Zolowski utworzono 11 stycznia 2013 utworzono 11 stycznia 2013 (edytowane) Witam. Otóż mam taki problem z komputerem że zacina się przy uruchomieniu np Minecrafta i przeglądarki, użycie procesora wtedy jest 100%. Komputer skanowałem kilka razy, na początku miałem aż 16 wirusów, ale teraz skanowałem i jest czysty. Nie wiem jaki może być tego powód, dlatego proszę was o pomoc!
Youki komentarz 11 stycznia 2013 komentarz 11 stycznia 2013 Podaj konfiguracje Twojego PC wraz z marka i moca zasilacza
Zolowski komentarz 11 stycznia 2013 Autor komentarz 11 stycznia 2013 Moc zasilacza to feel-350w zaraz podam konfiguracje
Youki komentarz 11 stycznia 2013 komentarz 11 stycznia 2013 [quote name='Zolowski' timestamp='1357908883' post='1670857'] feel-350w [/quote] Do wymiany bezwlocznie na cos markowego nim spali Ci calego PC , mozliwe, ze jest rowniez zrodlem Twoich problemow
Zolowski komentarz 11 stycznia 2013 Autor komentarz 11 stycznia 2013 (edytowane) a bys podał na co moge wymienic? http://speedy.sh/SAByj/Report.txt dalem samego sprzętu a marki nie znam
Zolowski komentarz 11 stycznia 2013 Autor komentarz 11 stycznia 2013 (edytowane) 200 zł i jaka pewnosc ze to pomoze
Youki komentarz 11 stycznia 2013 komentarz 11 stycznia 2013 Proponuje deusa g1 500 W . Pewnosci nie ma, mozesz wziac od kogos jakis markowy zasilacz i sprawdzic czy problem ustapil , jednak wymiana i tak jest wskazana nim ten wyrob zasilaczopodobny spali Ci calego PC
Zolowski komentarz 11 stycznia 2013 Autor komentarz 11 stycznia 2013 (edytowane) no dobra.Wymienie. a teraz cos da sie zrobic? no i tylko zasilacz ? reszta moga zostac jak karta procek itp Chce dodac ze wziełem od kolegi i to tez nic nie dalo teraz to jak mam samego minecrafta odpalonego to myszka sie przesuwa co 5 sec tak laguje
Natsuki Kuga komentarz 11 stycznia 2013 komentarz 11 stycznia 2013 miałem aż 16 wirusów Co wykrył antywirus? Podaj dokładne ścieżki znalezionych plików. Zapoznaj się z przyklejonymi z działu Bezpieczeństwo i pokaż odpowiednie logi. 1
Zolowski komentarz 13 stycznia 2013 Autor komentarz 13 stycznia 2013 (edytowane) wczoraj wieczorem znow robiłem skana 20 wirusow zaraz dam jakie ale dlaczego nie wykryło tego za 1 razem po skanie zrobilem next nic nie wykrylo Tu masz ze wczoraj Skanowane dyski, foldery i pliki: Pamięć operacyjna;C:\Sektor startowy;D:\Sektor startowy;C:\;D:\ C:\pagefile.sys - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000c9e - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000c9f - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000dd0 - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleUpdateHelper.msi » MSI » required.cab » CAB - błąd podczas odczytu archiwum C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\1\2386e8c1-4cfcb9ca » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\29\3d73941d-30cc73d0 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » m.class - Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » G.class - Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » ors.class - Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » K.class - Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » axe.class - Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\57\a1ff539-71a054fc » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » - uszkodzone archiwum C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » - uszkodzone archiwum C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » jusched - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task.xml - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task64.xml - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\teamspeak_temp_0\ts3client_win32.exe._z_ » GZIP » ts3client_win32.exe._z_ - uszkodzone archiwum C:\Documents and Settings\User\Ustawienia lokalne\Temp\teamspeak_temp_0\plugins\ts3overlay\ts3overlay_hook_win32.dll._z_ » GZIP » ts3overlay_hook_win32.dll._z_ - uszkodzone archiwum C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » PROCESS_LIBRARY.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION_CUSTOMIZED.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » TRACK_ISSUES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\WINDOWS\SoftwareDistribution\Download\a2bb23ef58da3e023917dba01785cbe0\mainwwsp3.cab » CAB » mainwwsp3.msp - nie można zakończyć dekompresji (możliwe powody: zbyt mała ilość wolnej pamięci lub miejsca na dysku albo problem z folderami tymczasowymi) C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\1\2386e8c1-4cfcb9ca » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\29\3d73941d-30cc73d0 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » m.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » G.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » ors.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » K.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » axe.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\57\a1ff539-71a054fc » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu Liczba przeskanowanych obiektów: 190217 Liczba znalezionych zagrożeń: 20 Liczba wyleczonych obiektów: 20 Godzina zakończenia: 22:13:40 Całkowity czas skanowania: 7629 s (02:07:09) a tutaj z 10 sytncznia Skanowane dyski, foldery i pliki: Pamięć operacyjna;C:\Sektor startowy;D:\Sektor startowy;C:\;D:\ C:\pagefile.sys - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleUpdateHelper.msi » MSI » required.cab » CAB - błąd podczas odczytu archiwum C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\27\20406f9b-66ce977d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3627fa03-1eda8df4 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3de64243-27af4e2f » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\43\642ce6eb-500cc28a » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\46\7253ac6e-1f0c3ac2 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\25edc575-12d909f8 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\c6cca75-6eac02c5 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\63\51f01eff-7f924b29 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b80ae5cab.exe - odmiana zagrożenia Win32/Injector.ZYD koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1] C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b8f4f9a0a.exe - odmiana zagrożenia Win32/Injector.AACE koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1] C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b8fb20049.exe - odmiana zagrożenia Win32/Injector.AAEF koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1] C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » - uszkodzone archiwum C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » - uszkodzone archiwum C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » jusched - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task.xml - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task64.xml - uszkodzone archiwum — nie można rozpakować pliku. C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotector.xpi » ZIP » content/bprotector.js - Win32/bProtector.C potencjalnie niepożądana aplikacja C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » spext.crx » CHROMEEXTENSION » content.zip » ZIP » spext.dll - Win32/bProtector.D potencjalnie niepożądana aplikacja C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotect.exe - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » kerberos_bho.dll - Win32/bProtector.B potencjalnie niepożądana aplikacja C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » protector.dll - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » PROCESS_LIBRARY.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION_CUSTOMIZED.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » TRACK_ISSUES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane) C:\WINDOWS\SoftwareDistribution\Download\a2bb23ef58da3e023917dba01785cbe0\mainwwsp3.cab » CAB » mainwwsp3.msp - nie można zakończyć dekompresji (możliwe powody: zbyt mała ilość wolnej pamięci lub miejsca na dysku albo problem z folderami tymczasowymi) C:\WINDOWS\system32\wstpager.ax - błąd podczas otwierania [4] C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\27\20406f9b-66ce977d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3627fa03-1eda8df4 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3de64243-27af4e2f » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\43\642ce6eb-500cc28a » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\46\7253ac6e-1f0c3ac2 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\25edc575-12d909f8 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\c6cca75-6eac02c5 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\63\51f01eff-7f924b29 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotector.xpi » ZIP » content/bprotector.js - Win32/bProtector.C potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » spext.crx » CHROMEEXTENSION » content.zip » ZIP » spext.dll - Win32/bProtector.D potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotect.exe - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » kerberos_bho.dll - Win32/bProtector.B potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » protector.dll - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu Liczba przeskanowanych obiektów: 193534 Liczba znalezionych zagrożeń: 16 Liczba wyleczonych obiektów: 16 Godzina zakończenia: 15:37:18 Całkowity czas skanowania: 5364 s (01:29:24) Zaraz dam logi z OTL A o to logi OTL [log]OTL logfile created on: 2013-01-12 11:51:24 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,50% Memory free 3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,73% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 51,39 Gb Total Space | 25,51 Gb Free Space | 49,63% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 74,45 Gb Free Space | 76,24% Space Free | Partition Type: NTFS Computer Name: USER-0CB12B2C32 | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Processes (All) ==========[/color] PRC - [2013-01-12 11:41:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe PRC - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe PRC - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe PRC - [2012-12-05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe PRC - [2012-07-04 05:10:40 | 000,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe PRC - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2012-06-28 19:37:00 | 000,277,120 | ---- | M] (Alcor Micro Corp.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe PRC - [2012-06-06 14:00:32 | 020,065,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE PRC - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2012-03-07 14:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2010-09-15 10:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) -- C:\WINDOWS\system32\LGScsiCommandService.exe PRC - [2009-09-10 14:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe PRC - [2009-09-10 14:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2009-09-10 14:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2009-09-10 14:45:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [WUDFSERVICEGROUP] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2009-09-10 14:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2009-09-10 14:45:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2009-04-22 16:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe PRC - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2006-10-26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe PRC - [2006-01-13 13:36:42 | 000,409,600 | ---- | M] () -- C:\Program Files\ULi5287\ULi5287.