wklejto.pl
Dodane przez: ~Anonim (2009-12-09 20:57) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
586.
587.
588.
589.
590.
591.
592.
593.
594.
OTL logfile created on: 2009-12-09 06:13:32 - Run 1
OTL by OldTimer - Version 3.1.11.9     Folder = C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Pobieranie
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 100,00% Memory free
4,00 Gb Paging File | 4,00 Gb Available in Paging File | 100,00% Paging File free
Paging file location(s): C:\\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\\WINDOWS | %ProgramFiles% = C:\\Program Files
Drive C: | 48,83 Gb Total Space | 35,72 Gb Free Space | 73,17% Space Free | Partition Type: NTFS
Drive D: | 97,65 Gb Total Space | 92,66 Gb Free Space | 94,89% Space Free | Partition Type: NTFS
Drive E: | 151,60 Gb Total Space | 144,39 Gb Free Space | 95,24% Space Free | Partition Type: NTFS
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: MAZUR-704A3079A
Current User Name: Belmondo
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (All) ==========[/color]
 
PRC - [2009-12-09 05:57:11 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Pobieranie\\OTL.exe
PRC - [2009-12-08 21:54:50 | 00,908,248 | ---- | M] (Mozilla Corporation) -- C:\\Program Files\\Mozilla Firefox\\firefox.exe
PRC - [2009-08-06 19:24:06 | 00,053,472 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\wuauclt.exe
PRC - [2009-04-09 15:19:08 | 00,731,840 | ---- | M] (ESET) -- C:\\Program Files\\ESET\\ESET Smart Security\\ekrn.exe
PRC - [2009-04-09 15:17:56 | 02,029,640 | ---- | M] (ESET) -- C:\\Program Files\\ESET\\ESET Smart Security\\egui.exe
PRC - [2009-02-09 12:25:57 | 00,111,104 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\services.exe
PRC - [2008-10-07 13:33:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\\WINDOWS\\system32\\nvsvc32.exe
PRC - [2008-04-15 13:00:00 | 01,035,264 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\explorer.exe
PRC - [2008-04-15 13:00:00 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\winlogon.exe
PRC - [2008-04-15 13:00:00 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\spoolsv.exe
PRC - [2008-04-15 13:00:00 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\smss.exe
PRC - [2008-04-15 13:00:00 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\alg.exe
PRC - [2008-04-15 13:00:00 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\rundll32.exe
PRC - [2008-04-15 13:00:00 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\ctfmon.exe
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [RPCSS]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [NETWORKSERVICE]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [NETSVCS]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [IMGSVC]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\svchost.exe  [DCOMLAUNCH]
PRC - [2008-04-15 13:00:00 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\lsass.exe
PRC - [2008-04-15 13:00:00 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\csrss.exe
PRC - [2007-12-06 21:03:41 | 00,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\\Program Files\\Common Files\\ABBYY\\FineReader\\9.00\\Licensing\\PE\\NetworkLicenseServer.exe
PRC - [2007-04-09 15:45:54 | 00,049,152 | ---- | M] () -- C:\\Program Files\\GW Micro\\Window-Eyes\\weserv.exe
PRC - [2007-02-16 19:08:14 | 00,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\\WINDOWS\\system32\\ASTSRV.EXE
 
 
[color=#E56717]========== Modules (All) ==========[/color]
 
