x-kom hosting

Zacinanie systemu przy włączeniu kilku programów

Zolowski
utworzono
utworzono (edytowane)

Witam.

Otóż mam taki problem z komputerem że zacina się przy uruchomieniu np Minecrafta i przeglądarki,  użycie procesora wtedy jest 100%. Komputer skanowałem kilka razy, na początku miałem aż 16 wirusów, ale teraz skanowałem i jest czysty. Nie wiem jaki może być tego powód, dlatego proszę was o pomoc!

Youki
komentarz
komentarz

Podaj konfiguracje Twojego PC wraz z marka i moca zasilacza 

Zolowski
komentarz
komentarz

Moc zasilacza to feel-350w

 

zaraz podam konfiguracje

Youki
komentarz
komentarz

[quote name='Zolowski' timestamp='1357908883' post='1670857'] feel-350w [/quote]

Do wymiany bezwlocznie na cos markowego nim spali Ci calego PC , mozliwe, ze jest rowniez zrodlem Twoich problemow

Zolowski
komentarz
komentarz (edytowane)

a bys podał na co moge wymienic?

 

 

http://speedy.sh/SAByj/Report.txt

dalem samego sprzętu a marki nie znam

Youki
komentarz
komentarz

Jaki budzet ? 

Zolowski
komentarz
komentarz (edytowane)

200 zł i jaka pewnosc ze to pomoze

Youki
komentarz
komentarz

Proponuje deusa g1 500 W  . Pewnosci nie ma, mozesz wziac od kogos jakis markowy zasilacz i sprawdzic czy problem ustapil , jednak wymiana i tak jest wskazana nim ten wyrob zasilaczopodobny spali Ci calego PC

Zolowski
komentarz
komentarz (edytowane)

no dobra.Wymienie. a teraz cos da sie zrobic? no i tylko zasilacz ? reszta moga zostac jak karta procek itp



Chce dodac ze wziełem od kolegi i to tez nic nie dalo teraz to jak mam samego minecrafta odpalonego to myszka sie przesuwa co 5 sec tak laguje

Natsuki Kuga
komentarz
komentarz
 miałem aż 16 wirusów

Co wykrył antywirus? Podaj dokładne ścieżki znalezionych plików.

 

Zapoznaj się z przyklejonymi z działu Bezpieczeństwo i pokaż odpowiednie logi.

  • Dobra wypowiedź 1
Zolowski
komentarz
komentarz (edytowane)

wczoraj wieczorem znow robiłem skana 20 wirusow zaraz dam jakie ale dlaczego nie wykryło tego za 1 razem po skanie zrobilem next nic nie wykrylo

 

 

Tu masz ze wczoraj 

 


Skanowane dyski, foldery i pliki: Pamięć operacyjna;C:\Sektor startowy;D:\Sektor startowy;C:\;D:\

 

C:\pagefile.sys - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000c9e - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000c9f - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Cache\f_000dd0 - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleUpdateHelper.msi » MSI » required.cab » CAB - błąd podczas odczytu archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\1\2386e8c1-4cfcb9ca » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\29\3d73941d-30cc73d0 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » m.class - Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » G.class - Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » ors.class - Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » K.class - Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » axe.class - Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\57\a1ff539-71a054fc » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP »  - uszkodzone archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP »  - uszkodzone archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » jusched - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task.xml - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task64.xml - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\teamspeak_temp_0\ts3client_win32.exe._z_ » GZIP » ts3client_win32.exe._z_ - uszkodzone archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Temp\teamspeak_temp_0\plugins\ts3overlay\ts3overlay_hook_win32.dll._z_ » GZIP » ts3overlay_hook_win32.dll._z_ - uszkodzone archiwum
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » PROCESS_LIBRARY.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION_CUSTOMIZED.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » TRACK_ISSUES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\WINDOWS\SoftwareDistribution\Download\a2bb23ef58da3e023917dba01785cbe0\mainwwsp3.cab » CAB » mainwwsp3.msp - nie można zakończyć dekompresji (możliwe powody: zbyt mała ilość wolnej pamięci lub miejsca na dysku albo problem z folderami tymczasowymi)
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\1\2386e8c1-4cfcb9ca » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\29\3d73941d-30cc73d0 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\32\b454ca0-6f101630 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\4\c007a44-62926bc4 » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » m.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » G.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » ors.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » K.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\40\3cf1b0a8-6977c990 » ZIP » axe.class - Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » K.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » pet.class - Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\44\58f565ec-11979f4d » ZIP » gee.class - odmiana zagrożenia Java/Exploit.Agent.NEH koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\57\a1ff539-71a054fc » ZIP » axe.class - odmiana zagrożenia Java/Exploit.CVE-2012-1723.FO koń trojański - był częścią usuniętego obiektu
Liczba przeskanowanych obiektów: 190217
Liczba znalezionych zagrożeń: 20
Liczba wyleczonych obiektów: 20
Godzina zakończenia: 22:13:40  Całkowity czas skanowania: 7629 s (02:07:09)

 

 
 
 
a tutaj  z 10 sytncznia
 

Skanowane dyski, foldery i pliki: Pamięć operacyjna;C:\Sektor startowy;D:\Sektor startowy;C:\;D:\

 

C:\pagefile.sys - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\GoogleUpdateHelper.msi » MSI » required.cab » CAB - błąd podczas odczytu archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\27\20406f9b-66ce977d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3627fa03-1eda8df4 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3de64243-27af4e2f » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\43\642ce6eb-500cc28a » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\46\7253ac6e-1f0c3ac2 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\25edc575-12d909f8 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\c6cca75-6eac02c5 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\63\51f01eff-7f924b29 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański
C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b80ae5cab.exe - odmiana zagrożenia Win32/Injector.ZYD koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1]
C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b8f4f9a0a.exe - odmiana zagrożenia Win32/Injector.AACE koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1]
C:\Documents and Settings\User\Ustawienia lokalne\Temp\013b8fb20049.exe - odmiana zagrożenia Win32/Injector.AAEF koń trojański - wyleczony przez usunięcie - poddany kwarantannie [1]
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache3049365814868229619.tmp » ZIP »  - uszkodzone archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP » notowania.res - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jar_cache4916075098947271597.tmp » ZIP »  - uszkodzone archiwum
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » jusched - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task.xml - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\jre-7u9-windows-i586-iftw.exe » CAB » task64.xml - uszkodzone archiwum — nie można rozpakować pliku.
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotector.xpi » ZIP » content/bprotector.js - Win32/bProtector.C potencjalnie niepożądana aplikacja
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » spext.crx » CHROMEEXTENSION » content.zip » ZIP » spext.dll - Win32/bProtector.D potencjalnie niepożądana aplikacja
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotect.exe - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » kerberos_bho.dll - Win32/bProtector.B potencjalnie niepożądana aplikacja
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » protector.dll - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » PROCESS_LIBRARY.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION_CUSTOMIZED.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » HIRING_REQUISITION.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » TRACK_ISSUES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\MSOCache\All Users\{90120000-0030-0000-0000-0000000FF1CE}-C\EnterWW.cab » CAB » POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition - Customized.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Hiring Requisition.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\POLICIES.FDT » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Process Library.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\Program Files\Microsoft Office\Office12\Groove\ToolData\groove.net\GrooveForms\FormsTemplates\Track Issues.fdt » MIME - nie zawiera zagrożeń (skanowanie wewnątrz nie zostało wykonane)
C:\WINDOWS\SoftwareDistribution\Download\a2bb23ef58da3e023917dba01785cbe0\mainwwsp3.cab » CAB » mainwwsp3.msp - nie można zakończyć dekompresji (możliwe powody: zbyt mała ilość wolnej pamięci lub miejsca na dysku albo problem z folderami tymczasowymi)
C:\WINDOWS\system32\wstpager.ax - błąd podczas otwierania  [4]
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\27\20406f9b-66ce977d » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3627fa03-1eda8df4 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\3\3de64243-27af4e2f » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\43\642ce6eb-500cc28a » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\46\7253ac6e-1f0c3ac2 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\25edc575-12d909f8 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\53\c6cca75-6eac02c5 » ZIP » zin.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Sun\Java\Deployment\cache\6.0\63\51f01eff-7f924b29 » ZIP » axe.class - odmiana zagrożenia Java/Exploit.Agent.NEA koń trojański - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotector.xpi » ZIP » content/bprotector.js - Win32/bProtector.C potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » spext.crx » CHROMEEXTENSION » content.zip » ZIP » spext.dll - Win32/bProtector.D potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » bprotect.exe - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » kerberos_bho.dll - Win32/bProtector.B potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu
C:\Documents and Settings\User\Ustawienia lokalne\Temp\282E8AB1-BAB0-7891-8982-FD2ECA78BC15\Latest\BrowserManagerSetup.exe » NSIS » pack_2.3.796.11.7z » 7ZIP » protector.dll - odmiana zagrożenia Win32/bProtector.A potencjalnie niepożądana aplikacja - był częścią usuniętego obiektu
Liczba przeskanowanych obiektów: 193534
Liczba znalezionych zagrożeń: 16
Liczba wyleczonych obiektów: 16
Godzina zakończenia: 15:37:18  Całkowity czas skanowania: 5364 s (01:29:24)
 

 

Zaraz dam logi z OTL



A o to logi

OTL

 

[log]OTL logfile created on: 2013-01-12 11:51:24 - Run 1

OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,50% Memory free
3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,73% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 51,39 Gb Total Space | 25,51 Gb Free Space | 49,63% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 74,45 Gb Free Space | 76,24% Space Free | Partition Type: NTFS
 
Computer Name: USER-0CB12B2C32 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days
 
[color=#E56717]========== Processes (All) ==========[/color]
 
PRC - [2013-01-12 11:41:50 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\User\Pulpit\OTL.exe
PRC - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
PRC - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2012-12-05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe
PRC - [2012-07-04 05:10:40 | 000,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
PRC - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2012-06-28 19:37:00 | 000,277,120 | ---- | M] (Alcor Micro Corp.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
PRC - [2012-06-06 14:00:32 | 020,065,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
PRC - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
PRC - [2012-03-07 14:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
PRC - [2010-09-15 10:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
PRC - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) -- C:\WINDOWS\system32\LGScsiCommandService.exe
PRC - [2009-09-10 14:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
PRC - [2009-09-10 14:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2009-09-10 14:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2009-09-10 14:45:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [WUDFSERVICEGROUP]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [RPCSS]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [NETWORKSERVICE]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [NETSVCS]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [LOCALSERVICE]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [LOCALSERVICE]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [IMGSVC]
PRC - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe  [DCOMLAUNCH]
PRC - [2009-09-10 14:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2009-09-10 14:45:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2009-04-22 16:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
PRC - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2006-10-26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
PRC - [2006-01-13 13:36:42 | 000,409,600 | ---- | M] () -- C:\Program Files\ULi5287\ULi5287.exe
 
 
[color=#E56717]========== Modules (All) ==========[/color]
 