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2013-01-10 15:02:44 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\33ff7d73f01be8329a95c6e03f1dd555\System.Web.ni.dll MOD - [2013-01-10 13:17:33 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\96b7a0136e9e72e8f4eb0230c20766d2\System.Configuration.ni.dll MOD - [2013-01-10 13:16:28 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\cbee94ec6a0fe649e3b4643cea6e1259\Accessibility.ni.dll MOD - [2013-01-10 13:10:55 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll MOD - [2013-01-10 13:10:43 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\4c91371e83d124ecb39664613e7e0417\System.Windows.Forms.ni.dll MOD - [2013-01-10 13:10:23 | 001,593,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll MOD - [2013-01-10 13:08:29 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll MOD - [2013-01-10 13:08:19 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll MOD - [2013-01-10 08:13:43 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2012-12-18 15:28:20 | 000,397,016 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll MOD - [2012-12-13 21:34:56 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre7\bin\msvcr100.dll MOD - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe MOD - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe MOD - [2012-12-05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe MOD - [2012-12-05 02:15:15 | 012,456,040 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll MOD - [2012-12-05 02:15:15 | 000,460,904 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\ppgooglenaclpluginchrome.dll MOD - [2012-12-05 02:15:14 | 004,008,040 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\pdf.dll MOD - [2012-12-05 02:14:29 | 000,587,880 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\libglesv2.dll MOD - [2012-12-05 02:14:28 | 000,124,520 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\libegl.dll MOD - [2012-12-05 02:14:27 | 009,963,112 | ---- | M] (The ICU Project) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\icudt.dll MOD - [2012-12-05 02:14:23 | 041,743,976 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\chrome.dll MOD - [2012-12-05 02:14:21 | 000,157,304 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avutil-51.dll MOD - [2012-12-05 02:14:20 | 000,275,576 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avformat-54.dll MOD - [2012-12-05 02:14:19 | 002,168,952 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll MOD - [2012-12-05 01:17:30 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\d3dcompiler_43.dll MOD - [2012-12-05 01:17:30 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\d3dx9_43.dll MOD - [2012-11-01 13:12:01 | 011,113,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll MOD - [2012-11-01 13:12:01 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll MOD - [2012-11-01 13:12:01 | 001,214,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll MOD - [2012-11-01 13:12:01 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll MOD - [2012-10-03 06:44:30 | 000,364,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll MOD - [2012-10-03 05:57:25 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe MOD - [2012-08-31 05:40:10 | 005,915,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll MOD - [2012-08-24 14:53:50 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll MOD - [2012-08-14 16:08:26 | 003,018,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OLMAPI32.DLL MOD - [2012-07-06 14:58:19 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll MOD - [2012-07-06 14:58:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll MOD - [2012-07-04 05:12:46 | 000,212,992 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\system32\atipdlxx.dll MOD - [2012-07-04 05:12:16 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\system32\ati2edxx.dll MOD - [2012-07-04 05:12:04 | 000,192,512 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.dll MOD - [2012-07-04 05:10:40 | 000,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe MOD - [2012-07-04 04:56:20 | 000,233,472 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\system32\atiadlxx.dll MOD - [2012-07-03 22:55:46 | 000,184,320 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll MOD - [2012-07-03 22:55:46 | 000,013,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll MOD - [2012-07-03 22:55:42 | 000,013,312 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll MOD - [2012-07-03 22:55:30 | 000,704,512 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll MOD - [2012-07-03 22:55:30 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll MOD - [2012-07-03 22:55:06 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll MOD - [2012-07-03 22:55:00 | 000,011,776 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll MOD - [2012-07-03 22:55:00 | 000,008,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll MOD - [2012-07-03 22:55:00 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll MOD - [2012-07-03 22:54:58 | 000,675,840 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll MOD - [2012-07-03 22:54:56 | 000,081,920 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll MOD - [2012-07-03 22:54:56 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Shared.dll MOD - [2012-07-03 22:54:46 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll MOD - [2012-07-03 22:54:46 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll MOD - [2012-07-03 22:54:34 | 000,069,632 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2012-07-03 22:54:34 | 000,009,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Shared.dll MOD - [2012-07-03 22:54:32 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2012-07-03 22:54:30 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll MOD - [2012-07-03 22:54:20 | 000,106,496 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll MOD - [2012-07-03 22:54:20 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll MOD - [2012-07-03 22:54:20 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll MOD - [2012-07-03 22:54:16 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll MOD - [2012-07-03 22:54:08 | 000,589,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll MOD - [2012-07-03 22:53:48 | 000,077,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2012-07-03 22:53:46 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2012-07-03 22:53:34 | 000,409,600 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll MOD - [2012-07-03 22:53:16 | 000,094,208 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2012-07-03 22:53:14 | 000,393,216 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll MOD - [2012-07-03 22:53:12 | 000,073,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll MOD - [2012-07-03 22:53:12 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2012-07-03 22:53:02 | 000,069,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2012-07-03 22:53:00 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2012-07-03 22:52:58 | 000,036,864 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2012-07-03 22:52:56 | 000,098,304 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll MOD - [2012-07-03 22:52:54 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll MOD - [2012-07-03 22:52:54 | 000,024,576 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll MOD - [2012-07-03 22:52:52 | 000,880,640 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll MOD - [2012-07-03 22:52:50 | 000,102,400 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll MOD - [2012-07-03 22:52:48 | 000,397,312 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2012-07-03 22:52:48 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2012-07-03 22:52:48 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2012-07-03 22:52:46 | 000,065,536 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2012-07-03 22:52:46 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll MOD - [2012-07-03 22:52:38 | 000,376,832 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll MOD - [2012-07-03 22:52:28 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll MOD - [2012-07-03 22:52:04 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll MOD - [2012-07-03 22:51:56 | 000,557,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll MOD - [2012-07-03 22:51:56 | 000,196,608 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2012-07-03 22:51:54 | 000,204,800 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2012-07-03 22:51:54 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Dashboard.dll MOD - [2012-07-03 22:51:52 | 001,736,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll MOD - [2012-07-03 22:51:52 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Runtime.dll MOD - [2012-07-03 22:51:52 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Shared.dll MOD - [2012-07-03 22:51:52 | 000,008,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2012-07-03 22:51:50 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2012-07-03 22:51:48 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2012-07-03 22:51:42 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll MOD - [2012-07-03 22:51:40 | 000,376,832 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll MOD - [2012-07-03 22:51:40 | 000,016,384 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2012-07-03 22:51:40 | 000,011,776 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll MOD - [2012-07-03 22:51:32 | 000,409,600 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll MOD - [2012-07-03 22:51:28 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2012-07-03 22:51:28 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2012-07-03 22:51:28 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll MOD - [2012-07-03 22:51:28 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll MOD - [2012-07-03 22:51:26 | 000,073,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll MOD - [2012-07-03 22:51:26 | 000,016,384 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2012-07-03 22:51:18 | 001,245,184 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll MOD - [2012-07-03 22:51:16 | 000,010,240 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll MOD - [2012-07-03 22:51:14 | 000,040,960 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll MOD - [2012-07-03 22:51:08 | 000,389,120 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll MOD - [2012-07-03 22:51:06 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll MOD - [2012-07-03 22:51:06 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll MOD - [2012-07-03 22:51:04 | 000,057,344 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll MOD - [2012-07-03 22:51:04 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll MOD - [2012-07-03 22:51:02 | 000,061,440 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll MOD - [2012-07-03 22:51:02 | 000,061,440 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll MOD - [2012-07-03 22:51:02 | 000,007,168 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll MOD - [2012-07-03 22:51:00 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll MOD - [2012-07-03 22:51:00 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll MOD - [2012-07-03 22:50:58 | 000,007,168 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll MOD - [2012-07-03 22:50:58 | 000,006,144 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll MOD - [2012-07-03 22:50:58 