wklejto.pl
Dodane przez: ~Anonim (2009-12-23 22:36) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
577.
578.
579.
580.
581.
582.
583.
584.
585.
OTL logfile created on: 2009-12-23 22:19:11 - Run 1
OTL by OldTimer - Version 3.1.19.0     Folder = C:\\Users\\Elżbieta\\Downloads
Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18865)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
3,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 44,00% Memory free
6,00 Gb Paging File | 5,00 Gb Available in Paging File | 78,00% Paging File free
Paging file location(s): ?:\\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\\Windows | %ProgramFiles% = C:\\Program Files
Drive C: | 142,09 Gb Total Space | 94,17 Gb Free Space | 66,27% Space Free | Partition Type: NTFS
Drive D: | 143,00 Gb Total Space | 142,91 Gb Free Space | 99,94% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 11,74 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
 
Computer Name: ELŻBIETA-PC
Current User Name: Elżbieta
Logged in as Administrator.
 
Current Boot Mode: Normal
Scan Mode: Current user
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
 
[color=#E56717]========== Processes (All) ==========[/color]
 
PRC - [2009-12-23 22:15:01 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\\Users\\Elżbieta\\Downloads\\OTL.exe
PRC - [2009-11-26 18:10:26 | 00,285,296 | ---- | M] (Google Inc.) -- C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbarUser_32.exe
PRC - [2009-11-21 07:42:38 | 00,638,232 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Internet Explorer\\iexplore.exe
PRC - [2009-10-28 20:21:26 | 00,141,600 | ---- | M] (Apple Inc.) -- C:\\Program Files\\iTunes\\iTunesHelper.exe
PRC - [2009-10-28 20:21:14 | 00,545,568 | ---- | M] (Apple Inc.) -- C:\\Program Files\\iPod\\bin\\iPodService.exe
PRC - [2009-10-27 20:29:03 | 00,114,688 | ---- | M] () -- C:\\Program Files\\PLAY ONLINE\\PLAY ONLINE.exe
PRC - [2009-10-20 19:39:28 | 00,340,456 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\avp.exe
PRC - [2009-10-20 19:34:38 | 00,207,376 | ---- | M] (Kaspersky Lab) -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\klwtblfs.exe
PRC - [2009-10-11 04:17:36 | 00,149,280 | ---- | M] (Sun Microsystems, Inc.) -- C:\\Program Files\\Java\\jre6\\bin\\jusched.exe
PRC - [2009-08-28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) -- C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe
PRC - [2009-07-18 04:12:12 | 00,257,440 | R--- | M] (Adobe Systems, Inc.) -- C:\\Windows\\System32\\Macromed\\Flash\\FlashUtil10c.exe
PRC - [2009-07-01 17:37:06 | 00,037,888 | ---- | M] () -- C:\\Program Files\\Winamp\\winampa.exe
PRC - [2009-06-15 13:48:49 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\lsass.exe
PRC - [2009-06-12 08:44:55 | 00,039,408 | ---- | M] (Google Inc.) -- C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe
PRC - [2009-06-03 19:59:02 | 00,103,720 | ---- | M] (CyberLink) -- C:\\Program Files\\CyberLink\\Power2Go\\CLMLSvc.exe
PRC - [2009-05-15 07:47:58 | 00,692,224 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\\Program Files\\Samsung\\Easy Display Manager\\dmhkcore.exe
PRC - [2009-04-15 22:52:06 | 00,091,432 | ---- | M] (CyberLink Corp.) -- C:\\Program Files\\CyberLink\\PowerDVD8\\PDVD8Serv.exe
PRC - [2009-04-11 07:28:13 | 00,314,368 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\winlogon.exe
PRC - [2009-04-11 07:28:07 | 00,169,984 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\taskeng.exe
PRC - [2009-04-11 07:28:05 | 00,127,488 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\spoolsv.exe
PRC - [2009-04-11 07:28:04 | 00,064,000 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\smss.exe
PRC - [2009-04-11 07:28:03 | 01,233,920 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Windows Sidebar\\sidebar.exe
PRC - [2009-04-11 07:27:59 | 00,441,344 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\SearchIndexer.exe
PRC - [2009-04-11 07:27:59 | 00,279,552 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\services.exe
PRC - [2009-04-11 07:27:59 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\SearchProtocolHost.exe
PRC - [2009-04-11 07:27:58 | 00,087,552 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\SearchFilterHost.exe
PRC - [2009-04-11 07:27:49 | 03,408,896 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\SLsvc.exe
PRC - [2009-04-11 07:27:36 | 02,926,592 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\explorer.exe
PRC - [2009-04-11 07:27:33 | 00,081,920 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\dwm.exe
PRC - [2009-03-20 02:31:32 | 00,742,400 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\\Program Files\\Samsung\\EasySpeedUpManager\\EasySpeedUpManager.exe
PRC - [2009-03-12 15:23:14 | 00,733,184 | ---- | M] (ATI Technologies Inc.) -- C:\\Windows\\System32\\Ati2evxx.exe
PRC - [2009-03-05 10:54:50 | 00,311,296 | ---- | M] () -- C:\\Windows\\System32\\Rezip.exe
PRC - [2009-02-13 09:02:30 | 06,814,240 | ---- | M] (Realtek Semiconductor) -- C:\\Program Files\\Realtek\\Audio\\HDA\\RtHDVCpl.exe
PRC - [2008-12-18 06:32:52 | 00,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\MOM.exe
PRC - [2008-12-18 05:19:44 | 00,049,152 | ---- | M] (ATI Technologies Inc.) -- C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CCC.exe
PRC - [2008-12-12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) -- C:\\Program Files\\Bonjour\\mDNSResponder.exe
PRC - [2008-12-10 08:07:52 | 00,352,256 | ---- | M] (SAMSUNG Electronics co., LTD.) -- C:\\Program Files\\Samsung\\EBM\\EasyBatteryMgr3.exe
PRC - [2008-08-28 03:52:58 | 00,103,720 | ---- | M] (Synaptics, Inc.) -- C:\\Program Files\\Synaptics\\SynTP\\SynTPHelper.exe
PRC - [2008-08-28 03:52:50 | 01,049,896 | ---- | M] (Synaptics, Inc.) -- C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe
PRC - [2008-08-26 01:59:54 | 00,045,056 | ---- | M] (Samsung Electronics Co., Ltd.) -- C:\\Program Files\\Samsung\\Samsung Magic Doctor\\MagicDoctorKbdHk.exe
PRC - [2008-03-18 04:27:12 | 00,013,312 | ---- | M] (Agere Systems) -- C:\\Windows\\System32\\agrsmsvc.exe
PRC - [2008-01-21 03:25:11 | 00,125,952 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\ehome\\ehtray.exe
PRC - [2008-01-21 03:25:11 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\ehome\\ehmsas.exe
PRC - [2008-01-21 03:24:59 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\WUDFHost.exe
PRC - [2008-01-21 03:24:54 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\csrss.exe
PRC - [2008-01-21 03:23:44 | 00,229,888 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\lsm.exe
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:43 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\svchost.exe  [comLaunch]
PRC - [2008-01-21 03:23:42 | 00,096,768 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\wininit.exe
PRC - [2008-01-21 03:23:32 | 01,008,184 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Windows Defender\\MSASCui.exe
PRC - [2008-01-16 04:04:36 | 00,030,312 | ---- | M] (Microsoft Corporation) -- C:\\Program Files\\Microsoft Small Business\\Business Contact Manager\\BcmSqlStartupSvc.exe
PRC - [2007-03-11 20:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\HP Software Update\\hpwuSchd2.exe
PRC - [2007-03-11 20:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqste08.exe
PRC - [2007-03-11 20:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqtra08.exe
 
