-20 19:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2010-12-20 19:25:52 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-11-09 16:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll MOD - [2010-08-27 10:03:47 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\t2embed.dll MOD - [2010-08-27 07:54:13 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll MOD - [2010-08-23 18:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-04-16 17:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll MOD - [2010-03-18 10:09:00 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll MOD - [2010-03-18 10:09:00 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll MOD - [2010-03-15 11:28:22 | 000,142,336 | ---- | M] (Alexander Roshal) -- C:\Program Files\WinRAR\RarExt.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-10-13 12:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll MOD - [2009-10-12 15:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll MOD - [2009-10-12 15:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll MOD - [2009-09-11 16:19:43 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll MOD - [2009-09-04 23:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll MOD - [2009-07-28 01:19:10 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll MOD - [2009-07-17 21:04:02 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll MOD - [2009-07-17 18:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll MOD - [2009-07-12 00:02:02 | 003,780,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.MFC_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_a57c1f53\mfc90u.dll MOD - [2009-07-12 00:02:02 | 000,653,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcr90.dll MOD - [2009-07-12 00:02:00 | 000,569,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.4148_x-ww_d495ac4e\msvcp90.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-06-25 10:27:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll MOD - [2009-06-10 08:16:42 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-03-08 04:34:48 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll MOD - [2009-03-08 04:32:48 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll MOD - [2009-03-06 16:22:12 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll MOD - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll MOD - [2009-02-09 12:53:44 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll MOD - [2009-02-09 12:53:43 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll MOD - [2009-01-07 18:20:36 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-25 11:17:20 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll MOD - [2008-07-25 11:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll MOD - [2008-07-07 22:29:10 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll MOD - [2008-07-06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll MOD - [2008-06-24 18:46:33 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll MOD - [2008-06-20 18:04:23 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll MOD - [2008-06-12 16:23:52 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll MOD - [2008-06-12 16:23:52 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll MOD - [2008-06-12 16:23:52 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll MOD - [2008-04-14 22:51:58 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp MOD - [2008-04-14 22:51:58 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:51:58 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp MOD - [2008-04-14 22:51:58 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp MOD - [2008-04-14 22:51:58 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp MOD - [2008-04-14 22:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv MOD - [2008-04-14 22:51:58 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp MOD - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe MOD - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe MOD - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe MOD - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe MOD - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe MOD - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe MOD - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe MOD - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe MOD - [2008-04-14 22:51:02 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll MOD - [2008-04-14 22:51:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll MOD - [2008-04-14 22:51:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll MOD - [2008-04-14 22:51:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll MOD - [2008-04-14 22:51:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll MOD - [2008-04-14 22:51:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll MOD - [2008-04-14 22:51:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll MOD - [2008-04-14 22:51:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2008-04-14 22:51:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll MOD - [2008-04-14 22:51:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll MOD - [2008-04-14 22:51:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2008-04-14 22:51:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll MOD - [2008-04-14 22:51:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll MOD - [2008-04-14 22:51:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wship6.dll MOD - [2008-04-14 22:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-14 22:50:58 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll MOD - [2008-04-14 22:50:58 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll MOD - [2008-04-14 22:50:58 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll MOD - [2008-04-14 22:50:58 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll MOD - [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll MOD - [2008-04-14 22:50:58 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll MOD - [2008-04-14 22:50:58 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll MOD - [2008-04-14 22:50:58 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll MOD - [2008-04-14 22:50:58 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll MOD - [2008-04-14 22:50:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll MOD - [2008-04-14 22:50:58 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll MOD - [2008-04-14 22:50:58 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll MOD - [2008-04-14 22:50:58 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll MOD - [2008-04-14 22:50:58 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll MOD - [2008-04-14 22:50:58 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll MOD - [2008-04-14 22:50:58 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll MOD - [2008-04-14 22:50:58 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll MOD - [2008-04-14 22:50:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll MOD - [2008-04-14 22:50:58 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll MOD - [2008-04-14 22:50:58 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll MOD - [2008-04-14 22:50:48 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll MOD - [2008-04-14 22:50:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll MOD - [2008-04-14 22:50:48 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll MOD - [2008-04-14 22:50:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\snmpapi.dll MOD - [2008-04-14 22:50:48 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll MOD - [2008-04-14 22:50:46 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll MOD - [2008-04-14 22:50:46 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll MOD - [2008-04-14 22:50:46 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll MOD - [2008-04-14 22:50:46 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll MOD - [2008-04-14 22:50:46 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll MOD - [2008-04-14 22:50:46 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll MOD - [2008-04-14 22:50:46 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll MOD - [2008-04-14 22:50:46 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll MOD - [2008-04-14 22:50:46 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll MOD - [2008-04-14 22:50:46 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oledlg.dll MOD - [2008-04-14 22:50:46 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll MOD - [2008-04-14 22:50:46 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll MOD - [2008-04-14 22:50:46 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll MOD - [2008-04-14 22:50:46 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll MOD - [2008-04-14 22:50:46 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll MOD - [2008-04-14 22:50:46 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll MOD - [2008-04-14 22:50:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll MOD - [2008-04-14 22:50:46 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll MOD - [2008-04-14 22:50:46 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll MOD - [2008-04-14 22:50:46 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll MOD - [2008-04-14 22:50:46 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll MOD - [2008-04-14 22:50:46 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll MOD - [2008-04-14 22:50:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll MOD - [2008-04-14 22:50:46 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll MOD - [2008-04-14 22:50:46 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll MOD - [2008-04-14 22:50:46 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll MOD - [2008-04-14 22:50:46 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll MOD - [2008-04-14 22:50:46 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll MOD - [2008-04-14 22:50:46 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll MOD - [2008-04-14 22:50:44 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll MOD - [2008-04-14 22:50:44 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll MOD - [2008-04-14 22:50:42 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll MOD - [2008-04-14 22:50:42 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll MOD - [2008-04-14 22:50:42 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll MOD - [2008-04-14 22:50:42 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll MOD - [2008-04-14 22:50:42 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 22:50:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll MOD - [2008-04-14 22:50:42 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll MOD - [2008-04-14 22:50:42 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll MOD - [2008-04-14 22:50:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll MOD - [2008-04-14 22:50:42 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll MOD - [2008-04-14 22:50:42 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll MOD - [2008-04-14 22:50:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll MOD - [2008-04-14 22:50:42 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll MOD - [2008-04-14 22:50:40 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll MOD - [2008-04-14 22:50:40 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll MOD - [2008-04-14 22:50:40 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:40 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll MOD - [2008-04-14 22:50:40 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvfw32.dll MOD - [2008-04-14 22:50:40 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll MOD - [2008-04-14 22:50:40 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mydocs.dll MOD - [2008-04-14 22:50:40 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll MOD - [2008-04-14 22:50:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll MOD - [2008-04-14 22:50:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 22:50:38 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2008-04-14 22:50:36 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll MOD - [2008-04-14 22:50:36 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll MOD - [2008-04-14 22:50:36 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll MOD - [2008-04-14 22:50:36 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll MOD - [2008-04-14 22:50:36 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll MOD - [2008-04-14 22:50:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll MOD - [2008-04-14 22:50:34 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll MOD - [2008-04-14 22:50:34 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll MOD - [2008-04-14 22:50:34 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icm32.dll MOD - [2008-04-14 22:50:34 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-14 22:50:34 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll MOD - [2008-04-14 22:50:34 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll MOD - [2008-04-14 22:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll MOD - [2008-04-14 22:50:34 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidserv.dll MOD - [2008-04-14 22:50:34 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll MOD - [2008-04-14 22:50:34 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll MOD - [2008-04-14 22:50:32 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll MOD - [2008-04-14 22:50:32 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll MOD - [2008-04-14 22:50:32 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:32 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll MOD - [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll MOD - [2008-04-14 22:50:32 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll MOD - [2008-04-14 22:50:32 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll MOD - [2008-04-14 22:50:32 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll MOD - [2008-04-14 22:50:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\feclient.dll MOD - [2008-04-14 22:50:30 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll MOD - [2008-04-14 22:50:30 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll MOD - [2008-04-14 22:50:28 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll MOD - [2008-04-14 22:50:28 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll MOD - [2008-04-14 22:50:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll MOD - [2008-04-14 22:50:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll MOD - [2008-04-14 22:50:22 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll MOD - [2008-04-14 22:50:22 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll MOD - [2008-04-14 22:50:20 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll MOD - [2008-04-14 22:50:20 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll MOD - [2008-04-14 22:50:18 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll MOD - [2008-04-14 22:50:18 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll MOD - [2008-04-14 22:50:18 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll MOD - [2008-04-14 22:50:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll MOD - [2008-04-14 22:50:18 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll MOD - [2008-04-14 22:50:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll MOD - [2008-04-14 22:50:16 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:14 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll MOD - [2008-04-14 22:50:14 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:50:12 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll MOD - [2008-04-14 22:50:10 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll MOD - [2008-04-14 22:50:08 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll MOD - [2008-04-14 22:50:06 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll MOD - [2008-04-14 22:50:04 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll MOD - [2008-04-14 22:50:04 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll MOD - [2008-04-14 22:50:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll MOD - [2008-04-14 22:49:58 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll MOD - [2008-04-14 22:49:56 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acgenral.dll MOD - [2008-04-14 22:49:56 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll MOD - [2008-04-14 22:49:56 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll MOD - [2008-04-14 22:49:54 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acadproc.dll MOD - [2008-04-14 22:48:50 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctfime.ime MOD - [2008-04-14 21:39:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll MOD - [2008-04-14 21:35:18 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll MOD - [2008-04-14 00:08:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll MOD - [2008-04-13 23:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll MOD - [2008-04-13 23:07:58 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll MOD - [2008-04-13 21:53:32 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll MOD - [2007-05-10 22:54:08 | 000,372,736 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll MOD - [2007-03-28 18:24:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll MOD - [2006-10-22 23:08:42 | 000,062,080 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll MOD - [2006-10-18 21:47:22 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WPDShServiceObj.dll MOD - [2006-10-18 21:47:18 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceApi.dll MOD - [2006-10-18 21:47:18 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceTypes.dll MOD - [2006-03-02 14:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll MOD - [2006-03-02 14:00:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll MOD - [2006-03-02 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll MOD - [2006-03-02 14:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv MOD - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasctrs.dll MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll MOD - [2006-03-02 14:00:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll MOD - [2006-03-02 14:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll MOD - [2006-03-02 14:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll MOD - [2006-03-02 14:00:00 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lz32.dll MOD - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe MOD - [2005-01-17 08:43:42 | 000,006,144 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\NvRaidSvpl.dll MOD - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE MOD - [2003-08-08 08:23:16 | 012,172,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL MOD - [2003-08-03 18:51:02 | 001,354,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\System\MSMAPI\1045\MSMAPI32.DLL MOD - [2003-06-19 01:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll MOD - [2003-06-19 01:31:48 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-08-16 19:52:24 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-08-14 23:31:24 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-07-04 17:25:54 | 005,160,568 | ---- | M] (AVG Technologies CZ, s.r.o.) [Auto | Running] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent) SRV - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a8w7fgbf) DRV - [2012-08-11 14:11:56 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2012-04-19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX) DRV - [2012-03-19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2012-02-22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2012-01-31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86) DRV - [2011-12-23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-12-23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim) DRV - [2011-12-23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter) DRV - [2011-12-23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver) DRV - [2005-05-17 11:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus) DRV - [2005-04-05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-09 15:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004-12-22 11:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) DRV - [2004-10-19 05:50:00 | 000,008,576 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO) DRV - [2001-08-17 23:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=%7Breferrer:source?