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll MOD - [2012-07-03 22:50:56 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll MOD - [2012-07-03 22:50:56 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll MOD - [2012-07-03 22:50:56 | 000,008,192 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll MOD - [2012-07-03 22:50:56 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll MOD - [2012-07-03 22:50:54 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll MOD - [2012-07-03 22:50:54 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll MOD - [2012-07-03 22:50:54 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll MOD - [2012-07-03 22:50:52 | 000,155,648 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll MOD - [2012-07-03 22:50:52 | 000,036,864 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll MOD - [2012-07-03 22:50:52 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll MOD - [2012-07-03 22:50:50 | 000,024,576 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll MOD - [2012-07-03 22:50:50 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll MOD - [2012-07-03 22:50:50 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll MOD - [2012-07-03 22:50:50 | 000,007,168 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll MOD - [2012-07-03 22:50:48 | 000,098,304 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll MOD - [2012-07-03 22:50:48 | 000,015,360 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll MOD - [2012-07-03 22:50:46 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll MOD - [2012-07-03 22:50:32 | 000,708,608 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll MOD - [2012-07-03 22:49:38 | 000,004,096 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamplk.dll MOD - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe MOD - [2012-06-28 19:37:00 | 000,277,120 | ---- | M] (Alcor Micro Corp.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe MOD - [2012-06-11 23:33:20 | 017,323,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL MOD - [2012-06-09 18:20:02 | 000,168,448 | ---- | M] (Alexander Roshal) -- D:\Program Files\WinRAR\RarExt.dll MOD - [2012-06-08 15:24:25 | 008,492,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2012-06-06 14:00:32 | 020,065,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE MOD - [2012-06-05 16:48:33 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml3.dll MOD - [2012-06-04 05:31:52 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll MOD - [2012-06-02 14:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll MOD - [2012-06-01 17:50:20 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll MOD - [2012-05-14 10:21:44 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll MOD - [2012-05-04 15:42:44 | 000,098,304 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll MOD - [2012-03-28 13:56:52 | 000,270,424 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnAmon.dll MOD - [2012-03-07 14:41:34 | 000,426,984 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll MOD - [2012-03-07 14:41:34 | 000,315,744 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll MOD - [2012-03-07 14:41:34 | 000,274,544 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\updater.dll MOD - [2012-03-07 14:41:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll MOD - [2012-03-07 14:41:20 | 000,093,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll MOD - [2012-03-07 14:41:12 | 000,142,704 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnHips.dll MOD - [2012-03-07 14:41:10 | 000,188,024 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll MOD - [2012-03-07 14:41:00 | 000,394,024 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll MOD - [2012-03-07 14:41:00 | 000,196,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnScan.dll MOD - [2012-03-07 14:40:40 | 001,053,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll MOD - [2012-03-07 14:40:40 | 000,517,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll MOD - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe MOD - [2012-03-07 14:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe MOD - [2012-03-07 14:40:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEmon.dll MOD - [2012-03-07 14:40:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll MOD - [2012-03-07 14:40:16 | 000,109,744 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnDmon.dll MOD - [2012-03-07 14:40:16 | 000,097,384 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll MOD - [2012-03-07 14:40:10 | 000,249,824 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll MOD - [2012-02-29 15:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll MOD - [2012-02-09 16:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll MOD - [2011-11-16 15:20:55 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll MOD - [2011-11-01 17:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2011-10-14 15:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll MOD - [2011-10-04 04:07:06 | 000,113,152 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll MOD - [2011-09-26 10:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll MOD - [2011-07-27 05:14:02 | 000,967,008 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll MOD - [2011-06-23 13:58:36 | 000,466,944 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll MOD - [2011-05-14 01:17:40 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll MOD - [2011-05-14 01:12:34 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll MOD - [2011-05-13 20:04:20 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll MOD - [2011-05-13 18:37:56 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll MOD - [2011-04-18 22:51:18 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll MOD - [2011-04-18 22:51:18 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll MOD - [2011-03-03 07:53:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll MOD - [2011-02-08 14:33:57 | 000,978,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll MOD - [2011-02-08 14:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll MOD - [2010-12-22 13:32:24 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll MOD - [2010-12-20 18:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2010-12-20 18:24:12 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll MOD - [2010-12-09 16:15:52 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2010-11-09 15:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll MOD - [2010-10-13 11:39:36 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll MOD - [2010-09-15 10:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe MOD - [2010-08-23 17:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll MOD - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe MOD - [2010-08-16 09:43:34 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2010-04-16 16:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll MOD - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) -- C:\WINDOWS\system32\LGScsiCommandService.exe MOD - [2010-04-06 03:52:46 | 002,462,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMVCore.dll MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll MOD - [2010-03-18 13:16:28 | 000,413,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll MOD - [2010-03-18 13:16:28 | 000,070,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dxva2.dll MOD - [2010-03-16 11:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll MOD - [2010-03-16 11:22:12 | 000,013,312 | ---- | M] ( ) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\Interop.WBOCXLib.dll MOD - [2010-03-16 11:22:10 | 000,573,440 | ---- | M] (Stardock Corporation) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\32\wbocx.ocx MOD - [2010-03-16 11:22:10 | 000,050,688 | ---- | M] (Stardock.Net, Inc) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\32\wbhelp2.dll MOD - [2010-03-04 00:27:24 | 000,016,384 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll MOD - [2010-01-29 15:45:20 | 000,307,260 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\system32\l3codeca.acm MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2009-12-08 06:49:44 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll MOD - [2009-11-27 17:29:49 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\avifil32.dll MOD - [2009-11-07 00:07:08 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll MOD - [2009-11-07 00:07:04 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll MOD - [2009-10-13 11:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll MOD - [2009-10-12 14:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll MOD - [2009-10-12 14:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll MOD - [2009-09-23 08:05:25 | 000,024,576 | R--- | M] (LG Electronics) -- C:\WINDOWS\system32\SendScsiCmd.dll MOD - [2009-09-11 15:15:45 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll MOD - [2009-09-10 14:45:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll MOD - [2009-09-10 14:45:00 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll MOD - [2009-09-10 14:45:00 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll MOD - [2009-09-10 14:45:00 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll MOD - [2009-09-10 14:45:00 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll MOD - [2009-09-10 14:45:00 | 001,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll MOD - [2009-09-10 14:45:00 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll MOD - [2009-09-10 14:45:00 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll MOD - [2009-09-10 14:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe MOD - [2009-09-10 14:45:00 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll MOD - [2009-09-10 14:45:00 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll MOD - [2009-09-10 14:45:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2009-09-10 14:45:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll MOD - [2009-09-10 14:45:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2009-09-10 14:45:00 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll MOD - [2009-09-10 14:45:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2009-09-10 14:45:00 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll MOD - [2009-09-10 14:45:00 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll MOD - [2009-09-10 14:45:00 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll MOD - [2009-09-10 14:45:00 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll MOD - [2009-09-10 14:45:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2009-09-10 14:45:00 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdoclc.dll MOD - [2009-09-10 14:45:00 | 000,545,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hhctrl.ocx MOD - [2009-09-10 14:45:00 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msftedit.dll MOD - [2009-09-10 14:45:00 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll MOD - [2009-09-10 14:45:00 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll MOD - [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe MOD - [2009-09-10 14:45:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll MOD - [2009-09-10 14:45:00 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll MOD - [2009-09-10 14:45:00 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll MOD - [2009-09-10 14:45:00 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll MOD - [2009-09-10 14:45:00 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll MOD - [2009-09-10 14:45:00 