MOD - [2009-12-09 05:57:11 | 00,536,576 | ---- | M] (OldTimer Tools) -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Pobieranie\\OTL.exe
MOD - [2009-06-25 09:27:54 | 00,056,832 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\secur32.dll
MOD - [2009-04-15 15:54:38 | 00,585,216 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\rpcrt4.dll
MOD - [2009-03-21 15:08:59 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\kernel32.dll
MOD - [2009-02-09 11:53:44 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\advapi32.dll
MOD - [2009-02-09 11:53:43 | 00,722,944 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\ntdll.dll
MOD - [2008-10-23 13:42:41 | 00,286,720 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\gdi32.dll
MOD - [2008-06-17 20:03:15 | 08,489,984 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\shell32.dll
MOD - [2008-04-15 13:00:00 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\ole32.dll
MOD - [2008-04-15 13:00:00 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\WinSxS\\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\\comctl32.dll
MOD - [2008-04-15 13:00:00 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\setupapi.dll
MOD - [2008-04-15 13:00:00 | 00,732,672 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\userenv.dll
MOD - [2008-04-15 13:00:00 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\user32.dll
MOD - [2008-04-15 13:00:00 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\oleaut32.dll
MOD - [2008-04-15 13:00:00 | 00,474,112 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\shlwapi.dll
MOD - [2008-04-15 13:00:00 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\msvcrt.dll
MOD - [2008-04-15 13:00:00 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\MSCTF.dll
MOD - [2008-04-15 13:00:00 | 00,219,648 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\uxtheme.dll
MOD - [2008-04-15 13:00:00 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\wbem\\framedyn.dll
MOD - [2008-04-15 13:00:00 | 00,178,176 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\winmm.dll
MOD - [2008-04-15 13:00:00 | 00,172,544 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\wldap32.dll
MOD - [2008-04-15 13:00:00 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\winspool.drv
MOD - [2008-04-15 13:00:00 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\ntmarta.dll
MOD - [2008-04-15 13:00:00 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\olepro32.dll
MOD - [2008-04-15 13:00:00 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\srclient.dll
MOD - [2008-04-15 13:00:00 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\samlib.dll
MOD - [2008-04-15 13:00:00 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\psapi.dll
MOD - [2008-04-15 13:00:00 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\version.dll
MOD - [2008-04-15 13:00:00 | 00,004,608 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\system32\\msimg32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2009-04-09 15:29:20 | 00,020,680 | ---- | M] (ESET) -- C:\\Program Files\\ESET\\ESET Smart Security\\EHttpSrv.exe -- (EhttpSrv)
SRV - [2009-04-09 15:19:08 | 00,731,840 | ---- | M] (ESET) -- C:\\Program Files\\ESET\\ESET Smart Security\\ekrn.exe -- (ekrn)
SRV - [2008-10-07 13:33:00 | 00,163,908 | ---- | M] (NVIDIA Corporation) -- C:\\WINDOWS\\system32\\nvsvc32.exe -- (NVSvc)
SRV - [2007-12-06 21:03:41 | 00,660,768 | ---- | M] (ABBYY (BIT Software)) -- C:\\Program Files\\Common Files\\ABBYY\\FineReader\\9.00\\Licensing\\PE\\NetworkLicenseServer.exe -- (ABBYY.Licensing.FineReader.Professional.9.0)
SRV - [2007-04-09 15:45:54 | 00,049,152 | ---- | M] () -- C:\\Program Files\\GW Micro\\Window-Eyes\\weserv.exe -- (windoweyes)
SRV - [2007-02-16 19:08:14 | 00,057,344 | ---- | M] (Nalpeiron Ltd.) -- C:\\WINDOWS\\system32\\ASTSRV.EXE -- (astcc)
SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Microsoft Office\\Office12\\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE12\\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE -- (ose)
SRV - [2005-11-14 01:06:04 | 00,069,632 | ---- | M] (Macrovision Corporation) -- C:\\Program Files\\Common Files\\InstallShield\\Driver\\1150\\Intel 32\\IDriverT.exe -- (IDriverT)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-12-07 13:00:53 | 00,148,768 | ---- | M] () -- C:\\WINDOWS\\system32\\DRIVERS\\atapi.sys -- (atapi)
DRV - [2009-12-03 20:06:36 | 00,008,704 | ---- | M] () -- C:\\WINDOWS\\Temp\\SiwIo.sys -- (SIWIO)
DRV - [2009-04-09 15:21:12 | 00,055,768 | ---- | M] (ESET) -- C:\\WINDOWS\\system32\\drivers\\epfwtdi.sys -- (epfwtdi)
DRV - [2009-04-09 15:21:10 | 00,033,096 | ---- | M] (ESET) -- C:\\WINDOWS\\system32\\drivers\\epfwndis.sys -- (Epfwndis)
DRV - [2009-04-09 15:21:06 | 00,133,000 | ---- | M] (ESET) -- C:\\WINDOWS\\system32\\drivers\\epfw.sys -- (epfw)
DRV - [2009-04-09 15:18:02 | 00,107,256 | ---- | M] (ESET) -- C:\\WINDOWS\\system32\\drivers\\ehdrv.sys -- (ehdrv)
DRV - [2009-04-09 15:10:30 | 00,113,960 | ---- | M] (ESET) -- C:\\WINDOWS\\system32\\drivers\\eamon.sys -- (eamon)
DRV - [2008-12-12 15:18:41 | 00,021,419 | ---- | M] (Meetinghouse Data Communications) -- C:\\WINDOWS\\system32\\drivers\\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x)
DRV - [2008-10-07 13:33:00 | 06,133,856 | ---- | M] (NVIDIA Corporation) -- C:\\WINDOWS\\system32\\drivers\\nv4_mini.sys -- (nv)
DRV - [2008-04-15 13:00:00 | 00,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) -- C:\\WINDOWS\\system32\\drivers\\hdaudbus.sys -- (HDAudBus)
DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\\WINDOWS\\system32\\drivers\\secdrv.sys -- (Secdrv)
DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) -- C:\\WINDOWS\\system32\\drivers\\ptilink.sys -- (Ptilink)
DRV - [2007-07-27 08:10:18 | 00,483,968 | ---- | M] (Ralink Technology, Corp.) -- C:\\WINDOWS\\system32\\drivers\\rt61.sys -- (RT61)
DRV - [2007-04-10 19:04:40 | 04,397,568 | R--- | M] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\system32\\drivers\\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2007-01-16 13:52:20 | 00,017,664 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) -- C:\\WINDOWS\\system32\\drivers\\ZDPSp50.sys -- (ZDPSp50)
DRV - [2007-01-10 10:14:34 | 00,450,560 | ---- | M] (ZyDAS Technology Corporation) -- C:\\WINDOWS\\system32\\drivers\\WlanBZXP.sys -- (SG762_XP)
DRV - [2006-10-31 11:10:06 | 00,035,840 | ---- | M] (Attansic Technology corporation.) -- C:\\WINDOWS\\system32\\drivers\\atl01_xp.sys -- (AtcL001)
DRV - [2006-08-25 04:47:00 | 00,036,528 | ---- | M] (Sonic Solutions) -- C:\\WINDOWS\\System32\\Drivers\\PxHelp20.sys -- (PxHelp20)
DRV - [2002-11-29 15:02:40 | 00,006,560 | ---- | M] (Zeal SoftStudio) -- C:\\WINDOWS\\system32\\zntport.sys -- (zntport)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Local Page = %SystemRoot%\\system32\\blank.htm
 
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = http://pracownik.mikrotech.pl/
IE - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: \"ProxyEnable\" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: \"http://www.multimo.pl/sprawdz-dostepnosc-uslugi/\"
 
FF - HKLM\\software\\mozilla\\Mozilla Firefox 3.0.15\\extensions\\\\Components: C:\\Program Files\\Mozilla Firefox\\components [2009-12-08 21:54:59 | 00,000,000 | ---D | M]
FF - HKLM\\software\\mozilla\\Mozilla Firefox 3.0.15\\extensions\\\\Plugins: C:\\Program Files\\Mozilla Firefox\\plugins [2009-12-08 21:54:59 | 00,000,000 | ---D | M]
FF - HKLM\\software\\mozilla\\Mozilla Thunderbird 2.0.0.23\\extensions\\\\Components: C:\\Program Files\\Mozilla Thunderbird\\components [2009-10-15 05:58:57 | 00,000,000 | ---D | M]
FF - HKLM\\software\\mozilla\\Mozilla Thunderbird 2.0.0.23\\extensions\\\\Plugins: C:\\Program Files\\Mozilla Thunderbird\\plugins
FF - HKLM\\software\\mozilla\\Thunderbird\\Extensions\\\\eplgTb@eset.com: C:\\Program Files\\ESET\\ESET Smart Security\\Mozilla Thunderbird [2009-12-03 19:58:28 | 00,000,000 | ---D | M]
 