MOD - [2013-01-10 15:02:44 | 011,817,472 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\33ff7d73f01be8329a95c6e03f1dd555\System.Web.ni.dll
MOD - [2013-01-10 13:17:33 | 000,971,264 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\96b7a0136e9e72e8f4eb0230c20766d2\System.Configuration.ni.dll
MOD - [2013-01-10 13:16:28 | 000,025,600 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\cbee94ec6a0fe649e3b4643cea6e1259\Accessibility.ni.dll
MOD - [2013-01-10 13:10:55 | 005,450,752 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\fe025743210c22bea2f009e1612c38bf\System.Xml.ni.dll
MOD - [2013-01-10 13:10:43 | 012,433,920 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\4c91371e83d124ecb39664613e7e0417\System.Windows.Forms.ni.dll
MOD - [2013-01-10 13:10:23 | 001,593,856 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\7782f356a838c403b4a8e9c80df5a577\System.Drawing.ni.dll
MOD - [2013-01-10 13:08:29 | 007,977,984 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\aeac298c43c77d8860db8e7634d9f2eb\System.ni.dll
MOD - [2013-01-10 13:08:19 | 011,492,352 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\eab2340ead8e1a84bdf1a87868659979\mscorlib.ni.dll
MOD - [2013-01-10 08:13:43 | 000,303,104 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll
MOD - [2012-12-18 15:28:20 | 000,397,016 | ---- | M] (Adobe Systems, Inc.) -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.dll
MOD - [2012-12-13 21:34:56 | 000,770,384 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Java\jre7\bin\msvcr100.dll
MOD - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) -- C:\Program Files\Java\jre7\bin\jqs.exe
MOD - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe
MOD - [2012-12-05 02:15:17 | 001,242,728 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
MOD - [2012-12-05 02:15:15 | 012,456,040 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
MOD - [2012-12-05 02:15:15 | 000,460,904 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\ppgooglenaclpluginchrome.dll
MOD - [2012-12-05 02:15:14 | 004,008,040 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\pdf.dll
MOD - [2012-12-05 02:14:29 | 000,587,880 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\libglesv2.dll
MOD - [2012-12-05 02:14:28 | 000,124,520 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\libegl.dll
MOD - [2012-12-05 02:14:27 | 009,963,112 | ---- | M] (The ICU Project) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\icudt.dll
MOD - [2012-12-05 02:14:23 | 041,743,976 | ---- | M] (Google Inc.) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\chrome.dll
MOD - [2012-12-05 02:14:21 | 000,157,304 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avutil-51.dll
MOD - [2012-12-05 02:14:20 | 000,275,576 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avformat-54.dll
MOD - [2012-12-05 02:14:19 | 002,168,952 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\avcodec-54.dll
MOD - [2012-12-05 01:17:30 | 002,106,216 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\d3dcompiler_43.dll
MOD - [2012-12-05 01:17:30 | 001,998,168 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\d3dx9_43.dll
MOD - [2012-11-01 13:12:01 | 011,113,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ieframe.dll
MOD - [2012-11-01 13:12:01 | 002,001,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iertutil.dll
MOD - [2012-11-01 13:12:01 | 001,214,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\urlmon.dll
MOD - [2012-11-01 13:12:01 | 000,920,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wininet.dll
MOD - [2012-10-03 06:44:30 | 000,364,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorjit.dll
MOD - [2012-10-03 05:57:25 | 001,020,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe
MOD - [2012-08-31 05:40:10 | 005,915,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorwks.dll
MOD - [2012-08-24 14:53:50 | 000,177,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wintrust.dll
MOD - [2012-08-14 16:08:26 | 003,018,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\OLMAPI32.DLL
MOD - [2012-07-06 14:58:19 | 000,339,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netapi32.dll
MOD - [2012-07-06 14:58:19 | 000,078,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browser.dll
MOD - [2012-07-04 05:12:46 | 000,212,992 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\system32\atipdlxx.dll
MOD - [2012-07-04 05:12:16 | 000,043,520 | ---- | M] (ATI Technologies, Inc.) -- C:\WINDOWS\system32\ati2edxx.dll
MOD - [2012-07-04 05:12:04 | 000,192,512 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.dll
MOD - [2012-07-04 05:10:40 | 000,643,072 | ---- | M] (ATI Technologies Inc.) -- C:\WINDOWS\system32\ati2evxx.exe
MOD - [2012-07-04 04:56:20 | 000,233,472 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\WINDOWS\system32\atiadlxx.dll
MOD - [2012-07-03 22:55:46 | 000,184,320 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Dashboard.dll
MOD - [2012-07-03 22:55:46 | 000,013,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Runtime.dll
MOD - [2012-07-03 22:55:42 | 000,013,312 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Runtime.dll
MOD - [2012-07-03 22:55:30 | 000,704,512 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Implementation.dll
MOD - [2012-07-03 22:55:30 | 000,270,336 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CrossDisplay.Graphics.Dashboard.dll
MOD - [2012-07-03 22:55:06 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Wizard.dll
MOD - [2012-07-03 22:55:00 | 000,011,776 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Runtime.dll
MOD - [2012-07-03 22:55:00 | 000,008,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Shared.dll
MOD - [2012-07-03 22:55:00 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.HydraVision.Dashboard.dll
MOD - [2012-07-03 22:54:58 | 000,675,840 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Dashboard.dll
MOD - [2012-07-03 22:54:56 | 000,081,920 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Runtime.dll
MOD - [2012-07-03 22:54:56 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.OverDrive5.Graphics.Shared.dll
MOD - [2012-07-03 22:54:46 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Source.Kit.Server.dll
MOD - [2012-07-03 22:54:46 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.REG.Shared.dll
MOD - [2012-07-03 22:54:34 | 000,069,632 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Dashboard.dll
MOD - [2012-07-03 22:54:34 | 000,009,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Welcome.Graphics.Shared.dll
MOD - [2012-07-03 22:54:32 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.TransCode.Graphics.Shared.dll
MOD - [2012-07-03 22:54:30 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.DPPE.Shared.dll
MOD - [2012-07-03 22:54:20 | 000,106,496 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Implementation.dll
MOD - [2012-07-03 22:54:20 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.Implementation.dll
MOD - [2012-07-03 22:54:20 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.XManifest.dll
MOD - [2012-07-03 22:54:16 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.dll
MOD - [2012-07-03 22:54:08 | 000,589,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Systemtray.dll
MOD - [2012-07-03 22:53:48 | 000,077,824 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Runtime.dll
MOD - [2012-07-03 22:53:46 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceTV.Graphics.Shared.dll
MOD - [2012-07-03 22:53:34 | 000,409,600 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Wizard.dll
MOD - [2012-07-03 22:53:16 | 000,094,208 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Wizard.dll
MOD - [2012-07-03 22:53:14 | 000,393,216 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll
MOD - [2012-07-03 22:53:12 | 000,073,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Runtime.dll
MOD - [2012-07-03 22:53:12 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.Radeon3D.Graphics.Shared.dll
MOD - [2012-07-03 22:53:02 | 000,069,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Runtime.dll
MOD - [2012-07-03 22:53:00 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCV.Graphics.Shared.dll
MOD - [2012-07-03 22:52:58 | 000,036,864 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:56 | 000,098,304 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll
MOD - [2012-07-03 22:52:54 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:54 | 000,024,576 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll
MOD - [2012-07-03 22:52:52 | 000,880,640 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Dashboard.dll
MOD - [2012-07-03 22:52:50 | 000,102,400 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:48 | 000,397,312 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll
MOD - [2012-07-03 22:52:48 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Shared.dll
MOD - [2012-07-03 22:52:48 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:46 | 000,065,536 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:46 | 000,053,248 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll
MOD - [2012-07-03 22:52:38 | 000,376,832 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll
MOD - [2012-07-03 22:52:28 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.MMVideo.Graphics.Shared.dll
MOD - [2012-07-03 22:52:04 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll
MOD - [2012-07-03 22:51:56 | 000,557,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll
MOD - [2012-07-03 22:51:56 | 000,196,608 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll
MOD - [2012-07-03 22:51:54 | 000,204,800 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.InfoCentre.Graphics.Wizard.dll
MOD - [2012-07-03 22:51:54 | 000,061,440 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Dashboard.dll
MOD - [2012-07-03 22:51:52 | 001,736,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll
MOD - [2012-07-03 22:51:52 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Runtime.dll
MOD - [2012-07-03 22:51:52 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.VPURecover.Graphics.Shared.dll
MOD - [2012-07-03 22:51:52 | 000,008,704 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.Shared.Private.dll
MOD - [2012-07-03 22:51:50 | 000,053,248 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceDFP.Graphics.Shared.dll
MOD - [2012-07-03 22:51:48 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.CustomFormats.Graphics.Shared.dll
MOD - [2012-07-03 22:51:42 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.dll
MOD - [2012-07-03 22:51:40 | 000,376,832 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.dll
MOD - [2012-07-03 22:51:40 | 000,016,384 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Wizard.Shared.dll
MOD - [2012-07-03 22:51:40 | 000,011,776 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.Private.dll
MOD - [2012-07-03 22:51:32 | 000,409,600 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll
MOD - [2012-07-03 22:51:28 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceProperty.Graphics.Shared.dll
MOD - [2012-07-03 22:51:28 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DeviceLCD.Graphics.Shared.dll
MOD - [2012-07-03 22:51:28 | 000,028,672 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll
MOD - [2012-07-03 22:51:28 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll
MOD - [2012-07-03 22:51:26 | 000,073,728 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.dll
MOD - [2012-07-03 22:51:26 | 000,016,384 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Dashboard.Shared.dll
MOD - [2012-07-03 22:51:18 | 001,245,184 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.dll
MOD - [2012-07-03 22:51:16 | 000,010,240 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.Private.dll
MOD - [2012-07-03 22:51:14 | 000,040,960 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.Private.dll
MOD - [2012-07-03 22:51:08 | 000,389,120 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Runtime.dll
MOD - [2012-07-03 22:51:06 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll
MOD - [2012-07-03 22:51:06 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.GD.Shared.dll
MOD - [2012-07-03 22:51:04 | 000,057,344 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.SkinFactory.dll
MOD - [2012-07-03 22:51:04 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.dll
MOD - [2012-07-03 22:51:02 | 000,061,440 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.dll
MOD - [2012-07-03 22:51:02 | 000,061,440 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Server.dll
MOD - [2012-07-03 22:51:02 | 000,007,168 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ResourceManagement.Foundation.Private.dll
MOD - [2012-07-03 22:51:00 | 000,045,056 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.dll
MOD - [2012-07-03 22:51:00 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATICCCom.dll
MOD - [2012-07-03 22:50:58 | 000,007,168 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Extension.EEU.dll
MOD - [2012-07-03 22:50:58 | 000,006,144 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Server.Shared.dll
MOD - [2012-07-03 22:50:58 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.EEU.Shared.dll
MOD - [2012-07-03 22:50:56 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.Private.dll
MOD - [2012-07-03 22:50:56 | 000,040,960 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.Private.dll
MOD - [2012-07-03 22:50:56 | 000,008,192 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Actions.CCAA.Shared.dll
MOD - [2012-07-03 22:50:56 | 000,006,656 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.WinMessages.Shared.dll
MOD - [2012-07-03 22:50:54 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Implementation.Private.dll
MOD - [2012-07-03 22:50:54 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.Foundation.dll
MOD - [2012-07-03 22:50:54 | 000,005,632 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Runtime.Shared.dll
MOD - [2012-07-03 22:50:52 | 000,155,648 | ---- | M] (Advanced Mirco Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Caste.Graphics.Shared.dll
MOD - [2012-07-03 22:50:52 | 000,036,864 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.Private.dll
MOD - [2012-07-03 22:50:52 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Wizard.Shared.dll
MOD - [2012-07-03 22:50:50 | 000,024,576 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Dashboard.Shared.dll
MOD - [2012-07-03 22:50:50 | 000,020,480 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\APM.Foundation.dll
MOD - [2012-07-03 22:50:50 | 000,007,680 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Component.Client.Shared.dll
MOD - [2012-07-03 22:50:50 | 000,007,168 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AEM.Plugin.Hotkeys.Shared.dll
MOD - [2012-07-03 22:50:48 | 000,098,304 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLI.Foundation.dll
MOD - [2012-07-03 22:50:48 | 000,015,360 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\NEWAEM.Foundation.dll
MOD - [2012-07-03 22:50:46 | 000,032,768 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\LOG.Foundation.dll
MOD - [2012-07-03 22:50:32 | 000,708,608 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiacmxx.dll
MOD - [2012-07-03 22:49:38 | 000,004,096 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atiamplk.dll
MOD - [2012-07-03 09:04:54 | 000,252,848 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
MOD - [2012-06-28 19:37:00 | 000,277,120 | ---- | M] (Alcor Micro Corp.) -- C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe
MOD - [2012-06-11 23:33:20 | 017,323,640 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSO.DLL
MOD - [2012-06-09 18:20:02 | 000,168,448 | ---- | M] (Alexander Roshal) -- D:\Program Files\WinRAR\RarExt.dll
MOD - [2012-06-08 15:24:25 | 008,492,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2012-06-06 14:00:32 | 020,065,936 | ---- | M] (Realtek Semiconductor Corp.) -- C:\WINDOWS\RTHDCPL.EXE
MOD - [2012-06-05 16:48:33 | 001,172,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msxml3.dll
MOD - [2012-06-04 05:31:52 | 000,153,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schannel.dll
MOD - [2012-06-02 14:19:18 | 001,933,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuaueng.dll
MOD - [2012-06-01 17:50:20 | 000,604,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\crypt32.dll
MOD - [2012-05-14 10:21:44 | 000,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\localspl.dll
MOD - [2012-05-04 15:42:44 | 000,098,304 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll
MOD - [2012-03-28 13:56:52 | 000,270,424 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnAmon.dll
MOD - [2012-03-07 14:41:34 | 000,426,984 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiUpdate.dll
MOD - [2012-03-07 14:41:34 | 000,315,744 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnUpdate.dll
MOD - [2012-03-07 14:41:34 | 000,274,544 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\updater.dll
MOD - [2012-03-07 14:41:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnMailPlugins.dll
MOD - [2012-03-07 14:41:20 | 000,093,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiMailPlugins.dll
MOD - [2012-03-07 14:41:12 | 000,142,704 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnHips.dll
MOD - [2012-03-07 14:41:10 | 000,188,024 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiHips.dll
MOD - [2012-03-07 14:41:00 | 000,394,024 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiScan.dll
MOD - [2012-03-07 14:41:00 | 000,196,264 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnScan.dll
MOD - [2012-03-07 14:40:40 | 001,053,224 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEpfw.dll
MOD - [2012-03-07 14:40:40 | 000,517,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEpfw.dll
MOD - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe
MOD - [2012-03-07 14:40:28 | 003,117,344 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe
MOD - [2012-03-07 14:40:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnEmon.dll
MOD - [2012-03-07 14:40:20 | 000,105,624 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiEmon.dll
MOD - [2012-03-07 14:40:16 | 000,109,744 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrnDmon.dll
MOD - [2012-03-07 14:40:16 | 000,097,384 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiDmon.dll
MOD - [2012-03-07 14:40:10 | 000,249,824 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\eguiAmon.dll
MOD - [2012-02-29 15:10:17 | 000,148,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imagehlp.dll
MOD - [2012-02-09 16:43:29 | 001,748,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.GdiPlus_6595b64144ccf1df_1.0.6002.22791_x-ww_c8dff154\GdiPlus.dll
MOD - [2011-11-16 15:20:55 | 000,354,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winhttp.dll
MOD - [2011-11-01 17:07:03 | 001,288,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2011-10-14 15:47:23 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winmm.dll
MOD - [2011-10-04 04:07:06 | 000,113,152 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ADL.Foundation.dll
MOD - [2011-09-26 10:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleacc.dll
MOD - [2011-07-27 05:14:02 | 000,967,008 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveUtil.dll
MOD - [2011-06-23 13:58:36 | 000,466,944 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\ATIDEMGX.dll
MOD - [2011-05-14 01:17:40 | 000,632,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcr80.dll
MOD - [2011-05-14 01:12:34 | 000,554,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.CRT_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_44262b86\msvcp80.dll
MOD - [2011-05-13 20:04:20 | 001,093,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.MFC_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_150c9e8b\mfc80u.dll
MOD - [2011-05-13 18:37:56 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC80.ATL_1fc8b3b9a1e18e3b_8.0.50727.6195_x-ww_a4c618fa\ATL80.dll
MOD - [2011-04-18 22:51:18 | 000,653,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcr90.dll
MOD - [2011-04-18 22:51:18 | 000,569,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.VC90.CRT_1fc8b3b9a1e18e3b_9.0.30729.6161_x-ww_31a54e43\msvcp90.dll
MOD - [2011-03-03 07:53:44 | 000,149,504 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dnsapi.dll
MOD - [2011-02-08 14:33:57 | 000,978,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42.dll
MOD - [2011-02-08 14:33:57 | 000,974,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42u.dll
MOD - [2010-12-22 13:32:24 | 000,301,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kerberos.dll
MOD - [2010-12-20 18:32:08 | 000,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2010-12-20 18:24:12 | 000,732,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsasrv.dll
MOD - [2010-12-09 16:15:52 | 000,726,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2010-11-09 15:52:35 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbc32.dll
MOD - [2010-10-13 11:39:36 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I1010.dll
MOD - [2010-09-15 10:20:52 | 000,065,536 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exe
MOD - [2010-08-23 17:12:55 | 000,617,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comctl32.dll
MOD - [2010-08-23 17:12:53 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2010-08-17 14:17:06 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
MOD - [2010-08-16 09:43:34 | 000,590,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2010-04-16 16:38:53 | 000,406,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usp10.dll
MOD - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) -- C:\WINDOWS\system32\LGScsiCommandService.exe
MOD - [2010-04-06 03:52:46 | 002,462,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\WMVCore.dll
MOD - [2010-03-18 13:16:28 | 000,771,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr100_clr0400.dll
MOD - [2010-03-18 13:16:28 | 000,413,008 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
MOD - [2010-03-18 13:16:28 | 000,129,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\CORPerfMonExt.dll
MOD - [2010-03-18 13:16:28 | 000,121,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\PerfCounter.dll
MOD - [2010-03-18 13:16:28 | 000,070,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dxva2.dll
MOD - [2010-03-16 11:22:12 | 000,014,848 | ---- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\AxInterop.WBOCXLib.dll
MOD - [2010-03-16 11:22:12 | 000,013,312 | ---- | M] ( ) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\Interop.WBOCXLib.dll
MOD - [2010-03-16 11:22:10 | 000,573,440 | ---- | M] (Stardock Corporation) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\32\wbocx.ocx
MOD - [2010-03-16 11:22:10 | 000,050,688 | ---- | M] (Stardock.Net, Inc) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\32\wbhelp2.dll
MOD - [2010-03-04 00:27:24 | 000,016,384 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Foundation.dll
MOD - [2010-01-29 15:45:20 | 000,307,260 | ---- | M] (Fraunhofer Institut Integrierte Schaltungen IIS) -- C:\WINDOWS\system32\l3codeca.acm
MOD - [2009-12-08 10:25:45 | 000,474,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2009-12-08 06:49:44 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0912.dll
MOD - [2009-11-27 17:29:49 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\avifil32.dll
MOD - [2009-11-07 00:07:08 | 000,049,488 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netfxperf.dll
MOD - [2009-11-07 00:07:04 | 000,297,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscoree.dll
MOD - [2009-10-13 11:34:25 | 000,271,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oakley.dll
MOD - [2009-10-12 14:40:13 | 000,150,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastls.dll
MOD - [2009-10-12 14:40:13 | 000,079,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\raschap.dll
MOD - [2009-09-23 08:05:25 | 000,024,576 | R--- | M] (LG Electronics) -- C:\WINDOWS\system32\SendScsiCmd.dll
MOD - [2009-09-11 15:15:45 | 000,136,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msv1_0.dll
MOD - [2009-09-10 14:45:00 | 002,953,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\xpsp2res.dll
MOD - [2009-09-10 14:45:00 | 002,843,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msi.dll
MOD - [2009-09-10 14:45:00 | 001,852,928 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcGenral.dll
MOD - [2009-09-10 14:45:00 | 001,710,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netshell.dll
MOD - [2009-09-10 14:45:00 | 001,689,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d9.dll
MOD - [2009-09-10 14:45:00 | 001,499,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdocvw.dll
MOD - [2009-09-10 14:45:00 | 001,267,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comsvcs.dll
MOD - [2009-09-10 14:45:00 | 001,092,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\esent.dll
MOD - [2009-09-10 14:45:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
MOD - [2009-09-10 14:45:00 | 001,025,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browseui.dll
MOD - [2009-09-10 14:45:00 | 001,000,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msgina.dll
MOD - [2009-09-10 14:45:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2009-09-10 14:45:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comres.dll
MOD - [2009-09-10 14:45:00 | 000,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2009-09-10 14:45:00 | 000,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sxs.dll
MOD - [2009-09-10 14:45:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2009-09-10 14:45:00 | 000,675,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasdlg.dll
MOD - [2009-09-10 14:45:00 | 000,640,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dbghelp.dll
MOD - [2009-09-10 14:45:00 | 000,629,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netcfgx.dll