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll MOD - [2009-09-10 14:45:00 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll MOD - [2009-09-10 14:45:00 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll MOD - [2009-09-10 14:45:00 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll MOD - [2009-09-10 14:45:00 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll MOD - [2009-09-10 14:45:00 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll MOD - [2009-09-10 14:45:00 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll MOD - [2009-09-10 14:45:00 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll MOD - [2009-09-10 14:45:00 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll MOD - [2009-09-10 14:45:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2009-09-10 14:45:00 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\zipfldr.dll MOD - [2009-09-10 14:45:00 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wiaservc.dll MOD - [2009-09-10 14:45:00 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll MOD - [2009-09-10 14:45:00 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll MOD - [2009-09-10 14:45:00 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll MOD - [2009-09-10 14:45:00 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll MOD - [2009-09-10 14:45:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2009-09-10 14:45:00 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll MOD - [2009-09-10 14:45:00 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2009-09-10 14:45:00 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll MOD - [2009-09-10 14:45:00 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\portabledeviceapi.dll MOD - [2009-09-10 14:45:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll MOD - [2009-09-10 14:45:00 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll MOD - [2009-09-10 14:45:00 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp MOD - [2009-09-10 14:45:00 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll MOD - [2009-09-10 14:45:00 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll MOD - [2009-09-10 14:45:00 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll MOD - [2009-09-10 14:45:00 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll MOD - [2009-09-10 14:45:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll MOD - [2009-09-10 14:45:00 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll MOD - [2009-09-10 14:45:00 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll MOD - [2009-09-10 14:45:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2009-09-10 14:45:00 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll MOD - [2009-09-10 14:45:00 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll MOD - [2009-09-10 14:45:00 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll MOD - [2009-09-10 14:45:00 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp MOD - [2009-09-10 14:45:00 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll MOD - [2009-09-10 14:45:00 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll MOD - [2009-09-10 14:45:00 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll MOD - [2009-09-10 14:45:00 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll MOD - [2009-09-10 14:45:00 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll MOD - [2009-09-10 14:45:00 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll MOD - [2009-09-10 14:45:00 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll MOD - [2009-09-10 14:45:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2009-09-10 14:45:00 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll MOD - [2009-09-10 14:45:00 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll MOD - [2009-09-10 14:45:00 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll MOD - [2009-09-10 14:45:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME MOD - [2009-09-10 14:45:00 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll MOD - [2009-09-10 14:45:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll MOD - [2009-09-10 14:45:00 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll MOD - [2009-09-10 14:45:00 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\portabledevicetypes.dll MOD - [2009-09-10 14:45:00 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wudfplatform.dll MOD - [2009-09-10 14:45:00 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll MOD - [2009-09-10 14:45:00 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll MOD - [2009-09-10 14:45:00 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shmedia.dll MOD - [2009-09-10 14:45:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2009-09-10 14:45:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll MOD - [2009-09-10 14:45:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wiavusd.dll MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll MOD - [2009-09-10 14:45:00 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll MOD - [2009-09-10 14:45:00 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll MOD - [2009-09-10 14:45:00 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll MOD - [2009-09-10 14:45:00 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll MOD - [2009-09-10 14:45:00 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wpdshserviceobj.dll MOD - [2009-09-10 14:45:00 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll MOD - [2009-09-10 14:45:00 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll MOD - [2009-09-10 14:45:00 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll MOD - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe MOD - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll MOD - [2009-09-10 14:45:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll MOD - [2009-09-10 14:45:00 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll MOD - [2009-09-10 14:45:00 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll MOD - [2009-09-10 14:45:00 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvfw32.dll MOD - [2009-09-10 14:45:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll MOD - [2009-09-10 14:45:00 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll MOD - [2009-09-10 14:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe MOD - [2009-09-10 14:45:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx MOD - [2009-09-10 14:45:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll MOD - [2009-09-10 14:45:00 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll MOD - [2009-09-10 14:45:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll MOD - [2009-09-10 14:45:00 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll MOD - [2009-09-10 14:45:00 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll MOD - [2009-09-10 14:45:00 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll MOD - [2009-09-10 14:45:00 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll MOD - [2009-09-10 14:45:00 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpband.dll MOD - [2009-09-10 14:45:00 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll MOD - [2009-09-10 14:45:00 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll MOD - [2009-09-10 14:45:00 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mydocs.dll MOD - [2009-09-10 14:45:00 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll MOD - [2009-09-10 14:45:00 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mui\0015\hhctrlui.dll MOD - [2009-09-10 14:45:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll MOD - [2009-09-10 14:45:00 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll MOD - [2009-09-10 14:45:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2009-09-10 14:45:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll MOD - [2009-09-10 14:45:00 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll MOD - [2009-09-10 14:45:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll MOD - [2009-09-10 14:45:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\faultrep.dll MOD - [2009-09-10 14:45:00 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll MOD - [2009-09-10 14:45:00 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll MOD - [2009-09-10 14:45:00 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll MOD - [2009-09-10 14:45:00 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll MOD - [2009-09-10 14:45:00 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll MOD - [2009-09-10 14:45:00 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sti.dll MOD - [2009-09-10 14:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2009-09-10 14:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll MOD - [2009-09-10 14:45:00 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll MOD - [2009-09-10 14:45:00 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll MOD - [2009-09-10 14:45:00 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll MOD - [2009-09-10 14:45:00 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptnet.dll MOD - [2009-09-10 14:45:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll MOD - [2009-09-10 14:45:00 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll MOD - [2009-09-10 14:45:00 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll MOD - [2009-09-10 14:45:00 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll MOD - [2009-09-10 14:45:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll MOD - [2009-09-10 14:45:00 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll MOD - [2009-09-10 14:45:00 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll MOD - [2009-09-10 14:45:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll MOD - [2009-09-10 14:45:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\devenum.dll MOD - [2009-09-10 14:45:00 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll MOD - [2009-09-10 14:45:00 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll MOD - [2009-09-10 14:45:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll MOD - [2009-09-10 14:45:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll MOD - [2009-09-10 14:45:00 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp MOD - [2009-09-10 14:45:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll MOD - [2009-09-10 14:45:00 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wudfsvc.dll MOD - [2009-09-10 14:45:00 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll MOD - [2009-09-10 14:45:00 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll MOD - [2009-09-10 14:45:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll MOD - [2009-09-10 14:45:00 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll MOD - [2009-09-10 14:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe MOD - [2009-09-10 14:45:00 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll MOD - [2009-09-10 14:45:00 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll MOD - [2009-09-10 14:45:00 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll MOD - [2009-09-10 14:45:00 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll MOD - [2009-09-10 14:45:00 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll MOD - [2009-09-10 14:45:00 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll MOD - [2009-09-10 14:45:00 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll MOD - [2009-09-10 14:45:00 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll MOD - [2009-09-10 14:45:00 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll MOD - [2009-09-10 14:45:00 