[2009-01-12 11:25:21 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\Mozilla\\Extensions
[2009-12-08 21:45:01 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\Mozilla\\Firefox\\Profiles\\f49bkex9.default\\extensions
[2009-01-12 11:25:22 | 00,000,000 | ---D | M] -- C:\\Program Files\\Mozilla Firefox\\extensions
[2009-12-08 21:54:55 | 00,002,767 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\allegro-pl.xml
[2009-12-08 21:54:55 | 00,001,406 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\fbc-pl.xml
[2009-12-08 21:54:55 | 00,000,917 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\merlin-pl.xml
[2009-12-08 21:54:55 | 00,000,858 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\pwn-pl.xml
[2009-12-08 21:54:55 | 00,001,183 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\wikipedia-pl.xml
[2009-12-08 21:54:55 | 00,001,683 | ---- | M] () -- C:\\Program Files\\Mozilla Firefox\\searchplugins\\wp-pl.xml
 
O1 HOSTS File: (27 bytes) - C:\\WINDOWS\\system32\\drivers\\etc\\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (AcroIEHlprObj Class) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\\Program Files\\Adobe\\Acrobat 7.0\\ActiveX\\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll (Microsoft Corporation)
O4 - HKLM..\\Run: [egui] C:\\Program Files\\ESET\\ESET Smart Security\\egui.exe (ESET)
O4 - HKLM..\\Run: [NvCplDaemon] C:\\WINDOWS\\System32\\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\\Run: [NvMediaCenter] C:\\WINDOWS\\System32\\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\\Run: [nwiz] C:\\WINDOWS\\System32\\nwiz.exe ()
O4 - HKLM..\\Run: [Regedit32] C:\\WINDOWS\\System32\\regedit.exe File not found
O4 - HKCU..\\Run: [av_md] C:\\WINDOWS\\System32\\config\\systemprofile\\av_md.exe File not found
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDrives = 0
O7 - HKCU\\Software\\Policies\\Microsoft\\Internet Explorer\\Control Panel present
O7 - HKCU\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\\Program Files\\Microsoft Office\\Office12\\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office12\\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra \'Tools\' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\\Program Files\\Microsoft Office\\Office12\\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Create Mobile Favorite - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - C:\\Program Files\\Microsoft ActiveSync\\INetRepl.dll (Microsoft Corporation)
O9 - Extra \'Tools\' menuitem : Utwórz Ulubione dla urządzenia przenośnego... - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - C:\\Program Files\\Microsoft ActiveSync\\INetRepl.dll (Microsoft Corporation)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\Program Files\\Microsoft Office\\Office12\\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O17 - HKLM\\System\\CCS\\Services\\Tcpip\\Parameters: DhcpNameServer = 192.168.1.1
O18 - Protocol\\Handler\\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\\Handler\\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\\Program Files\\Common Files\\Microsoft Shared\\Help\\hxds.dll (Microsoft Corporation)
O18 - Protocol\\Handler\\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\Program Files\\Common Files\\Skype\\Skype4COM.dll (Skype Technologies)
O18 - Protocol\\Filter\\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE12\\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\\WINDOWS\\explorer.exe (Microsoft Corporation)
O20 - Winlogon\\Notify\\wineyes: DllName - welogon.dll - C:\\WINDOWS\\System32\\welogon.dll ()
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\\Program Files\\Microsoft Office\\Office12\\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2008-11-03 20:10:06 | 00,000,000 | ---- | M] () - C:\\AUTOEXEC.BAT -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - comfile [open] -- \"%1\" %*
O35 - exefile [open] -- \"%1\" %*
 
NetSvcs: 6to4 -  File not found
NetSvcs: Ias - C:\\WINDOWS\\system32\\ias [2008-11-03 20:51:33 | 00,000,000 | ---D | M]
NetSvcs: Iprip -  File not found
NetSvcs: Irmon -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: Wmi - C:\\WINDOWS\\system32\\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp -  File not found
 