%7D"]http://search.live.c...ferrer:source?}[/url] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=IE-SearchBox&Form=IE8SRC"]http://search.live.c...Box&Form=IE8SRC[/url] IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "www.google.pl" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ [2012-08-20 14:09:43 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-08-16 19:52:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-14 21:15:16 | 000,000,000 | ---D | M] [2012-08-11 14:12:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions [2012-08-15 22:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions [2012-08-13 23:14:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-08-14 20:13:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-08-11 14:47:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012-08-20 14:09:43 | 000,000,000 | ---D | M] (AVG Do Not Track) -- C:\PROGRAM FILES\AVG\AVG2012\FIREFOX\DONOTTRACK [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-08-14 21:15:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-08-14 21:15:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-08-14 21:15:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-08-14 21:15:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-08-14 21:15:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-08-14 21:15:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.) O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" File not found O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe () O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" File not found O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe () O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe (o2.pl Sp. z o.o.) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-507921405-162531612-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll (AVG Technologies CZ, s.r.o.) O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [url="http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1344688896281"]http://windowsupdate...b?1344688896281[/url] (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [url="http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1344690717531"]http://update.micros...b?1344690717531[/url] (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C37BDEA6-B468-47B6-8AC6-7D031FA0B0AA}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll (AVG Technologies CZ, s.r.o.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error. SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2012-08-20 14:11:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012 [2012-08-20 14:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG [2012-08-20 14:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG [2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG [2012-08-20 14:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2012-08-20 14:07:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-08-20 14:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2012-08-20 01:08:54 | 000,000,000 | ---D | C] -- C:\programdata [2012-08-20 01:08:49 | 000,054,272 | ---- | C] (sdfsdfsda) -- C:\Documents and Settings\All Users\4xBd2lxm.exe [2012-08-14 21:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla [2012-08-14 21:15:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-08-14 15:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Telltale Games [2012-08-13 13:42:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED [2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje wideo [2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2012-08-11 20:21:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2012-08-11 18:33:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\ApplicationHistory [2012-08-11 17:55:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2012-08-11 17:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2012-08-11 17:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2012-08-11 17:51:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Identities [2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search [2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy [2012-08-11 17:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2012-08-11 17:47:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP [2012-08-11 17:12:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2012-08-11 17:12:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2012-08-11 17:11:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2012-08-11 16:36:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\PrivacIE [2012-08-11 16:35:04 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\IETldCache [2012-08-11 16:19:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2012-08-11 16:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2012-08-11 16:18:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2012-08-11 15:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2012-08-11 15:53:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2012-08-11 15:51:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2012-08-11 15:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit\Wzór [2012-08-11 15:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2012-08-11 15:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2012-08-11 15:43:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2012-08-11 15:41:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2012-08-11 15:38:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2012-08-11 15:38:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome [2012-08-11 15:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\WinRAR [2012-08-11 15:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\vlc [2012-08-11 14:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie [2012-08-11 14:46:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012-08-11 14:46:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2012-08-11 14:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2012-08-11 14:46:48 | 000,000,000 | R--D | C] -- C:\Program Files [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2012-08-11 14:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [2012-08-11 14:46:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2012-08-11 14:44:22 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2012-08-11 14:44:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2012-08-11 14:43:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2012-08-11 14:43:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2012-08-11 14:41:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\UserData [2012-08-11 14:37:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2012-08-11 14:37:31 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2012-08-11 14:37:31 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2012-08-11 14:37:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Macromedia [2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Adobe [2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\WinRAR [2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2012-08-11 14:21:39 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2012-08-11 14:21:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Winamp [2012-08-11 14:20:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN [2012-08-11 14:19:55 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2012-08-11 14:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2012-08-11 14:17:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent [2012-08-11 14:15:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl [2012-08-11 14:15:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Tlen.pl [2012-08-11 14:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Tlen.pl [2012-08-11 14:15:37 | 000,000,000 | ---D | C] -- C:\totalcmd [2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SubEdit-Player [2012-08-11 14:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\STDUViewer [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\STDUtility [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\STDUtility [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\STDU Viewer [2012-08-11 14:14:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2012-08-11 14:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative [2012-08-11 14:14:34 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2012-08-11 14:14:33 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\RADVideo [2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Bink and Smacker [2012-08-11 14:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2012-08-11 14:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012-08-11 14:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Sun [2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Mozilla [2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla [2012-08-11 14:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-08-11 14:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2012-08-11 14:08:58 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys [2012-08-11 14:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:08:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:04:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2012-08-11 14:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Adobe [2012-08-11 14:03:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2012-08-11 14:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ACE Mega CoDecS Pack [2012-08-11 14:00:40 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll [2012-08-11 14:00:40 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll [2012-08-11 14:00:40 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll [2012-08-11 14:00:39 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll [2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll [2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll [2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll [2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll [2012-08-11 14:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack [2012-08-11 13:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office [2012-08-11 13:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2012-08-11 13:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2012-08-11 13:54:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2012-08-11 13:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2012-08-11 13:41:41 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-08-11 13:37:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2012-08-11 13:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2012-08-11 13:36:07 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2012-08-11 13:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2012-08-11 13:35:17 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012-08-11 13:32:43 | 000,008,576 | R--- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\drivers\EIO.sys [2012-08-11 13:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero [2012-08-11 13:30:24 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2012-08-11 13:30:21 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2012-08-11 13:30:20 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2012-08-11 13:30:20 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2012-08-11 13:30:20 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2012-08-11 13:30:18 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe [2012-08-11 13:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2012-08-11 13:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [2012-08-11 13:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CyberLink DVD Solution [2012-08-11 13:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink DVD Solution [2012-08-11 13:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2012-08-11 13:10:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NVIDIA Corporation [2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek Sound Manager [2012-08-11 13:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2012-08-11 13:07:45 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2012-08-11 13:07:45 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2012-08-11 13:05:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2012-08-11 13:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2012-08-11 13:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Identities [2012-08-11 13:01:57 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje obrazy [2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moja muzyka [2012-08-11 13:01:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Microsoft [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\SendTo [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Recent [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Ulubione [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Akcesoria [2012-08-11 13:01:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\Cookies [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Szablony [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\PrintHood [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\NetHood [2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit [2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 13:01:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne [2012-08-11 12:59:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2012-08-11 12:59:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2012-08-11 12:59:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2012-08-11 12:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 12:58:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2012-08-11 12:58:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2012-08-11 12:56:58 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2012-08-11 12:56:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2012-08-11 12:55:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2012-08-11 12:55:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2012-08-11 12:55:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2012-08-11 12:55:07 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2012-08-11 12:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2012-08-11 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2012-08-11 12:54:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2012-08-11 12:54:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2012-08-11 12:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2012-08-11 12:54:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2012-08-11 12:54:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2012-08-11 12:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2012-08-11 12:53:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2012-08-11 12:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2012-08-11 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2012-08-11 12:53:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2012-08-11 12:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2012-08-11 12:53:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2012-08-11 12:53:14 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2012-08-11 12:53:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne [2012-08-11 12:53:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2012-08-11 12:52:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry [2012-08-11 12:52:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2012-08-11 12:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2012-08-11 12:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2012-08-11 12:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2012-08-11 12:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2012-08-11 12:51:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2012-08-11 12:51:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2012-08-11 12:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2012-08-20 16:31:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-08-20 16:20:31 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-08-20 14:13:15 | 104,413,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2012-08-20 14:10:30 | 000,000,732 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2012.lnk [2012-08-20 01:08:54 | 033,464,175 | ---- | M] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe [2012-08-20 01:08:53 | 000,413,879 | ---- | M] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp [2012-08-20 01:08:50 | 000,054,272 | ---- | M] (sdfsdfsda) -- C:\Documents and Settings\All Users\4xBd2lxm.exe [2012-08-19 00:21:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-08-17 19:55:47 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-16 09:58:04 | 000,196,160 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-08-16 00:54:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012-08-13 13:40:56 | 000,000,407 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk [2012-08-11 19:05:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-08-11 18:47:46 | 000,540,820 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-08-11 18:47:46 | 000,480,696 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-08-11 18:47:46 | 000,098,710 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-08-11 18:47:46 | 000,079,152 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-08-11 18:33:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-08-11 17:50:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2012-08-11 17:50:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2012-08-11 17:49:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2012-08-11 