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll MOD - [2009-09-10 14:45:00 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll MOD - [2009-09-10 14:45:00 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll MOD - [2009-09-10 14:45:00 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcAdProc.dll MOD - [2009-09-10 14:45:00 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll MOD - [2009-09-10 14:45:00 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll MOD - [2009-09-10 14:45:00 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll MOD - [2009-09-10 14:45:00 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll MOD - [2009-09-10 14:45:00 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll MOD - [2009-09-10 14:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp MOD - [2009-09-10 14:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll MOD - [2009-09-10 14:45:00 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll MOD - [2009-09-10 14:45:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll MOD - [2009-09-10 14:45:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll MOD - [2009-09-10 14:45:00 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp MOD - [2009-09-10 14:45:00 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll MOD - [2009-09-10 14:45:00 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll MOD - [2009-09-10 14:45:00 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll MOD - [2009-09-10 14:45:00 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll MOD - [2009-09-10 14:45:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll MOD - [2009-09-10 14:45:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll MOD - [2009-09-10 14:45:00 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll MOD - [2009-09-10 14:45:00 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll MOD - [2009-09-10 14:45:00 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll MOD - [2009-09-10 14:45:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll MOD - [2009-09-10 14:45:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll MOD - [2009-09-10 14:45:00 | 000,024,064 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\system32\dmserver.dll MOD - [2009-09-10 14:45:00 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll MOD - [2009-09-10 14:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2009-09-10 14:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll MOD - [2009-09-10 14:45:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll MOD - [2009-09-10 14:45:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv MOD - [2009-09-10 14:45:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll MOD - [2009-09-10 14:45:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll MOD - [2009-09-10 14:45:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll MOD - [2009-09-10 14:45:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll MOD - [2009-09-10 14:45:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgrprxy.dll MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll MOD - [2009-09-10 14:45:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll MOD - [2009-09-10 14:45:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll MOD - [2009-09-10 14:45:00 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll MOD - [2009-09-10 14:45:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll MOD - [2009-09-10 14:45:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cfgmgr32.dll MOD - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll MOD - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll MOD - [2009-09-10 14:45:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll MOD - [2009-09-10 14:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe MOD - [2009-09-10 14:45:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll MOD - [2009-09-10 14:45:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll MOD - [2009-09-10 14:45:00 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll MOD - [2009-09-10 14:45:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll MOD - [2009-09-10 14:45:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll MOD - [2009-09-10 14:45:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll MOD - [2009-09-10 14:45:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll MOD - [2009-09-10 14:45:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll MOD - [2009-09-10 14:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll MOD - [2009-09-10 14:45:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll MOD - [2009-09-10 14:45:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll MOD - [2009-09-10 14:45:00 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll MOD - [2009-09-10 14:45:00 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll MOD - [2009-09-10 14:45:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll MOD - [2009-09-10 14:45:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll MOD - [2009-09-10 14:45:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll MOD - [2009-09-10 14:45:00 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll MOD - [2009-09-04 22:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll MOD - [2009-07-27 23:23:50 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll MOD - [2009-07-17 17:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll MOD - [2009-06-17 09:24:26 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll MOD - [2009-06-17 09:24:26 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll MOD - [2009-06-17 04:27:48 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll MOD - [2009-04-22 16:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe MOD - [2009-04-22 11:13:40 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll MOD - [2009-04-22 11:13:18 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll MOD - [2009-02-27 14:48:36 | 001,008,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\1045\GrooveIntlResource.dll MOD - [2009-02-27 03:42:02 | 000,031,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msonpmon.dll MOD - [2009-02-26 19:18:18 | 000,029,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll MOD - [2009-02-26 18:37:02 | 000,178,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll MOD - [2009-02-26 18:36:54 | 002,217,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll MOD - [2009-02-26 18:36:48 | 000,021,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveNew.dll MOD - [2009-02-26 18:36:46 | 001,560,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll MOD - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe MOD - [2009-01-20 13:51:38 | 000,007,168 | ---- | M] ( ) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll MOD - [2008-12-30 11:04:08 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll MOD - [2008-07-25 10:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll MOD - [2008-07-06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll MOD - [2008-04-14 20:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv MOD - [2008-04-14 20:50:36 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ksuser.dll MOD - [2008-04-14 19:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll MOD - [2008-04-14 19:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll MOD - [2008-04-03 15:29:02 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll MOD - [2007-10-25 08:28:30 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmasf.dll MOD - [2007-08-09 15:58:04 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll MOD - [2007-05-02 16:44:12 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll MOD - [2006-10-26 18:58:12 | 000,030,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll MOD - [2006-10-26 18:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll MOD - [2006-10-26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe MOD - [2006-10-26 11:45:04 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll MOD - [2006-10-26 11:44:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\csm.dll MOD - [2006-01-13 13:36:42 | 000,409,600 | ---- | M] () -- C:\Program Files\ULi5287\ULi5287.exe MOD - [2003-03-18 21:23:34 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1045\mdmui.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - [2013-01-09 14:05:18 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-12-25 10:40:20 | 000,541,760 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service) SRV - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc) SRV - [2012-11-09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate) SRV - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service) SRV - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) [Auto | Running] -- C:\WINDOWS\system32\LGScsiCommandService.exe -- (LGScsiCommandService) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbmodem.sys -- (USBModem) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbdiag.sys -- (UsbDiag) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbbus.sys -- (usbbus) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- D:\Program Files\Lavalys\EVEREST Corporate Edition\kerneld.wnt -- (EverestDriver) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-10-11 15:55:10 | 001,104,768 | ---- | M] (Compro Technology, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMHybrid.sys -- (VMHybrid) DRV - [2012-07-04 07:54:32 | 007,874,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2012-06-19 16:54:20 | 006,141,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) DRV - [2012-06-13 23:06:46 | 000,063,104 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmUStor.sys -- (AmUStor) DRV - [2012-05-14 07:12:12 | 000,103,040 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService) DRV - [2012-03-14 07:40:04 | 000,104,160 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2012-03-14 07:40:02 | 000,160,816 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon) DRV - [2012-03-14 07:40:02 | 000,120,152 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2012-01-25 11:23:10 | 000,299,424 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp) DRV - [2010-08-04 07:33:28 | 000,061,696 | ---- | M] (ASIX Electronics Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ax88772.sys -- (AX88772) DRV - [2009-11-18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt) DRV - [2009-11-18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt) DRV - [2009-09-10 14:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5) DRV - [2009-09-10 14:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531) DRV - [2009-09-10 14:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5) DRV - [2009-09-10 14:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132) DRV - [2009-09-10 14:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124) DRV - [2009-09-10 14:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112) DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi) DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer) DRV - [2008-07-23 23:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial) DRV - [2008-07-23 23:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus) DRV - [2008-04-13 21:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE) DRV - [2005-09-23 17:53:24 | 000,103,680 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287) DRV - [2001-08-17 18:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990} IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110824&tt=4612_3&babsrc=SP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language} IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}: "URL" = http://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000 IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.) FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.) FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-10-12 08:55:02 | 000,000,000 | ---D | M] [2013-01-07 14:17:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-12-06 01:51:31 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [2012-11-16 20:02:54 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml [color=#E56717]========== Chrome ==========[/color] CHR - homepage: CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter} CHR - homepage: CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\pdf.dll CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll CHR - plugin: Picasa (Enabled) = D:\Program Files\Google\Picasa3\npPicasa3.dll CHR - Extension: Dysk Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\ CHR - Extension: YouTube = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\ CHR - Extension: Szukaj w Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\ CHR - Extension: Porsche = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg\3_0\ CHR - Extension: Gmail = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\ O1 HOSTS File: ([2009-09-10 14:45:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation) O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation) O3 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (Alcor Micro Corp.) O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [LogMeIn Hamachi Ui] D:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.) O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [ULiRaid5287] C:\Program Files\ULi5287\ULi5287.exe () O4 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found O4 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003..\Run: [Steam] D:\Program Files\Steam\steam.exe (Valve Corporation) O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.) O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O13 - gopher Prefix: missing O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1350029003921 (WUWebControl Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D277F1C3-74BD-4CDB-A522-34B2CF6CCB51}: DhcpNameServer = 192.168.1.254 O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-10-11 12:25:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) NetSvcs: 6to4 - File not found NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found NetSvcs: Ias - File not found NetSvcs: Iprip - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: WmdmPmSp - File not found MsConfig - StartUpReg: [b]EADM[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]LogMeIn Hamachi Ui[/b] - hkey= - key= - File not found MsConfig - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.) MsConfig - State: "system.ini" - 0 MsConfig - State: "win.ini" - 0 MsConfig - State: "bootini" - 0 MsConfig - State: "services" - 0 MsConfig - State: "startup" - 2 SafeBootMin: Base - Driver Group SafeBootMin: Boot Bus Extender - Driver Group SafeBootMin: Boot file system - Driver Group SafeBootMin: File system - Driver Group SafeBootMin: Filter - Driver Group SafeBootMin: PCI Configuration - Driver Group SafeBootMin: PNP Filter - Driver Group SafeBootMin: Primary disk - Driver Group SafeBootMin: SCSI Class - Driver Group SafeBootMin: sermouse.sys - Driver SafeBootMin: System Bus Extender - Driver Group SafeBootMin: vga.sys - Driver SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: Base - Driver Group SafeBootNet: Boot Bus Extender - Driver Group SafeBootNet: Boot file system - Driver Group SafeBootNet: File system - Driver Group SafeBootNet: Filter - Driver Group SafeBootNet: Hamachi2Svc - D:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.) SafeBootNet: NDIS Wrapper - Driver Group SafeBootNet: NetBIOSGroup - Driver Group SafeBootNet: NetDDEGroup - Driver Group SafeBootNet: Network - Driver Group SafeBootNet: NetworkProvider - Driver Group SafeBootNet: PCI Configuration - Driver Group SafeBootNet: PNP Filter - Driver Group SafeBootNet: PNP_TDI - Driver Group SafeBootNet: Primary disk - Driver Group SafeBootNet: SCSI Class - Driver Group SafeBootNet: sermouse.sys - Driver SafeBootNet: Streams Drivers - Driver Group SafeBootNet: System Bus Extender - Driver Group SafeBootNet: TDI - Driver Group SafeBootNet: vga.sys - Driver SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2013-01-12 11:51:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\OTL [2013-01-10 07:58:17 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2013-01-08 18:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Freemake [2013-01-08 18:29:38 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake [2013-01-08 18:25:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files [2013-01-08 14:32:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Deluxe Ski Jump 4 [2013-01-07 18:44:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF [2013-01-05 21:58:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Downloads [2013-01-05 10:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome [2012-12-30 13:36:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\.minecraft [2012-12-26 14:09:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\olszanica 25.12.12 [2012-12-23 22:47:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\kolędy [2012-12-22 22:37:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google [2012-12-22 22:28:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google [2012-12-22 22:28:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Picasa 3 [2012-12-22 22:28:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IOSUBSYS [2012-12-22 22:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\Google [2012-12-15 14:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype [2012-12-15 14:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype [2012-12-13 21:35:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java [2012-12-13 21:34:48 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2012-12-13 21:11:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask [2012-12-13 10:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\LogMeIn Hamachi [2012-12-06 01:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-12-03 18:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GHISLER [2012-12-03 13:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2012-12-01 21:35:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER [2012-11-26 13:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\My Cheat Tables [2012-11-24 20:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2012-11-24 20:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Aura4You [2012-11-16 20:03:25 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar [2012-11-16 20:02:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2012-11-16 20:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Babylon [2012-11-15 13:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Halflife Logo Creator [2012-11-13 17:45:08 | 000,026,176 | -H-- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\hamachi.sys [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2013-01-12 11:44:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003UA.job [2013-01-12 11:03:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2013-01-12 10:44:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003Core.job [2013-01-12 10:21:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2013-01-11 20:36:07 | 000,001,776 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ssij.gif [2013-01-11 14:05:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2013-01-11 13:26:16 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2013-01-10 18:17:02 | 2145,386,496 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP [2013-01-10 08:13:53 | 000,536,910 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2013-01-10 08:13:53 | 000,476,372 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2013-01-10 08:13:53 | 000,095,782 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2013-01-10 08:13:52 | 000,077,214 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2013-01-08 18:06:22 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini [2013-01-07 18:03:07 | 000,273,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2013-01-07 13:55:25 | 000,000,405 | ---- | M] () -- C:\WINDOWS\ULEAD32.INI [2013-01-05 10:36:12 | 000,002,301 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2012-12-22 22:38:11 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK [2012-12-22 22:29:11 | 000,000,647 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Picasa 3.lnk [2012-12-18 16:13:26 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash [2012-12-15 14:00:48 | 000,001,880 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-12-04 20:50:40 | 000,000,909 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Cztery pory roku.lnk [2012-12-03 20:44:24 | 000,000,861 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Po zmroku.lnk [2012-11-23 10:02:41 | 000,149,383 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\ts3_clientui-win32-1351504843-2012-11-23 10_02_41.593750.dmp [2012-11-16 20:02:40 | 004,088,832 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\hamachi.msi [3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2013-01-11 20:36:05 | 000,001,776 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ssij.gif [2013-01-05 10:36:12 | 000,002,301 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk [2013-01-05 10:34:56 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003UA.job [2013-01-05 10:34:56 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003Core.job [2012-12-30 13:36:18 | 000,139,783 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\MinecraftSP.jar [2012-12-22 22:29:11 | 000,000,647 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Picasa 3.lnk [2012-12-18 16:16:38 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2012-12-15 14:00:48 | 000,001,880 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2012-12-04 20:50:40 | 000,000,909 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Cztery pory roku.lnk [2012-12-03 20:44:24 | 000,000,861 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Po zmroku.lnk [2012-12-01 21:35:31 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF [2012-12-01 21:35:31 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF [2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF [2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF [2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF [2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF [2012-11-23 10:02:41 | 000,149,383 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\ts3_clientui-win32-1351504843-2012-11-23 10_02_41.593750.dmp [2012-11-18 14:40:26 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini [2012-11-16 20:02:42 | 004,088,832 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\hamachi.msi [2012-11-09 09:42:31 | 000,003,737 | ---- | C] () -- C:\Documents and Settings\User\.recently-used.xbel [2012-10-28 20:40:00 | 000,000,405 | ---- | C] () -- C:\WINDOWS\ULEAD32.INI [2012-10-14 13:31:40 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\JoyFrc.dll [2012-10-14 13:31:40 | 000,059,004 | ---- | C] () -- C:\WINDOWS\System32\Wcdu5Cpl.dll [2012-10-12 09:25:37 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll [2012-10-12 09:08:14 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll [2012-10-11 