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Program sieciowy dla SAGEM Wi-Fi 11g USB adapter.lnk - C:\\Program Files\\SAGEM WiFi manager\\WLANUTL.EXE - ( )
MsConfig - StartUpReg: [b]12Voip[/b] - hkey= - key= - C:\\Program Files\\12Voip.com\\12Voip\\12Voip.exe (12Voip)
MsConfig - StartUpReg: [b]GrooveMonitor[/b] - hkey= - key= - C:\\Program Files\\Microsoft Office\\Office12\\GrooveMonitor.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]H/PC Connection Agent[/b] - hkey= - key= - C:\\Program Files\\Microsoft ActiveSync\\wcescomm.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]IPLA![/b] - hkey= - key= - C:\\Program Files\\ipla\\ipla.exe (Redefine Sp z o.o.)
MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\\Program Files\\Messenger\\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]Outpost Firewall[/b] - hkey= - key= - C:\\PROGRA~1\\Agnitum\\OUTPOS~1.0\\outpost.exe File not found
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
ActiveX: {10072CEC-8CC1-11D1-986E-00A0C955B42F} - Renderowanie grafiki wektorowej (VML)
ActiveX: {2179C5D3-EBFF-11CF-B6FD-00AA00B4E220} - NetShow
ActiveX: {22d6f312-b0f6-11d0-94ab-0080c74c7e95} - Microsoft Windows Media Player 6.4
ActiveX: {283807B5-2C60-11D0-A31D-00AA00B92C03} - DirectAnimation
ActiveX: {2C7339CF-2B09-4501-B3F3-F3508C9228ED} - %SystemRoot%\\system32\\regsvr32.exe /s /n /i:/UserInstall %SystemRoot%\\system32\\themeui.dll
ActiveX: {36f8ec70-c29a-11d1-b5c7-0000f8051515} - Powiązania danych dynamicznego HTML dla języka Java
ActiveX: {3af36230-a269-11d1-b5bf-0000f8051515} - Pakiet przeglądania w trybie offline
ActiveX: {3bf42070-b3b1-11d1-b5c5-0000f8051515} - Uniscribe
ActiveX: {411EDCF7-755D-414E-A74B-3DCD6583F589} - Microsoft .NET Framework 1.1 Service Pack 1 (KB867460)
ActiveX: {4278c270-a269-11d1-b5bf-0000f8051515} - Autorstwo zaawansowane
ActiveX: {44BBA840-CC51-11CF-AAFA-00AA00B6015C} - \"%ProgramFiles%\\Outlook Express\\setup50.exe\" /APP:OE /CALLER:WINNT /user /install
ActiveX: {44BBA842-CC51-11CF-AAFA-00AA00B6015B} - rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msnetmtg.inf,NetMtg.Install.PerUser.NT
ActiveX: {44BBA848-CC51-11CF-AAFA-00AA00B6015C} - DirectShow
ActiveX: {44BBA855-CC51-11CF-AAFA-00AA00B6015F} - DirectDrawEx
ActiveX: {45ea75a0-a269-11d1-b5bf-0000f8051515} - Pomoc programu Internet Explorer
ActiveX: {4f216970-c90c-11d1-b5c7-0000f8051515} - Klasy Java DirectAnimation
ActiveX: {4f645220-306d-11d2-995d-00c04f98bbc9} - Microsoft Windows Script 5.7
ActiveX: {5945c046-1e7d-11d1-bc44-00c04fd912be} - rundll32.exe advpack.dll,LaunchINFSection C:\\WINDOWS\\INF\\msmsgs.inf,BLC.QuietInstall.PerUser
ActiveX: {5A8D6EE0-3E18-11D0-821E-444553540000} - ICW
ActiveX: {5fd399c0-a70a-11d1-9948-00c04f98bbc9} - Narzędzia Instalatora programu Internet Explorer
ActiveX: {630b1da0-b465-11d1-9948-00c04f98bbc9} - Rozszerzenia przeglądania
ActiveX: {6BF52A52-394A-11d3-B153-00C04F79FAA6} - Microsoft Windows Media Player
ActiveX: {6fab99d0-bab8-11d1-994a-00c04f98bbc9} - Dostęp do witryny MSN
ActiveX: {7131646D-CD3C-40F4-97B9-CD9E4E6262EF} - .NET Framework
ActiveX: {73fa19d0-2d75-11d2-995d-00c04f98bbc9} - Web Folders
ActiveX: {7790769C-0471-11d2-AF11-00C04FA35D02} - \"%ProgramFiles%\\Outlook Express\\setup50.exe\" /APP:WAB /CALLER:WINNT /user /install
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4340} - regsvr32.exe /s /n /i:U shell32.dll
ActiveX: {89820200-ECBD-11cf-8B85-00AA005B4383} - %SystemRoot%\\system32\\ie4uinit.exe
ActiveX: {89B4C1CD-B018-4511-B0A1-5476DBF70820} - C:\\WINDOWS\\system32\\Rundll32.exe C:\\WINDOWS\\system32\\mscories.dll,Install
ActiveX: {9381D8F2-0288-11D0-9501-00AA00B911A5} - Powiązania danych dynamicznego HTML
ActiveX: {ACC563BC-4266-43f0-B6ED-9D38C4202C7E} - 
ActiveX: {C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F} - .NET Framework
ActiveX: {C9E9A340-D1F1-11D0-821E-444553540600} - Podstawowe czcionki programu Internet Explorer
ActiveX: {CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1} - .NET Framework
ActiveX: {CC2A9BA0-3BDD-11D0-821E-444553540000} - Harmonogram zadań
ActiveX: {CDD7975E-60F8-41d5-8149-19E51D6F71D0} - Windows Movie Maker v2.1
ActiveX: {D27CDB6E-AE6D-11cf-96B8-444553540000} - Adobe Flash Player
ActiveX: {DAA94A2A-2A8D-4D3B-9DB8-56FBECED082D} - Microsoft .NET Framework 1.1 Security Update (KB953297)
ActiveX: {de5aed00-a4bf-11d1-9948-00c04f98bbc9} - Pomoc HTML
ActiveX: {E92B03AB-B707-11d2-9CBD-0000F87A369E} - Active Directory Service Interface
ActiveX: >{22d6f312-b0f6-11d0-94ab-0080c74c7e95} - C:\\WINDOWS\\inf\\unregmp2.exe /ShowWMP
ActiveX: >{26923b43-4d38-484f-9b9e-de460746276c} - %systemroot%\\system32\\shmgrate.exe OCInstallUserConfigIE
ActiveX: >{60B49E34-C7CC-11D0-8953-00A0C90347FF}MICROS - RunDLL32 IEDKCS32.DLL,BrandIE4 SIGNUP
ActiveX: >{881dd1c5-3dcf-431b-b061-f3f88e8be88a} - %systemroot%\\system32\\shmgrate.exe OCInstallUserConfigOE
 
Drivers32: msacm.ac3filter - C:\\WINDOWS\\System32\\ac3filter.acm ()
Drivers32: msacm.iac2 - C:\\WINDOWS\\system32\\iac25_32.ax (Intel Corporation)
Drivers32: msacm.l3acm - C:\\WINDOWS\\system32\\l3codeca.acm (Fraunhofer Institut Integrierte Schaltungen IIS)
Drivers32: msacm.sl_anet - C:\\WINDOWS\\System32\\sl_anet.acm (Sipro Lab Telecom Inc.)
Drivers32: msacm.trspch - C:\\WINDOWS\\System32\\tssoft32.acm (DSP GROUP, INC.)
Drivers32: vidc.cvid - C:\\WINDOWS\\System32\\iccvid.dll (Radius Inc.)
Drivers32: vidc.iv31 - C:\\WINDOWS\\System32\\ir32_32.dll ()
Drivers32: vidc.iv32 - C:\\WINDOWS\\System32\\ir32_32.dll ()
Drivers32: vidc.iv41 - C:\\WINDOWS\\System32\\ir41_32.ax (Intel Corporation)
Drivers32: vidc.iv50 - C:\\WINDOWS\\System32\\ir50_32.dll (Intel Corporation)
 