 
[color=#E56717]========== Modules (All) ==========[/color]
 
MOD - [2009-12-23 22:15:01 | 00,513,536 | ---- | M] (OldTimer Tools) -- C:\\Users\\Elżbieta\\Downloads\\OTL.exe
MOD - [2009-09-24 23:54:55 | 00,258,048 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\winspool.drv
MOD - [2009-07-17 14:54:43 | 00,071,680 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\atl.dll
MOD - [2009-06-15 15:53:43 | 00,072,704 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\secur32.dll
MOD - [2009-06-15 15:52:42 | 00,023,552 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\lpk.dll
MOD - [2009-04-23 13:15:07 | 00,784,896 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\rpcrt4.dll
MOD - [2009-04-11 07:28:25 | 01,077,248 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\vssapi.dll
MOD - [2009-04-11 07:28:25 | 00,627,712 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\user32.dll
MOD - [2009-04-11 07:28:25 | 00,502,272 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\usp10.dll
MOD - [2009-04-11 07:28:25 | 00,287,744 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\Wldap32.dll
MOD - [2009-04-11 07:28:25 | 00,108,544 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\userenv.dll
MOD - [2009-04-11 07:28:25 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\version.dll
MOD - [2009-04-11 07:28:24 | 11,584,000 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\shell32.dll
MOD - [2009-04-11 07:28:24 | 01,591,296 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\setupapi.dll
MOD - [2009-04-11 07:28:24 | 01,068,032 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\shdocvw.dll
MOD - [2009-04-11 07:28:24 | 00,353,280 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\shlwapi.dll
MOD - [2009-04-11 07:28:24 | 00,142,336 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\spp.dll
MOD - [2009-04-11 07:28:24 | 00,057,344 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\samlib.dll
MOD - [2009-04-11 07:28:23 | 01,316,864 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\ole32.dll
MOD - [2009-04-11 07:28:23 | 00,754,688 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\propsys.dll
MOD - [2009-04-11 07:28:23 | 00,563,712 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\oleaut32.dll
MOD - [2009-04-11 07:28:23 | 00,467,456 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\netapi32.dll
MOD - [2009-04-11 07:28:23 | 00,121,344 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\ntmarta.dll
MOD - [2009-04-11 07:28:23 | 00,088,576 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\olepro32.dll
MOD - [2009-04-11 07:28:22 | 00,679,936 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\msvcrt.dll
MOD - [2009-04-11 07:28:20 | 00,891,392 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\kernel32.dll
MOD - [2009-04-11 07:28:20 | 00,807,424 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\msctf.dll
MOD - [2009-04-11 07:28:20 | 00,114,688 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\imm32.dll
MOD - [2009-04-11 07:28:20 | 00,068,608 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\mpr.dll
MOD - [2009-04-11 07:28:19 | 00,297,472 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\gdi32.dll
MOD - [2009-04-11 07:28:18 | 00,079,872 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\authz.dll
MOD - [2009-04-11 07:28:17 | 00,800,768 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\advapi32.dll
MOD - [2009-04-11 07:28:17 | 00,171,008 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\apphelp.dll
MOD - [2009-04-11 07:27:49 | 01,202,168 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\ntdll.dll
MOD - [2009-04-11 07:21:38 | 01,686,016 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\winsxs\\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\\comctl32.dll
MOD - [2008-01-21 03:25:29 | 00,040,960 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\srclient.dll
MOD - [2008-01-21 03:24:48 | 00,179,200 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\ws2_32.dll
MOD - [2008-01-21 03:24:47 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\nsi.dll
MOD - [2008-01-21 03:24:37 | 00,183,296 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\xmllite.dll
MOD - [2008-01-21 03:24:26 | 00,069,120 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\vsstrace.dll
MOD - [2008-01-21 03:24:24 | 00,523,776 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\clbcatq.dll
MOD - [2008-01-21 03:23:43 | 00,240,128 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\uxtheme.dll
MOD - [2006-11-02 10:46:12 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\\Windows\\System32\\psapi.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2009-12-19 23:40:33 | 00,044,576 | ---- | M] (NOS Microsystems Ltd.) [On_Demand | Stopped] -- C:\\Program Files\\NOS\\bin\\getPlus_Helper.dll -- (getPlusHelper) getPlus(R)
SRV - [2009-10-28 20:21:14 | 00,545,568 | ---- | M] (Apple Inc.) [On_Demand | Running] -- C:\\Program Files\\iPod\\bin\\iPodService.exe -- (iPod Service)
SRV - [2009-10-20 19:39:28 | 00,340,456 | ---- | M] (Kaspersky Lab) [Auto | Running] -- C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\avp.exe -- (AVP)
SRV - [2009-10-17 13:52:16 | 00,182,768 | ---- | M] (Google) [On_Demand | Stopped] -- C:\\Program Files\\Google\\Common\\Google Updater\\GoogleUpdaterService.exe -- (gusvc)
SRV - [2009-09-25 02:27:04 | 00,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\\Windows\\System32\\FntCache.dll -- (FontCache)
SRV - [2009-08-28 19:42:54 | 00,144,672 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleMobileDeviceService.exe -- (Apple Mobile Device)
SRV - [2009-03-12 15:23:14 | 00,733,184 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- C:\\Windows\\System32\\Ati2evxx.exe -- (Ati External Event Utility)
SRV - [2009-03-05 10:54:50 | 00,311,296 | ---- | M] () [Auto | Running] -- C:\\Windows\\System32\\Rezip.exe -- (Rezip)
SRV - [2009-01-30 10:07:00 | 00,282,624 | ---- | M] (Marvell) [Auto | Running] -- C:\\Windows\\System32\\ykx32mpcoinst.dll -- (yksvc)
SRV - [2008-12-12 11:17:38 | 00,238,888 | ---- | M] (Apple Inc.) [Auto | Running] -- C:\\Program Files\\Bonjour\\mDNSResponder.exe -- (Bonjour Service)
SRV - [2008-03-18 04:27:12 | 00,013,312 | ---- | M] (Agere Systems) [Auto | Running] -- C:\\Windows\\System32\\agrsmsvc.exe -- (AgereModemAudio)
SRV - [2008-01-21 03:23:32 | 00,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\\Program Files\\Windows Defender\\MpSvc.dll -- (WinDefend)
SRV - [2008-01-16 04:04:36 | 00,030,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\\Program Files\\Microsoft Small Business\\Business Contact Manager\\BcmSqlStartupSvc.exe -- (BcmSqlStartupSvc)
SRV - [2007-06-04 21:14:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqcxs08.dll -- (hpqcxs08)
SRV - [2007-06-04 21:14:50 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\\Program Files\\HP\\Digital Imaging\\bin\\hpqddsvc.dll -- (hpqddsvc)
SRV - [2006-11-08 15:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\\Windows\\System32\\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2006-11-08 15:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\\Windows\\System32\\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2006-11-02 13:35:29 | 00,013,312 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\\Windows\\ehome\\ehstart.dll -- (ehstart)
SRV - [2006-10-26 11:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\\Program Files\\Common Files\\Microsoft Shared\\OFFICE12\\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 05:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\\Program Files\\Common Files\\Microsoft Shared\\Source Engine\\OSE.EXE -- (ose)
SRV - [2006-04-14 02:07:20 | 28,933,976 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\\Program Files\\Microsoft SQL Server\\MSSQL.1\\MSSQL\\Binn\\sqlservr.exe -- (MSSQL$MSSMLBIZ) SQL Server (MSSMLBIZ)
SRV - [2006-04-14 02:05:58 | 00,240,416 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\\Program Files\\Microsoft SQL Server\\90\\Shared\\sqlbrowser.exe -- (SQLBrowser)
SRV - [2006-04-14 02:04:54 | 00,087,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\\Program Files\\Microsoft SQL Server\\90\\Shared\\sqlwriter.exe -- (SQLWriter)