15:21:16 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll [2012-10-11 14:20:08 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll [2012-10-11 14:04:07 | 000,025,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT [2012-10-11 13:57:17 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012-10-11 13:55:09 | 000,273,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-10-11 13:45:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2012-10-11 13:45:18 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2012-10-11 13:45:18 | 000,618,823 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2012-10-11 13:45:18 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2012-10-11 13:38:27 | 000,024,887 | ---- | C] () -- C:\WINDOWS\System32\unM5287.exe [2012-10-11 12:28:35 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012-10-11 12:22:12 | 000,023,016 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2012-10-11 13:43:32 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2009-09-10 14:45:00 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-09-10 14:45:00 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2009-09-10 14:45:00 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2012-10-11 13:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AmUStor [2012-12-13 21:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask [2012-11-16 20:02:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon [2012-12-03 13:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess [2012-12-03 07:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts [2012-10-12 08:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2013-01-10 13:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Freemake [2013-01-11 19:15:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin [2012-10-30 17:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PlayFirst [2012-11-24 20:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2012-12-30 13:40:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.minecraft [2012-11-24 20:30:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Aura4You [2012-10-27 19:56:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex [2012-11-16 20:02:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Babylon [2013-01-08 17:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitTorrent [2012-10-27 19:52:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo [2012-12-02 10:02:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER [2012-10-28 20:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\inkscape [2012-10-31 07:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Origin [2012-10-30 17:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PlayFirst [2013-01-10 20:37:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TS3Client [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2012-10-11 12:25:39 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT [2012-11-08 18:29:29 | 000,000,211 | -HS- | M] () -- C:\boot.ini [2009-09-10 14:45:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin [2012-10-11 12:25:39 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS [2012-10-11 12:25:39 | 000,000,000 | RHS- | M] () -- C:\IO.SYS [2012-10-11 12:25:39 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS [2009-09-10 14:45:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM [2009-09-10 14:45:00 | 000,251,152 | RHS- | M] () -- C:\ntldr [2013-01-12 10:21:05 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys [color=#A23BEC]< MD5 for: AGP440.SYS >[/color] [2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys [2009-09-10 14:45:00 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys [color=#A23BEC]< MD5 for: ATAPI.SYS >[/color] [2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys [2008-04-13 21:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys [color=#A23BEC]< MD5 for: BEEP.SYS >[/color] [2009-09-10 14:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys [2009-09-10 14:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys [color=#A23BEC]< MD5 for: CDROM.SYS >[/color] [2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys [2009-09-10 14:45:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys [2011-05-09 23:48:16 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys [color=#A23BEC]< MD5 for: EVENTLOG.DLL >[/color] [2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll [2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll [color=#A23BEC]< MD5 for: NDIS.SYS >[/color] [2009-09-10 14:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys [2009-09-10 14:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys [color=#A23BEC]< MD5 for: WINLOGON.EXE >[/color] [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:96D0C06F < End of report >[/log] i z Extras [log]OTL Extras logfile created on: 2013-01-12 11:51:24 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\User\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,50% Memory free 3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,73% Paging File free Paging file location(s): c:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 51,39 Gb Total Space | 25,51 Gb Free Space | 49,63% Space Free | Partition Type: NTFS Drive D: | 97,65 Gb Total Space | 74,45 Gb Free Space | 76,24% Space Free | Partition Type: NTFS Computer Name: USER-0CB12B2C32 | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* [HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML.LQGRZVVTQ3Z7COPMHX6Q7LVHKA] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation) "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation) "C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation) "C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.) "D:\Program Files\bin\javaw.exe" = D:\Program Files\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation) "C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację -- (Microsoft Corporation) "D:\Program Files\Counter-Strike\cstrike.exe" = D:\Program Files\Counter-Strike\cstrike.exe:*:Enabled:Half-Life Launcher "D:\Program Files\KBot\KBot 6.67\KBotcc.exe" = D:\Program Files\KBot\KBot 6.67\KBotcc.exe:*:Enabled:KBot control center "D:\Program Files\Counter-Strike\hl.exe" = D:\Program Files\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher "D:\Program Files\mIRC\mirc.exe" = D:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC "D:\Program Files\Steam\steamapps\23niedzwiedz\condition zero\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\condition zero\hl.exe:*:Enabled:Counter-Strike: Condition Zero -- (Valve) "D:\Program Files\Steam\Steam.exe" = D:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "D:\Program Files\Steam\steamapps\23niedzwiedz\day of defeat\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\day of defeat\hl.exe:*:Enabled:Day of Defeat -- (Valve) "D:\totalcmd\TOTALCMD.EXE" = D:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit "D:\Program Files\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = D:\Program Files\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server -- (TeamSpeak Systems GmbH) "C:\Documents and Settings\User\Pulpit\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = C:\Documents and Settings\User\Pulpit\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server "C:\Program Files\Java\jre7\bin\javaw.exe" = C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation) "D:\Program Files\BitTorrent\BitTorrent.exe" = D:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.) "D:\Program Files\Steam\steamapps\23niedzwiedz\counter-strike\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{0807E67B-DACB-1739-A87E-3046FF40BA23}" = CCC Help Chinese Traditional "{0DF310E3-6C01-99DC-296F-1D021BA36C2D}" = CCC Help English "{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration "{1E8E87B5-4531-CEE3-4791-6AD9E72076EC}" = CCC Help Danish "{1F295D95-3E65-4A53-902F-615F4B1EC627}" = ESET NOD32 Antivirus "{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9 "{27596347-C945-B113-EF47-169D471CEB05}" = CCC Help Turkish "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3666DE18-A4CC-4E1E-8165-0D78758C2209}" = CCC Help Russian "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{3DE92282-CB49-434F-81BF-94E5B380E889}" = The Sims™ 3 Cztery pory roku "{41E340F0-0BD6-4A87-AF29-E9E584471756}" = VideoMate T, M, S Series Driver "{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Po zmroku "{477AB148-138C-46D2-820B-0DBFA744CEE8}" = Terminator TV7131 Utilities "{479826D5-FE36-711F-8BE3-AB7B44440F66}" = ccc-utility "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{532669C6-3139-E755-B3B8-95F184EB27EB}" = CCC Help German "{577F4DD2-ED68-690F-6328-8A8CAC8FCA75}" = CCC Help Polish "{637A3EC2-4299-67B2-E0D2-C25572F4D37A}" = CCC Help Thai "{702F39B4-05FB-22F4-8426-E5FFFA330FF3}" = CCC Help Chinese Standard "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73FB391E-E800-CC82-D9BA-EF9CB8A939F3}" = CCC Help French "{747E2E56-A68B-15C6-BB77-31BFE0C031EF}" = CCC Help Spanish "{7A37A44B-968E-6CA3-278C-878D4D08B226}" = CCC Help Czech "{7C0FB04E-5A40-C63D-CC1B-B6C1B60FDDA3}" = CCC Help Japanese "{7D94796D-007E-45DE-CEAD-8E616D78E95B}" = CCC Help Dutch "{7E7C98D1-4F44-21D4-C351-25E2367027F3}" = Catalyst Control Center "{87A91A66-1566-714D-E1BE-1F3B040E65D5}" = CCC Help Swedish "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8AF3E926-ED59-11D4-A44B-0000E86D2305}" = Ulead GIF Animator 5 "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In "{92F63D17-2A32-7184-B8D7-905E0E1BC2A9}" = CCC Help Hungarian "{95CEF602-B837-0C37-F5E6-49C8F3196998}" = CCC Help Greek "{97E1A4DE-82AB-0448-0AEA-77DC1DD9A492}" = Catalyst Control Center Localization All "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9DFD861E-2692-873F-BA2C-E4788648D966}" = CCC Help Italian "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.5) "{B50676DC-AAE9-20DF-01A5-DABCDECD6DFC}" = Catalyst Control Center Graphics Previews Common "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Wymarzone Podróże "{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3 "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D6346B4B-FDD6-C406-06FE-0CF77F561E78}" = AMD Catalyst Install Manager "{D9C7FB0D-B233-1B2E-E9DC-543911F6D94A}" = Catalyst Control Center InstallProxy "{DD9F821E-7B8D-210F-A4AE-47C60870DEBE}" = CCC Help Norwegian "{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding "{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime "{E6F42010-AA5A-B862-9620-8CBD23ACDED4}" = CCC Help Portuguese "{E99EDC34-96B1-4297-B20B-BFB179D6523B}" = Alcor Micro USB Card Reader "{EAAE7669-947C-26DD-563D-863B63FFC1EA}" = CCC Help Finnish "{EBC8C5A1-7745-419F-B6C6-B0DD87F24D52}" = LogMeIn Hamachi "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F296A4CD-54A2-1EEE-CE14-8F88A1D97083}" = CCC Help Korean "{FDC53DC6-137A-4541-BFA2-A9BAE4A7FE99}" = ULi Chipset Driver "Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "AmUStor" = Alcor Micro USB Card Reader "BitTorrent" = BitTorrent "ENTERPRISE" = Microsoft Office Enterprise 2007 "KLiteCodecPack_is1" = K-Lite Codec Pack 8.9.5 (Full) "LogMeIn Hamachi" = LogMeIn Hamachi "Marvell Miniport Driver" = Marvell Miniport Driver "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "NeroMultiInstaller!UninstallKey" = Nero Suite "Picasa 3" = Picasa 3 "Steam App 10" = Counter-Strike "ULi M5287 SATA Controller Driver" = ULi M5287 SATA Controller Driver "Usb Dual Vibration wheel" = Usb Dual Vibration wheel "WinRAR archiver" = WinRAR 4.20 (32-bitowy) [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - CLR: Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023 Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error (7A0BCA72) (80131506) Error - 2013-01-10 08:07:39 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime Optimization Service | ID = 1103 Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32) - Tried to start a service that wasn't the latest version of CLR Optimization service. Will shutdown Error - 2013-01-11 09:03:28 | Computer Name = USER-0CB12B2C32 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca everest.exe, wersja 5.50.2100.