MOD - [2009-09-10 14:45:00 | 000,586,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mlang.dll
MOD - [2009-09-10 14:45:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2009-09-10 14:45:00 | 000,563,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shdoclc.dll
MOD - [2009-09-10 14:45:00 | 000,545,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hhctrl.ocx
MOD - [2009-09-10 14:45:00 | 000,539,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msftedit.dll
MOD - [2009-09-10 14:45:00 | 000,531,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcore.dll
MOD - [2009-09-10 14:45:00 | 000,520,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptui.dll
MOD - [2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
MOD - [2009-09-10 14:45:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clbcatq.dll
MOD - [2009-09-10 14:45:00 | 000,483,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsvc.dll
MOD - [2009-09-10 14:45:00 | 000,473,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\fastprox.dll
MOD - [2009-09-10 14:45:00 | 000,453,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvsd.dll
MOD - [2009-09-10 14:45:00 | 000,430,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\vssapi.dll
MOD - [2009-09-10 14:45:00 | 000,428,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcprx.dll
MOD - [2009-09-10 14:45:00 | 000,427,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samsrv.dll
MOD - [2009-09-10 14:45:00 | 000,413,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcp60.dll
MOD - [2009-09-10 14:45:00 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgr.dll
MOD - [2009-09-10 14:45:00 | 000,407,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netlogon.dll
MOD - [2009-09-10 14:45:00 | 000,401,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcss.dll
MOD - [2009-09-10 14:45:00 | 000,388,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\themeui.dll
MOD - [2009-09-10 14:45:00 | 000,367,616 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dsound.dll
MOD - [2009-09-10 14:45:00 | 000,346,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hnetcfg.dll
MOD - [2009-09-10 14:45:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2009-09-10 14:45:00 | 000,339,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\zipfldr.dll
MOD - [2009-09-10 14:45:00 | 000,334,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wiaservc.dll
MOD - [2009-09-10 14:45:00 | 000,333,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscui.dll
MOD - [2009-09-10 14:45:00 | 000,330,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipnathlp.dll
MOD - [2009-09-10 14:45:00 | 000,325,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scesrv.dll
MOD - [2009-09-10 14:45:00 | 000,304,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\duser.dll
MOD - [2009-09-10 14:45:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2009-09-10 14:45:00 | 000,296,448 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\termsrv.dll
MOD - [2009-09-10 14:45:00 | 000,286,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2009-09-10 14:45:00 | 000,285,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pdh.dll
MOD - [2009-09-10 14:45:00 | 000,284,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\portabledeviceapi.dll
MOD - [2009-09-10 14:45:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\comdlg32.dll
MOD - [2009-09-10 14:45:00 | 000,273,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemess.dll
MOD - [2009-09-10 14:45:00 | 000,266,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\h323.tsp
MOD - [2009-09-10 14:45:00 | 000,253,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\es.dll
MOD - [2009-09-10 14:45:00 | 000,249,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapisrv.dll
MOD - [2009-09-10 14:45:00 | 000,247,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\esscli.dll
MOD - [2009-09-10 14:45:00 | 000,246,784 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mswsock.dll
MOD - [2009-09-10 14:45:00 | 000,245,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui1.dll
MOD - [2009-09-10 14:45:00 | 000,237,568 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasapi32.dll
MOD - [2009-09-10 14:45:00 | 000,236,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\webcheck.dll
MOD - [2009-09-10 14:45:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2009-09-10 14:45:00 | 000,214,528 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemcomn.dll
MOD - [2009-09-10 14:45:00 | 000,210,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasppp.dll
MOD - [2009-09-10 14:45:00 | 000,208,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsaenh.dll
MOD - [2009-09-10 14:45:00 | 000,207,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\unimdm.tsp
MOD - [2009-09-10 14:45:00 | 000,198,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netman.dll
MOD - [2009-09-10 14:45:00 | 000,197,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\certcli.dll
MOD - [2009-09-10 14:45:00 | 000,195,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msutb.dll
MOD - [2009-09-10 14:45:00 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\schedsvc.dll
MOD - [2009-09-10 14:45:00 | 000,193,536 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\activeds.dll
MOD - [2009-09-10 14:45:00 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\scecli.dll
MOD - [2009-09-10 14:45:00 | 000,186,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasmans.dll
MOD - [2009-09-10 14:45:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2009-09-10 14:45:00 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipsecsvc.dll
MOD - [2009-09-10 14:45:00 | 000,181,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapi32.dll
MOD - [2009-09-10 14:45:00 | 000,178,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\repdrvfs.dll
MOD - [2009-09-10 14:45:00 | 000,177,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTFIME.IME
MOD - [2009-09-10 14:45:00 | 000,176,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\w32time.dll
MOD - [2009-09-10 14:45:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wldap32.dll
MOD - [2009-09-10 14:45:00 | 000,171,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srsvc.dll
MOD - [2009-09-10 14:45:00 | 000,166,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\portabledevicetypes.dll
MOD - [2009-09-10 14:45:00 | 000,165,376 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wudfplatform.dll
MOD - [2009-09-10 14:45:00 | 000,164,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\credui.dll
MOD - [2009-09-10 14:45:00 | 000,161,792 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msdtcuiu.dll
MOD - [2009-09-10 14:45:00 | 000,154,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shmedia.dll
MOD - [2009-09-10 14:45:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2009-09-10 14:45:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmisvc.dll
MOD - [2009-09-10 14:45:00 | 000,145,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wiavusd.dll
MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprov.dll
MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\onex.dll
MOD - [2009-09-10 14:45:00 | 000,144,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntshrui.dll
MOD - [2009-09-10 14:45:00 | 000,143,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\adsldpc.dll
MOD - [2009-09-10 14:45:00 | 000,140,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc_os.dll
MOD - [2009-09-10 14:45:00 | 000,138,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dssenh.dll
MOD - [2009-09-10 14:45:00 | 000,134,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wkssvc.dll
MOD - [2009-09-10 14:45:00 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wpdshserviceobj.dll
MOD - [2009-09-10 14:45:00 | 000,133,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\upnp.dll
MOD - [2009-09-10 14:45:00 | 000,128,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advpack.dll
MOD - [2009-09-10 14:45:00 | 000,126,976 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappcfg.dll
MOD - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapsrv.exe
MOD - [2009-09-10 14:45:00 | 000,126,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dhcpcsvc.dll
MOD - [2009-09-10 14:45:00 | 000,125,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\apphelp.dll
MOD - [2009-09-10 14:45:00 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\umpnpmgr.dll
MOD - [2009-09-10 14:45:00 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\stobject.dll
MOD - [2009-09-10 14:45:00 | 000,122,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvfw32.dll
MOD - [2009-09-10 14:45:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntmarta.dll
MOD - [2009-09-10 14:45:00 | 000,116,224 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mstlsapi.dll
MOD - [2009-09-10 14:45:00 | 000,111,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
MOD - [2009-09-10 14:45:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msscript.ocx
MOD - [2009-09-10 14:45:00 | 000,110,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\imm32.dll
MOD - [2009-09-10 14:45:00 | 000,102,912 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\win32spl.dll
MOD - [2009-09-10 14:45:00 | 000,102,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cscdll.dll
MOD - [2009-09-10 14:45:00 | 000,099,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winscard.dll
MOD - [2009-09-10 14:45:00 | 000,098,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\loadperf.dll
MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiutils.dll
MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcint.dll
MOD - [2009-09-10 14:45:00 | 000,098,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\actxprxy.dll
MOD - [2009-09-10 14:45:00 | 000,097,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psbase.dll
MOD - [2009-09-10 14:45:00 | 000,096,768 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srvsvc.dll
MOD - [2009-09-10 14:45:00 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Media Player\wmpband.dll
MOD - [2009-09-10 14:45:00 | 000,095,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\iphlpapi.dll
MOD - [2009-09-10 14:45:00 | 000,093,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wlnotify.dll
MOD - [2009-09-10 14:45:00 | 000,091,136 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mydocs.dll
MOD - [2009-09-10 14:45:00 | 000,090,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\trkwks.dll
MOD - [2009-09-10 14:45:00 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mui\0015\hhctrlui.dll
MOD - [2009-09-10 14:45:00 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiaprpl.dll
MOD - [2009-09-10 14:45:00 | 000,087,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mprapi.dll
MOD - [2009-09-10 14:45:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2009-09-10 14:45:00 | 000,082,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2_32.dll
MOD - [2009-09-10 14:45:00 | 000,081,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netui0.dll
MOD - [2009-09-10 14:45:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wscsvc.dll
MOD - [2009-09-10 14:45:00 | 000,080,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\faultrep.dll
MOD - [2009-09-10 14:45:00 | 000,076,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qutil.dll
MOD - [2009-09-10 14:45:00 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolss.dll
MOD - [2009-09-10 14:45:00 | 000,075,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\inetpp.dll
MOD - [2009-09-10 14:45:00 | 000,074,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mscms.dll
MOD - [2009-09-10 14:45:00 | 000,071,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.dll
MOD - [2009-09-10 14:45:00 | 000,068,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sti.dll
MOD - [2009-09-10 14:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2009-09-10 14:45:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\browselc.dll
MOD - [2009-09-10 14:45:00 | 000,067,072 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdsapi.dll
MOD - [2009-09-10 14:45:00 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mtxclu.dll
MOD - [2009-09-10 14:45:00 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shimeng.dll
MOD - [2009-09-10 14:45:00 | 000,064,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptnet.dll
MOD - [2009-09-10 14:45:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\samlib.dll
MOD - [2009-09-10 14:45:00 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptsvc.dll
MOD - [2009-09-10 14:45:00 | 000,062,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\authz.dll
MOD - [2009-09-10 14:45:00 | 000,061,952 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasqec.dll
MOD - [2009-09-10 14:45:00 | 000,061,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasman.dll
MOD - [2009-09-10 14:45:00 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\colbact.dll
MOD - [2009-09-10 14:45:00 | 000,060,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cabinet.dll
MOD - [2009-09-10 14:45:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mpr.dll
MOD - [2009-09-10 14:45:00 | 000,059,904 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\devenum.dll
MOD - [2009-09-10 14:45:00 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\resutils.dll
MOD - [2009-09-10 14:45:00 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\atl.dll
MOD - [2009-09-10 14:45:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rastapi.dll
MOD - [2009-09-10 14:45:00 | 000,058,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\clusapi.dll
MOD - [2009-09-10 14:45:00 | 000,057,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ndptsp.tsp
MOD - [2009-09-10 14:45:00 | 000,056,832 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eventlog.dll
MOD - [2009-09-10 14:45:00 | 000,055,808 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wudfsvc.dll
MOD - [2009-09-10 14:45:00 | 000,054,272 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdigest.dll
MOD - [2009-09-10 14:45:00 | 000,053,760 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winsta.dll
MOD - [2009-09-10 14:45:00 | 000,053,248 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mfc42loc.dll
MOD - [2009-09-10 14:45:00 | 000,052,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wzcsapi.dll
MOD - [2009-09-10 14:45:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
MOD - [2009-09-10 14:45:00 | 000,049,664 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\regapi.dll
MOD - [2009-09-10 14:45:00 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cnbjmon.dll
MOD - [2009-09-10 14:45:00 | 000,048,128 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msprivs.dll
MOD - [2009-09-10 14:45:00 | 000,047,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\ncprov.dll
MOD - [2009-09-10 14:45:00 | 000,046,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tcpmon.dll
MOD - [2009-09-10 14:45:00 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rtutils.dll
MOD - [2009-09-10 14:45:00 | 000,044,032 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlanman.dll
MOD - [2009-09-10 14:45:00 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemsvc.dll
MOD - [2009-09-10 14:45:00 | 000,042,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\audiosrv.dll
MOD - [2009-09-10 14:45:00 | 000,041,472 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfctrs.dll
MOD - [2009-09-10 14:45:00 | 000,040,960 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eappprxy.dll
MOD - [2009-09-10 14:45:00 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sens.dll
MOD - [2009-09-10 14:45:00 | 000,039,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\AppPatch\AcAdProc.dll
MOD - [2009-09-10 14:45:00 | 000,038,400 | ---- | M] (Microsoft Corporation) -- c:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll
MOD - [2009-09-10 14:45:00 | 000,036,352 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ncobjapi.dll
MOD - [2009-09-10 14:45:00 | 000,035,328 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfproc.dll
MOD - [2009-09-10 14:45:00 | 000,034,816 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ssdpapi.dll
MOD - [2009-09-10 14:45:00 | 000,034,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pstorsvc.dll
MOD - [2009-09-10 14:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kmddsp.tsp
MOD - [2009-09-10 14:45:00 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cryptdll.dll
MOD - [2009-09-10 14:45:00 | 000,032,256 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winipsec.dll
MOD - [2009-09-10 14:45:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\traffic.dll
MOD - [2009-09-10 14:45:00 | 000,031,232 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\eapolqec.dll
MOD - [2009-09-10 14:45:00 | 000,030,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hidphone.tsp
MOD - [2009-09-10 14:45:00 | 000,029,696 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mspatcha.dll
MOD - [2009-09-10 14:45:00 | 000,029,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\batmeter.dll
MOD - [2009-09-10 14:45:00 | 000,027,648 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\profmap.dll
MOD - [2009-09-10 14:45:00 | 000,026,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfdisk.dll
MOD - [2009-09-10 14:45:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\utildll.dll
MOD - [2009-09-10 14:45:00 | 000,026,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3api.dll
MOD - [2009-09-10 14:45:00 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\davclnt.dll
MOD - [2009-09-10 14:45:00 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shfolder.dll
MOD - [2009-09-10 14:45:00 | 000,025,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfos.dll
MOD - [2009-09-10 14:45:00 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\odbcbcp.dll
MOD - [2009-09-10 14:45:00 | 000,024,064 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wsock32.dll
MOD - [2009-09-10 14:45:00 | 000,024,064 | ---- | M] (Microsoft Corp.) -- C:\WINDOWS\system32\dmserver.dll
MOD - [2009-09-10 14:45:00 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\normaliz.dll
MOD - [2009-09-10 14:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2009-09-10 14:45:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ersvc.dll
MOD - [2009-09-10 14:45:00 | 000,022,016 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lpk.dll
MOD - [2009-09-10 14:45:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msacm32.drv
MOD - [2009-09-10 14:45:00 | 000,020,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\hid.dll
MOD - [2009-09-10 14:45:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ws2help.dll
MOD - [2009-09-10 14:45:00 | 000,019,968 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\linkinfo.dll
MOD - [2009-09-10 14:45:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshtcpip.dll
MOD - [2009-09-10 14:45:00 | 000,019,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dimsntfy.dll
MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wbemprox.dll
MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\seclogon.dll
MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\qmgrprxy.dll
MOD - [2009-09-10 14:45:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\midimap.dll
MOD - [2009-09-10 14:45:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wtsapi32.dll
MOD - [2009-09-10 14:45:00 | 000,018,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\nddeapi.dll
MOD - [2009-09-10 14:45:00 | 000,017,920 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfnet.dll
MOD - [2009-09-10 14:45:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\powrprof.dll
MOD - [2009-09-10 14:45:00 | 000,017,408 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ipconf.tsp
MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winrnr.dll
MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\usbmon.dll
MOD - [2009-09-10 14:45:00 | 000,016,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cfgmgr32.dll
MOD - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pjlmon.dll
MOD - [2009-09-10 14:45:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe
MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\drprov.dll
MOD - [2009-09-10 14:45:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2009-09-10 14:45:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uniplat.dll
MOD - [2009-09-10 14:45:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
MOD - [2009-09-10 14:45:00 | 000,012,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\perfts.dll
MOD - [2009-09-10 14:45:00 | 000,011,776 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\netrap.dll
MOD - [2009-09-10 14:45:00 | 000,011,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\icaapi.dll
MOD - [2009-09-10 14:45:00 | 000,010,752 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\pschdprf.dll
MOD - [2009-09-10 14:45:00 | 000,009,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rsvpperf.dll
MOD - [2009-09-10 14:45:00 | 000,009,216 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\dot3dlg.dll
MOD - [2009-09-10 14:45:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntlsapi.dll
MOD - [2009-09-10 14:45:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\d3d8thk.dll
MOD - [2009-09-10 14:45:00 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rasadhlp.dll
MOD - [2009-09-10 14:45:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiapres.dll
MOD - [2009-09-10 14:45:00 | 000,007,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sensapi.dll
MOD - [2009-09-10 14:45:00 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wuauserv.dll
MOD - [2009-09-10 14:45:00 | 000,006,656 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msidle.dll
MOD - [2009-09-10 14:45:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmi.dll
MOD - [2009-09-10 14:45:00 | 000,005,632 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\tapiperf.dll
MOD - [2009-09-10 14:45:00 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\sfc.dll
MOD - [2009-09-10 14:45:00 | 000,004,608 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msimg32.dll
MOD - [2009-09-04 22:05:35 | 000,058,880 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msasn1.dll
MOD - [2009-07-27 23:23:50 | 000,135,680 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shsvcs.dll
MOD - [2009-07-17 17:17:57 | 001,439,744 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\query.dll
MOD - [2009-06-17 09:24:26 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0906.dll
MOD - [2009-06-17 09:24:26 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0712.dll
MOD - [2009-06-17 04:27:48 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0709.dll
MOD - [2009-04-22 16:38:50 | 000,065,536 | ---- | M] (Advanced Micro Devices Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe
MOD - [2009-04-22 11:13:40 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0805.dll
MOD - [2009-04-22 11:13:18 | 000,045,056 | ---- | M] (ATI Technologies Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0601.dll
MOD - [2009-02-27 14:48:36 | 001,008,496 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\1045\GrooveIntlResource.dll
MOD - [2009-02-27 03:42:02 | 000,031,640 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msonpmon.dll
MOD - [2009-02-26 19:18:18 | 000,029,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\mdimon.dll
MOD - [2009-02-26 18:37:02 | 000,178,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll
MOD - [2009-02-26 18:36:54 | 002,217,832 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll
MOD - [2009-02-26 18:36:48 | 000,021,856 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveNew.dll
MOD - [2009-02-26 18:36:46 | 001,560,912 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMisc.dll
MOD - [2009-02-26 18:36:46 | 000,030,040 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
MOD - [2009-01-20 13:51:38 | 000,007,168 | ---- | M] ( ) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\atixclib.dll
MOD - [2008-12-30 11:04:08 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0812.dll
MOD - [2008-07-25 10:16:40 | 000,033,800 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\Aspnet_perf.dll
MOD - [2008-07-06 13:06:10 | 000,089,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\filterpipelineprintproc.dll
MOD - [2008-04-14 20:51:58 | 000,023,552 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wdmaud.drv
MOD - [2008-04-14 20:50:36 | 000,004,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ksuser.dll
MOD - [2008-04-14 19:51:00 | 000,008,192 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wshirda.dll
MOD - [2008-04-14 19:50:34 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\irmon.dll
MOD - [2008-04-03 15:29:02 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0804.dll
MOD - [2007-10-25 08:28:30 | 000,222,720 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wmasf.dll
MOD - [2007-08-09 15:58:04 | 000,016,384 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0706.dll
MOD - [2007-05-02 16:44:12 | 000,020,480 | ---- | M] (Advanced Micro Devices, Inc.) -- C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\DEM.Graphics.I0703.dll
MOD - [2006-10-26 18:58:12 | 000,030,512 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\mdippr.dll
MOD - [2006-10-26 18:56:12 | 000,033,104 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spool\prtprocs\w32x86\msonpppr.dll
MOD - [2006-10-26 12:40:34 | 000,335,872 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\mdm.exe
MOD - [2006-10-26 11:45:04 | 000,247,296 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\msdbg2.dll
MOD - [2006-10-26 11:44:58 | 000,123,904 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\csm.dll
MOD - [2006-01-13 13:36:42 | 000,409,600 | ---- | M] () -- C:\Program Files\ULi5287\ULi5287.exe
MOD - [2003-03-18 21:23:34 | 000,024,576 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\1045\mdmui.dll
 