15:49:45 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr [2012-08-11 14:20:18 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2012-08-11 14:18:49 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2012-08-11 14:15:53 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk [2012-08-11 14:15:37 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk [2012-08-11 14:15:37 | 000,000,090 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2012-08-11 14:15:22 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk [2012-08-11 14:15:10 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk [2012-08-11 14:12:21 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2012-08-11 14:12:16 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-08-11 14:11:57 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2012-08-11 14:03:14 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk [2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-08-11 13:58:56 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-08-11 13:55:02 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2012-08-11 13:36:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-08-11 13:31:28 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2012-08-11 13:29:26 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk [2012-08-11 13:14:08 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [2012-08-11 13:11:40 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2012-08-11 13:11:40 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2012-08-11 13:08:49 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2012-08-11 13:02:11 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk [2012-08-11 12:58:57 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2012-08-11 12:58:12 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2012-08-11 12:56:13 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012-08-11 12:56:00 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2012-08-11 12:53:23 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [5 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-08-20 14:13:15 | 104,413,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2012-08-20 14:10:30 | 000,000,732 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AVG 2012.lnk [2012-08-20 01:08:53 | 033,464,175 | ---- | C] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe [2012-08-20 01:08:50 | 000,413,879 | ---- | C] () -- C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp [2012-08-14 21:15:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk [2012-08-13 13:40:56 | 000,000,407 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk [2012-08-11 18:33:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-08-11 17:49:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2012-08-11 17:44:45 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb [2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll [2012-08-11 15:44:39 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm [2012-08-11 15:44:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav [2012-08-11 15:44:39 | 000,074,010 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm [2012-08-11 15:44:39 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm [2012-08-11 15:44:39 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta [2012-08-11 15:44:39 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css [2012-08-11 15:44:39 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf [2012-08-11 15:44:39 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js [2012-08-11 15:44:38 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav [2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav [2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav [2012-08-11 15:44:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv [2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav [2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav [2012-08-11 15:44:38 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav [2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav [2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav [2012-08-11 15:44:38 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf [2012-08-11 15:44:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf [2012-08-11 15:44:38 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif [2012-08-11 15:44:38 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif [2012-08-11 15:44:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf [2012-08-11 15:44:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif [2012-08-11 15:44:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif [2012-08-11 15:44:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif [2012-08-11 15:44:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif [2012-08-11 15:44:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif [2012-08-11 15:44:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif [2012-08-11 15:44:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif [2012-08-11 15:44:38 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif [2012-08-11 15:44:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif [2012-08-11 15:44:38 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js [2012-08-11 15:44:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif [2012-08-11 15:44:38 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif [2012-08-11 15:44:38 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif [2012-08-11 15:44:38 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif [2012-08-11 15:44:38 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif [2012-08-11 15:44:38 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf [2012-08-11 15:44:38 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif [2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif [2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif [2012-08-11 15:44:38 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif [2012-08-11 15:44:38 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm [2012-08-11 15:44:37 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv [2012-08-11 15:44:37 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv [2012-08-11 15:44:37 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm [2012-08-11 15:44:37 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz [2012-08-11 15:44:37 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl [2012-08-11 15:44:37 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl [2012-08-11 15:44:37 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl [2012-08-11 15:44:37 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl [2012-08-11 15:44:37 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl [2012-08-11 15:44:37 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl [2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl [2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl [2012-08-11 15:44:37 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl [2012-08-11 15:44:37 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl [2012-08-11 15:44:37 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl [2012-08-11 15:44:37 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl [2012-08-11 15:44:37 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl [2012-08-11 15:44:37 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl [2012-08-11 15:44:37 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl [2012-08-11 15:44:36 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv [2012-08-11 15:44:36 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv [2012-08-11 15:44:36 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz [2012-08-11 15:44:36 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf [2012-08-11 15:44:36 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip [2012-08-11 15:44:36 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css [2012-08-11 15:44:36 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm [2012-08-11 15:44:36 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js [2012-08-11 15:44:36 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js [2012-08-11 15:44:36 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif [2012-08-11 15:44:36 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif [2012-08-11 15:44:36 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif [2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif [2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif [2012-08-11 15:44:36 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif [2012-08-11 15:44:36 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif [2012-08-11 15:44:36 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif [2012-08-11 15:44:36 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip [2012-08-11 15:41:16 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2012-08-11 15:41:15 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2012-08-11 15:41:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2012-08-11 14:46:55 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2012-08-11 14:46:52 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012-08-11 14:46:50 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2012-08-11 14:46:50 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2012-08-11 14:46:49 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2012-08-11 14:46:49 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2012-08-11 14:46:28 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2012-08-11 14:44:38 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2012-08-11 14:44:38 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2012-08-11 14:44:38 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2012-08-11 14:44:38 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2012-08-11 14:44:38 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2012-08-11 14:44:38 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2012-08-11 14:44:38 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2012-08-11 14:44:38 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2012-08-11 14:43:54 | 000,196,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-08-11 14:43:08 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2012-08-11 14:43:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2012-08-11 14:34:39 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-08-11 14:20:18 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2012-08-11 14:18:25 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2012-08-11 14:15:53 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk [2012-08-11 14:15:37 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF [2012-08-11 14:15:37 | 000,000,090 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2012-08-11 14:15:22 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk [2012-08-11 14:15:10 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk [2012-08-11 14:12:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2012-08-11 14:12:16 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-08-11 14:11:57 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2012-08-11 14:08:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2012-08-11 14:08:01 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-11 14:03:14 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 8.lnk [2012-08-11 14:03:14 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk [2012-08-11 14:01:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl [2012-08-11 14:00:42 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini [2012-08-11 14:00:42 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini [2012-08-11 14:00:42 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini [2012-08-11 14:00:39 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012-08-11 14:00:39 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2012-08-11 14:00:36 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2012-08-11 14:00:34 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl [2012-08-11 13:55:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-08-11 13:36:20 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-08-11 13:36:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-08-11 13:36:06 | 002,784,050 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data [2012-08-11 13:36:06 | 000,007,843 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2012-08-11 13:31:28 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2012-08-11 13:29:26 | 000,001,900 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk [2012-08-11 13:29:24 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe [2012-08-11 13:14:08 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak [2012-08-11 13:11:40 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2012-08-11 13:11:40 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2012-08-11 13:10:19 | 000,249,344 | R--- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe [2012-08-11 13:10:19 | 000,223,232 | R--- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe [2012-08-11 13:08:49 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2012-08-11 13:08:45 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2012-08-11 13:08:40 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2012-08-11 13:08:39 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2012-08-11 13:08:34 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV [2012-08-11 13:05:27 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2012-08-11 13:05:25 | 000,001,231 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2012-08-11 13:02:11 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk [2012-08-11 13:01:58 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Outlook Express.lnk [2012-08-11 13:01:57 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Internet Explorer.lnk [2012-08-11 13:01:41 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Pomoc zdalna.lnk [2012-08-11 13:01:41 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Windows Media Player.lnk [2012-08-11 12:58:57 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2012-08-11 12:58:12 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012-08-11 12:57:44 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2012-08-11 12:57:31 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2012-08-11 12:57:24 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2012-08-11 12:57:23 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2012-08-11 12:57:21 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2012-08-11 12:57:16 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2012-08-11 12:57:13 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2012-08-11 12:57:00 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2012-08-11 12:56:13 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2012-08-11 12:56:10 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2012-08-11 12:56:10 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2012-08-11 12:56:09 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2012-08-11 12:55:07 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk [2012-08-11 12:54:55 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2012-08-11 12:54:13 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2012-08-11 12:53:23 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2012-08-11 12:52:41 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk [2012-08-11 12:52:14 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2012-08-11 12:52:13 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2012-08-11 12:52:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2012-08-11 12:52:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2012-08-11 12:52:13 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2012-08-11 12:52:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2012-08-11 12:52:13 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2012-08-11 12:52:13 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2012-08-11 12:52:13 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2012-08-11 12:52:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2012-08-11 12:52:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2012-08-11 12:52:09 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2012-08-11 12:52:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2012-08-11 12:52:08 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2012-08-11 12:52:01 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [color=#E56717]========== LOP Check ==========[/color] [2012-08-20 14:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2012-08-20 14:07:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2012-08-20 14:13:32 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2012-08-13 13:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED [2012-08-20 14:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012 [2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl [2012-08-20 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2006-03-02 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2012-08-11 13:10:33 | 000,000,032 | ---- | M] () -- C:\csb.log [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2006-03-02 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr [2012-08-20 16:20:27 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys [2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2006-03-02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2006-03-02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2006-03-02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2006-03-02 14:00:00 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report >[/log]
komputerowiec19 komentarz 20 sierpnia 2012 komentarz 20 sierpnia 2012 Uruchom OTL i w sekcji (Własne opcje skanowania/Skrypt) wklej: [quote] :OTL DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a8w7fgbf) O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe () :Files C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp C:\Documents and Settings\All Users\UHTpJoPWI9.exe C:\Documents and Settings\All Users\4xBd2lxm.exe :Commands [emptytemp] [/quote] Kliknij wykonaj skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie. Następnie uruchom OTL ponownie, i kliknij skanuj. Pokaż nowy log OTL.txt oraz raport z usuwania.