SRV - [2005-10-13 19:50:20 | 00,045,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\\Program Files\\Microsoft SQL Server\\90\\Shared\\sqladhlp90.exe -- (MSSQLServerADHelper)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - [2009-12-16 17:36:06 | 00,311,312 | ---- | M] (Kaspersky Lab) [File_System | System | Running] -- C:\\Windows\\System32\\drivers\\klif.sys -- (KLIF)
DRV - [2009-10-14 20:18:34 | 00,036,880 | ---- | M] (Kaspersky Lab) [Kernel | Boot | Running] -- C:\\Windows\\system32\\drivers\\klbg.sys -- (klbg)
DRV - [2009-10-02 18:39:36 | 00,019,472 | ---- | M] (Kaspersky Lab) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\klmouflt.sys -- (klmouflt)
DRV - [2009-09-14 13:46:36 | 00,021,520 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\\Windows\\System32\\drivers\\klim6.sys -- (KLIM6)
DRV - [2009-09-05 14:25:36 | 01,183,744 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\athr.sys -- (athr)
DRV - [2009-09-01 14:29:50 | 00,128,016 | ---- | M] (Kaspersky Lab) [Kernel | System | Running] -- C:\\Windows\\System32\\drivers\\kl1.sys -- (kl1)
DRV - [2009-08-28 19:42:52 | 00,040,448 | ---- | M] (Apple, Inc.) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\usbaapl.sys -- (USBAAPL)
DRV - [2009-05-18 14:17:00 | 00,026,600 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2009-03-12 17:25:28 | 04,386,304 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\atikmdag.sys -- (atikmdag)
DRV - [2009-02-13 08:49:56 | 02,325,728 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)
DRV - [2009-02-11 09:11:50 | 00,329,752 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\\Windows\\system32\\DRIVERS\\iaStor.sys -- (iaStor)
DRV - [2009-01-30 10:07:00 | 00,311,296 | ---- | M] (Marvell) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\yk60x86.sys -- (yukonwlh)
DRV - [2008-11-21 02:22:24 | 00,238,464 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\VMC326.sys -- (VMC326)
DRV - [2008-10-09 15:42:42 | 00,017,408 | ---- | M] (Windows (R) Codename Longhorn DDK provider) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\KMWDFILTER.sys -- (KMWDFILTER)
DRV - [2008-08-28 03:52:52 | 00,199,344 | ---- | M] (Synaptics, Inc.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\SynTP.sys -- (SynTP)
DRV - [2008-08-12 03:03:20 | 00,013,312 | ---- | M] (SAMSUNG ELECTRONICS CO., LTD.) [Kernel | Auto | Running] -- C:\\Windows\\System32\\drivers\\KMDFMEMIO.sys -- (KMDFMEMIO)
DRV - [2008-03-21 04:13:00 | 01,203,776 | ---- | M] (Agere Systems) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\AGRSM.sys -- (AgereSoftModem)
DRV - [2008-03-17 11:05:30 | 00,101,632 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\\Windows\\System32\\drivers\\ewusbmdm.sys -- (hwdatacard)
DRV - [2008-01-21 03:23:27 | 00,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\megasr.sys -- (MegaSR)
DRV - [2008-01-21 03:23:27 | 00,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\adpu320.sys -- (adpu320)
DRV - [2008-01-21 03:23:27 | 00,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\megasas.sys -- (megasas)
DRV - [2008-01-21 03:23:26 | 00,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\adpu160m.sys -- (adpu160m)
DRV - [2008-01-21 03:23:26 | 00,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\sisraid4.sys -- (SiSRaid4)
DRV - [2008-01-21 03:23:26 | 00,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\hpcisss.sys -- (HpCISSs)
DRV - [2008-01-21 03:23:25 | 00,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\adpahci.sys -- (adpahci)
DRV - [2008-01-21 03:23:25 | 00,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\lsi_sas.sys -- (LSI_SAS)
DRV - [2008-01-21 03:23:24 | 01,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\ql2300.sys -- (ql2300)
DRV - [2008-01-21 03:23:24 | 00,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\E1G60I32.sys -- (E1G60) Intel(R)
DRV - [2008-01-21 03:23:24 | 00,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\arcsas.sys -- (arcsas)
DRV - [2008-01-21 03:23:23 | 00,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\iastorv.sys -- (iaStorV)
DRV - [2008-01-21 03:23:23 | 00,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\vsmraid.sys -- (vsmraid)
DRV - [2008-01-21 03:23:23 | 00,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\ulsata2.sys -- (ulsata2)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2008-01-21 03:23:23 | 00,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\lsi_fc.sys -- (LSI_FC)
DRV - [2008-01-21 03:23:23 | 00,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\arc.sys -- (arc)
DRV - [2008-01-21 03:23:22 | 00,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\elxstor.sys -- (elxstor)
DRV - [2008-01-21 03:23:21 | 00,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\adp94xx.sys -- (adp94xx)
DRV - [2008-01-21 03:23:21 | 00,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\nvraid.sys -- (nvraid)
DRV - [2008-01-21 03:23:21 | 00,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\nvstor.sys -- (nvstor)
DRV - [2008-01-21 03:23:20 | 02,225,664 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\NETw3v32.sys -- (NETw3v32) Intel(R)
DRV - [2008-01-21 03:23:20 | 00,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\uliahci.sys -- (uliahci)
DRV - [2008-01-21 03:23:00 | 00,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\viaide.sys -- (viaide)
DRV - [2008-01-21 03:23:00 | 00,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\cmdide.sys -- (cmdide)
DRV - [2008-01-21 03:23:00 | 00,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\aliide.sys -- (aliide)
DRV - [2006-11-02 10:50:35 | 00,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\ql40xx.sys -- (ql40xx)
DRV - [2006-11-02 10:50:35 | 00,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\ulsata.sys -- (UlSata)
DRV - [2006-11-02 10:50:19 | 00,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\nfrd960.sys -- (nfrd960)
DRV - [2006-11-02 10:50:17 | 00,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\iirsp.sys -- (iirsp)
DRV - [2006-11-02 10:50:11 | 00,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\djsvs.sys -- (aic78xx)
DRV - [2006-11-02 10:50:09 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\iteraid.sys -- (iteraid)
DRV - [2006-11-02 10:50:07 | 00,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\iteatapi.sys -- (iteatapi)
DRV - [2006-11-02 10:50:05 | 00,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\symc8xx.sys -- (Symc8xx)
DRV - [2006-11-02 10:50:03 | 00,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\sym_u3.sys -- (Sym_u3)
DRV - [2006-11-02 10:49:59 | 00,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\mraid35x.sys -- (Mraid35x)
DRV - [2006-11-02 10:49:56 | 00,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\sym_hi.sys -- (Sym_hi)
DRV - [2006-11-02 09:25:24 | 00,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2006-11-02 09:24:47 | 00,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\\Windows\\system32\\drivers\\brusbser.sys -- (BrUsbSer)
DRV - [2006-11-02 09:24:46 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\\Windows\\system32\\drivers\\brfiltup.sys -- (BrFiltUp)
DRV - [2006-11-02 09:24:45 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- C:\\Windows\\system32\\drivers\\brfiltlo.sys -- (BrFiltLo)
DRV - [2006-11-02 09:24:44 | 00,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\brserwdm.sys -- (BrSerWdm)
DRV - [2006-11-02 09:24:44 | 00,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\brusbmdm.sys -- (BrUsbMdm)
DRV - [2006-11-02 08:36:50 | 00,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- C:\\Windows\\system32\\drivers\\ntrigdigi.sys -- (ntrigdigi)
DRV - [2006-11-02 08:30:53 | 00,045,056 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\bcm4sbxp.sys -- (bcm4sbxp)
DRV - [2006-11-02 07:37:21 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- C:\\Windows\\System32\\drivers\\secdrv.sys -- (secdrv)
DRV - [2006-10-19 03:10:57 | 01,380,864 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\\Windows\\System32\\drivers\\igdkmd32.sys -- (ialm)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN
IE - HKLM\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=SMSN&bmod=SMSN
 