 
[color=#E56717]========== Services (SafeList) ==========[/color]
 
SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ)
SRV - [2013-01-09 14:05:18 | 000,251,400 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2012-12-25 10:40:20 | 000,541,760 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2012-12-13 21:34:56 | 000,161,768 | ---- | M] (Oracle Corporation) [Auto | Running] -- C:\Program Files\Java\jre7\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2012-12-10 17:29:44 | 001,435,568 | ---- | M] (LogMeIn Inc.) [Auto | Running] -- D:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2012-11-09 11:21:24 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-10-02 11:13:44 | 003,064,000 | ---- | M] (Skype Technologies S.A.) [Auto | Running] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype\Toolbars\Skype C2C Service\c2c_service.exe -- (Skype C2C Service)
SRV - [2012-03-07 14:40:34 | 000,913,144 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn)
SRV - [2010-04-12 04:01:42 | 000,047,616 | R--- | M] (Mobile Leader Co.,Ltd.) [Auto | Running] -- C:\WINDOWS\system32\LGScsiCommandService.exe -- (LGScsiCommandService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (WDICA)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbmodem.sys -- (USBModem)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbdiag.sys -- (UsbDiag)
DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\lgusbbus.sys -- (usbbus)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDRELI)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDFRAME)
DRV - File not found [Kernel | On_Demand | Stopped] --  -- (PDCOMP)
DRV - File not found [Kernel | System | Stopped] --  -- (PCIDump)
DRV - File not found [Kernel | System | Stopped] --  -- (lbrtfdc)
DRV - File not found [Kernel | System | Stopped] --  -- (i2omgmt)
DRV - File not found [Kernel | On_Demand | Stopped] -- D:\Program Files\Lavalys\EVEREST Corporate Edition\kerneld.wnt -- (EverestDriver)
DRV - File not found [Kernel | System | Stopped] --  -- (Changer)
DRV - [2012-10-11 15:55:10 | 001,104,768 | ---- | M] (Compro Technology, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\VMHybrid.sys -- (VMHybrid)
DRV - [2012-07-04 07:54:32 | 007,874,560 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2012-06-19 16:54:20 | 006,141,584 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService)
DRV - [2012-06-13 23:06:46 | 000,063,104 | ---- | M] (Alcor Micro, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AmUStor.sys -- (AmUStor)
DRV - [2012-05-14 07:12:12 | 000,103,040 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\AtihdXP3.sys -- (AtiHDAudioService)
DRV - [2012-03-14 07:40:04 | 000,104,160 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdir.sys -- (epfwtdir)
DRV - [2012-03-14 07:40:02 | 000,160,816 | ---- | M] (ESET) [File_System | System | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2012-03-14 07:40:02 | 000,120,152 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2012-01-25 11:23:10 | 000,299,424 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\yk51x86.sys -- (yukonwxp)
DRV - [2010-08-04 07:33:28 | 000,061,696 | ---- | M] (ASIX Electronics Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ax88772.sys -- (AX88772)
DRV - [2009-11-18 07:17:00 | 001,395,800 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Monfilt.sys -- (Monfilt)
DRV - [2009-11-18 07:16:00 | 001,691,480 | ---- | M] (Creative) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Ambfilt.sys -- (Ambfilt)
DRV - [2009-09-10 14:45:00 | 000,215,856 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3132r5.sys -- (Si3132r5)
DRV - [2009-09-10 14:45:00 | 000,212,520 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\Si3531.sys -- (Si3531)
DRV - [2009-09-10 14:45:00 | 000,195,072 | ---- | M] (Silicon Image, Inc) [Kernel | Boot | Stopped] -- C:\WINDOWS\System32\drivers\Si3114r5.sys -- (Si3114r5)
DRV - [2009-09-10 14:45:00 | 000,074,672 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3132.sys -- (Si3132)
DRV - [2009-09-10 14:45:00 | 000,069,248 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3124.sys -- (Si3124)
DRV - [2009-09-10 14:45:00 | 000,062,336 | ---- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\System32\drivers\si3112.sys -- (Si3112)
DRV - [2009-03-18 16:35:40 | 000,026,176 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hamachi.sys -- (hamachi)
DRV - [2008-12-26 11:56:04 | 000,017,792 | ---- | M] (Avnex) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vcsvad.sys -- (VCSVADHWSer)
DRV - [2008-07-23 23:29:16 | 000,047,744 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vserial.sys -- (vserial)
DRV - [2008-07-23 23:29:16 | 000,015,264 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vsb.sys -- (vsbus)
DRV - [2008-04-13 21:16:24 | 000,015,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\MPE.sys -- (MPE)
DRV - [2005-09-23 17:53:24 | 000,103,680 | ---- | M] (ULi Electronics Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\m5287.sys -- (m5287)
DRV - [2001-08-17 18:51:32 | 000,018,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\irsir.sys -- (irsir)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?}
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Bar = http://www.google.com/ie
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes,DefaultScope = {6A1806CD-94D4-4689-BA73-E35EA1EA9990}
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylon.com/?q={searchTerms}&affID=110824&tt=4612_3&babsrc=SP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}: "URL" = http://websearch.ask.com/custom/java/redirect?client=ie&tb=ORJ&o=100000026&src=crm&q={searchTerms}&locale=&apn_ptnrs=U3&apn_dtid=OSJ000
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_146.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.9.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 10.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-10-12 08:55:02 | 000,000,000 | ---D | M]
 