Piotras89 komentarz 20 sierpnia 2012 Autor komentarz 20 sierpnia 2012 (edytowane) [log] All processes killed ========== OTL ========== Error: No service named a8w7fgbf was found to stop! Service\Driver key a8w7fgbf not found. Registry value HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\HqaxaiS deleted successfully. File move failed. c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe scheduled to be moved on reboot. ========== FILES ========== C:\Documents and Settings\All Users\UHTpJoPWI9.exe.bmp moved successfully. C:\Documents and Settings\All Users\UHTpJoPWI9.exe moved successfully. C:\Documents and Settings\All Users\4xBd2lxm.exe moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: LocalService ->Temp folder emptied: 66016 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: Piotr ->Temp folder emptied: 238875012 bytes ->Temporary Internet Files folder emptied: 676344916 bytes ->Java cache emptied: 264249 bytes ->FireFox cache emptied: 128516959 bytes ->Flash cache emptied: 3821 bytes User: UpdatusUser ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 2148726 bytes %systemroot%\System32 .tmp files removed: 2596 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 31692546 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 1 028,00 mb OTL by OldTimer - Version 3.2.58.1 log created on 08202012_215444 Files\Folders moved on Reboot... c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe moved successfully. PendingFileRenameOperations files... Registry entries deleted on Reboot... [/log] [log] OTL Extras logfile created on: 2012-08-20 22:01:21 - Run 4 OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,44% Memory free 3,85 Gb Paging File | 3,34 Gb Available in Paging File | 86,81% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 26,11 Gb Free Space | 66,86% Space Free | Partition Type: NTFS Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Classes\<extension>] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation) "C:\Program Files\Tlen.pl\tlen.exe" = C:\Program Files\Tlen.pl\tlen.exe:*:Enabled:Komunikator Tlen.pl -- (o2.pl Sp. z o.o.) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\AVG\AVG2012\avgnsx.exe" = C:\Program Files\AVG\AVG2012\avgnsx.exe:*:Enabled:Ochrona Sieci "C:\Program Files\AVG\AVG2012\avgdiagex.exe" = C:\Program Files\AVG\AVG2012\avgdiagex.exe:*:Enabled:Diagnostyka AVG 2012 "C:\Program Files\AVG\AVG2012\avgmfapx.exe" = C:\Program Files\AVG\AVG2012\avgmfapx.exe:*:Enabled:Instalator AVG "C:\Program Files\AVG\AVG2012\avgemcx.exe" = C:\Program Files\AVG\AVG2012\avgemcx.exe:*:Enabled:Uniwersalny skaner poczty e-mail [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = Multimedia Launcher "{26A24AE4-039D-4CA4-87B4-2F83216033FF}" = Java™ 6 Update 33 "{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6D12EC75-E7D3-4EAD-AB10-E1F3AFF94AA6}" = AVG 2012 "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{AC76BA86-7AD7-1033-7B44-A81200000003}" = Adobe Reader 8.1.2 "{B143D835-EBAF-4A39-8B31-1868FF4166C1}" = AVG 2012 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 136.18 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B97CF5C3-0487-11D8-A36E-0050BAE317E1}" = DVD Solution "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C151CE54-E7EA-4804-854B-F515368B0798}" = Athlon 64 Processor Driver "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FFFF6D5C-E2F1-4B40-BC89-8923312E89EB}}_is1" = ACE Mega CoDecS Pack "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Bink and Smacker" = Bink and Smacker "DAEMON Tools Lite" = DAEMON Tools Lite "ie8" = Windows Internet Explorer 8 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Nero - Burning Rom!UninstallKey" = Nero OEM "NVIDIA Drivers" = NVIDIA Drivers "RealAlt_is1" = Real Alternative 2.0.0 "STDU Viewer_is1" = STDU Viewer version 1.5.647.0 "SubEdit-Player_is1" = SubEdit-Player "The Walking Dead © 3_is1" = The Walking Dead © 3 version 1 "Tlen.pl" = Tlen.pl "Totalcmd" = Total Commander (Remove or Repair) "uTorrent" = µTorrent "VLC media player" = VLC media player 1.1.8 "Winamp" = Winamp "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 11:51:21 | Computer Name = PIOTRAS | Source = Windows Search Service | ID = 3026 Description = Error - 2012-08-11 12:36:24 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1101 Description = .NET Runtime Optimization Service (clr_optimization_v4.0.30319_32) - Failed to compile: System, Version=2.0.0.0, Culture=neutral, PublicKeyToken=b77a5c561934e089 . Error code = 0x80070005 Error - 2012-08-11 12:51:12 | Computer Name = PIOTRAS | Source = .NET Runtime Optimization Service | ID = 1103 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown Error - 2012-08-20 10:53:50 | Computer Name = PIOTRAS | Source = MsiInstaller | ID = 11922 Description = SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2012 — Błąd 1922. SA_Error1922: StandardAction(0xC0070782): Usunięcie usługi 'AVGIDSAgent' (AVGIDSAgent) nie powiodło się. Sprawdź, czy masz wystarczające uprawnienia do usuwania usług systemowych. Error - 2012-08-20 11:05:25 | Computer Name = PIOTRAS | Source = MsiInstaller | ID = 11922 Description = SA_Error1709: StandardAction(0xC00706AD): Produkt: AVG 2012 — Błąd 1922. SA_Error1922: StandardAction(0xC0070782): Usunięcie usługi 'AVGIDSAgent' (AVGIDSAgent) nie powiodło się. Sprawdź, czy masz wystarczające uprawnienia do usuwania usług systemowych. [ System Events ] Error - 2012-08-11 11:51:38 | Computer Name = PIOTRAS | Source = Windows Update Agent | ID = 20 Description = Instalacja nie powiodła się: system Windows nie mógł zainstalować następującej aktualizacji, ponieważ wystąpił błąd 0x8007f0f4: Aktualizacja dla odtwarzaczy multimedialnych obsługujących platformę WMDRM (KB902344). Error - 2012-08-11 12:21:31 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} Error - 2012-08-11 12:21:34 | Computer Name = PIOTRAS | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1058” podczas próby uruchomienia usługi WSearch z argumentami „” w celu uruchomienia serwera: {7D096C5F-AC08-4F1F-BEB7-5C22C517CE39} < End of report > [/log] [log] OTL logfile created on: 2012-08-20 22:01:21 - Run 4 OTL by OldTimer - Version 3.2.58.1 Folder = C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,41 Gb Available Physical Memory | 70,44% Memory free 3,85 Gb Paging File | 3,34 Gb Available in Paging File | 86,81% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 39,06 Gb Total Space | 26,11 Gb Free Space | 66,86% Space Free | Partition Type: NTFS Drive D: | 72,72 Gb Total Space | 58,93 Gb Free Space | 81,04% Space Free | Partition Type: NTFS Computer Name: PIOTRAS | User Name: Piotr | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe PRC - [2012-08-20 21:53:58 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe PRC - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe PRC - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2012-06-02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe PRC - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe PRC - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-02-06 12:10:02 | 000,227,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe PRC - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe PRC - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-14 22:51:12 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-04-14 22:51:04 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-01-11 22:16:38 | 000,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe PRC - [2007-10-16 12:53:12 | 006,234,112 | ---- | M] (o2.pl Sp. z o.o.) -- C:\Program Files\Tlen.pl\tlen.exe PRC - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe PRC - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe PRC - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE [color=#E56717]========== Modules (All) ==========[/color] MOD - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe MOD - [2012-08-20 21:53:58 | 000,596,480 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie\OTL.exe MOD - [2012-08-16 19:52:25 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe MOD - [2012-08-16 19:52:25 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcr100.dll MOD - [2012-08-16 19:52:25 | 000,421,200 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Mozilla Firefox\msvcp100.dll MOD - [2012-08-16 19:52:25 | 000,258,528 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\freebl3.dll MOD - [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\components\browsercomps.dll MOD - [2012-08-16 19:52:24 | 002,003,424 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2012-08-16 19:52:24 | 000,573,920 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\gkmedias.dll MOD - [2012-08-16 19:52:24 | 000,068,576 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozglue.dll MOD - [2012-08-16 19:52:24 | 000,015,840 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\mozalloc.dll MOD - [2012-08-16 19:52:23 | 000,829,920 | ---- | M] (sqlite.org) -- C:\Program Files\Mozilla Firefox\mozsqlite3.dll MOD - [2012-08-16 19:52:22 | 000,638,432 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nss3.dll MOD - [2012-08-16 19:52:22 | 000,358,368 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssckbi.dll MOD - [2012-08-16 19:52:22 | 000,170,976 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nspr4.dll MOD - [2012-08-16 19:52:22 | 000,095,712 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssdbm3.dll MOD - [2012-08-16 19:52:22 | 000,092,640 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\nssutil3.dll MOD - [2012-08-16 19:52:22 | 000,021,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plc4.dll MOD - [2012-08-16 19:52:22 | 000,020,960 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\plds4.dll MOD - [2012-08-16 19:52:21 | 000,155,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\softokn3.dll MOD - [2012-08-16 19:52:21 | 000,145,376 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\ssl3.dll MOD - [2012-08-16 19:52:21 | 000,091,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\smime3.dll MOD - [2012-08-16 19:52:21 | 000,016,864 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\plugin-container.exe MOD - [2012-08-16 19:52:19 | 016,060,384 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xul.dll MOD - [2012-08-16 19:52:19 | 000,019,424 | ---- | M] (Mozilla Foundation) -- C:\Program Files\Mozilla Firefox\xpcom.dll MOD - [2012-08-14 23:31:23 | 009,465,032 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll MOD - [2012-08-11 14:47:05 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre6\bin\msvcr71.dll MOD - [2012-08-11 14:47:05 | 000,153,392 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe MOD - [2012-07-06 15:58:56 | 000,337,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll MOD - [2012-07-06 15:58:56 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll MOD - [2012-07-02 23:08:18 | 011,111,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll MOD - [2012-07-02 19:38:19 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll MOD - [2012-07-02 19:38:19 | 000,916,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll MOD - [2012-07-02 19:38:18 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll MOD - [2012-06-08 16:25:47 | 008,491,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2012-06-05 17:49:57 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml3.dll MOD - [2012-06-04 06:32:39 | 000,152,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll MOD - [2012-06-02 15:19:34 | 000,053,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauclt.exe MOD - [2012-06-02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wups2.dll MOD - [2012-06-02 15:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll MOD - [2012-05-31 15:22:04 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll MOD - [2012-05-14 11:23:06 | 000,347,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll MOD - [2012-04-20 21:30:26 | 001,510,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll MOD - [2012-04-20 21:30:25 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll MOD - [2012-04-17 17:19:40 | 003,671,872 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe MOD - [2012-04-17 17:19:08 | 004,860,736 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTCommonRes.dll MOD - [2012-04-17 17:18:40 | 003,725,120 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\Engine.dll MOD - [2012-04-06 12:22:56 | 000,382,784 | ---- | M] (DT Soft Ltd.) -- C:\Program Files\DAEMON Tools Lite\imgengine.dll MOD - [2012-03-01 01:58:00 | 002,797,376 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdt.dll MOD - [2012-03-01 01:58:00 | 002,291,712 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvapi.dll MOD - [2012-03-01 01:58:00 | 000,981,312 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\NvUpdtr.dll MOD - [2012-03-01 01:58:00 | 000,639,296 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\Update Common\EasyDaemonAPIU.dll MOD - [2012-02-29 23:15:40 | 000,258,048 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvrspl.dll MOD - [2012-02-29 22:30:23 | 000,164,160 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe MOD - [2012-02-29 22:30:23 | 000,108,352 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvmctray.dll MOD - [2012-02-29 16:10:17 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll MOD - [2012-02-29 16:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll MOD - [2012-02-09 17:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll MOD - [2012-01-18 14:02:04 | 000,254,696 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe MOD - [2011-12-24 23:49:36 | 000,258,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v1.1.4322\aspnet_isapi.dll MOD - [2011-11-16 16:21:48 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll MOD - [2011-11-01 18:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2011-10-14 16:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll MOD - [2011-09-26 11:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll MOD - [2011-05-17 09:27:52 | 000,413,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll MOD - [2011-03-03 08:55:00 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll MOD - [2011-02-08 15:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll MOD - [2010-12-22 14:34:22 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll MOD - [2010-12-20 19:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2010-12-20 19:25:52 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll MOD - [2010-12-09 17:15:25 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-11-09 16:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll MOD - [2010-08-27 10:03:47 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\t2embed.dll MOD - [2010-08-27 07:54:13 | 000,099,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll MOD - [2010-08-23 18:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll MOD - [2010-08-23 18:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-17 15:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe MOD - [2010-08-16 10:45:09 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-04-16 17:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll MOD - [2010-03-18 10:09:00 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll MOD - [2010-03-18 10:09:00 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll MOD - [2009-12-08 11:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-10-13 12:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll MOD - [2009-10-12 15:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll MOD - [2009-10-12 15:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll MOD - [2009-09-11 16:19:43 | 000,136,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll MOD - [2009-09-04 23:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll MOD - [2009-07-28 01:19:10 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll MOD - [2009-07-17 21:04:02 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll MOD - [2009-07-17 18:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll MOD - [2009-06-25 10:27:54 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-06-25 10:27:54 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll MOD - [2009-06-10 08:16:42 | 000,132,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll MOD - [2009-03-21 16:08:59 | 001,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2009-03-08 04:34:48 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll MOD - [2009-03-08 04:32:48 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll MOD - [2009-03-06 16:22:12 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll MOD - [2009-02-09 13:25:57 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe MOD - [2009-02-09 12:53:44 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll MOD - [2009-02-09 12:53:44 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll MOD - [2009-02-09 12:53:43 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll MOD - [2009-01-07 18:20:36 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll MOD - [2008-10-23 14:42:41 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-07-25 11:17:20 | 000,635,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcr80.dll MOD - [2008-07-25 11:17:20 | 000,558,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.3053_x-ww_b80fa8ca\msvcp80.dll MOD - [2008-07-25 11:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll MOD - [2008-07-07 22:29:10 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll MOD - [2008-07-06 14:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll MOD - [2008-06-24 18:46:33 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll MOD - [2008-06-20 18:04:23 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll MOD - [2008-06-12 16:23:52 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll MOD - [2008-06-12 16:23:52 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll MOD - [2008-06-12 16:23:52 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll MOD - [2008-04-14 22:51:58 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp MOD - [2008-04-14 22:51:58 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp MOD - [2008-04-14 22:51:58 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-14 22:51:58 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp MOD - [2008-04-14 22:51:58 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp MOD - [2008-04-14 22:51:58 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp MOD - [2008-04-14 22:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv MOD - [2008-04-14 22:51:58 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp MOD - [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe MOD - [2008-04-14 22:51:50 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe MOD - [2008-04-14 22:51:44 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe MOD - [2008-04-14 22:51:44 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe MOD - [2008-04-14 22:51:40 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\notepad.exe MOD - [2008-04-14 22:51:32 | 000,070,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\notepad.exe MOD - [2008-04-14 22:51:24 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe MOD - [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe MOD - [2008-04-14 22:51:12 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe MOD - [2008-04-14 22:51:02 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll MOD - [2008-04-14 22:51:02 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll MOD - [2008-04-14 22:51:02 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll MOD - [2008-04-14 22:51:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll MOD - [2008-04-14 22:51:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll MOD - [2008-04-14 22:51:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll MOD - [2008-04-14 