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Default_Page_URL = http://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,Start Page = http://www.google.com/ig/redirectdomain?brand=smsn&bmod=smsn
IE - HKCU\\SOFTWARE\\Microsoft\\Internet Explorer\\Main,StartPageCache = 1
IE - HKCU\\Software\\Microsoft\\Windows\\CurrentVersion\\Internet Settings: \"ProxyEnable\" = 0
 
FF - HKLM\\software\\mozilla\\Thunderbird\\Extensions\\\\{eea12ec4-729d-4703-bc37-106ce9879ce2}: C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\THBExt [2009-12-16 17:22:12 | 00,000,000 | ---D | M]
 
 
O1 HOSTS File: (761 bytes) - C:\\Windows\\System32\\drivers\\etc\\hosts
O1 - Hosts: 127.0.0.1       localhost
O1 - Hosts: ::1             localhost
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\\Program Files\\Common Files\\Adobe\\Acrobat\\ActiveX\\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (IEVkbdBHO Class) - {59273AB4-E7D3-40F9-A1A8-6FA9CCA1862C} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\ievkbd.dll (Kaspersky Lab)
O2 - BHO: (Google Toolbar Helper) - {AA58ED58-01DD-4d91-8333-CF10577473F7} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\\Program Files\\Google\\GoogleToolbarNotifier\\5.4.4525.1752\\swg.dll (Google Inc.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\\Program Files\\Java\\jre6\\bin\\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (FilterBHO Class) - {E33CF602-D945-461A-83F0-819F76A199F8} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\klwtbbho.dll (Kaspersky Lab)
O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - C:\\Users\\Elżbieta\\AppData\\Roaming\\Gadu-Gadu 10\\_userdata\\ggbho.2.dll (GG Network S.A.)
O3 - HKLM\\..\\Toolbar: (Google Toolbar) - {2318C2B1-4965-11d4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O3 - HKCU\\..\\Toolbar\\WebBrowser: (Google Toolbar) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - C:\\Program Files\\Google\\Google Toolbar\\GoogleToolbar_32.dll (Google Inc.)
O4 - HKLM..\\Run: [Adobe ARM] C:\\Program Files\\Common Files\\Adobe\\ARM\\1.0\\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\\Run: [Adobe Reader Speed Launcher] C:\\Program Files\\Adobe\\Reader 9.0\\Reader\\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\\Run: [AppleSyncNotifier] C:\\Program Files\\Common Files\\Apple\\Mobile Device Support\\bin\\AppleSyncNotifier.exe (Apple Inc.)
O4 - HKLM..\\Run: [AVP] C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\avp.exe (Kaspersky Lab)
O4 - HKLM..\\Run: [CLMLServer] C:\\Program Files\\CyberLink\\Power2Go\\CLMLSvc.exe (CyberLink)
O4 - HKLM..\\Run: [HP Software Update] C:\\Program Files\\HP\\HP Software Update\\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\\Run: [iTunesHelper] C:\\Program Files\\iTunes\\iTunesHelper.exe (Apple Inc.)
O4 - HKLM..\\Run: [PDVD8LanguageShortcut] C:\\Program Files\\CyberLink\\PowerDVD8\\Language\\Language.exe (CyberLink Corp.)
O4 - HKLM..\\Run: [QuickTime Task] C:\\Program Files\\QuickTime\\QTTask.exe (Apple Inc.)
O4 - HKLM..\\Run: [RemoteControl8] C:\\Program Files\\CyberLink\\PowerDVD8\\PDVD8Serv.exe (CyberLink Corp.)
O4 - HKLM..\\Run: [RtHDVCpl] C:\\Program Files\\Realtek\\Audio\\HDA\\RtHDVCpl.exe (Realtek Semiconductor)
O4 - HKLM..\\Run: [Skytel] C:\\Program Files\\Realtek\\Audio\\HDA\\SkyTel.exe (Realtek Semiconductor Corp.)
O4 - HKLM..\\Run: [StartCCC] C:\\Program Files\\ATI Technologies\\ATI.ACE\\Core-Static\\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\\Run: [SunJavaUpdateSched] C:\\Program Files\\Java\\jre6\\bin\\jusched.exe (Sun Microsystems, Inc.)
O4 - HKLM..\\Run: [SynTPEnh] C:\\Program Files\\Synaptics\\SynTP\\SynTPEnh.exe (Synaptics, Inc.)
O4 - HKLM..\\Run: [UpdateLBPShortCut] C:\\Program Files\\CyberLink\\LabelPrint\\MUITransfer\\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\\Run: [UpdateP2GoShortCut] C:\\Program Files\\CyberLink\\Power2Go\\MUITransfer\\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\\Run: [UpdatePDRShortCut] C:\\Program Files\\CyberLink\\PowerDirector\\MUITransfer\\MUIStartMenu.exe (CyberLink Corp.)
O4 - HKLM..\\Run: [WinampAgent] C:\\Program Files\\Winamp\\winampa.exe ()
O4 - HKLM..\\Run: [Windows Defender] C:\\Program Files\\Windows Defender\\MSASCui.exe (Microsoft Corporation)
O4 - HKCU..\\Run: [Gadu-Gadu 10] C:\\Program Files\\Gadu-Gadu 10\\gg.exe (GG Network S.A.)
O4 - HKCU..\\Run: [swg] C:\\Program Files\\Google\\GoogleToolbarNotifier\\GoogleToolbarNotifier.exe (Google Inc.)