[2013-01-07 14:17:11 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2012-12-06 01:51:31 | 000,000,000 | ---D | M] (Skype Click to Call) -- C:\Program Files\Mozilla Firefox\extensions\{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A}
[2012-11-16 20:02:54 | 000,002,349 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\babylon.xml
 
[color=#E56717]========== Chrome  ==========[/color]
 
CHR - homepage: 
CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}sourceid=chrome&ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&hl={language}&q={searchTerms}&sugkey={google:suggestAPIKeyParameter}
CHR - homepage: 
CHR - plugin: Shockwave Flash (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\23.0.1271.97\pdf.dll
CHR - plugin: Adobe Acrobat (Enabled) = C:\Program Files\Adobe\Reader 10.0\Reader\Browser\nppdf32.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npdrmv2.dll
CHR - plugin: Windows Media Player Plug-in Dynamic Link Library (Enabled) = C:\Program Files\Windows Media Player\npdsplay.dll
CHR - plugin: Microsoft\u00AE DRM (Enabled) = C:\Program Files\Windows Media Player\npwmsdrm.dll
CHR - plugin: Google Update (Enabled) = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\1.3.21.111\npGoogleUpdate3.dll
CHR - plugin: Java Deployment Toolkit 7.0.90.5 (Enabled) = C:\Program Files\Java\jre7\bin\dtplugin\npDeployJava1.dll
CHR - plugin: Java(TM) Platform SE 7 U9 (Enabled) = C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll
CHR - plugin: Silverlight Plug-In (Enabled) = C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll
CHR - plugin: Windows Presentation Foundation (Enabled) = C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll
CHR - plugin: Shockwave Flash (Enabled) = C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll
CHR - plugin: Picasa (Enabled) = D:\Program Files\Google\Picasa3\npPicasa3.dll
CHR - Extension: Dysk Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.5_0\
CHR - Extension: Szukaj w Google = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.19_0\
CHR - Extension: Porsche = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\gkclphmapdcppbmekmbkcjfanpmoidpg\3_0\
CHR - Extension: Gmail = C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\
 