CREATERESTOREPOINT
Restore point Set: OTL Restore Point (55172544294027264)
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2009-12-09 05:56:50 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Pobieranie
[2009-12-08 20:44:52 | 00,000,000 | ---D | C] -- C:\\Program Files\\Trend Micro
[2009-12-04 18:34:53 | 00,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\XPSViewer
[2009-12-04 18:34:49 | 00,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\en-US
[2009-12-04 18:34:46 | 00,000,000 | ---D | C] -- C:\\Program Files\\Reference Assemblies
[2009-12-04 18:29:13 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\xpssvcs.dll
[2009-12-04 18:29:13 | 01,676,288 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\xpssvcs.dll
[2009-12-04 18:29:13 | 00,597,504 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\printfilterpipelinesvc.exe
[2009-12-04 18:29:13 | 00,575,488 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\xpsshhdr.dll
[2009-12-04 18:29:13 | 00,117,760 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\prntvpt.dll
[2009-12-04 18:29:13 | 00,089,088 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\filterpipelineprintproc.dll
[2009-12-04 17:12:26 | 00,000,000 | -HSD | C] -- C:\\Config.Msi
[2009-12-04 13:00:47 | 00,000,000 | ---D | C] -- C:\\Program Files\\MSXML 4.0
[2009-12-03 20:28:05 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\Windows Genuine Advantage
[2009-12-03 20:25:43 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\Belmondo\\Ustawienia lokalne\\Dane aplikacji\\ESET
[2009-12-03 20:22:16 | 00,015,584 | ---- | C] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\wuapi.dll.mui
[2009-12-03 20:13:15 | 00,000,000 | ---D | C] -- C:\\WINDOWS\\System32\\Attansic
[2009-12-03 20:13:11 | 00,000,000 | ---D | C] -- C:\\Program Files\\Attansic
[2009-12-03 20:11:56 | 00,035,840 | ---- | C] (Attansic Technology corporation.) -- C:\\WINDOWS\\System32\\drivers\\atl01_xp.sys
[2009-12-03 19:59:13 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\ESET
[2009-12-03 19:58:26 | 00,000,000 | ---D | C] -- C:\\Program Files\\ESET
[2009-12-03 19:58:26 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\ESET
[2009-12-03 19:06:24 | 00,000,000 | ---D | C] -- C:\\Documents and Settings\\Belmondo\\Pulpit\\xxxxxxxxxxxxxx
[2009-12-03 18:55:10 | 00,212,480 | ---- | C] (SteelWerX) -- C:\\WINDOWS\\SWXCACLS.exe
[2009-12-03 18:55:10 | 00,161,792 | ---- | C] (SteelWerX) -- C:\\WINDOWS\\SWREG.exe
[2009-12-03 18:55:10 | 00,136,704 | ---- | C] (SteelWerX) -- C:\\WINDOWS\\SWSC.exe
[2009-12-03 18:55:04 | 19,968,616 | ---- | C] (Skype Technologies S.A.                                     ) -- C:\\Documents and Settings\\Belmondo\\Pulpit\\SkypeSetup.exe
[2009-12-03 18:54:58 | 00,783,360 | ---- | C] (Borland Software Corporation) -- C:\\WINDOWS\\System32\\rtl70.bpl
[2009-12-03 18:54:53 | 02,157,568 | ---- | C] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\MicCal.exe
[2009-12-03 18:54:53 | 00,129,536 | ---- | C] (Zeal SoftStudio) -- C:\\WINDOWS\\System32\\ntport.dll
[3 C:\\WINDOWS\\*.tmp files -> C:\\WINDOWS\\*.tmp -> ]
[1 C:\\WINDOWS\\System32\\*.tmp files -> C:\\WINDOWS\\System32\\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2009-12-09 06:09:36 | 00,200,819 | ---- | M] () -- C:\\WINDOWS\\System32\\nvapps.xml
[2009-12-09 06:09:30 | 00,000,006 | -H-- | M] () -- C:\\WINDOWS\\tasks\\SA.DAT
[2009-12-09 06:09:29 | 00,002,048 | --S- | M] () -- C:\\WINDOWS\\bootstat.dat
[2009-12-09 06:04:44 | 00,566,724 | ---- | M] () -- C:\\WINDOWS\\System32\\perfh015.dat
[2009-12-09 06:04:44 | 00,501,416 | ---- | M] () -- C:\\WINDOWS\\System32\\perfh009.dat
[2009-12-09 06:04:44 | 00,122,540 | ---- | M] () -- C:\\WINDOWS\\System32\\perfc015.dat
[2009-12-09 06:04:44 | 00,095,576 | ---- | M] () -- C:\\WINDOWS\\System32\\perfc009.dat
[2009-12-09 06:04:44 | 00,004,808 | ---- | M] () -- C:\\WINDOWS\\System32\\PerfStringBackup.INI
[2009-12-09 06:02:38 | 03,407,872 | -H-- | M] () -- C:\\Documents and Settings\\Belmondo\\NTUSER.DAT
[2009-12-09 06:02:30 | 06,291,456 | -H-- | M] () -- C:\\Documents and Settings\\Belmondo\\Ustawienia lokalne\\Dane aplikacji\\IconCache.db
[2009-12-09 06:00:13 | 00,000,219 | ---- | M] () -- C:\\WINDOWS\\System32\\MRT.INI
[2009-12-09 05:58:58 | 00,001,374 | ---- | M] () -- C:\\WINDOWS\\imsins.BAK
[2009-12-09 05:56:02 | 00,002,422 | ---- | M] () -- C:\\WINDOWS\\System32\\wpa.dbl
[2009-12-08 21:10:23 | 00,000,188 | -HS- | M] () -- C:\\Documents and Settings\\Belmondo\\ntuser.ini
[2009-12-08 20:44:53 | 00,001,734 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Pulpit\\HijackThis.lnk
[2009-12-07 14:38:32 | 00,000,216 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\grids.ini
[2009-12-07 13:00:53 | 00,148,768 | ---- | M] () -- C:\\WINDOWS\\System32\\drivers\\atapi.sys
[2009-12-07 09:00:39 | 00,068,456 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Ustawienia lokalne\\Dane aplikacji\\GDIPFONTCACHEV1.DAT
[2009-12-04 18:40:33 | 00,269,392 | ---- | M] () -- C:\\WINDOWS\\System32\\FNTCACHE.DAT
[2009-12-04 08:57:48 | 00,000,116 | ---- | M] () -- C:\\WINDOWS\\System32\\fjhdyfhsn.bat
[2009-12-04 08:57:43 | 00,000,004 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\avdrn.dat
[2009-12-04 06:57:27 | 00,000,244 | ---- | M] () -- C:\\WINDOWS\\Link_wprowadzacz.INI
[2009-12-03 19:35:23 | 00,002,596 | ---- | M] () -- C:\\WINDOWS\\System32\\CONFIG.NT
[2009-12-03 18:55:10 | 19,968,616 | ---- | M] (Skype Technologies S.A.                                     ) -- C:\\Documents and Settings\\Belmondo\\Pulpit\\SkypeSetup.exe
[2009-12-03 18:55:10 | 00,212,480 | ---- | M] (SteelWerX) -- C:\\WINDOWS\\SWXCACLS.exe
[2009-12-03 18:55:10 | 00,161,792 | ---- | M] (SteelWerX) -- C:\\WINDOWS\\SWREG.exe
[2009-12-03 18:55:10 | 00,136,704 | ---- | M] (SteelWerX) -- C:\\WINDOWS\\SWSC.exe
[2009-12-03 18:54:58 | 00,783,360 | ---- | M] (Borland Software Corporation) -- C:\\WINDOWS\\System32\\rtl70.bpl
[2009-12-03 18:54:53 | 02,157,568 | ---- | M] (Realtek Semiconductor Corp.) -- C:\\WINDOWS\\MicCal.exe
[2009-12-03 18:54:53 | 00,129,536 | ---- | M] (Zeal SoftStudio) -- C:\\WINDOWS\\System32\\ntport.dll
[2009-12-03 06:23:12 | 00,000,227 | ---- | M] () -- C:\\WINDOWS\\system.ini
[2009-11-28 00:21:37 | 00,032,450 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Pulpit\\Wypalenie zawodowe.docx
[2009-11-27 17:49:55 | 00,002,513 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Pulpit\\Microsoft Office Word 2007.lnk
[2009-11-23 21:33:42 | 00,780,618 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00024.jpg
[2009-11-23 21:33:42 | 00,761,914 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00022.jpg
[2009-11-23 21:33:42 | 00,728,691 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00023.jpg
[2009-11-23 21:33:42 | 00,452,630 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00025.jpg
[2009-11-23 21:33:41 | 00,820,624 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00015.jpg
[2009-11-23 21:33:41 | 00,652,041 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00017.jpg
[2009-11-23 21:33:41 | 00,572,916 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00018.jpg
[2009-11-23 21:33:41 | 00,570,809 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00016.jpg
[2009-11-23 21:33:41 | 00,425,861 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00019.jpg
[2009-11-22 20:38:01 | 00,011,582 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Maria Grabowska 16-20.11.09.docx
[2009-11-21 17:03:37 | 01,206,508 | ---- | M] () -- C:\\WINDOWS\\System32\\dllcache\\sysmain.sdb
[2009-11-21 17:03:06 | 00,471,552 | ---- | M] (Microsoft Corporation) -- C:\\WINDOWS\\System32\\dllcache\\aclayers.dll
[2009-11-14 23:03:28 | 00,011,097 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Wyższa Szkoła Informatyki.docx
[2009-11-14 01:47:57 | 00,260,608 | ---- | M] () -- C:\\WINDOWS\\PEV.exe
[2009-11-12 18:47:43 | 00,013,289 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Maria Grabowska 9-13.11.09.docx
[2009-11-12 16:05:10 | 00,012,624 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\tomsad namiary.docx
[2009-11-10 13:07:23 | 00,013,601 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\9 listopad.docx
[2009-11-09 13:58:44 | 00,010,070 | ---- | M] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Mańkowski Tadeusz Zakład RTV.docx
[3 C:\\WINDOWS\\*.tmp files -> C:\\WINDOWS\\*.tmp -> ]
[1 C:\\WINDOWS\\System32\\*.tmp files -> C:\\WINDOWS\\System32\\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2009-12-09 06:00:13 | 00,000,219 | ---- | C] () -- C:\\WINDOWS\\System32\\MRT.INI
[2009-12-08 20:44:53 | 00,001,734 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Pulpit\\HijackThis.lnk
[2009-12-04 13:00:26 | 00,001,374 | ---- | C] () -- C:\\WINDOWS\\imsins.BAK
[2009-12-04 08:57:48 | 00,000,116 | ---- | C] () -- C:\\WINDOWS\\System32\\fjhdyfhsn.bat
[2009-12-04 08:57:43 | 00,000,004 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\avdrn.dat