O6 - HKLM\\SOFTWARE\\Microsoft\\Windows\\CurrentVersion\\policies\\Explorer: NoDriveTypeAutoRun = 28
O8 - Extra context menu item: Dodaj do blokowanych banerów - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\ie_banner_deny.htm ()
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\\Program Files\\Microsoft Office\\Office12\\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Funkcja Google Sidewiki - C:\\Program Files\\Google\\Google Toolbar\\Component\\GoogleToolbarDynamic_mui_en_60D6097707281E79.dll (Google Inc.)
O9 - Extra Button: &Wirtualna klawiatura - {4248FE82-7FCB-46AC-B270-339F08212110} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\klwtbbho.dll (Kaspersky Lab)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\\Program Files\\Microsoft Office\\Office12\\REFIEBAR.DLL (Microsoft Corporation)
O9 - Extra Button: &Sprawdzanie adresów - {CCF151D8-D089-449F-A5A4-D9909053F20F} - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\klwtbbho.dll (Kaspersky Lab)
O10 - NameSpace_Catalog5\\Catalog_Entries\\000000000008 [] - C:\\Program Files\\Bonjour\\mdnsNSP.dll (Apple Inc.)
O13 - gopher Prefix: missing
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O18 - Protocol\\Handler\\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\\Program Files\\Common Files\\microsoft shared\\Help\\hxds.dll (Microsoft Corporation)
O18 - Protocol\\Handler\\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\\Program Files\\Common Files\\Skype\\Skype4COM.dll (Skype Technologies)
O18 - Protocol\\Filter\\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\\Program Files\\Common Files\\microsoft shared\\OFFICE12\\MSOXMLMF.DLL (Microsoft Corporation)
O20 - AppInit_DLLs: (C:\\PROGRA~1\\KASPER~1\\KASPER~1\\mzvkbd3.dll) - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\mzvkbd3.dll (Kaspersky Lab)
O20 - AppInit_DLLs: (C:\\PROGRA~1\\KASPER~1\\KASPER~1\\kloehk.dll) - C:\\Program Files\\Kaspersky Lab\\Kaspersky Internet Security 2010\\kloehk.dll (Kaspersky Lab)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\\Windows\\explorer.exe (Microsoft Corporation)
O20 - Winlogon\\Notify\\klogon: DllName - C:\\Windows\\system32\\klogon.dll - C:\\Windows\\System32\\klogon.dll (Kaspersky Lab)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2006-09-18 22:43:36 | 00,000,024 | ---- | M] () - C:\\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.) - F:\\AutoRun.exe -- [ CDFS ]
O32 - AutoRun File - [2008-08-04 18:05:00 | 00,000,049 | R--- | M] () - F:\\AUTORUN.INF -- [ CDFS ]
O33 - MountPoints2\\{42789b06-bb1c-11de-b150-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{42789b06-bb1c-11de-b150-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{44fe2a02-e98f-11de-aa3f-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{44fe2a02-e98f-11de-aa3f-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{4b32d8f4-cc9e-11de-b248-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{4b32d8f4-cc9e-11de-b248-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{5c4ebc8b-bf20-11de-a540-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{5c4ebc8b-bf20-11de-a540-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{6579c83e-c32a-11de-b237-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{6579c83e-c32a-11de-b237-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{6579c85a-c32a-11de-b237-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{6579c85a-c32a-11de-b237-002454069c87}\\Shell\\AutoRun\\command - \"\" = G:\\AutoRun.exe -- File not found
O33 - MountPoints2\\{c1b23fe8-bb11-11de-971a-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{c1b23fe8-bb11-11de-971a-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\{c1b2400e-bb11-11de-971a-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{c1b2400e-bb11-11de-971a-002454069c87}\\Shell\\AutoRun\\command - \"\" = G:\\AutoRun.exe -- File not found
O33 - MountPoints2\\{c99e4d9e-d5b1-11de-b812-002454069c87}\\Shell - \"\" = AutoRun
O33 - MountPoints2\\{c99e4d9e-d5b1-11de-b812-002454069c87}\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O33 - MountPoints2\\F\\Shell - \"\" = AutoRun
O33 - MountPoints2\\F\\Shell\\AutoRun\\command - \"\" = F:\\AutoRun.exe -- [2008-04-23 22:44:40 | 00,114,688 | R--- | M] (Huawei Technologies Co., Ltd.)
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - comfile [open] -- \"%1\" %*
O35 - exefile [open] -- \"%1\" %*
 