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ System Events ] Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001 Description = Usługa Klient DNS zależy od usługi Sterownik protokołu TCP/IP, której nie można uruchomić z powodu następującego błędu: %%31 Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001 Description = Usługa Pomoc TCP/IP NetBIOS zależy od usługi AFD, której nie można uruchomić z powodu następującego błędu: %%31 Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001 Description = Usługa Usługi IPSEC zależy od usługi Sterownik IPSEC, której nie można uruchomić z powodu następującego błędu: %%31 Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFD eamon ehdrv epfwtdir Fips intelppm IPSec MRxSmb NetBIOS NetBT RasAcd Rdbss Tcpip Error - 2013-01-11 08:29:36 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009 Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Skype Updater. Error - 2013-01-11 11:48:39 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009 Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Skype Updater. Error - 2013-01-11 11:48:40 | Computer Name = USER-0CB12B2C32 | Source = sr | ID = 1 Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC000011E' podczas przetwarzania pliku 'h2-ui-nets.ini' w woluminie 'HarddiskVolume1'. W rezultacie zostało zatrzymane monitorowanie woluminu. Error - 2013-01-11 11:55:42 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009 Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Skype Updater. Error - 2013-01-11 19:09:07 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7034 Description = Usługa LogMeIn Hamachi Tunneling Engine niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-01-12 05:21:50 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009 Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się z usługą Skype Updater. < End of report >[/log] ~Refresh
Natsuki Kuga komentarz 14 stycznia 2013 komentarz 14 stycznia 2013 1. Do OTL wklej: [spoiler] :OTL IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0000016ec2690fc IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}: "URL" = http://websearch.ask...apn_dtid=OSJ000 O3 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. :Files C:\Program Files\BabylonToolbar C:\Documents and Settings\All Users\Dane aplikacji\Babylon C:\Documents and Settings\All Users\Dane aplikacji\Ask C:\Documents and Settings\User\Dane aplikacji\Babylon [/spoiler]Wykonaj skrypt, pokaż raport.2. Użyj AdwCleaner z opcji Delete. Pokaż raport.3. Do SystemLook wklej: [spoiler] :dir C:\Documents and Settings\User\Dane aplikacji\Aura4You C:\Documents and Settings\User\Dane aplikacji\Avnex [/spoiler]Look, pokaż raport. 1
Zolowski komentarz 14 stycznia 2013 Autor komentarz 14 stycznia 2013 1.[log]========== OTL ========== Registry key HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found. Registry key HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ED49028-1884-4965-B405-DF40F494109E}\ not found. Registry value HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found. ========== FILES ========== C:\Program Files\BabylonToolbar\BabylonToolbar folder moved successfully. C:\Program Files\BabylonToolbar folder moved successfully. C:\Documents and Settings\All Users\Dane aplikacji\Babylon folder moved successfully. C:\Documents and Settings\All Users\Dane aplikacji\Ask\APN-Stub folder moved successfully. C:\Documents and Settings\All Users\Dane aplikacji\Ask folder moved successfully. C:\Documents and Settings\User\Dane aplikacji\Babylon folder moved successfully. OTL by OldTimer - Version 3.2.69.0 log created on 01142013_171701[/log] 2. Tu mialem 2 pliki 1.[log]# AdwCleaner v2.105 - Log utworzony 14/01/2013 o 17:18:09 # Aktualizacja 08/01/2013 przez Xplode # System operacyjny : Microsoft Windows XP Dodatek Service Pack 3 (32 bits) # Użytkownik : User - USER-0CB12B2C32 # Tryb uruchomienia : Normalny # Ścieżka : C:\Documents and Settings\User\Moje dokumenty\Downloads\adwcleaner.exe # Opcja [Szukaj] ***** [Usługi] ***** ***** [Pliki / Foldery] ***** Folder Znaleziono : C:\DOCUME~1\User\USTAWI~1\Temp\AskSearch Folder Znaleziono : C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess Plik Znaleziono : C:\DOCUME~1\User\USTAWI~1\Temp\Uninstall.exe Plik Znaleziono : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Rejestr] ***** Klucz Znaleziono : HKCU\Software\BabylonToolbar Klucz Znaleziono : HKCU\Software\DataMngr Klucz Znaleziono : HKCU\Software\DataMngr_Toolbar Klucz Znaleziono : HKCU\Software\ee888cb76feb15 Klucz Znaleziono : HKCU\Software\InstallCore Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Klucz Znaleziono : HKCU\Software\Optimizer Pro Klucz Znaleziono : HKLM\Software\Babylon Klucz Znaleziono : HKLM\Software\BabylonToolbar Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Klucz Znaleziono : HKLM\SOFTWARE\Classes\Prod.cap Klucz Znaleziono : HKLM\Software\DataMngr Klucz Znaleziono : HKLM\SOFTWARE\ee888cb76feb15 Klucz Znaleziono : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} ***** [Przeglądarki Internetowe] ***** -\\ Internet Explorer v8.0.6001.18702 [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=NT_ss&mntrId=e8fe3c7d0000000000000016ec2690fc ************************* AdwCleaner[R1].txt - [2366 octets] - [14/01/2013 17:18:09] ########## EOF - C:\AdwCleaner[R1].txt - [2426 octets] ##########[/log] I [log]# AdwCleaner v2.105 - Log utworzony 14/01/2013 o 17:18:31 # Aktualizacja 08/01/2013 przez Xplode # System operacyjny : Microsoft Windows XP Dodatek Service Pack 3 (32 bits) # Użytkownik : User - USER-0CB12B2C32 # Tryb uruchomienia : Normalny # Ścieżka : C:\Documents and Settings\User\Moje dokumenty\Downloads\adwcleaner.exe # Opcja [Usuń] ***** [Usługi] ***** ***** [Pliki / Foldery] ***** Folder Usunięto : C:\DOCUME~1\User\USTAWI~1\Temp\AskSearch Folder Usunięto : C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess Plik Usunięto : C:\DOCUME~1\User\USTAWI~1\Temp\Uninstall.exe Plik Usunięto : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml ***** [Rejestr] ***** Klucz Usunięto : HKCU\Software\BabylonToolbar Klucz Usunięto : HKCU\Software\DataMngr Klucz Usunięto : HKCU\Software\DataMngr_Toolbar Klucz Usunięto : HKCU\Software\ee888cb76feb15 Klucz Usunięto : HKCU\Software\InstallCore Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC} Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440} Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440} Klucz Usunięto : HKCU\Software\Optimizer Pro Klucz Usunięto : HKLM\Software\Babylon Klucz Usunięto : HKLM\Software\BabylonToolbar Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB} Klucz Usunięto : HKLM\SOFTWARE\Classes\Prod.cap Klucz Usunięto : HKLM\Software\DataMngr Klucz Usunięto : HKLM\SOFTWARE\ee888cb76feb15 Klucz Usunięto : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693} ***** [Przeglądarki Internetowe] ***** -\\ Internet Explorer v8.0.6001.18702 Podmieniono : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc --> hxxp://www.google.com Podmieniono : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=NT_ss&mntrId=e8fe3c7d0000000000000016ec2690fc --> hxxp://www.google.com ************************* AdwCleaner[R1].txt - [2495 octets] - [14/01/2013 17:18:09] AdwCleaner[S1].txt - [2462 octets] - [14/01/2013 17:18:31] ########## EOF - C:\AdwCleaner[S1].txt - [2522 octets] ##########[/log] 3.[log]SystemLook 30.07.11 by jpshortstuff Log created at 17:24 on 14/01/2013 by User Administrator - Elevation successful ========== dir ========== C:\Documents and Settings\User\Dane aplikacji\Aura4You - Parameters: "(none)" ---Files--- None found. ---Folders--- Aura DVD Ripper Professional d------ [19:30 24/11/2012] C:\Documents and Settings\User\Dane aplikacji\Avnex - Parameters: "(none)" ---Files--- None found. ---Folders--- VCS7 d------ [18:56 27/10/2012] -= EOF =-[/log]
Natsuki Kuga komentarz 15 stycznia 2013 komentarz 15 stycznia 2013 1. Uruchom OTL i kliknij Sprzątanie, w AdwCleaner kliknij Uninstall.2. Wyczyść foldery przywracania systemu: KLIK3. Użyj TFC by wyczyścić lokalizacje tymczasowe.4. Wykonaj pełne skanowanie Malwarebyte's AntiMalware. (jeśli coś wykryje, pokaż raport)
Zolowski komentarz 15 stycznia 2013 Autor komentarz 15 stycznia 2013 1.Zrobione 2.Zrobione 3.Zrobione 4.Zrobione [log]Malwarebytes Anti-Malware (Okres testowy) 1.70.0.1100 www.malwarebytes.org Wersja bazy: v2013.01.15.09 Windows XP Service Pack 3 x86 NTFS Internet Explorer 8.0.6001.18702 User :: USER-0CB12B2C32 [administrator] Ochrona: Włączona 2013-01-15 14:05:03 mbam-log-2013-01-15 (14-05-03).txt Typ skanowania: Pełne skanowanie (C:\|D:\|) Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM Odznaczone opcje skanowania: P2P Przeskanowano obiektów: 267996 Upłynęło: 1 godzin(y), 5 minut(y), 4 sekund(y) Wykrytych procesów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych modułów w pamięci: 0 (Nie znaleziono zagrożeń) Wykrytych kluczy rejestru: 0 (Nie znaleziono zagrożeń) Wykrytych wartości rejestru: 0 (Nie znaleziono zagrożeń) Wykryte wpisy rejestru systemowego: 0 (Nie znaleziono zagrożeń) wykrytych folderów: 0 (Nie znaleziono zagrożeń) Wykrytych plików: 0 (Nie znaleziono zagrożeń) (zakończone) [/log] Tylko to miałem Teraz usunac tego Malwarebyte's AntiMalware. Chce dodac ze dalej mam lagi
Natsuki Kuga komentarz 15 stycznia 2013 komentarz 15 stycznia 2013 Tak, możesz usunąć. Pokaż jeszcze dzienniki zdarzeń: [b]Logo Windows + R[/b] -> eventvwr.msc -> Zapisz każdą z gałęzi jako plik z rozszerzeniem [b].evt[/b], klikając na niej PPM -> Zapisz plik dziennika jako.
Zolowski komentarz 16 stycznia 2013 Autor komentarz 16 stycznia 2013 Ok usunełem. nastepnie otworzylem start->uruchom wpisałem eventvwr.msc otowrzyl mi sie ten plik i kazdy zapisałem na pulpit z rozszerzeniem .evt i wrzucic ci je? tylko ze nei mam uprawnien
Natsuki Kuga komentarz 16 stycznia 2013 komentarz 16 stycznia 2013 i wrzucic ci je? Tak, możesz spakować je w archiwum i wrzucić na jakiś serwer, np. mediafire.
Zolowski komentarz 18 stycznia 2013 Autor komentarz 18 stycznia 2013 [code]http://speedy.sh/6QVKN/asdas.rar[/code] prosze Chce dodac ze ustaawiłem na uruchamianie selekcjyne ustawiłem naj progarmy do startu i kolega droadzil Gboost no 30-40 fps w minecraft
Natsuki Kuga komentarz 18 stycznia 2013 komentarz 18 stycznia 2013 Chcę dodać że ustawiłem na uruchamianie selekcyjne, ustawiłem naj programy do startu i kolega doradził Gboost no 30-40 fps w minecraft Czy mam rozumieć, że przez to sytuacja w jakimś stopniu się poprawiła? W dzienniku zdarzeń nie widzę niczego specjalnego, jedynie sterownik dysku twardego zgłasza błąd kontrolera. Pokaż screeny z programu HDTune (wszystkie zakładki).
Zolowski komentarz 20 stycznia 2013 Autor komentarz 20 stycznia 2013 Znaczy no napewno sie poprawila ale na grach dalej spadaj fps ponizej 10 pozniej dodam ci ss-y z HDTune Robie foramt to powinno pomoc napewno
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.