O1 HOSTS File: ([2009-09-10 14:45:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [AmIcoSinglun] C:\Program Files\AmIcoSingLun\AmIcoSinglun.exe (Alcor Micro Corp.)
O4 - HKLM..\Run: [ATICustomerCare] C:\Program Files\ATI\ATICustomerCare\ATICustomerCare.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET)
O4 - HKLM..\Run: [LogMeIn Hamachi Ui] D:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe (LogMeIn Inc.)
O4 - HKLM..\Run: [NeroFilterCheck] C:\WINDOWS\system32\NeroCheck.exe (Ahead Software Gmbh)
O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [ULiRaid5287] C:\Program Files\ULi5287\ULi5287.exe ()
O4 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003..\Run: [EA Core] "C:\Program Files\Electronic Arts\EADM\Core.exe" -silent File not found
O4 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003..\Run: [Steam] D:\Program Files\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: Skype Click to Call - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O13 - gopher Prefix: missing
O16 - DPF: {6414512B-B978-451D-A0D8-FCFDF33E833C} http://windowsupdate.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1350029003921 (WUWebControl Class)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.254
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{D277F1C3-74BD-4CDB-A522-34B2CF6CCB51}: DhcpNameServer = 192.168.1.254
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2012-10-11 12:25:39 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
 
NetSvcs: 6to4 -  File not found
NetSvcs: HidServ - %SystemRoot%\System32\hidserv.dll File not found
NetSvcs: Ias -  File not found
NetSvcs: Iprip -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: WmdmPmSp -  File not found
 
MsConfig - StartUpReg: [b]EADM[/b] - hkey= - key= -  File not found
MsConfig - StartUpReg: [b]LogMeIn Hamachi Ui[/b] - hkey= - key= -  File not found
MsConfig - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: Hamachi2Svc - D:\Program Files\LogMeIn Hamachi\hamachi-2.exe (LogMeIn Inc.)
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]
 
[2013-01-12 11:51:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\OTL
[2013-01-10 07:58:17 | 000,000,000 | -HSD | C] -- C:\Config.Msi
[2013-01-08 18:29:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Freemake
[2013-01-08 18:29:38 | 000,000,000 | ---D | C] -- C:\Program Files\Freemake
[2013-01-08 18:25:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\WMTools Downloaded Files
[2013-01-08 14:32:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Deluxe Ski Jump 4
[2013-01-07 18:44:42 | 000,000,000 | -H-D | C] -- C:\WINDOWS\PIF
[2013-01-05 21:58:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Downloads
[2013-01-05 10:36:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Google Chrome
[2012-12-30 13:36:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\.minecraft
[2012-12-26 14:09:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\olszanica 25.12.12
[2012-12-23 22:47:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\kolędy
[2012-12-22 22:37:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google
[2012-12-22 22:28:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google
[2012-12-22 22:28:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Picasa 3
[2012-12-22 22:28:39 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\IOSUBSYS
[2012-12-22 22:28:35 | 000,000,000 | ---D | C] -- C:\Program Files\Google
[2012-12-15 14:00:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype
[2012-12-15 14:00:46 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2012-12-13 21:35:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2012-12-13 21:34:48 | 000,000,000 | ---D | C] -- C:\Program Files\Java
[2012-12-13 21:11:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask
[2012-12-13 10:40:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\LogMeIn Hamachi
[2012-12-06 01:51:30 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox
[2012-12-03 18:12:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\GHISLER
[2012-12-03 13:42:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2012-12-01 21:35:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2012-11-26 13:54:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\My Cheat Tables
[2012-11-24 20:30:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012-11-24 20:30:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Aura4You
[2012-11-16 20:03:25 | 000,000,000 | ---D | C] -- C:\Program Files\BabylonToolbar
[2012-11-16 20:02:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2012-11-16 20:02:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Babylon
[2012-11-15 13:08:12 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Halflife Logo Creator
[2012-11-13 17:45:08 | 000,026,176 | -H-- | C] (LogMeIn, Inc.) -- C:\WINDOWS\System32\hamachi.sys
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]
 
[2013-01-12 11:44:00 | 000,001,128 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003UA.job
[2013-01-12 11:03:15 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job
[2013-01-12 10:44:01 | 000,001,076 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003Core.job
[2013-01-12 10:21:12 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2013-01-11 20:36:07 | 000,001,776 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ssij.gif
[2013-01-11 14:05:49 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2013-01-11 13:26:16 | 000,001,324 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2013-01-10 18:17:02 | 2145,386,496 | ---- | M] () -- C:\WINDOWS\MEMORY.DMP
[2013-01-10 08:13:53 | 000,536,910 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2013-01-10 08:13:53 | 000,476,372 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2013-01-10 08:13:53 | 000,095,782 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2013-01-10 08:13:52 | 000,077,214 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2013-01-08 18:06:22 | 000,000,116 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2013-01-07 18:03:07 | 000,273,376 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2013-01-07 13:55:25 | 000,000,405 | ---- | M] () -- C:\WINDOWS\ULEAD32.INI
[2013-01-05 10:36:12 | 000,002,301 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2012-12-22 22:38:11 | 000,001,393 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2012-12-22 22:29:11 | 000,000,647 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Picasa 3.lnk
[2012-12-18 16:13:26 | 000,004,096 | ---- | M] () -- C:\WINDOWS\System32\crash
[2012-12-15 14:00:48 | 000,001,880 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2012-12-04 20:50:40 | 000,000,909 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Cztery pory roku.lnk
[2012-12-03 20:44:24 | 000,000,861 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Po zmroku.lnk
[2012-11-23 10:02:41 | 000,149,383 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\ts3_clientui-win32-1351504843-2012-11-23 10_02_41.593750.dmp
[2012-11-16 20:02:40 | 004,088,832 | ---- | M] () -- C:\Documents and Settings\User\Moje dokumenty\hamachi.msi
[3 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2013-01-11 20:36:05 | 000,001,776 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ssij.gif
[2013-01-05 10:36:12 | 000,002,301 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Google Chrome.lnk
[2013-01-05 10:34:56 | 000,001,128 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003UA.job
[2013-01-05 10:34:56 | 000,001,076 | ---- | C] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-117609710-1897051121-1202660629-1003Core.job
[2012-12-30 13:36:18 | 000,139,783 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\MinecraftSP.jar
[2012-12-22 22:29:11 | 000,000,647 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Picasa 3.lnk
[2012-12-18 16:16:38 | 000,001,324 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2012-12-15 14:00:48 | 000,001,880 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2012-12-04 20:50:40 | 000,000,909 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Cztery pory roku.lnk
[2012-12-03 20:44:24 | 000,000,861 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\The Sims™ 3 Po zmroku.lnk
[2012-12-01 21:35:31 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF
[2012-12-01 21:35:31 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF
[2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF
[2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF
[2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF
[2012-12-01 21:35:30 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF
[2012-11-23 10:02:41 | 000,149,383 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\ts3_clientui-win32-1351504843-2012-11-23 10_02_41.593750.dmp
[2012-11-18 14:40:26 | 000,000,116 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2012-11-16 20:02:42 | 004,088,832 | ---- | C] () -- C:\Documents and Settings\User\Moje dokumenty\hamachi.msi
[2012-11-09 09:42:31 | 000,003,737 | ---- | C] () -- C:\Documents and Settings\User\.recently-used.xbel
[2012-10-28 20:40:00 | 000,000,405 | ---- | C] () -- C:\WINDOWS\ULEAD32.INI
[2012-10-14 13:31:40 | 000,163,840 | ---- | C] () -- C:\WINDOWS\System32\JoyFrc.dll
[2012-10-14 13:31:40 | 000,059,004 | ---- | C] () -- C:\WINDOWS\System32\Wcdu5Cpl.dll
[2012-10-12 09:25:37 | 000,178,688 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2012-10-12 09:08:14 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\iacenc.dll
[2012-10-11 15:21:16 | 000,363,520 | ---- | C] () -- C:\WINDOWS\System32\PsisDecd.dll
[2012-10-11 14:20:08 | 000,003,072 | ---- | C] () -- C:\WINDOWS\System32\34CoInstaller.dll
[2012-10-11 14:04:07 | 000,025,548 | ---- | C] () -- C:\WINDOWS\System32\drivers\RTAIODAT.DAT
[2012-10-11 13:57:17 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2012-10-11 13:55:09 | 000,273,376 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2012-10-11 13:45:26 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin
[2012-10-11 13:45:18 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat
[2012-10-11 13:45:18 | 000,618,823 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat
[2012-10-11 13:45:18 | 000,000,003 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat
[2012-10-11 13:38:27 | 000,024,887 | ---- | C] () -- C:\WINDOWS\System32\unM5287.exe
[2012-10-11 12:28:35 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2012-10-11 12:22:12 | 000,023,016 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
 
[color=#E56717]========== ZeroAccess Check ==========[/color]
 
[2012-10-11 13:43:32 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
 
[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shdocvw.dll -- [2009-09-10 14:45:00 | 001,499,136 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-09-10 14:45:00 | 000,473,600 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free
 
[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]
"" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2009-09-10 14:45:00 | 000,273,920 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2012-10-11 13:41:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\AmUStor
[2012-12-13 21:11:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ask
[2012-11-16 20:02:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
[2012-12-03 13:42:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
[2012-12-03 07:06:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Electronic Arts
[2012-10-12 08:55:01 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2013-01-10 13:06:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Freemake
[2013-01-11 19:15:10 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Origin
[2012-10-30 17:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PlayFirst
[2012-11-24 20:47:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2012-12-30 13:40:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\.minecraft
[2012-11-24 20:30:24 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Aura4You
[2012-10-27 19:56:29 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Avnex
[2012-11-16 20:02:44 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Babylon
[2013-01-08 17:58:08 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\BitTorrent
[2012-10-27 19:52:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GetRightToGo
[2012-12-02 10:02:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\GHISLER
[2012-10-28 20:50:15 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\inkscape
[2012-10-31 07:54:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Origin
[2012-10-30 17:43:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\PlayFirst
[2013-01-10 20:37:49 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\TS3Client
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2012-10-11 12:25:39 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2012-11-08 18:29:29 | 000,000,211 | -HS- | M] () -- C:\boot.ini
[2009-09-10 14:45:00 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2012-10-11 12:25:39 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2012-10-11 12:25:39 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2012-10-11 12:25:39 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2009-09-10 14:45:00 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2009-09-10 14:45:00 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2013-01-12 10:21:05 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
[2009-09-10 14:45:00 | 000,042,368 | ---- | M] (Microsoft Corporation) MD5=08FD04AA961BDC77FB983F328334E3D7 -- C:\WINDOWS\system32\drivers\agp440.sys
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 21:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
 
[color=#A23BEC]< MD5 for: BEEP.SYS  >[/color]
[2009-09-10 14:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2009-09-10 14:45:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys
 
[color=#A23BEC]< MD5 for: CDROM.SYS  >[/color]
[2009-09-10 14:45:00 | 017,821,884 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2009-09-10 14:45:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
[2011-05-09 23:48:16 | 000,062,592 | ---- | M] (Microsoft Corporation) MD5=7B53584D94E9D8716B2DE91D5F1CB42D -- C:\WINDOWS\system32\dllcache\cdrom.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\dllcache\eventlog.dll
[2009-09-10 14:45:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\WINDOWS\system32\eventlog.dll
 
[color=#A23BEC]< MD5 for: NDIS.SYS  >[/color]
[2009-09-10 14:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2009-09-10 14:45:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2009-09-10 14:45:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 124 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:96D0C06F
 