22:51:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll MOD - [2008-04-14 22:51:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2008-04-14 22:51:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll MOD - [2008-04-14 22:51:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll MOD - [2008-04-14 22:51:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2008-04-14 22:51:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll MOD - [2008-04-14 22:51:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll MOD - [2008-04-14 22:51:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wship6.dll MOD - [2008-04-14 22:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll MOD - [2008-04-14 22:50:58 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-14 22:50:58 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll MOD - [2008-04-14 22:50:58 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-14 22:50:58 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll MOD - [2008-04-14 22:50:58 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll MOD - [2008-04-14 22:50:58 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll MOD - [2008-04-14 22:50:58 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll MOD - [2008-04-14 22:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll MOD - [2008-04-14 22:50:58 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll MOD - [2008-04-14 22:50:58 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2008-04-14 22:50:58 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll MOD - [2008-04-14 22:50:58 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll MOD - [2008-04-14 22:50:58 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll MOD - [2008-04-14 22:50:58 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2008-04-14 22:50:58 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll MOD - [2008-04-14 22:50:58 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll MOD - [2008-04-14 22:50:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll MOD - [2008-04-14 22:50:58 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll MOD - [2008-04-14 22:50:58 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll MOD - [2008-04-14 22:50:58 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll MOD - [2008-04-14 22:50:58 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll MOD - [2008-04-14 22:50:58 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll MOD - [2008-04-14 22:50:58 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcons.dll MOD - [2008-04-14 22:50:58 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-14 22:50:58 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll MOD - [2008-04-14 22:50:58 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll MOD - [2008-04-14 22:50:58 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll MOD - [2008-04-14 22:50:58 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll MOD - [2008-04-14 22:50:58 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll MOD - [2008-04-14 22:50:58 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll MOD - [2008-04-14 22:50:58 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll MOD - [2008-04-14 22:50:58 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll MOD - [2008-04-14 22:50:48 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-14 22:50:48 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll MOD - [2008-04-14 22:50:48 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll MOD - [2008-04-14 22:50:48 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll MOD - [2008-04-14 22:50:48 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll MOD - [2008-04-14 22:50:48 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll MOD - [2008-04-14 22:50:46 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll MOD - [2008-04-14 22:50:46 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll MOD - [2008-04-14 22:50:46 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll MOD - [2008-04-14 22:50:46 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll MOD - [2008-04-14 22:50:46 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll MOD - [2008-04-14 22:50:46 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll MOD - [2008-04-14 22:50:46 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll MOD - [2008-04-14 22:50:46 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll MOD - [2008-04-14 22:50:46 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll MOD - [2008-04-14 22:50:46 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll MOD - [2008-04-14 22:50:46 | 000,123,392 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oledlg.dll MOD - [2008-04-14 22:50:46 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll MOD - [2008-04-14 22:50:46 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-14 22:50:46 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll MOD - [2008-04-14 22:50:46 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2008-04-14 22:50:46 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll MOD - [2008-04-14 22:50:46 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll MOD - [2008-04-14 22:50:46 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll MOD - [2008-04-14 22:50:46 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll MOD - [2008-04-14 22:50:46 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll MOD - [2008-04-14 22:50:46 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll MOD - [2008-04-14 22:50:46 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll MOD - [2008-04-14 22:50:46 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll MOD - [2008-04-14 22:50:46 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll MOD - [2008-04-14 22:50:46 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll MOD - [2008-04-14 22:50:46 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll MOD - [2008-04-14 22:50:46 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll MOD - [2008-04-14 22:50:46 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll MOD - [2008-04-14 22:50:46 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll MOD - [2008-04-14 22:50:46 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-14 22:50:46 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll MOD - [2008-04-14 22:50:46 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll MOD - [2008-04-14 22:50:46 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll MOD - [2008-04-14 22:50:46 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll MOD - [2008-04-14 22:50:46 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll MOD - [2008-04-14 22:50:46 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll MOD - [2008-04-14 22:50:44 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll MOD - [2008-04-14 22:50:44 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll MOD - [2008-04-14 22:50:42 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll MOD - [2008-04-14 22:50:42 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll MOD - [2008-04-14 22:50:42 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll MOD - [2008-04-14 22:50:42 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll MOD - [2008-04-14 22:50:42 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll MOD - [2008-04-14 22:50:42 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2008-04-14 22:50:42 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll MOD - [2008-04-14 22:50:42 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll MOD - [2008-04-14 22:50:42 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll MOD - [2008-04-14 22:50:42 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll MOD - [2008-04-14 22:50:42 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll MOD - [2008-04-14 22:50:42 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll MOD - [2008-04-14 22:50:42 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll MOD - [2008-04-14 22:50:42 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll MOD - [2008-04-14 22:50:40 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll MOD - [2008-04-14 22:50:40 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll MOD - [2008-04-14 22:50:40 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll MOD - [2008-04-14 22:50:40 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-14 22:50:40 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll MOD - [2008-04-14 22:50:40 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll MOD - [2008-04-14 22:50:40 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll MOD - [2008-04-14 22:50:40 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll MOD - [2008-04-14 22:50:40 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll MOD - [2008-04-14 22:50:38 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctf.dll MOD - [2008-04-14 22:50:38 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2008-04-14 22:50:36 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll MOD - [2008-04-14 22:50:36 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll MOD - [2008-04-14 22:50:36 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll MOD - [2008-04-14 22:50:36 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll MOD - [2008-04-14 22:50:36 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll MOD - [2008-04-14 22:50:36 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll MOD - [2008-04-14 22:50:34 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll MOD - [2008-04-14 22:50:34 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll MOD - [2008-04-14 22:50:34 | 000,254,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icm32.dll MOD - [2008-04-14 22:50:34 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll MOD - [2008-04-14 22:50:34 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2008-04-14 22:50:34 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll MOD - [2008-04-14 22:50:34 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll MOD - [2008-04-14 22:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll MOD - [2008-04-14 22:50:34 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidserv.dll MOD - [2008-04-14 22:50:34 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll MOD - [2008-04-14 22:50:34 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll MOD - [2008-04-14 22:50:32 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll MOD - [2008-04-14 22:50:32 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll MOD - [2008-04-14 22:50:32 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll MOD - [2008-04-14 22:50:32 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-14 22:50:32 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll MOD - [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll MOD - [2008-04-14 22:50:32 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll MOD - [2008-04-14 22:50:32 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll MOD - [2008-04-14 22:50:32 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll MOD - [2008-04-14 22:50:32 | 000,021,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\feclient.dll MOD - [2008-04-14 22:50:30 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll MOD - [2008-04-14 22:50:30 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll MOD - [2008-04-14 22:50:28 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll MOD - [2008-04-14 22:50:28 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll MOD - [2008-04-14 22:50:26 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll MOD - [2008-04-14 22:50:24 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll MOD - [2008-04-14 22:50:22 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll MOD - [2008-04-14 22:50:22 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll MOD - [2008-04-14 22:50:20 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll MOD - [2008-04-14 22:50:20 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll MOD - [2008-04-14 22:50:18 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll MOD - [2008-04-14 22:50:18 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll MOD - [2008-04-14 22:50:18 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll MOD - [2008-04-14 22:50:18 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll MOD - [2008-04-14 22:50:18 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll MOD - [2008-04-14 22:50:18 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll MOD - [2008-04-14 22:50:16 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll MOD - [2008-04-14 22:50:16 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2008-04-14 22:50:14 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2008-04-14 22:50:14 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll MOD - [2008-04-14 22:50:14 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll MOD - [2008-04-14 22:50:12 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2008-04-14 22:50:12 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll MOD - [2008-04-14 22:50:10 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll MOD - [2008-04-14 22:50:08 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll MOD - [2008-04-14 22:50:06 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll MOD - [2008-04-14 22:50:04 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll MOD - [2008-04-14 22:50:04 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll MOD - [2008-04-14 22:50:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll MOD - [2008-04-14 22:49:58 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll MOD - [2008-04-14 22:49:56 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acgenral.dll MOD - [2008-04-14 22:49:56 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll MOD - [2008-04-14 22:49:56 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll MOD - [2008-04-14 22:49:54 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\acadproc.dll MOD - [2008-04-14 22:48:50 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll MOD - [2008-04-14 22:46:34 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2008-04-14 22:43:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msctfime.ime MOD - [2008-04-14 21:43:18 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdoclc.dll MOD - [2008-04-14 21:39:14 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll MOD - [2008-04-14 21:35:18 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll MOD - [2008-04-14 00:08:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll MOD - [2008-04-13 23:07:58 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll MOD - [2008-04-13 23:07:58 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll MOD - [2008-04-13 21:53:32 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll MOD - [2008-01-11 22:16:38 | 000,039,792 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe MOD - [2007-10-16 12:53:12 | 006,234,112 | ---- | M] (o2.pl Sp. z o.o.) -- C:\Program Files\Tlen.pl\tlen.exe MOD - [2007-10-16 12:44:18 | 000,030,720 | ---- | M] () -- C:\Program Files\Tlen.pl\languages\polish.dll MOD - [2007-10-05 15:00:58 | 000,181,248 | ---- | M] () -- C:\Program Files\Tlen.pl\libutil.dll MOD - [2007-09-17 11:36:40 | 001,500,160 | ---- | M] (Borland Corporation) -- C:\Program Files\Tlen.pl\cc3260mt.dll MOD - [2007-09-17 11:36:40 | 000,618,496 | ---- | M] () -- C:\Program Files\Tlen.pl\stlpmt45.dll MOD - [2007-09-17 11:36:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Tlen.pl\libgadu.dll MOD - [2007-09-17 11:36:40 | 000,139,264 | ---- | M] () -- C:\Program Files\Tlen.pl\libexpat2.dll MOD - [2007-09-17 11:36:40 | 000,022,016 | ---- | M] (Borland Software Corporation) -- C:\Program Files\Tlen.pl\borlndmm.dll MOD - [2007-05-10 22:54:08 | 000,372,736 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll MOD - [2007-03-28 18:24:32 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll MOD - [2006-10-22 23:08:42 | 000,062,080 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll MOD - [2006-10-18 21:47:22 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WPDShServiceObj.dll MOD - [2006-10-18 21:47:18 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceApi.dll MOD - [2006-10-18 21:47:18 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\PortableDeviceTypes.dll MOD - [2006-03-02 14:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll MOD - [2006-03-02 14:00:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll MOD - [2006-03-02 14:00:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll MOD - [2006-03-02 14:00:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv MOD - [2006-03-02 14:00:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\unsecapp.exe MOD - [2006-03-02 14:00:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll MOD - [2006-03-02 14:00:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll MOD - [2006-03-02 14:00:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll MOD - [2006-03-02 14:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll MOD - [2006-03-02 14:00:00 | 000,002,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lz32.dll MOD - [2005-01-17 08:43:46 | 000,084,480 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvraidservice.exe MOD - [2005-01-17 08:43:42 | 000,006,144 | R--- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\NvRaidSvpl.dll MOD - [2004-12-22 11:09:44 | 000,077,824 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\SOUNDMAN.EXE MOD - [2003-08-08 08:23:16 | 012,172,336 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE11\MSO.DLL MOD - [2003-08-03 18:51:02 | 001,354,816 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\System\MSMAPI\1045\MSMAPI32.DLL MOD - [2003-06-19 01:31:48 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll MOD - [2003-06-19 01:31:48 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- C:\Program Files\AVG\AVG2012\avgwdsvc.exe -- (avgwd) SRV - File not found [Auto | Stopped] -- C:\Program Files\AVG\AVG2012\avgidsagent.exe -- (AVGIDSAgent) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-08-16 19:52:24 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-08-14 23:31:24 | 000,250,056 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-03-01 01:58:00 | 002,348,352 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Update Core\daemonu.exe -- (nvUpdatusService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - File not found [Kernel | On_Demand | Unknown] -- -- (a4tfn1h0) DRV - [2012-08-11 14:11:56 | 000,477,240 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2012-04-19 04:50:26 | 000,024,896 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\avgidshx.sys -- (AVGIDSHX) DRV - [2012-03-19 05:17:28 | 000,301,248 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgtdix.sys -- (Avgtdix) DRV - [2012-02-22 05:25:32 | 000,235,216 | ---- | M] (AVG Technologies CZ, s.r.o.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avgldx86.sys -- (Avgldx86) DRV - [2012-01-31 04:46:50 | 000,031,952 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | Boot | Running] -- C:\WINDOWS\system32\drivers\avgrkx86.sys -- (Avgrkx86) DRV - [2011-12-23 13:32:14 | 000,041,040 | ---- | M] (AVG Technologies CZ, s.r.o.) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\avgmfx86.sys -- (Avgmfx86) DRV - [2011-12-23 13:32:08 | 000,017,232 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsshimx.sys -- (AVGIDSShim) DRV - [2011-12-23 13:32:06 | 000,024,144 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsfilterx.sys -- (AVGIDSFilter) DRV - [2011-12-23 13:32:00 | 000,139,856 | ---- | M] (AVG Technologies CZ, s.r.o. ) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\avgidsdriverx.sys -- (AVGIDSDriver) DRV - [2005-05-17 11:45:08 | 000,092,800 | R--- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\nvatabus.sys -- (nvatabus) DRV - [2005-04-05 21:22:30 | 000,012,928 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus) DRV - [2005-04-05 21:22:28 | 000,033,536 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD) DRV - [2005-03-09 15:53:00 | 000,043,008 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdK8.sys -- (AmdK8) DRV - [2004-12-22 11:07:12 | 002,304,320 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) DRV - [2004-10-19 05:50:00 | 000,008,576 | R--- | M] (ASUSTeK Computer Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\EIO.sys -- (EIO) DRV - [2001-08-17 23:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=%7Breferrer:source?%7D"]http://search.live.c...ferrer:source?}[/url] IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = [url="http://search.live.com/results.aspx?q=%7BsearchTerms%7D&src=IE-SearchBox&Form=IE8SRC"]http://search.live.c...Box&Form=IE8SRC[/url] IE - HKU\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.startup.homepage: "www.google.pl" FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA}:6.0.33 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_3_300_271.dll () FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\WINDOWS\system32\Adobe\Director\np32dsw.dll (Adobe Systems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=1.6.0_33: C:\WINDOWS\system32\npdeployJava1.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\plugin2\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nppl3260.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.448: C:\Program Files\Real Alternative\browser\plugins\nprpjplug.dll (RealNetworks, Inc.) FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\extensions\\{F53C93F1-07D5-430c-86D4-C9531B27DFAF}: C:\Program Files\AVG\AVG2012\Firefox\DoNotTrack\ FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-08-16 19:52:25 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 14.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-08-14 21:15:16 | 000,000,000 | ---D | M] [2012-08-11 14:12:27 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions [2012-08-15 22:03:56 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions [2012-08-13 23:14:21 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\bc9gbsor.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} [2012-08-14 20:13:53 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-08-11 14:47:24 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [2012-08-16 19:52:25 | 000,136,672 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-08-14 21:15:09 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-08-14 21:15:09 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-08-14 21:15:09 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-08-14 21:15:09 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-08-14 21:15:09 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-08-14 21:15:09 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2006-03-02 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (AVG Do Not Track) - {31332EEF-CB9F-458F-AFEB-D30E9A66B6BA} - C:\Program Files\AVG\AVG2012\avgdtiex.dll File not found O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre6\bin\ssv.dll (Sun Microsystems, Inc.) O4 - HKLM..\Run: [AVG_TRAY] "C:\Program Files\AVG\AVG2012\avgtray.exe" File not found O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NVRaidService] C:\WINDOWS\system32\nvraidservice.exe (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nview\nwiz.exe () O4 - HKLM..\Run: [SoundMan] C:\WINDOWS\SOUNDMAN.EXE (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [WinampAgent] "C:\Program Files\Winamp\winampa.exe" File not found O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe () O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [Komunikator] C:\Program Files\Tlen.pl\tlen.exe (o2.pl Sp. z o.o.) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-507921405-162531612-839522115-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-507921405-162531612-839522115-1005\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O9 - Extra Button: AVG Do Not Track - {68BCFFE1-A2DA-4B40-9068-87ECBFC19D16} - C:\Program Files\AVG\AVG2012\avgdtiex.dll File not found O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} [url="http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1344688896281"]http://windowsupdate...b?1344688896281[/url] (WUWebControl Class) O16 - DPF: {6E32070A-766D-4EE6-879C-DC1FA91D2FC3} [url="http://update.microsoft.com/microsoftupdate/v6/V5Controls/en/x86/client/muweb_site.cab?1344690717531"]http://update.micros...b?1344690717531[/url] (MUWebControl Class) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-0016-0000-0033-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_33-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_33) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab"]http://fpdownload2.m...ash/swflash.cab[/url] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.2.1 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C37BDEA6-B468-47B6-8AC6-7D031FA0B0AA}: DhcpNameServer = 192.168.2.1 O18 - Protocol\Handler\linkscanner {F274614C-63F8-47D5-A4D1-FBDDE494F8D1} - C:\Program Files\AVG\AVG2012\avgpp.dll File not found O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O34 - HKLM BootExecute: (C:\PROGRA~1\AVG\AVG2012\avgrsx.exe /sync /restart) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: 6to4 - File not found NetSvcs: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found SafeBootMin: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vds - Service SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: AppMgmt - %SystemRoot%\System32\appmgmts.dll File not found SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - Reg Error: Value error. SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2012-08-20 21:54:44 | 000,000,000 | ---D | C] -- C:\_OTL [2012-08-20 14:11:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012 [2012-08-20 14:10:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\AVG [2012-08-20 14:09:35 | 000,000,000 | -H-D | C] -- C:\$AVG [2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2012-08-20 14:09:35 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\AVG [2012-08-20 14:08:46 | 000,000,000 | ---D | C] -- C:\Program Files\AVG [2012-08-20 14:07:47 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-08-20 14:07:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2012-08-20 01:08:54 | 000,000,000 | ---D | C] -- C:\programdata [2012-08-14 21:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla [2012-08-14 21:15:18 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-08-14 15:59:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Telltale Games [2012-08-13 13:42:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED [2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje wideo [2012-08-11 23:46:47 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje wideo [2012-08-11 20:21:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2012-08-11 18:33:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\ApplicationHistory [2012-08-11 17:55:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2012-08-11 17:54:56 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2012-08-11 17:54:45 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2012-08-11 17:51:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Identities [2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search [2012-08-11 17:51:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\GroupPolicy [2012-08-11 17:50:09 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Connect 2 [2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\UMDF [2012-08-11 17:49:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\LogFiles [2012-08-11 17:47:36 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTEMP [2012-08-11 17:12:38 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2012-08-11 17:12:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2012-08-11 17:11:58 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2012-08-11 16:36:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\PrivacIE [2012-08-11 16:35:04 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\IETldCache [2012-08-11 16:19:28 | 000,000,000 | ---D | C] -- C:\WINDOWS\ie8updates [2012-08-11 16:19:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\WBEM [2012-08-11 16:18:05 | 000,000,000 | -H-D | C] -- C:\WINDOWS\ie8 [2012-08-11 15:53:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Windows Genuine Advantage [2012-08-11 15:53:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\PreInstall [2012-08-11 15:51:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2012-08-11 15:50:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit\Wzór [2012-08-11 15:48:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\Prefetch [2012-08-11 15:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl-pl [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\pl [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\l2schemas [2012-08-11 15:44:26 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\bits [2012-08-11 15:43:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\ServicePackFiles [2012-08-11 15:41:17 | 000,000,000 | ---D | C] -- C:\WINDOWS\network diagnostic [2012-08-11 15:38:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$NtServicePackUninstall$ [2012-08-11 15:38:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\EHome [2012-08-11 15:15:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\WinRAR [2012-08-11 15:01:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\vlc [2012-08-11 14:48:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Pobieranie [2012-08-11 14:46:59 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012-08-11 14:46:52 | 000,000,000 | -HSD | C] -- C:\WINDOWS\Installer [2012-08-11 14:46:52 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ODBC [2012-08-11 14:46:48 | 000,000,000 | R--D | C] -- C:\Program Files [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\SpeechEngines [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Microsoft Shared [2012-08-11 14:46:48 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files [2012-08-11 14:46:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\McAfee [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty [2012-08-11 14:46:18 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart [2012-08-11 14:46:18 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Szablony [2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Ulubione [2012-08-11 14:46:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Pulpit [2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot2 [2012-08-11 14:44:27 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\CatRoot [2012-08-11 14:44:22 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft [2012-08-11 14:44:22 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji [2012-08-11 14:43:55 | 000,000,000 | -HSD | C] -- C:\System Volume Information [2012-08-11 14:43:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings [2012-08-11 14:41:10 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\UserData [2012-08-11 14:37:31 | 000,000,000 | R-SD | C] -- C:\WINDOWS\Fonts [2012-08-11 14:37:31 | 000,000,000 | RHSD | C] -- C:\WINDOWS\System32\dllcache [2012-08-11 14:37:31 | 000,000,000 | R--D | C] -- C:\WINDOWS\Web [2012-08-11 14:37:31 | 000,000,000 | -H-D | C] -- C:\WINDOWS\inf [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\WinSxS [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wins [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\wbem [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\usmt [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\twain_32 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Temp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system32 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\system [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\spool [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ShellExt [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Setup [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\security [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Resources [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\repair [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ras [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Provisioning [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\PeerNet [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\pchealth [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\oobe [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\npp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\mui [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\mui [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msapps [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\msagent [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Media [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\java [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\inetsrv [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IME [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\ime [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\icsxml [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ias [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Help [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\export [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\etc [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Driver Cache [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\drivers\disdn [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\dhcp [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Debug [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Cursors [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Connection Wizard [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\config [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\Config [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\AppPatch [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\addins [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3com_dmi [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\3076 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\2052 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1054 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1045 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1042 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1041 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1037 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1033 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1031 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1028 [2012-08-11 14:37:31 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\1025 [2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Macromedia [2012-08-11 14:34:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Adobe [2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\WinRAR [2012-08-11 14:21:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2012-08-11 14:21:39 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2012-08-11 14:21:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Program Files\Winamp [2012-08-11 14:20:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Winamp [2012-08-11 14:20:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\VideoLAN [2012-08-11 14:19:55 | 000,000,000 | ---D | C] -- C:\Program Files\VideoLAN [2012-08-11 14:18:25 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent [2012-08-11 14:17:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent [2012-08-11 14:15:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl [2012-08-11 14:15:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Tlen.pl [2012-08-11 14:15:51 | 000,000,000 | ---D | C] -- C:\Program Files\Tlen.pl [2012-08-11 14:15:37 | 000,000,000 | ---D | C] -- C:\totalcmd [2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Program Files\SubEdit-Player [2012-08-11 14:15:22 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SubEdit-Player [2012-08-11 14:15:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\STDUViewer [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\STDUtility [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\STDUtility [2012-08-11 14:15:09 | 000,000,000 | ---D | C] -- C:\Program Files\STDU Viewer [2012-08-11 14:14:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Adobe [2012-08-11 14:14:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative [2012-08-11 14:14:34 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll [2012-08-11 14:14:33 | 000,000,000 | ---D | C] -- C:\Program Files\Real Alternative [2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Program Files\RADVideo [2012-08-11 14:14:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Bink and Smacker [2012-08-11 14:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun [2012-08-11 14:13:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012-08-11 14:12:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Sun [2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Mozilla [2012-08-11 14:12:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla [2012-08-11 14:12:11 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-08-11 14:11:49 | 000,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite [2012-08-11 14:08:58 | 000,477,240 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys [2012-08-11 14:08:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:08:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:04:09 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs [2012-08-11 14:03:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Adobe [2012-08-11 14:03:07 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2012-08-11 14:02:55 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe [2012-08-11 14:01:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ACE Mega CoDecS Pack [2012-08-11 14:00:40 | 001,650,688 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplva6.dll [2012-08-11 14:00:40 | 001,552,384 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvm6.dll [2012-08-11 14:00:40 | 001,122,304 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvpx.dll [2012-08-11 14:00:39 | 001,581,056 