[2009-12-03 06:15:50 | 00,077,312 | ---- | C] () -- C:\\WINDOWS\\MBR.exe
[2009-11-27 17:53:17 | 00,032,450 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Pulpit\\Wypalenie zawodowe.docx
[2009-11-23 21:33:42 | 00,780,618 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00024.jpg
[2009-11-23 21:33:42 | 00,761,914 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00022.jpg
[2009-11-23 21:33:42 | 00,728,691 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00023.jpg
[2009-11-23 21:33:42 | 00,452,630 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00025.jpg
[2009-11-23 21:33:41 | 00,820,624 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00015.jpg
[2009-11-23 21:33:41 | 00,652,041 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00017.jpg
[2009-11-23 21:33:41 | 00,572,916 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00018.jpg
[2009-11-23 21:33:41 | 00,570,809 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00016.jpg
[2009-11-23 21:33:41 | 00,425,861 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\DSC00019.jpg
[2009-11-22 20:38:01 | 00,011,582 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Maria Grabowska 16-20.11.09.docx
[2009-11-14 23:03:28 | 00,011,097 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Wyższa Szkoła Informatyki.docx
[2009-11-12 18:45:56 | 00,013,289 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Maria Grabowska 9-13.11.09.docx
[2009-11-09 13:58:44 | 00,010,070 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Moje dokumenty\\Mańkowski Tadeusz Zakład RTV.docx
[2009-10-13 14:36:31 | 00,000,216 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\grids.ini
[2008-12-30 19:32:35 | 00,002,528 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\$_hpcst$.hpc
[2008-12-29 11:24:36 | 00,618,496 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3gang.dll
[2008-12-12 15:53:13 | 00,007,168 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Ustawienia lokalne\\Dane aplikacji\\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2008-12-12 15:51:23 | 00,164,352 | ---- | C] () -- C:\\WINDOWS\\System32\\unrar.dll
[2008-12-12 15:51:23 | 00,000,038 | ---- | C] () -- C:\\WINDOWS\\avisplitter.ini
[2008-11-09 11:34:55 | 00,000,082 | ---- | C] () -- C:\\WINDOWS\\Setuptl.ini
[2008-11-06 21:25:29 | 00,167,936 | ---- | C] () -- C:\\WINDOWS\\System32\\hpsfs.dll
[2008-11-04 22:59:40 | 00,114,688 | ---- | C] () -- C:\\WINDOWS\\System32\\WLANUTL.dll
[2008-11-04 22:43:27 | 00,000,144 | ---- | C] () -- C:\\WINDOWS\\Readiris.ini
[2008-11-04 22:05:44 | 00,000,133 | ---- | C] () -- C:\\Documents and Settings\\Belmondo\\Ustawienia lokalne\\Dane aplikacji\\fusioncache.dat
[2008-11-04 09:23:27 | 00,000,244 | ---- | C] () -- C:\\WINDOWS\\Link_wprowadzacz.INI
[2008-11-03 23:02:43 | 00,041,160 | R--- | C] () -- C:\\WINDOWS\\System32\\gwmvidms.dll
[2008-11-03 23:02:42 | 00,081,920 | R--- | C] () -- C:\\WINDOWS\\System32\\gwmhook.dll
[2008-11-03 23:02:42 | 00,073,785 | R--- | C] () -- C:\\WINDOWS\\System32\\welogon.dll
[2008-11-03 23:02:42 | 00,042,037 | R--- | C] () -- C:\\WINDOWS\\System32\\gwmvid.dll
[2008-11-03 23:02:42 | 00,041,160 | R--- | C] () -- C:\\WINDOWS\\System32\\gwmvidcx.dll
[2008-11-03 23:01:37 | 00,000,380 | ---- | C] () -- C:\\WINDOWS\\dcmuser.ini
[2008-10-07 13:33:00 | 01,703,936 | ---- | C] () -- C:\\WINDOWS\\System32\\nvwdmcpl.dll
[2008-10-07 13:33:00 | 01,486,848 | ---- | C] () -- C:\\WINDOWS\\System32\\nview.dll
[2008-10-07 13:33:00 | 01,019,904 | ---- | C] () -- C:\\WINDOWS\\System32\\nvwimg.dll
[2008-10-07 13:33:00 | 00,466,944 | ---- | C] () -- C:\\WINDOWS\\System32\\nvshell.dll
[2008-10-07 13:33:00 | 00,286,720 | ---- | C] () -- C:\\WINDOWS\\System32\\nvnt4cpl.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelTraditionalChinese.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelSwedish.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelSpanish.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelSimplifiedChinese.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelPortugese.dll
[2008-06-11 09:02:34 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelKorean.dll
[2008-06-11 09:02:32 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelJapanese.dll
[2008-06-11 09:02:32 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelGerman.dll
[2008-06-11 09:02:32 | 00,058,648 | ---- | C] () -- C:\\WINDOWS\\System32\\AgCPanelFrench.dll
[2008-06-05 08:58:26 | 00,197,912 | ---- | C] () -- C:\\WINDOWS\\System32\\physxcudart_20.dll
[2008-04-15 13:00:00 | 00,148,768 | ---- | C] () -- C:\\WINDOWS\\System32\\drivers\\atapi.sys
[2008-01-02 07:05:21 | 00,864,256 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3epm2.dll
[2007-12-14 12:51:58 | 00,163,840 | ---- | C] () -- C:\\WINDOWS\\System32\\hppatusg01.dll
[2007-10-30 02:38:32 | 01,826,816 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3190.dll
[2006-09-18 03:59:17 | 00,561,152 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3list.dll
[2006-08-23 01:56:59 | 01,318,912 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3opt.dll
[2006-08-19 03:06:17 | 00,593,920 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3pin.dll
[2006-06-08 07:39:03 | 00,372,736 | ---- | C] () -- C:\\WINDOWS\\System32\\vp6io.dll
[2006-06-07 04:49:04 | 02,650,112 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3mpu5.dll
[2006-02-09 02:48:41 | 01,847,296 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3180.dll
[2005-10-17 07:45:22 | 03,592,192 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3sepm2.dll
[2005-08-29 11:22:04 | 00,569,344 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3ram.dll
[2005-07-01 11:08:54 | 06,807,552 | ---- | C] () -- C:\\WINDOWS\\System32\\adpter.dll
[2005-05-27 07:39:28 | 01,351,680 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3mpu4.dll
[2005-01-22 02:49:57 | 01,200,128 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3SEPM1.dll
[2005-01-14 09:44:16 | 00,491,520 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3base.dll
[2004-09-17 08:28:50 | 00,036,864 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3io.dll
[2004-09-13 07:43:07 | 01,867,776 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3epm3.dll
[2004-09-05 04:15:04 | 02,543,616 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3MPU.dll
[2004-09-05 04:14:57 | 02,260,992 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3sepm.dll
[2004-09-05 04:14:56 | 03,600,384 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3mpu1.dll
[2004-09-05 04:14:56 | 02,617,344 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3mpu2.dll
[2004-09-05 04:14:55 | 01,495,040 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3epm.dll
[2004-09-05 04:14:55 | 00,552,960 | ---- | C] () -- C:\\WINDOWS\\System32\\vp3com.dll
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2009-09-14 20:29:26 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\ashampoo
[2009-12-03 19:58:26 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\ESET
[2008-11-09 11:34:56 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\GW Micro
[2009-11-08 12:33:30 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\All Users\\Dane aplikacji\\ipla
[2009-11-03 10:25:17 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\12Voip
[2009-09-14 20:29:47 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\Ashampoo
[2008-12-12 16:01:08 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\BESTplayer
[2009-12-03 19:59:13 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\ESET
[2008-11-03 23:17:53 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\Gadu-Gadu
[2008-11-09 11:35:25 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\GW Micro
[2009-12-03 05:50:23 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\ipla
[2009-10-15 05:58:58 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\Thunderbird
[2008-11-03 21:54:27 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\TMP
[2009-08-11 19:41:57 | 00,000,000 | ---D | M] -- C:\\Documents and Settings\\Belmondo\\Dane aplikacji\\VoipDiscount
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %systemdrive%\\*.* >[/color]
[2008-11-03 20:10:06 | 00,000,000 | ---- | M] () -- C:\\AUTOEXEC.BAT
[2008-11-03 20:04:48 | 00,000,211 | -HS- | M] () -- C:\\boot.ini
[2008-04-15 13:00:00 | 00,004,952 | RHS- | M] () -- C:\\Bootfont.bin
[2009-12-03 06:23:52 | 00,008,068 | ---- | M] () -- C:\\ComboFix.txt
[2008-11-03 20:10:06 | 00,000,000 | ---- | M] () -- C:\\CONFIG.SYS
[2008-11-06 21:25:50 | 00,001,194 | ---- | M] () -- C:\\fwdownload.log
[2008-11-03 20:10:06 | 00,000,000 | RHS- | M] () -- C:\\IO.SYS
[2008-11-03 20:10:06 | 00,000,000 | RHS- | M] () -- C:\\MSDOS.SYS
[2008-04-15 13:00:00 | 00,047,564 | RHS- | M] () -- C:\\NTDETECT.COM
[2008-04-15 13:00:00 | 00,251,152 | RHS- | M] () -- C:\\ntldr
[2009-12-09 06:09:26 | 21,453,86496 | -HS- | M] () -- C:\\pagefile.sys
[2008-11-04 23:01:32 | 00,000,159 | ---- | M] () -- C:\\Setup.log
 