< End of report >[/log]
 
i z Extras
 
 
[log]OTL Extras logfile created on: 2013-01-12 11:51:24 - Run 1
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Documents and Settings\User\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,17 Gb Available Physical Memory | 58,50% Memory free
3,85 Gb Paging File | 3,07 Gb Available in Paging File | 79,73% Paging File free
Paging file location(s): c:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 51,39 Gb Total Space | 25,51 Gb Free Space | 49,63% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 74,45 Gb Free Space | 76,24% Space Free | Partition Type: NTFS
 
Computer Name: USER-0CB12B2C32 | User Name: User | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 60 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
 
[HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML.LQGRZVVTQ3Z7COPMHX6Q7LVHKA] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"UpdatesDisableNotify" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
"2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
"%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE" = C:\Program Files\Microsoft Office\Office12\OUTLOOK.EXE:*:Enabled:Microsoft Office Outlook -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\GROOVE.EXE" = C:\Program Files\Microsoft Office\Office12\GROOVE.EXE:*:Enabled:Microsoft Office Groove -- (Microsoft Corporation)
"C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE" = C:\Program Files\Microsoft Office\Office12\ONENOTE.EXE:*:Enabled:Microsoft Office OneNote -- (Microsoft Corporation)
"C:\Program Files\Skype\Phone\Skype.exe" = C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype -- (Skype Technologies S.A.)
"D:\Program Files\bin\javaw.exe" = D:\Program Files\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary
"C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
"C:\WINDOWS\system32\rundll32.exe" = C:\WINDOWS\system32\rundll32.exe:*:Enabled:Uruchamia plik DLL jako aplikację -- (Microsoft Corporation)
"D:\Program Files\Counter-Strike\cstrike.exe" = D:\Program Files\Counter-Strike\cstrike.exe:*:Enabled:Half-Life Launcher
"D:\Program Files\KBot\KBot 6.67\KBotcc.exe" = D:\Program Files\KBot\KBot 6.67\KBotcc.exe:*:Enabled:KBot control center
"D:\Program Files\Counter-Strike\hl.exe" = D:\Program Files\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher
"D:\Program Files\mIRC\mirc.exe" = D:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC
"D:\Program Files\Steam\steamapps\23niedzwiedz\condition zero\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\condition zero\hl.exe:*:Enabled:Counter-Strike: Condition Zero -- (Valve)
"D:\Program Files\Steam\Steam.exe" = D:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"D:\Program Files\Steam\steamapps\23niedzwiedz\day of defeat\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\day of defeat\hl.exe:*:Enabled:Day of Defeat -- (Valve)
"D:\totalcmd\TOTALCMD.EXE" = D:\totalcmd\TOTALCMD.EXE:*:Enabled:Total Commander 32 bit
"D:\Program Files\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = D:\Program Files\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server -- (TeamSpeak Systems GmbH)
"C:\Documents and Settings\User\Pulpit\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe" = C:\Documents and Settings\User\Pulpit\teamspeak3-server_win32-3.0.6.1\teamspeak3-server_win32\ts3server_win32.exe:*:Enabled:TeamSpeak 3 Server
"C:\Program Files\Java\jre7\bin\javaw.exe" = C:\Program Files\Java\jre7\bin\javaw.exe:*:Enabled:Java(TM) Platform SE binary -- (Oracle Corporation)
"D:\Program Files\BitTorrent\BitTorrent.exe" = D:\Program Files\BitTorrent\BitTorrent.exe:*:Enabled:BitTorrent -- (BitTorrent, Inc.)
"D:\Program Files\Steam\steamapps\23niedzwiedz\counter-strike\hl.exe" = D:\Program Files\Steam\steamapps\23niedzwiedz\counter-strike\hl.exe:*:Enabled:Counter-Strike -- (Valve)
 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{0807E67B-DACB-1739-A87E-3046FF40BA23}" = CCC Help Chinese Traditional
"{0DF310E3-6C01-99DC-296F-1D021BA36C2D}" = CCC Help English
"{11083C7A-D0D6-4DA4-8C3A-74B8389EC07B}" = ATI Catalyst Registration
"{1E8E87B5-4531-CEE3-4791-6AD9E72076EC}" = CCC Help Danish
"{1F295D95-3E65-4A53-902F-615F4B1EC627}" = ESET NOD32 Antivirus
"{26A24AE4-039D-4CA4-87B4-2F83217009FF}" = Java 7 Update 9
"{27596347-C945-B113-EF47-169D471CEB05}" = CCC Help Turkish
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3666DE18-A4CC-4E1E-8165-0D78758C2209}" = CCC Help Russian
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{3DE92282-CB49-434F-81BF-94E5B380E889}" = The Sims™ 3 Cztery pory roku
"{41E340F0-0BD6-4A87-AF29-E9E584471756}" = VideoMate T, M, S Series  Driver
"{45057FCE-5784-48BE-8176-D9D00AF56C3C}" = The Sims™ 3 Po zmroku
"{477AB148-138C-46D2-820B-0DBFA744CEE8}" = Terminator TV7131 Utilities
"{479826D5-FE36-711F-8BE3-AB7B44440F66}" = ccc-utility
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{532669C6-3139-E755-B3B8-95F184EB27EB}" = CCC Help German
"{577F4DD2-ED68-690F-6328-8A8CAC8FCA75}" = CCC Help Polish
"{637A3EC2-4299-67B2-E0D2-C25572F4D37A}" = CCC Help Thai
"{702F39B4-05FB-22F4-8426-E5FFFA330FF3}" = CCC Help Chinese Standard
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{73FB391E-E800-CC82-D9BA-EF9CB8A939F3}" = CCC Help French
"{747E2E56-A68B-15C6-BB77-31BFE0C031EF}" = CCC Help Spanish
"{7A37A44B-968E-6CA3-278C-878D4D08B226}" = CCC Help Czech
"{7C0FB04E-5A40-C63D-CC1B-B6C1B60FDDA3}" = CCC Help Japanese
"{7D94796D-007E-45DE-CEAD-8E616D78E95B}" = CCC Help Dutch
"{7E7C98D1-4F44-21D4-C351-25E2367027F3}" = Catalyst Control Center
"{87A91A66-1566-714D-E1BE-1F3B040E65D5}" = CCC Help Swedish
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8AF3E926-ED59-11D4-A44B-0000E86D2305}" = Ulead GIF Animator 5
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders  (Polish) 12
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3)
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3)
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{92F63D17-2A32-7184-B8D7-905E0E1BC2A9}" = CCC Help Hungarian
"{95CEF602-B837-0C37-F5E6-49C8F3196998}" = CCC Help Greek
"{97E1A4DE-82AB-0448-0AEA-77DC1DD9A492}" = Catalyst Control Center Localization All
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9DFD861E-2692-873F-BA2C-E4788648D966}" = CCC Help Italian
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.5)
"{B50676DC-AAE9-20DF-01A5-DABCDECD6DFC}" = Catalyst Control Center Graphics Previews Common
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call
"{BA26FFA5-6D47-47DB-BE56-34C357B5F8CC}" = The Sims™ 3 Wymarzone Podróże
"{C05D8CDB-417D-4335-A38C-A0659EDFD6B8}" = The Sims™ 3
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{D6346B4B-FDD6-C406-06FE-0CF77F561E78}" = AMD Catalyst Install Manager
"{D9C7FB0D-B233-1B2E-E9DC-543911F6D94A}" = Catalyst Control Center InstallProxy
"{DD9F821E-7B8D-210F-A4AE-47C60870DEBE}" = CCC Help Norwegian
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E3E71D07-CD27-46CB-8448-16D4FB29AA13}" = Microsoft WSE 3.0 Runtime
"{E6F42010-AA5A-B862-9620-8CBD23ACDED4}" = CCC Help Portuguese
"{E99EDC34-96B1-4297-B20B-BFB179D6523B}" = Alcor Micro USB Card Reader
"{EAAE7669-947C-26DD-563D-863B63FFC1EA}" = CCC Help Finnish
"{EBC8C5A1-7745-419F-B6C6-B0DD87F24D52}" = LogMeIn Hamachi
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F296A4CD-54A2-1EEE-CE14-8F88A1D97083}" = CCC Help Korean
"{FDC53DC6-137A-4541-BFA2-A9BAE4A7FE99}" = ULi Chipset Driver
"Adobe Flash Player ActiveX" = Adobe Flash Player ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"AmUStor" = Alcor Micro USB Card Reader
"BitTorrent" = BitTorrent
"ENTERPRISE" = Microsoft Office Enterprise 2007
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.9.5 (Full)
"LogMeIn Hamachi" = LogMeIn Hamachi
"Marvell Miniport Driver" = Marvell Miniport Driver
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"NeroMultiInstaller!UninstallKey" = Nero Suite
"Picasa 3" = Picasa 3
"Steam App 10" = Counter-Strike
"ULi M5287 SATA Controller Driver" = ULi M5287 SATA Controller Driver
"Usb Dual Vibration wheel" = Usb Dual Vibration wheel
"WinRAR archiver" = WinRAR 4.20 (32-bitowy)
 
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
 
[HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Google Chrome" = Google Chrome
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - CLR: Fatal Execution Engine 
Error (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 03:13:17 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime | ID = 1023
Description = .NET Runtime version 2.0.50727.3643 - Fatal Execution Engine Error
 (7A0BCA72) (80131506)
 
Error - 2013-01-10 08:07:39 | Computer Name = USER-0CB12B2C32 | Source = .NET Runtime Optimization Service | ID = 1103
Description = .NET Runtime Optimization Service (clr_optimization_v2.0.50727_32)
 - Tried to start a service that wasn't the latest version of CLR Optimization service.
 Will shutdown 
 
Error - 2013-01-11 09:03:28 | Computer Name = USER-0CB12B2C32 | Source = Application Hang | ID = 1002
Description = Aplikacja zawieszająca everest.exe, wersja 5.50.2100.0, moduł zawieszenia
 hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000.
 
[ System Events ]
Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001
Description = Usługa Klient DNS zależy od usługi Sterownik protokołu TCP/IP, której
 nie można uruchomić z powodu następującego błędu:   %%31
 
Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001
Description = Usługa Pomoc TCP/IP NetBIOS zależy od usługi AFD, której nie można
 uruchomić z powodu następującego błędu:   %%31
 
Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7001
Description = Usługa Usługi IPSEC zależy od usługi Sterownik IPSEC, której nie można
 uruchomić z powodu następującego błędu:   %%31
 
Error - 2013-01-11 08:26:35 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego 
lub systemowego:   AFD  eamon  ehdrv  epfwtdir  Fips  intelppm  IPSec  MRxSmb  NetBIOS  NetBT  RasAcd  Rdbss
Tcpip
 
Error - 2013-01-11 08:29:36 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą Skype Updater.
 
Error - 2013-01-11 11:48:39 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą Skype Updater.
 
Error - 2013-01-11 11:48:40 | Computer Name = USER-0CB12B2C32 | Source = sr | ID = 1
Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC000011E'
 podczas przetwarzania pliku 'h2-ui-nets.ini' w woluminie 'HarddiskVolume1'. W rezultacie
 zostało zatrzymane monitorowanie woluminu.
 
Error - 2013-01-11 11:55:42 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą Skype Updater.
 
Error - 2013-01-11 19:09:07 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7034
Description = Usługa LogMeIn Hamachi Tunneling Engine niespodziewanie zakończyła
 pracę. Wystąpiło to razy: 1.
 
Error - 2013-01-12 05:21:50 | Computer Name = USER-0CB12B2C32 | Source = Service Control Manager | ID = 7009
Description = Limit czasu (30000 milisekund) podczas oczekiwania na połączenie się
 z usługą Skype Updater.
 