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplvw7.dll [2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaw7.dll [2012-08-11 14:00:39 | 000,077,824 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplaa6.dll [2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplapx.dll [2012-08-11 14:00:39 | 000,065,536 | ---- | C] (Ligos Corporation) -- C:\WINDOWS\System32\mplam6.dll [2012-08-11 14:00:34 | 000,000,000 | ---D | C] -- C:\Program Files\ACE Mega CoDecS Pack [2012-08-11 13:54:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office [2012-08-11 13:54:36 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET [2012-08-11 13:54:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER [2012-08-11 13:54:03 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW [2012-08-11 13:52:25 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office [2012-08-11 13:41:41 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-08-11 13:37:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA Corporation [2012-08-11 13:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\NVIDIA [2012-08-11 13:36:07 | 000,065,536 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll [2012-08-11 13:35:49 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation [2012-08-11 13:35:17 | 000,000,000 | ---D | C] -- C:\NVIDIA [2012-08-11 13:32:43 | 000,008,576 | R--- | C] (ASUSTeK Computer Inc.) -- C:\WINDOWS\System32\drivers\EIO.sys [2012-08-11 13:31:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Nero [2012-08-11 13:30:24 | 000,106,496 | ---- | C] (Pegasus Software) -- C:\WINDOWS\System32\TwnLib20.dll [2012-08-11 13:30:21 | 000,471,040 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXRA7.dll [2012-08-11 13:30:20 | 001,568,768 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagX7.dll [2012-08-11 13:30:20 | 000,476,320 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXpr7.dll [2012-08-11 13:30:20 | 000,262,144 | ---- | C] (Pegasus Imaging Corp.) -- C:\WINDOWS\System32\ImagXR7.dll [2012-08-11 13:30:18 | 000,155,648 | ---- | C] (Ahead Software Gmbh) -- C:\WINDOWS\System32\NeroCheck.exe [2012-08-11 13:30:15 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Ahead [2012-08-11 13:30:13 | 000,000,000 | ---D | C] -- C:\Program Files\Ahead [2012-08-11 13:29:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\CyberLink DVD Solution [2012-08-11 13:29:23 | 000,000,000 | ---D | C] -- C:\Program Files\CyberLink DVD Solution [2012-08-11 13:11:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Lang [2012-08-11 13:10:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\NVIDIA Corporation [2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek Sound Manager [2012-08-11 13:08:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Realtek Sound Manager [2012-08-11 13:08:45 | 000,000,000 | ---D | C] -- C:\Program Files\AvRack [2012-08-11 13:07:45 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2012-08-11 13:07:45 | 000,000,000 | ---D | C] -- C:\Program Files\AMD [2012-08-11 13:05:15 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\ReinstallBackups [2012-08-11 13:05:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2012-08-11 13:01:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Identities [2012-08-11 13:01:57 | 000,000,000 | -H-D | C] -- C:\Program Files\Uninstall Information [2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moje obrazy [2012-08-11 13:01:54 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty\Moja muzyka [2012-08-11 13:01:41 | 000,000,000 | --SD | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Microsoft [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\SendTo [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Recent [2012-08-11 13:01:41 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Ulubione [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Moje dokumenty [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart [2012-08-11 13:01:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Akcesoria [2012-08-11 13:01:41 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\Piotr\Cookies [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Szablony [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\PrintHood [2012-08-11 13:01:41 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\NetHood [2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Pulpit [2012-08-11 13:01:41 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 13:01:40 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne [2012-08-11 12:59:22 | 000,000,000 | ---D | C] -- C:\WINDOWS\SoftwareDistribution [2012-08-11 12:59:19 | 000,000,000 | --SD | C] -- C:\WINDOWS\System32\Microsoft [2012-08-11 12:59:18 | 000,000,000 | --SD | C] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [2012-08-11 12:59:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 12:58:54 | 000,000,000 | --SD | C] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2012-08-11 12:58:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia330.dll [2012-08-11 12:57:49 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- C:\WINDOWS\System32\dllcache\rwia001.dll [2012-08-11 12:56:58 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- C:\WINDOWS\System32\dllcache\cap7146.sys [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xircom [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\xerox [2012-08-11 12:56:37 | 000,000,000 | ---D | C] -- C:\Program Files\microsoft frontpage [2012-08-11 12:56:28 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [2012-08-11 12:55:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\All Users\DRM [2012-08-11 12:55:17 | 000,000,000 | --SD | C] -- C:\WINDOWS\Downloaded Program Files [2012-08-11 12:55:17 | 000,000,000 | R--D | C] -- C:\WINDOWS\Offline Web Pages [2012-08-11 12:55:07 | 000,000,000 | -H-D | C] -- C:\Program Files\WindowsUpdate [2012-08-11 12:55:04 | 000,000,000 | ---D | C] -- C:\Program Files\Usługi online [2012-08-11 12:54:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\DirectX [2012-08-11 12:54:10 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Services [2012-08-11 12:54:07 | 000,000,000 | --SD | C] -- C:\WINDOWS\Tasks [2012-08-11 12:54:06 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\MSSoap [2012-08-11 12:54:02 | 000,000,000 | ---D | C] -- C:\WINDOWS\srchasst [2012-08-11 12:54:01 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Macromed [2012-08-11 12:53:52 | 000,000,000 | ---D | C] -- C:\Program Files\Movie Maker [2012-08-11 12:53:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Restore [2012-08-11 12:53:38 | 000,000,000 | ---D | C] -- C:\Program Files\NetMeeting [2012-08-11 12:53:34 | 000,000,000 | ---D | C] -- C:\Program Files\Outlook Express [2012-08-11 12:53:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\System [2012-08-11 12:53:26 | 000,000,000 | ---D | C] -- C:\Program Files\Internet Explorer [2012-08-11 12:53:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moje obrazy [2012-08-11 12:53:14 | 000,000,000 | ---D | C] -- C:\Program Files\ComPlus Applications [2012-08-11 12:53:07 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Narzędzia administracyjne [2012-08-11 12:53:07 | 000,000,000 | ---D | C] -- C:\WINDOWS\Registration [2012-08-11 12:52:41 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Gry [2012-08-11 12:52:40 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Dokumenty\Moja muzyka [2012-08-11 12:52:40 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Media Player [2012-08-11 12:52:36 | 000,000,000 | ---D | C] -- C:\Program Files\Messenger [2012-08-11 12:52:32 | 000,000,000 | ---D | C] -- C:\Program Files\MSN Gaming Zone [2012-08-11 12:51:58 | 000,000,000 | ---D | C] -- C:\Program Files\Windows NT [2012-08-11 12:51:54 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\MsDtc [2012-08-11 12:51:52 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Com [2012-08-11 12:51:20 | 000,000,000 | R--D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Akcesoria [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2012-08-20 22:03:42 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\PcjwpcP.sys [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe [2012-08-20 22:00:08 | 000,413,879 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp [2012-08-20 21:57:51 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-08-20 21:54:44 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\ArvgpyT.sys [2012-08-20 21:36:35 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\WhfwyuQ.sys [2012-08-20 21:31:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-08-20 19:15:53 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\PukdekO.sys [2012-08-20 19:14:17 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\SbvhmhV.sys [2012-08-20 19:03:15 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\LttpnrM.sys [2012-08-20 18:44:39 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\FntcjtL.sys [2012-08-20 18:01:51 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\KgjokaG.sys [2012-08-20 16:59:49 | 000,002,944 | ---- | M] () -- C:\WINDOWS\System32\KcyaiuK.sys [2012-08-20 14:13:15 | 104,413,376 | ---- | M] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2012-08-19 00:21:43 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2012-08-17 19:55:47 | 000,011,264 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-16 09:58:04 | 000,196,160 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-08-16 00:54:04 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012-08-13 13:40:56 | 000,000,407 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk [2012-08-11 19:05:32 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-08-11 18:47:46 | 000,540,820 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-08-11 18:47:46 | 000,480,696 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-08-11 18:47:46 | 000,098,710 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-08-11 18:47:46 | 000,079,152 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-08-11 18:33:38 | 000,000,130 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-08-11 17:50:19 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2012-08-11 17:50:19 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2012-08-11 17:49:04 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2012-08-11 15:49:45 | 000,316,640 | ---- | M] () -- C:\WINDOWS\WMSysPr9.prx [2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr [2012-08-11 14:20:18 | 000,000,719 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2012-08-11 14:18:49 | 000,000,630 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2012-08-11 14:15:53 | 000,000,649 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk [2012-08-11 14:15:37 | 000,000,548 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk [2012-08-11 14:15:37 | 000,000,090 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2012-08-11 14:15:22 | 000,000,797 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk [2012-08-11 14:15:10 | 000,000,728 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk [2012-08-11 14:12:21 | 000,000,000 | ---- | M] () -- C:\WINDOWS\nsreg.dat [2012-08-11 14:12:16 | 000,001,602 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-08-11 14:11:57 | 000,001,613 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2012-08-11 14:03:14 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk [2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-08-11 13:58:56 | 000,294,024 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-08-11 13:58:56 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-08-11 13:55:02 | 000,000,421 | ---- | M] () -- C:\WINDOWS\ODBC.INI [2012-08-11 13:36:20 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-08-11 13:31:28 | 000,001,239 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2012-08-11 13:29:26 | 000,001,900 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk [2012-08-11 13:14:08 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [2012-08-11 13:11:40 | 000,940,794 | ---- | M] () -- C:\WINDOWS\System32\LoopyMusic.wav [2012-08-11 13:11:40 | 000,146,650 | ---- | M] () -- C:\WINDOWS\System32\BuzzingBee.wav [2012-08-11 13:08:49 | 000,001,519 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2012-08-11 13:02:11 | 000,000,104 | ---- | M] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk [2012-08-11 12:58:57 | 000,008,192 | ---- | M] () -- C:\WINDOWS\REGLOCS.OLD [2012-08-11 12:58:12 | 000,000,261 | ---- | M] () -- C:\WINDOWS\System32\$winnt$.inf [2012-08-11 12:56:13 | 000,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012-08-11 12:56:00 | 000,004,293 | ---- | M] () -- C:\WINDOWS\ODBCINST.INI [2012-08-11 12:53:23 | 000,021,856 | ---- | M] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-08-20 22:00:26 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\PcjwpcP.sys [2012-08-20 22:00:08 | 034,629,158 | ---- | C] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe [2012-08-20 22:00:05 | 000,413,879 | ---- | C] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp [2012-08-20 21:52:17 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\ArvgpyT.sys [2012-08-20 20:36:10 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\WhfwyuQ.sys [2012-08-20 19:15:46 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\PukdekO.sys [2012-08-20 19:04:50 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\SbvhmhV.sys [2012-08-20 18:58:21 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\LttpnrM.sys [2012-08-20 18:03:15 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\FntcjtL.sys [2012-08-20 17:01:53 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\KgjokaG.sys [2012-08-20 16:51:03 | 000,002,944 | ---- | C] () -- C:\WINDOWS\System32\KcyaiuK.sys [2012-08-20 14:13:15 | 104,413,376 | ---- | C] () -- C:\WINDOWS\System32\drivers\AVG\incavi.avm [2012-08-14 21:15:17 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk [2012-08-13 13:40:56 | 000,000,407 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Walking Dead.lnk [2012-08-11 18:33:38 | 000,000,130 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2012-08-11 17:49:04 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\UMDF\MsftWdf_user_01_00_00.Wdf [2012-08-11 17:44:45 | 000,225,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msimain.sdb [2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-08-11 16:04:56 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\dllcache\iacenc.dll [2012-08-11 15:44:39 | 000,693,932 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.chm [2012-08-11 15:44:39 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud9.wav [2012-08-11 15:44:39 | 000,074,010 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplayer.adm [2012-08-11 15:44:39 | 000,027,965 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmplay.chm [2012-08-11 15:44:39 | 000,010,457 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.hta [2012-08-11 15:44:39 | 000,001,771 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmptour.css [2012-08-11 15:44:39 | 000,001,714 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpocm.inf [2012-08-11 15:44:39 | 000,000,420 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmploc.js [2012-08-11 15:44:38 | 000,354,468 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud1.wav [2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud7.wav [2012-08-11 15:44:38 | 000,343,204 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud6.wav [2012-08-11 15:44:38 | 000,300,969 | ---- | C] () -- C:\WINDOWS\System32\dllcache\viz.wmv [2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud8.wav [2012-08-11 15:44:38 | 000,172,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud3.wav [2012-08-11 15:44:38 | 000,086,196 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud5.wav [2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud4.wav [2012-08-11 15:44:38 | 000,086,180 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmpaud2.wav [2012-08-11 15:44:38 | 000,058,350 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmp.inf [2012-08-11 15:44:38 | 000,034,548 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmdm.inf [2012-08-11 15:44:38 | 000,023,829 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tourbg.gif [2012-08-11 15:44:38 | 000,017,489 | ---- | C] () -- C:\WINDOWS\System32\dllcache\videobg.gif [2012-08-11 15:44:38 | 000,013,540 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmfsdk.inf [2012-08-11 15:44:38 | 000,008,677 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm7.gif [2012-08-11 15:44:38 | 000,007,892 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm9.gif [2012-08-11 15:44:38 | 000,007,636 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm2.gif [2012-08-11 15:44:38 | 000,007,369 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm4.gif [2012-08-11 15:44:38 | 000,006,241 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm3.gif [2012-08-11 15:44:38 | 000,006,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm6.gif [2012-08-11 15:44:38 | 000,005,789 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm1.gif [2012-08-11 15:44:38 | 000,005,290 | ---- | C] () -- C:\WINDOWS\System32\dllcache\vidsamp.gif [2012-08-11 15:44:38 | 000,004,193 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm8.gif [2012-08-11 15:44:38 | 000,003,187 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tour.js [2012-08-11 15:44:38 | 000,002,477 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wm5.gif [2012-08-11 15:44:38 | 000,002,469 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplay.gif [2012-08-11 15:44:38 | 000,002,450 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpause.gif [2012-08-11 15:44:38 | 000,002,375 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tplayh.gif [2012-08-11 15:44:38 | 000,002,371 | ---- | C] () -- C:\WINDOWS\System32\dllcache\tpauseh.gif [2012-08-11 15:44:38 | 000,001,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\skins.inf [2012-08-11 15:44:38 | 000,001,398 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taon.gif [2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taonh.gif [2012-08-11 15:44:38 | 000,001,380 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoff.gif [2012-08-11 15:44:38 | 000,001,367 | ---- | C] () -- C:\WINDOWS\System32\dllcache\taoffh.gif [2012-08-11 15:44:38 | 000,001,148 | ---- | C] () -- C:\WINDOWS\System32\dllcache\snd.htm [2012-08-11 15:44:37 | 000,572,557 | ---- | C] () -- C:\WINDOWS\System32\dllcache\rtuner.wmv [2012-08-11 15:44:37 | 000,375,519 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nuskin.wmv [2012-08-11 15:44:37 | 000,089,253 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plyr_err.chm [2012-08-11 15:44:37 | 000,066,160 | ---- | C] () -- C:\WINDOWS\System32\dllcache\revert.wmz [2012-08-11 15:44:37 | 000,001,482 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst6.wpl [2012-08-11 15:44:37 | 000,001,479 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst5.wpl [2012-08-11 15:44:37 | 000,001,474 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst3.wpl [2012-08-11 15:44:37 | 000,001,471 