[color=#A23BEC]< %systemdrive%\\*. >[/color]
[2009-12-07 12:59:14 | 00,000,000 | -HSD | M] -- C:\\Config.Msi
[2008-11-03 22:56:33 | 00,000,000 | ---D | M] -- C:\\DirectX
[2008-11-03 20:31:11 | 00,000,000 | ---D | M] -- C:\\Documents and Settings
[2008-11-03 21:50:13 | 00,000,000 | ---D | M] -- C:\\Intel
[2008-11-07 15:28:17 | 00,000,000 | R--D | M] -- C:\\MSOCache
[2008-11-03 21:34:55 | 00,000,000 | ---D | M] -- C:\\NVIDIA
[2009-12-08 20:44:52 | 00,000,000 | R--D | M] -- C:\\Program Files
[2009-07-24 20:09:56 | 00,000,000 | ---D | M] -- C:\\RECYCLER
[2009-03-29 11:00:41 | 00,000,000 | -HSD | M] -- C:\\System Volume Information
[2008-11-05 17:55:42 | 00,000,000 | ---D | M] -- C:\\temp
[2009-10-15 15:58:49 | 00,000,000 | ---D | M] -- C:\\weilei
[2009-12-09 06:03:29 | 00,000,000 | ---D | M] -- C:\\WINDOWS
 