NetSvcs: FastUserSwitchingCompatibility -  File not found
NetSvcs: Ias - C:\\Windows\\System32\\ias [2008-01-21 03:34:27 | 00,000,000 | ---D | M]
NetSvcs: Irmon - C:\\Windows\\System32\\irmon.dll (Microsoft Corporation)
NetSvcs: Nla -  File not found
NetSvcs: Ntmssvc -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: SRService -  File not found
NetSvcs: Wmi - C:\\Windows\\System32\\wmi.dll (Microsoft Corporation)
NetSvcs: WmdmPmSp -  File not found
NetSvcs: LogonHours -  File not found
NetSvcs: PCAudit -  File not found
NetSvcs: helpsvc -  File not found
NetSvcs: uploadmgr -  File not found
 
 
SafeBootMin: AppMgmt - Service
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: HelpSvc - Service
SafeBootMin: MCODS - Service
SafeBootMin: NTDS -  File not found
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: sacsvr - Service
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: WinDefend - C:\\Program Files\\Windows Defender\\MpSvc.dll (Microsoft Corporation)
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootMin: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootMin: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootMin: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
SafeBootNet: AppMgmt - Service
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: HelpSvc - Service
SafeBootNet: MCODS - Service
SafeBootNet: Messenger - Service
SafeBootNet: MpfService - Service
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: NTDS -  File not found
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: rdsessmgr - Service
SafeBootNet: sacsvr - Service
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: WinDefend - C:\\Program Files\\Windows Defender\\MpSvc.dll (Microsoft Corporation)
SafeBootNet: WudfPf - Driver
SafeBootNet: WudfUsbccidDriver - Driver
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {50DD5230-BA8A-11D1-BF5D-0000F805F530} - Smart card readers
SafeBootNet: {533C5B84-EC70-11D2-9505-00C04F79DEAF} - Volume shadow copy
SafeBootNet: {6BDD1FC1-810F-11D0-BEC7-08002BE2092F} - IEEE 1394 Bus host controllers
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
SafeBootNet: {D48179BE-EC20-11D1-B6B8-00C04FA372A7} - SBP2 IEEE 1394 Devices
SafeBootNet: {D94EE5D8-D189-4994-83D2-F68D7D41B0E6} - SecurityDevices
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2009-12-22 15:27:49 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\AppData\\Roaming\\Ashampoo
[2009-12-22 15:23:56 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\AppData\\Local\\ashampoo
[2009-12-22 15:23:55 | 00,000,000 | ---D | C] -- C:\\ProgramData\\ashampoo
[2009-12-22 15:23:13 | 00,000,000 | ---D | C] -- C:\\ProgramData\\page
[2009-12-22 15:23:13 | 00,000,000 | ---D | C] -- C:\\Program Files\\Ashampoo
[2009-12-22 13:44:45 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\AppData\\Local\\Shareaza
[2009-12-22 13:43:03 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\AppData\\Roaming\\Shareaza
[2009-12-20 00:14:15 | 00,000,000 | ---D | C] -- C:\\Program Files\\CoffeeCup Software
[2009-12-19 23:54:48 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\AppData\\Roaming\\PhotoFiltre
[2009-12-19 23:40:34 | 00,000,000 | ---D | C] -- C:\\ProgramData\\NOS
[2009-12-19 23:40:33 | 00,000,000 | ---D | C] -- C:\\Program Files\\NOS
[2009-12-18 14:44:26 | 00,722,192 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\vb40032.dll
[2009-12-16 17:21:40 | 00,000,000 | ---D | C] -- C:\\Program Files\\Kaspersky Lab
[2009-12-16 17:21:19 | 00,311,312 | ---- | C] (Kaspersky Lab) -- C:\\Windows\\System32\\drivers\\klif.sys
[2009-12-16 15:31:38 | 00,000,000 | ---D | C] -- C:\\ProgramData\\Kaspersky Lab
[2009-12-16 15:08:40 | 00,000,000 | ---D | C] -- C:\\ProgramData\\Kaspersky Lab Setup Files
[2009-12-14 08:19:41 | 00,000,000 | ---D | C] -- C:\\Program Files\\MSECache
[2009-12-13 04:23:48 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\Documents\\Moje zeskanowane obrazy
[2009-12-11 17:32:07 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\nshhttp.dll
[2009-12-11 17:32:05 | 00,030,720 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\httpapi.dll
[2009-12-09 21:47:18 | 00,594,432 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\msfeeds.dll
[2009-12-09 21:47:17 | 01,469,440 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\inetcpl.cpl
[2009-12-09 21:47:17 | 00,387,584 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\iedkcs32.dll
[2009-12-09 21:47:17 | 00,184,320 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\iepeers.dll
[2009-12-09 21:47:17 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\ie4uinit.exe