 
< End of report >[/log]
 


~Refresh

Natsuki Kuga
komentarz
komentarz

1. Do OTL wklej:
[spoiler]
:OTL
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}: "URL" = http://search.babylo...0000016ec2690fc
IE - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}: "URL" = http://websearch.ask...apn_dtid=OSJ000
O3 - HKU\S-1-5-21-117609710-1897051121-1202660629-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.

:Files
C:\Program Files\BabylonToolbar
C:\Documents and Settings\All Users\Dane aplikacji\Babylon
C:\Documents and Settings\All Users\Dane aplikacji\Ask
C:\Documents and Settings\User\Dane aplikacji\Babylon
[/spoiler]
Wykonaj skrypt, pokaż raport.

2. Użyj AdwCleaner z opcji Delete. Pokaż raport.

3. Do SystemLook wklej:
[spoiler]
:dir
C:\Documents and Settings\User\Dane aplikacji\Aura4You
C:\Documents and Settings\User\Dane aplikacji\Avnex
[/spoiler]
Look, pokaż raport.

  • Dobra wypowiedź 1
Zolowski
komentarz
komentarz

1.[log]========== OTL ==========

Registry key HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\SearchScopes\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{0ECDF796-C2DC-4d79-A620-CCE0C0A66CC9}\ not found.
Registry key HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\SearchScopes\{8ED49028-1884-4965-B405-DF40F494109E}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8ED49028-1884-4965-B405-DF40F494109E}\ not found.
Registry value HKEY_USERS\S-1-5-21-117609710-1897051121-1202660629-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{D4027C7F-154A-4066-A1AD-4243D8127440} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{D4027C7F-154A-4066-A1AD-4243D8127440}\ not found.
========== FILES ==========
C:\Program Files\BabylonToolbar\BabylonToolbar folder moved successfully.
C:\Program Files\BabylonToolbar folder moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\Babylon folder moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\Ask\APN-Stub folder moved successfully.
C:\Documents and Settings\All Users\Dane aplikacji\Ask folder moved successfully.
C:\Documents and Settings\User\Dane aplikacji\Babylon folder moved successfully.
 
OTL by OldTimer - Version 3.2.69.0 log created on 01142013_171701[/log]
 
 
2. Tu mialem 2 pliki 1.[log]# AdwCleaner v2.105 - Log utworzony 14/01/2013 o 17:18:09
# Aktualizacja 08/01/2013 przez Xplode
# System operacyjny : Microsoft Windows XP Dodatek Service Pack 3 (32 bits)
# Użytkownik : User - USER-0CB12B2C32
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Documents and Settings\User\Moje dokumenty\Downloads\adwcleaner.exe
# Opcja [Szukaj]
 
***** [Usługi] *****
 
 
***** [Pliki / Foldery] *****
 
Folder Znaleziono : C:\DOCUME~1\User\USTAWI~1\Temp\AskSearch
Folder Znaleziono : C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
Plik Znaleziono : C:\DOCUME~1\User\USTAWI~1\Temp\Uninstall.exe
Plik Znaleziono : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
 
***** [Rejestr] *****
 
Klucz Znaleziono : HKCU\Software\BabylonToolbar
Klucz Znaleziono : HKCU\Software\DataMngr
Klucz Znaleziono : HKCU\Software\DataMngr_Toolbar
Klucz Znaleziono : HKCU\Software\ee888cb76feb15
Klucz Znaleziono : HKCU\Software\InstallCore
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Znaleziono : HKCU\Software\Optimizer Pro
Klucz Znaleziono : HKLM\Software\Babylon
Klucz Znaleziono : HKLM\Software\BabylonToolbar
Klucz Znaleziono : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klucz Znaleziono : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Znaleziono : HKLM\Software\DataMngr
Klucz Znaleziono : HKLM\SOFTWARE\ee888cb76feb15
Klucz Znaleziono : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klucz Znaleziono : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
 
***** [Przeglądarki Internetowe] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
[HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc
[HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=NT_ss&mntrId=e8fe3c7d0000000000000016ec2690fc
 
*************************
 
AdwCleaner[R1].txt - [2366 octets] - [14/01/2013 17:18:09]
 
########## EOF - C:\AdwCleaner[R1].txt - [2426 octets] ##########[/log]
I
[log]# AdwCleaner v2.105 - Log utworzony 14/01/2013 o 17:18:31
# Aktualizacja 08/01/2013 przez Xplode
# System operacyjny : Microsoft Windows XP Dodatek Service Pack 3 (32 bits)
# Użytkownik : User - USER-0CB12B2C32
# Tryb uruchomienia : Normalny
# Ścieżka : C:\Documents and Settings\User\Moje dokumenty\Downloads\adwcleaner.exe
# Opcja [Usuń]
 
***** [Usługi] *****
 
 
***** [Pliki / Foldery] *****
 
Folder Usunięto : C:\DOCUME~1\User\USTAWI~1\Temp\AskSearch
Folder Usunięto : C:\Documents and Settings\All Users\Dane aplikacji\boost_interprocess
Plik Usunięto : C:\DOCUME~1\User\USTAWI~1\Temp\Uninstall.exe
Plik Usunięto : C:\Program Files\Mozilla Firefox\searchplugins\babylon.xml
 
***** [Rejestr] *****
 
Klucz Usunięto : HKCU\Software\BabylonToolbar
Klucz Usunięto : HKCU\Software\DataMngr
Klucz Usunięto : HKCU\Software\DataMngr_Toolbar
Klucz Usunięto : HKCU\Software\ee888cb76feb15
Klucz Usunięto : HKCU\Software\InstallCore
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{98889811-442D-49DD-99D7-DC866BE87DBC}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Usunięto : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{D4027C7F-154A-4066-A1AD-4243D8127440}
Klucz Usunięto : HKCU\Software\Optimizer Pro
Klucz Usunięto : HKLM\Software\Babylon
Klucz Usunięto : HKLM\Software\BabylonToolbar
Klucz Usunięto : HKLM\SOFTWARE\Classes\AppID\{BDB69379-802F-4EAF-B541-F8DE92DD98DB}
Klucz Usunięto : HKLM\SOFTWARE\Classes\Prod.cap
Klucz Usunięto : HKLM\Software\DataMngr
Klucz Usunięto : HKLM\SOFTWARE\ee888cb76feb15
Klucz Usunięto : HKLM\SOFTWARE\Google\Chrome\Extensions\pgafcinpmmpklohkojmllohdhomoefph
Klucz Usunięto : HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\App Management\ARPCache\{15D2D75C-9CB2-4EFD-BAD7-B9B4CB4BC693}
 
***** [Przeglądarki Internetowe] *****
 
-\\ Internet Explorer v8.0.6001.18702
 
Podmieniono : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=HP_ss&mntrId=e8fe3c7d0000000000000016ec2690fc --> hxxp://www.google.com
Podmieniono : [HKLM\SOFTWARE\Microsoft\Internet Explorer\AboutURls - Tabs] = hxxp://search.babylon.com/?affID=110824&tt=4612_3&babsrc=NT_ss&mntrId=e8fe3c7d0000000000000016ec2690fc --> hxxp://www.google.com
 
*************************
 
AdwCleaner[R1].txt - [2495 octets] - [14/01/2013 17:18:09]
AdwCleaner[S1].txt - [2462 octets] - [14/01/2013 17:18:31]
 
########## EOF - C:\AdwCleaner[S1].txt - [2522 octets] ##########[/log]
 
3.[log]SystemLook 30.07.11 by jpshortstuff
Log created at 17:24 on 14/01/2013 by User
Administrator - Elevation successful
 
========== dir ==========
 
C:\Documents and Settings\User\Dane aplikacji\Aura4You - Parameters: "(none)"
 
---Files---
None found.
 
---Folders---
Aura DVD Ripper Professional d------ [19:30 24/11/2012]
 
C:\Documents and Settings\User\Dane aplikacji\Avnex - Parameters: "(none)"
 
---Files---
None found.
 
---Folders---
VCS7 d------ [18:56 27/10/2012]
 
-= EOF =-[/log]
 
 
 
Natsuki Kuga
komentarz
komentarz

1. Uruchom OTL i kliknij Sprzątanie, w AdwCleaner kliknij Uninstall.

2. Wyczyść foldery przywracania systemu: KLIK

3. Użyj TFC by wyczyścić lokalizacje tymczasowe.

4. Wykonaj pełne skanowanie Malwarebyte's AntiMalware. (jeśli coś wykryje, pokaż raport)

Zolowski
komentarz
komentarz

1.Zrobione

2.Zrobione

3.Zrobione

4.Zrobione [log]Malwarebytes Anti-Malware (Okres testowy) 1.70.0.1100

www.malwarebytes.org
 
Wersja bazy: v2013.01.15.09
 
Windows XP Service Pack 3 x86 NTFS
Internet Explorer 8.0.6001.18702
User :: USER-0CB12B2C32 [administrator]
 
Ochrona: Włączona
 
2013-01-15 14:05:03
mbam-log-2013-01-15 (14-05-03).txt
 
Typ skanowania: Pełne skanowanie (C:\|D:\|)
Zaznaczone opcje skanowania: Pamięć | Rozruch | Rejestr | System plików | Heurystyka/Dodatkowe | Heuristyka/Shuriken | PUP | PUM
Odznaczone opcje skanowania: P2P
Przeskanowano obiektów: 267996
Upłynęło: 1 godzin(y), 5 minut(y), 4 sekund(y)
 
Wykrytych procesów w pamięci: 0
(Nie znaleziono zagrożeń)
 
Wykrytych modułów w pamięci: 0
(Nie znaleziono zagrożeń)
 
Wykrytych kluczy rejestru: 0
(Nie znaleziono zagrożeń)
 
Wykrytych wartości rejestru: 0
(Nie znaleziono zagrożeń)
 
Wykryte wpisy rejestru systemowego: 0
(Nie znaleziono zagrożeń)
 
wykrytych folderów: 0
(Nie znaleziono zagrożeń)
 
Wykrytych plików: 0
(Nie znaleziono zagrożeń)
 
(zakończone)
[/log] Tylko to miałem 


Teraz usunac tego  Malwarebyte's AntiMalware.

 


Chce dodac ze dalej mam lagi 

Natsuki Kuga
komentarz
komentarz

Tak, możesz usunąć. Pokaż jeszcze dzienniki zdarzeń:

 

[b]Logo Windows + R[/b] -> eventvwr.msc -> Zapisz każdą z gałęzi jako plik z rozszerzeniem [b].evt[/b], klikając na niej PPM -> Zapisz plik dziennika jako.

Zolowski
komentarz
komentarz

Ok usunełem. nastepnie otworzylem start->uruchom wpisałem eventvwr.msc otowrzyl mi sie ten plik i kazdy zapisałem na pulpit  z rozszerzeniem .evt



i wrzucic ci je?



tylko ze nei mam uprawnien

Natsuki Kuga
komentarz
komentarz
i wrzucic ci je?

Tak, możesz spakować je w archiwum i wrzucić na jakiś serwer, np. mediafire.

Zolowski
komentarz
komentarz

[code]http://speedy.sh/6QVKN/asdas.rar[/code] prosze



Chce dodac ze ustaawiłem na uruchamianie selekcjyne ustawiłem naj progarmy do startu i kolega droadzil Gboost no 30-40 fps w minecraft 

Natsuki Kuga
komentarz
komentarz
Chcę dodać że ustawiłem na uruchamianie selekcyjne, ustawiłem naj programy do startu i kolega doradził Gboost no 30-40 fps w minecraft 

Czy mam rozumieć, że przez to sytuacja w jakimś stopniu się poprawiła?

 

W dzienniku zdarzeń nie widzę niczego specjalnego, jedynie sterownik dysku twardego zgłasza błąd kontrolera. Pokaż screeny z programu HDTune (wszystkie zakładki).

Zolowski
komentarz
komentarz

Znaczy no napewno sie poprawila ale na grach dalej spadaj fps ponizej 10 pozniej dodam ci ss-y z HDTune



Robie foramt to powinno pomoc napewno

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.