[color=#A23BEC]< %systemroot%\\*. /mp /s >[/color]
 
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2009-12-07 13:00:53 | 00,148,768 | ---- | M] () MD5=0B6D32482F49F3B1689903D88E6B19EB -- C:\\WINDOWS\\system32\\drivers\\atapi.sys
[2008-04-14 00:10:32 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\\WINDOWS\\ERDNT\\cache\\atapi.sys
[2008-04-15 13:00:00 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\\WINDOWS\\system32\\drivers\\system32\\DRIVERS\\atapi.sys
[2008-04-15 13:00:00 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\\WINDOWS\\system32\\ReinstallBackups\\0005\\DriverFiles\\i386\\atapi.sys
[2008-04-14 00:10:32 | 00,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\\WINDOWS\\system32\\ReinstallBackups\\0006\\DriverFiles\\i386\\atapi.sys
 
[color=#A23BEC]< MD5 for: BEEP.SYS  >[/color]
[2008-04-15 13:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\\WINDOWS\\ERDNT\\cache\\beep.sys
[2008-04-15 13:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\\WINDOWS\\system32\\dllcache\\beep.sys
[2008-04-15 13:00:00 | 00,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\\WINDOWS\\system32\\drivers\\beep.sys
 
[color=#A23BEC]< MD5 for: EVENTLOG.DLL  >[/color]
[2008-04-15 13:00:00 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\\WINDOWS\\ERDNT\\cache\\eventlog.dll
[2008-04-15 13:00:00 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\\WINDOWS\\system32\\dllcache\\eventlog.dll
[2008-04-15 13:00:00 | 00,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- C:\\WINDOWS\\system32\\eventlog.dll
 
[color=#A23BEC]< MD5 for: REGEDIT.CHM  >[/color]
[2008-04-15 13:00:00 | 00,053,056 | ---- | M] () MD5=7B36C6E57479774E800FC8EA1C2AD743 -- C:\\WINDOWS\\Help\\regedit.chm
 
[color=#A23BEC]< MD5 for: REGEDIT.EXE  >[/color]
[2008-04-15 13:00:00 | 00,149,504 | ---- | M] (Microsoft Corporation) MD5=FD317A23C3EB2A856E74279FBE04B9C2 -- C:\\WINDOWS\\regedit.exe
[2008-04-15 13:00:00 | 00,149,504 | ---- | M] (Microsoft Corporation) MD5=FD317A23C3EB2A856E74279FBE04B9C2 -- C:\\WINDOWS\\system32\\dllcache\\regedit.exe
 
[color=#A23BEC]< MD5 for: REGEDIT.HLP  >[/color]
[2008-04-15 13:00:00 | 00,013,121 | ---- | M] () MD5=6F7ECEC8CFCBA3651815A0B03E304CEA -- C:\\WINDOWS\\Help\\regedit.hlp
< End of report >
 
Wygenerowano w 0.342s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!

Copyright © 2007 - 2010 wklejto.pl Wszelkie prawa zastrzezone