[2009-12-09 21:47:17 | 00,164,352 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\ieui.dll
[2009-12-09 21:47:17 | 00,133,632 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\ieUnatt.exe
[2009-12-09 21:47:17 | 00,109,056 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\iesysprep.dll
[2009-12-09 21:47:17 | 00,055,296 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\msfeedsbs.dll
[2009-12-09 21:47:17 | 00,025,600 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\jsproxy.dll
[2009-12-09 21:47:17 | 00,013,312 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\msfeedssync.exe
[2009-12-09 21:47:16 | 01,638,912 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\mshtml.tlb
[2009-12-09 21:47:16 | 00,071,680 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\iesetup.dll
[2009-12-09 21:47:16 | 00,055,808 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\iernonce.dll
[2009-12-09 21:10:29 | 00,243,712 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\rastls.dll
[2009-12-07 23:15:56 | 00,000,000 | ---D | C] -- C:\\Users\\Elżbieta\\Documents\\Originals
[2009-12-05 18:00:48 | 00,000,000 | ---D | C] -- C:\\Program Files\\PhotoScape
[2009-11-25 22:13:44 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\tzres.dll
[2009-11-25 21:59:28 | 00,714,240 | ---- | C] (Microsoft Corporation) -- C:\\Windows\\System32\\timedate.cpl
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2009-12-23 22:26:31 | 02,097,152 | -HS- | M] () -- C:\\Users\\Elżbieta\\NTUSER.DAT
[2009-12-23 22:23:34 | 00,004,784 | -H-- | M] () -- C:\\Windows\\System32\\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0
[2009-12-23 22:23:34 | 00,004,784 | -H-- | M] () -- C:\\Windows\\System32\\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0
[2009-12-23 21:30:53 | 00,001,775 | ---- | M] () -- C:\\Users\\Elżbieta\\Desktop\\Pełne skanowanie.lnk
[2009-12-23 18:01:20 | 00,000,424 | -H-- | M] () -- C:\\Windows\\tasks\\User_Feed_Synchronization-{91FE3195-410C-4007-B686-CA48A0E646E5}.job
[2009-12-23 17:31:15 | 01,600,154 | ---- | M] () -- C:\\Windows\\System32\\PerfStringBackup.INI
[2009-12-23 17:31:15 | 00,708,764 | ---- | M] () -- C:\\Windows\\System32\\perfh015.dat
[2009-12-23 17:31:15 | 00,633,886 | ---- | M] () -- C:\\Windows\\System32\\perfh009.dat
[2009-12-23 17:31:15 | 00,144,430 | ---- | M] () -- C:\\Windows\\System32\\perfc015.dat
[2009-12-23 17:31:15 | 00,118,772 | ---- | M] () -- C:\\Windows\\System32\\perfc009.dat
[2009-12-23 14:23:37 | 00,000,006 | -H-- | M] () -- C:\\Windows\\tasks\\SA.DAT
[2009-12-23 14:23:33 | 00,067,584 | --S- | M] () -- C:\\Windows\\bootstat.dat
[2009-12-23 14:23:30 | 32,155,77088 | -HS- | M] () -- C:\\hiberfil.sys
[2009-12-23 12:19:52 | 00,000,012 | ---- | M] () -- C:\\Windows\\bthservsdp.dat
[2009-12-23 12:19:50 | 00,524,288 | -HS- | M] () -- C:\\Users\\Elżbieta\\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TMContainer00000000000000000001.regtrans-ms
[2009-12-23 12:19:50 | 00,065,536 | -HS- | M] () -- C:\\Users\\Elżbieta\\NTUSER.DAT{3a539871-6a70-11db-887c-d362bd253390}.TM.blf
[2009-12-23 12:19:41 | 02,867,979 | -H-- | M] () -- C:\\Users\\Elżbieta\\AppData\\Local\\IconCache.db
[2009-12-22 23:20:58 | 00,005,120 | -H-- | M] () -- C:\\Users\\Elżbieta\\Documents\\photothumb.db
[2009-12-22 15:23:43 | 00,000,966 | ---- | M] () -- C:\\Users\\Elżbieta\\Desktop\\Ashampoo Burning Studio 2010.lnk
[2009-12-22 15:23:41 | 00,001,456 | ---- | M] () -- C:\\Users\\Public\\Desktop\\Idz do WWW.THE-PAGE.COM.lnk
[2009-12-20 00:14:31 | 00,000,013 | ---- | M] () -- C:\\Windows\\System32\\WinSys16.crc
[2009-12-18 13:55:20 | 00,000,674 | ---- | M] () -- C:\\Users\\Public\\Desktop\\Opera.lnk
[2009-12-17 19:20:14 | 00,002,310 | ---- | M] () -- C:\\Windows\\unins001.dat
[2009-12-17 14:33:45 | 00,001,630 | ---- | M] () -- C:\\Users\\Elżbieta\\Desktop\\CCleaner.lnk
[2009-12-16 17:36:06 | 00,311,312 | ---- | M] (Kaspersky Lab) -- C:\\Windows\\System32\\drivers\\klif.sys
[2009-12-16 17:23:01 | 00,108,059 | ---- | M] () -- C:\\Windows\\System32\\drivers\\klin.dat
[2009-12-16 17:23:01 | 00,095,259 | ---- | M] () -- C:\\Windows\\System32\\drivers\\klick.dat
[2009-12-15 18:57:43 | 00,015,582 | ---- | M] () -- C:\\Users\\Elżbieta\\Documents\\cv-ja.docx
[2009-12-14 08:21:16 | 00,102,173 | ---- | M] () -- C:\\Users\\Elżbieta\\Documents\\Elizabeth Ball 1.pdf
[2009-12-14 08:08:29 | 00,032,444 | ---- | M] () -- C:\\Users\\Elżbieta\\Documents\\Elizabeth Ball 1.docx
[2009-12-13 04:52:37 | 00,041,464 | ---- | M] () -- C:\\Users\\Elżbieta\\Documents\\skanuj0001.jpg
[2009-12-12 14:00:39 | 00,009,216 | ---- | M] () -- C:\\Users\\Elżbieta\\AppData\\Local\\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-12-09 21:38:08 | 00,066,414 | ---- | M] () -- C:\\Users\\Elżbieta\\Documents\\Formularz_kontaktowy_konkursu_Rimmel.pdf