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst12.wpl [2012-08-11 15:44:37 | 000,001,463 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst4.wpl [2012-08-11 15:44:37 | 000,001,262 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst1.wpl [2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst7.wpl [2012-08-11 15:44:37 | 000,001,046 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst2.wpl [2012-08-11 15:44:37 | 000,001,041 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst8.wpl [2012-08-11 15:44:37 | 000,000,825 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst11.wpl [2012-08-11 15:44:37 | 000,000,822 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst10.wpl [2012-08-11 15:44:37 | 000,000,808 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst13.wpl [2012-08-11 15:44:37 | 000,000,792 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst14.wpl [2012-08-11 15:44:37 | 000,000,786 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst9.wpl [2012-08-11 15:44:37 | 000,000,738 | ---- | C] () -- C:\WINDOWS\System32\dllcache\plylst15.wpl [2012-08-11 15:44:36 | 000,457,607 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mdlib.wmv [2012-08-11 15:44:36 | 000,381,425 | ---- | C] () -- C:\WINDOWS\System32\dllcache\copycd.wmv [2012-08-11 15:44:36 | 000,184,137 | ---- | C] () -- C:\WINDOWS\System32\dllcache\compact.wmz [2012-08-11 15:44:36 | 000,036,644 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplayer2.inf [2012-08-11 15:44:36 | 000,022,060 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npds.zip [2012-08-11 15:44:36 | 000,009,585 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.css [2012-08-11 15:44:36 | 000,008,298 | ---- | C] () -- C:\WINDOWS\System32\dllcache\contents.htm [2012-08-11 15:44:36 | 000,006,878 | ---- | C] () -- C:\WINDOWS\System32\dllcache\controls.js [2012-08-11 15:44:36 | 000,005,971 | ---- | C] () -- C:\WINDOWS\System32\dllcache\events.js [2012-08-11 15:44:36 | 000,002,778 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogoh.gif [2012-08-11 15:44:36 | 000,002,545 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mplogo.gif [2012-08-11 15:44:36 | 000,000,999 | ---- | C] () -- C:\WINDOWS\System32\dllcache\bktrh.gif [2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnth.gif [2012-08-11 15:44:36 | 000,000,773 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cnt.gif [2012-08-11 15:44:36 | 000,000,772 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cntd.gif [2012-08-11 15:44:36 | 000,000,760 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapph.gif [2012-08-11 15:44:36 | 000,000,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\cloapp.gif [2012-08-11 15:44:36 | 000,000,403 | ---- | C] () -- C:\WINDOWS\System32\dllcache\npdrmv2.zip [2012-08-11 15:41:16 | 000,064,352 | ---- | C] () -- C:\WINDOWS\System32\drivers\ativmc20.cod [2012-08-11 15:41:15 | 000,129,045 | ---- | C] () -- C:\WINDOWS\System32\drivers\cxthsfs2.cty [2012-08-11 15:41:14 | 000,067,866 | ---- | C] () -- C:\WINDOWS\System32\drivers\netwlan5.img [2012-08-11 14:46:55 | 000,001,374 | ---- | C] () -- C:\WINDOWS\imsins.BAK [2012-08-11 14:46:52 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012-08-11 14:46:50 | 001,685,606 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.spd [2012-08-11 14:46:50 | 000,000,888 | ---- | C] () -- C:\WINDOWS\System32\dllcache\sam.sdf [2012-08-11 14:46:49 | 000,643,717 | ---- | C] () -- C:\WINDOWS\System32\dllcache\ltts1033.lxa [2012-08-11 14:46:49 | 000,605,050 | ---- | C] () -- C:\WINDOWS\System32\dllcache\r1033tts.lxa [2012-08-11 14:46:28 | 000,001,734 | ---- | C] () -- C:\WINDOWS\System32\AUTOEXEC.NT [2012-08-11 14:44:38 | 001,014,483 | ---- | C] () -- C:\WINDOWS\System32\dllcache\SP2.CAT [2012-08-11 14:44:38 | 000,808,524 | ---- | C] () -- C:\WINDOWS\System32\dllcache\NT5IIS.CAT [2012-08-11 14:44:38 | 000,399,670 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MAPIMIG.CAT [2012-08-11 14:44:38 | 000,037,509 | ---- | C] () -- C:\WINDOWS\System32\dllcache\MW770.CAT [2012-08-11 14:44:38 | 000,013,497 | ---- | C] () -- C:\WINDOWS\System32\dllcache\HPCRDP.CAT [2012-08-11 14:44:38 | 000,008,599 | ---- | C] () -- C:\WINDOWS\System32\dllcache\IASNT4.CAT [2012-08-11 14:44:38 | 000,007,407 | ---- | C] () -- C:\WINDOWS\System32\dllcache\OEMBIOS.CAT [2012-08-11 14:44:38 | 000,007,334 | ---- | C] () -- C:\WINDOWS\System32\dllcache\wmerrenu.cat [2012-08-11 14:43:54 | 000,196,160 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-08-11 14:43:08 | 000,000,223 | RHS- | C] () -- C:\boot.ini [2012-08-11 14:43:04 | 000,000,261 | ---- | C] () -- C:\WINDOWS\System32\$winnt$.inf [2012-08-11 14:34:39 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2012-08-11 14:20:18 | 000,000,719 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\VLC media player.lnk [2012-08-11 14:18:25 | 000,000,630 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\µTorrent.lnk [2012-08-11 14:15:53 | 000,000,649 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Komunikator Tlen.pl.lnk [2012-08-11 14:15:37 | 000,000,548 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Total Commander.lnk [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF [2012-08-11 14:15:37 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF [2012-08-11 14:15:37 | 000,000,090 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2012-08-11 14:15:22 | 000,000,797 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\SubEdit-Player.lnk [2012-08-11 14:15:10 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\STDU Viewer.lnk [2012-08-11 14:12:21 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat [2012-08-11 14:12:16 | 000,001,602 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk [2012-08-11 14:11:57 | 000,001,613 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\DAEMON Tools Lite.lnk [2012-08-11 14:08:03 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2012-08-11 14:08:01 | 000,011,264 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-08-11 14:03:14 | 000,001,804 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Adobe Reader 8.lnk [2012-08-11 14:03:14 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 8.lnk [2012-08-11 14:01:04 | 000,053,248 | ---- | C] () -- C:\WINDOWS\System32\vp6dec_settings.cpl [2012-08-11 14:00:42 | 000,000,761 | ---- | C] () -- C:\WINDOWS\m3jp2k.ini [2012-08-11 14:00:42 | 000,000,714 | ---- | C] () -- C:\WINDOWS\m3jpeg.ini [2012-08-11 14:00:42 | 000,000,702 | ---- | C] () -- C:\WINDOWS\mmtvmj.ini [2012-08-11 14:00:39 | 000,152,064 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012-08-11 14:00:39 | 000,019,968 | ---- | C] () -- C:\WINDOWS\System32\cpuinf32.dll [2012-08-11 14:00:36 | 000,761,856 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll [2012-08-11 14:00:34 | 000,417,792 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.cpl [2012-08-11 13:55:02 | 000,000,421 | ---- | C] () -- C:\WINDOWS\ODBC.INI [2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin [2012-08-11 13:36:20 | 000,294,024 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin [2012-08-11 13:36:20 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin [2012-08-11 13:36:20 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk [2012-08-11 13:36:06 | 002,784,050 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data [2012-08-11 13:36:06 | 000,007,843 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb [2012-08-11 13:31:28 | 000,001,239 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Nero StartSmart.lnk [2012-08-11 13:29:26 | 000,001,900 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\CyberLink Multimedia Launcher.lnk [2012-08-11 13:29:24 | 000,040,960 | ---- | C] () -- C:\Program Files\Uninstall_CDS.exe [2012-08-11 13:14:08 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak [2012-08-11 13:11:40 | 000,940,794 | ---- | C] () -- C:\WINDOWS\System32\LoopyMusic.wav [2012-08-11 13:11:40 | 000,146,650 | ---- | C] () -- C:\WINDOWS\System32\BuzzingBee.wav [2012-08-11 13:10:19 | 000,249,344 | R--- | C] () -- C:\WINDOWS\System32\NvRaidMan.exe [2012-08-11 13:10:19 | 000,223,232 | R--- | C] () -- C:\WINDOWS\System32\nvsataconnection.exe [2012-08-11 13:08:49 | 000,001,519 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\AvRack.lnk [2012-08-11 13:08:45 | 000,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2012-08-11 13:08:40 | 000,156,672 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2012-08-11 13:08:39 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\ChCfg.exe [2012-08-11 13:08:34 | 000,141,016 | ---- | C] () -- C:\WINDOWS\System32\ALSNDMGR.WAV [2012-08-11 13:05:27 | 000,003,596 | ---- | C] () -- C:\WINDOWS\System32\nvnrm.nvu [2012-08-11 13:05:25 | 000,001,231 | R--- | C] () -- C:\WINDOWS\System32\nvsmb.nvu [2012-08-11 13:02:11 | 000,000,104 | ---- | C] () -- C:\Documents and Settings\Piotr\Pulpit\Mój komputer.lnk [2012-08-11 13:01:58 | 000,000,738 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Outlook Express.lnk [2012-08-11 13:01:57 | 000,000,803 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Internet Explorer.lnk [2012-08-11 13:01:41 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Pomoc zdalna.lnk [2012-08-11 13:01:41 | 000,000,788 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Windows Media Player.lnk [2012-08-11 12:58:57 | 000,008,192 | ---- | C] () -- C:\WINDOWS\REGLOCS.OLD [2012-08-11 12:58:12 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012-08-11 12:57:44 | 000,175,104 | ---- | C] () -- C:\WINDOWS\System32\dllcache\pintlcsa.dll [2012-08-11 12:57:31 | 001,158,818 | ---- | C] () -- C:\WINDOWS\System32\dllcache\korwbrkr.lex [2012-08-11 12:57:24 | 000,059,392 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imscinst.exe [2012-08-11 12:57:23 | 000,196,665 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imjpinst.exe [2012-08-11 12:57:21 | 000,134,339 | ---- | C] () -- C:\WINDOWS\System32\dllcache\imekr.lex [2012-08-11 12:57:16 | 013,463,552 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hwxjpn.dll [2012-08-11 12:57:13 | 000,108,827 | ---- | C] () -- C:\WINDOWS\System32\dllcache\hanja.lex [2012-08-11 12:57:00 | 000,173,568 | ---- | C] () -- C:\WINDOWS\System32\dllcache\chtskf.dll [2012-08-11 12:56:13 | 000,002,596 | ---- | C] () -- C:\WINDOWS\System32\CONFIG.NT [2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\MSDOS.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | C] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\CONFIG.SYS [2012-08-11 12:56:13 | 000,000,000 | ---- | C] () -- C:\AUTOEXEC.BAT [2012-08-11 12:56:10 | 000,023,392 | ---- | C] () -- C:\WINDOWS\System32\nscompat.tlb [2012-08-11 12:56:10 | 000,016,832 | ---- | C] () -- C:\WINDOWS\System32\amcompat.tlb [2012-08-11 12:56:09 | 000,316,640 | ---- | C] () -- C:\WINDOWS\WMSysPr9.prx [2012-08-11 12:55:07 | 000,000,786 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Movie Maker.lnk [2012-08-11 12:54:55 | 004,399,505 | ---- | C] () -- C:\WINDOWS\System32\dllcache\nls302en.lex [2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt256.bmp [2012-08-11 12:54:20 | 000,048,680 | -HS- | C] () -- C:\WINDOWS\winnt.bmp [2012-08-11 12:54:13 | 000,000,984 | ---- | C] () -- C:\WINDOWS\System32\dllcache\srframe.mmf [2012-08-11 12:53:23 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [2012-08-11 12:52:41 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Windows Messenger.lnk [2012-08-11 12:52:14 | 000,009,522 | ---- | C] () -- C:\WINDOWS\Indiański pled.bmp [2012-08-11 12:52:13 | 000,065,954 | ---- | C] () -- C:\WINDOWS\Pod mikroskopem.bmp [2012-08-11 12:52:13 | 000,065,832 | ---- | C] () -- C:\WINDOWS\Stiuk z Santa Fe.bmp [2012-08-11 12:52:13 | 000,026,680 | ---- | C] () -- C:\WINDOWS\Wachlarze.bmp [2012-08-11 12:52:13 | 000,026,582 | ---- | C] () -- C:\WINDOWS\Nefryt.bmp [2012-08-11 12:52:13 | 000,017,362 | ---- | C] () -- C:\WINDOWS\Rododendron.bmp [2012-08-11 12:52:13 | 000,017,336 | ---- | C] () -- C:\WINDOWS\Na rybkach.bmp [2012-08-11 12:52:13 | 000,017,062 | ---- | C] () -- C:\WINDOWS\Kawa.bmp [2012-08-11 12:52:13 | 000,016,730 | ---- | C] () -- C:\WINDOWS\Puch.bmp [2012-08-11 12:52:12 | 000,065,978 | ---- | C] () -- C:\WINDOWS\Bąbelki.bmp [2012-08-11 12:52:12 | 000,001,272 | ---- | C] () -- C:\WINDOWS\Niebieska koronka 16.bmp [2012-08-11 12:52:09 | 000,003,286 | ---- | C] () -- C:\WINDOWS\System32\tslabels.h [2012-08-11 12:52:09 | 000,001,225 | ---- | C] () -- C:\WINDOWS\System32\usrlogon.cmd [2012-08-11 12:52:08 | 000,000,768 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.h [2012-08-11 12:52:01 | 000,063,488 | ---- | C] () -- C:\WINDOWS\System32\wmimgmt.msc [color=#E56717]========== LOP Check ==========[/color] [2012-08-20 14:23:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AVG2012 [2012-08-20 14:07:47 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Common Files [2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2012-08-20 17:04:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\MFAData [2012-08-13 13:42:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\RELOADED [2012-08-20 14:11:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\AVG2012 [2012-08-11 15:35:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\DAEMON Tools Lite [2012-08-11 14:16:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\Tlen.pl [2012-08-20 12:57:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Piotr\Dane aplikacji\uTorrent [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012-08-11 13:07:45 | 000,000,223 | RHS- | M] () -- C:\boot.ini [2006-03-02 14:00:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2012-08-11 12:56:13 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2012-08-11 13:10:33 | 000,000,032 | ---- | M] () -- C:\csb.log [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2012-08-11 12:56:13 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2006-03-02 14:00:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2012-08-11 15:40:58 | 000,251,152 | RHS- | M] () -- C:\ntldr [2012-08-20 21:57:47 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\ServicePackFiles\i386\agp440.sys [2008-04-14 00:06:40 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ServicePackFiles\i386\atapi.sys [2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\$NtServicePackUninstall$\atapi.sys [2006-03-02 14:00:00 | 000,095,360 | ---- | M] (Microsoft Corporation) MD5=CDFE4411A69C224BD1D11B2DA92DAC51 -- C:\WINDOWS\system32\ReinstallBackups\0002\DriverFiles\i386\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2006-03-02 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2006-03-02 14:00:00 | 018,789,127 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp2.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2008-04-14 23:09:56 | 020,110,420 | ---- | M] () .cab file -- C:\WINDOWS\ServicePackFiles\i386\sp3.cab:cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\ServicePackFiles\i386\cdrom.sys [2008-04-14 00:10:48 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2006-03-02 14:00:00 | 000,049,536 | ---- | M] (Microsoft Corporation) MD5=AF9C19B3100FE010496B1A27181FBF72 -- C:\WINDOWS\$NtServicePackUninstall$\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2006-03-02 14:00:00 | 000,055,808 | ---- | M] (Microsoft Corporation) MD5=05684DE2DA55A04C8AAAB5911AFE7643 -- C:\WINDOWS\$NtServicePackUninstall$\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\ServicePackFiles\i386\eventlog.dll [2008-04-14 22:50:32 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ServicePackFiles\i386\ndis.sys [2008-04-14 00:50:38 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [2006-03-02 14:00:00 | 000,182,912 | ---- | M] (Microsoft Corporation) MD5=558635D3AF1C7546D26067D5D9B6959E -- C:\WINDOWS\$NtServicePackUninstall$\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2006-03-02 14:00:00 | 000,504,832 | ---- | M] (Microsoft Corporation) MD5=0344407089B08548D4FEBA62BB0F32D0 -- C:\WINDOWS\$NtServicePackUninstall$\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ServicePackFiles\i386\winlogon.exe [2008-04-14 22:51:50 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe < End of report > [/log]
komputerowiec19 komentarz 20 sierpnia 2012 komentarz 20 sierpnia 2012 Uruchom OTL i w sekcji (Własne opcje skanowania/Skrypt) wklej: [quote] :Processes killallprocesses :OTL PRC - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe MOD - [2012-08-20 22:00:08 | 034,629,158 | ---- | M] () -- C:\Documents and Settings\All Users\bY7mwcjpnKof.exe O4 - HKU\S-1-5-21-507921405-162531612-839522115-1004..\Run: [HqaxaiS] c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe () :Files C:\Documents and Settings\All Users\bY7mwcjpnKof.exe C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp C:\WINDOWS\System32\PcjwpcP.sys C:\WINDOWS\System32\ArvgpyT.sys C:\WINDOWS\System32\WhfwyuQ.sys C:\WINDOWS\System32\PukdekO.sys C:\WINDOWS\System32\SbvhmhV.sys C:\WINDOWS\System32\LttpnrM.sys C:\WINDOWS\System32\FntcjtL.sys C:\WINDOWS\System32\KgjokaG.sys C:\WINDOWS\System32\KcyaiuK.sys :Commands [emptytemp] [/quote] Kliknij wykonaj skrypt. Zatwierdź restart komputera. Zapisz raport, który pokaże się po restarcie i przedstaw go na forum.
Piotras89 komentarz 21 sierpnia 2012 Autor komentarz 21 sierpnia 2012 [log] All processes killed ========== PROCESSES ========== ========== OTL ========== No active process named bY7mwcjpnKof.exe was found! Registry value HKEY_USERS\S-1-5-21-507921405-162531612-839522115-1004\Software\Microsoft\Windows\CurrentVersion\Run\\HqaxaiS not found. File c:\programdata\AcdwioF\UkxsnxF\HqaxaiS.exe not found. ========== FILES ========== File\Folder C:\Documents and Settings\All Users\bY7mwcjpnKof.exe not found. File\Folder C:\Documents and Settings\All Users\bY7mwcjpnKof.exe.bmp not found. C:\WINDOWS\System32\PcjwpcP.sys moved successfully. C:\WINDOWS\System32\ArvgpyT.sys moved successfully. C:\WINDOWS\System32\WhfwyuQ.sys moved successfully. C:\WINDOWS\System32\PukdekO.sys moved successfully. C:\WINDOWS\System32\SbvhmhV.sys moved successfully. C:\WINDOWS\System32\LttpnrM.sys moved successfully. C:\WINDOWS\System32\FntcjtL.sys moved successfully. C:\WINDOWS\System32\KgjokaG.sys moved successfully. C:\WINDOWS\System32\KcyaiuK.sys moved successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: Piotr ->Temp folder emptied: 79 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 17582680 bytes ->Flash cache emptied: 0 bytes User: UpdatusUser ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 0 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 17,00 mb OTL by OldTimer - Version 3.2.58.1 log created on 08212012_103421 Files\Folders moved on Reboot... PendingFileRenameOperations files... Registry entries deleted on Reboot... [/log] Nic już mi nie wyskakuje podczas uruchamiania. Wielkie Dzięki. Mam pytanie czy foldery _OLD i programdata mogę usunąć czy muszą pozostać?
komputerowiec19 komentarz 21 sierpnia 2012 komentarz 21 sierpnia 2012 Uruchom OTL i użyj opcji sprzątanie - to go usunie razem z jego kwarantanną. Na wszelki wypadek pozmieniaj hasła logowania do serwisów w sieci.
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.