[2009-12-07 23:02:53 | 00,006,144 | -H-- | M] () -- C:\\Users\\Elżbieta\\Desktop\\photothumb.db
[2009-12-06 15:23:33 | 00,000,000 | -H-- | M] () -- C:\\Windows\\System32\\drivers\\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009-12-05 18:00:58 | 00,000,788 | ---- | M] () -- C:\\Users\\Elżbieta\\Desktop\\PhotoScape.lnk
[2009-12-03 19:08:14 | 00,000,785 | ---- | M] () -- C:\\Users\\Public\\Desktop\\OpenFM.lnk
[2009-12-03 19:08:14 | 00,000,756 | ---- | M] () -- C:\\Users\\Public\\Desktop\\Gadu-Gadu 10.lnk
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2009-12-23 21:30:52 | 00,001,775 | ---- | C] () -- C:\\Users\\Elżbieta\\Desktop\\Pełne skanowanie.lnk
[2009-12-22 15:23:43 | 00,000,966 | ---- | C] () -- C:\\Users\\Elżbieta\\Desktop\\Ashampoo Burning Studio 2010.lnk
[2009-12-22 15:23:41 | 00,001,456 | ---- | C] () -- C:\\Users\\Public\\Desktop\\Idz do WWW.THE-PAGE.COM.lnk
[2009-12-20 00:14:27 | 00,000,013 | ---- | C] () -- C:\\Windows\\System32\\WinSys16.crc
[2009-12-18 13:55:20 | 00,000,674 | ---- | C] () -- C:\\Users\\Public\\Desktop\\Opera.lnk
[2009-12-16 17:23:01 | 00,108,059 | ---- | C] () -- C:\\Windows\\System32\\drivers\\klin.dat
[2009-12-16 17:23:01 | 00,095,259 | ---- | C] () -- C:\\Windows\\System32\\drivers\\klick.dat
[2009-12-14 08:21:14 | 00,102,173 | ---- | C] () -- C:\\Users\\Elżbieta\\Documents\\Elizabeth Ball 1.pdf
[2009-12-13 15:37:26 | 00,032,444 | ---- | C] () -- C:\\Users\\Elżbieta\\Documents\\Elizabeth Ball 1.docx
[2009-12-13 04:52:40 | 00,041,464 | ---- | C] () -- C:\\Users\\Elżbieta\\Documents\\skanuj0001.jpg
[2009-12-13 04:25:01 | 00,005,120 | -H-- | C] () -- C:\\Users\\Elżbieta\\Documents\\photothumb.db
[2009-12-09 21:38:08 | 00,066,414 | ---- | C] () -- C:\\Users\\Elżbieta\\Documents\\Formularz_kontaktowy_konkursu_Rimmel.pdf
[2009-12-07 23:02:53 | 00,006,144 | -H-- | C] () -- C:\\Users\\Elżbieta\\Desktop\\photothumb.db
[2009-12-06 15:23:33 | 00,000,000 | -H-- | C] () -- C:\\Windows\\System32\\drivers\\Msft_User_WpdMtpDr_01_07_00.Wdf
[2009-12-05 18:00:58 | 00,000,788 | ---- | C] () -- C:\\Users\\Elżbieta\\Desktop\\PhotoScape.lnk
[2009-11-24 18:26:07 | 00,000,785 | ---- | C] () -- C:\\Users\\Public\\Desktop\\OpenFM.lnk
[2009-10-27 18:47:10 | 00,003,240 | ---- | C] () -- C:\\Windows\\jsthm-m48.ini
[2009-10-27 18:47:10 | 00,001,430 | ---- | C] () -- C:\\Windows\\chnz_b16.ini
[2009-10-21 10:10:38 | 00,117,248 | ---- | C] () -- C:\\Windows\\System32\\EhStorAuthn.dll
[2009-10-19 17:23:47 | 00,002,815 | ---- | C] () -- C:\\ProgramData\\hpzinstall.log
[2009-10-17 18:49:57 | 00,000,056 | -H-- | C] () -- C:\\ProgramData\\ezsidmv.dat
[2009-10-17 17:38:50 | 00,009,216 | ---- | C] () -- C:\\Users\\Elżbieta\\AppData\\Local\\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2009-06-12 08:24:31 | 00,000,135 | R--- | C] () -- C:\\Windows\\System32\\lngEng.ini
[2009-06-12 08:24:31 | 00,000,117 | ---- | C] () -- C:\\Windows\\System32\\lngKor.ini
[2009-06-12 08:17:32 | 00,003,990 | ---- | C] () -- C:\\Windows\\HotFixList.ini
[2009-06-12 06:20:12 | 01,060,424 | ---- | C] () -- C:\\Windows\\System32\\WdfCoInstaller01000.dll
[2009-06-12 06:20:00 | 00,159,744 | ---- | C] () -- C:\\Windows\\System32\\atitmmxx.dll
[2006-11-02 13:35:32 | 00,005,632 | ---- | C] () -- C:\\Windows\\System32\\sysprepMCE.dll
[2006-11-02 11:25:21 | 00,061,440 | ---- | C] () -- C:\\Windows\\System32\\igfxTMM.dll
[2006-11-02 08:40:29 | 00,013,750 | ---- | C] () -- C:\\Windows\\System32\\pacerprf.ini
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %systemdrive%\\*.* >[/color]
[2006-09-18 22:43:36 | 00,000,024 | ---- | M] () -- C:\\autoexec.bat
[2009-04-11 07:36:36 | 00,333,257 | RHS- | M] () -- C:\\bootmgr
[2008-02-08 10:31:21 | 00,008,192 | R-S- | M] () -- C:\\BOOTSECT.BAK
[2006-09-18 22:43:37 | 00,000,010 | ---- | M] () -- C:\\config.sys
[2009-12-23 14:23:30 | 32,155,77088 | -HS- | M] () -- C:\\hiberfil.sys
[2009-10-17 22:18:41 | 00,000,000 | RHS- | M] () -- C:\\IO.SYS
[2009-10-17 22:18:41 | 00,000,000 | RHS- | M] () -- C:\\MSDOS.SYS
[2009-12-23 14:23:27 | 35,293,79840 | -HS- | M] () -- C:\\pagefile.sys
[2009-06-12 08:16:17 | 00,001,618 | ---- | M] () -- C:\\RHDSetup.log
[2009-06-12 08:26:38 | 00,000,169 | ---- | M] () -- C:\\setup.log
 
[color=#E56717]========== Alternate Data Streams ==========[/color]
 
@Alternate Data Stream - 16 bytes -> C:\\Users\\Elżbieta\\Downloads:Shareaza.GUID
< End of report >
 
Wygenerowano w 0.379s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!

Copyright © 2007 - 2010 wklejto.pl Wszelkie prawa zastrzezone