wklejto.pl
Dodane przez: ~Dariushin (2011-02-03 19:48) -> text
1.
2.
3.
4.
5.
6.
7.
8.
9.
10.
11.
12.
13.
14.
15.
16.
17.
18.
19.
20.
21.
22.
23.
24.
25.
26.
27.
28.
29.
30.
31.
32.
33.
34.
35.
36.
37.
38.
39.
40.
41.
42.
43.
44.
45.
46.
47.
48.
49.
50.
51.
52.
53.
54.
55.
56.
57.
58.
59.
60.
61.
62.
63.
64.
65.
66.
67.
68.
69.
70.
71.
72.
73.
74.
75.
76.
77.
78.
79.
80.
81.
82.
83.
84.
85.
86.
87.
88.
89.
90.
91.
92.
93.
94.
95.
96.
97.
98.
99.
100.
101.
102.
103.
104.
105.
106.
107.
108.
109.
110.
111.
112.
113.
114.
115.
116.
117.
118.
119.
120.
121.
122.
123.
124.
125.
126.
127.
128.
129.
130.
131.
132.
133.
134.
135.
136.
137.
138.
139.
140.
141.
142.
143.
144.
145.
146.
147.
148.
149.
150.
151.
152.
153.
154.
155.
156.
157.
158.
159.
160.
161.
162.
163.
164.
165.
166.
167.
168.
169.
170.
171.
172.
173.
174.
175.
176.
177.
178.
179.
180.
181.
182.
183.
184.
185.
186.
187.
188.
189.
190.
191.
192.
193.
194.
195.
196.
197.
198.
199.
200.
201.
202.
203.
204.
205.
206.
207.
208.
209.
210.
211.
212.
213.
214.
215.
216.
217.
218.
219.
220.
221.
222.
223.
224.
225.
226.
227.
228.
229.
230.
231.
232.
233.
234.
235.
236.
237.
238.
239.
240.
241.
242.
243.
244.
245.
246.
247.
248.
249.
250.
251.
252.
253.
254.
255.
256.
257.
258.
259.
260.
261.
262.
263.
264.
265.
266.
267.
268.
269.
270.
271.
272.
273.
274.
275.
276.
277.
278.
279.
280.
281.
282.
283.
284.
285.
286.
287.
288.
289.
290.
291.
292.
293.
294.
295.
296.
297.
298.
299.
300.
301.
302.
303.
304.
305.
306.
307.
308.
309.
310.
311.
312.
313.
314.
315.
316.
317.
318.
319.
320.
321.
322.
323.
324.
325.
326.
327.
328.
329.
330.
331.
332.
333.
334.
335.
336.
337.
338.
339.
340.
341.
342.
343.
344.
345.
346.
347.
348.
349.
350.
351.
352.
353.
354.
355.
356.
357.
358.
359.
360.
361.
362.
363.
364.
365.
366.
367.
368.
369.
370.
371.
372.
373.
374.
375.
376.
377.
378.
379.
380.
381.
382.
383.
384.
385.
386.
387.
388.
389.
390.
391.
392.
393.
394.
395.
396.
397.
398.
399.
400.
401.
402.
403.
404.
405.
406.
407.
408.
409.
410.
411.
412.
413.
414.
415.
416.
417.
418.
419.
420.
421.
422.
423.
424.
425.
426.
427.
428.
429.
430.
431.
432.
433.
434.
435.
436.
437.
438.
439.
440.
441.
442.
443.
444.
445.
446.
447.
448.
449.
450.
451.
452.
453.
454.
455.
456.
457.
458.
459.
460.
461.
462.
463.
464.
465.
466.
467.
468.
469.
470.
471.
472.
473.
474.
475.
476.
477.
478.
479.
480.
481.
482.
483.
484.
485.
486.
487.
488.
489.
490.
491.
492.
493.
494.
495.
496.
497.
498.
499.
500.
501.
502.
503.
504.
505.
506.
507.
508.
509.
510.
511.
512.
513.
514.
515.
516.
517.
518.
519.
520.
521.
522.
523.
524.
525.
526.
527.
528.
529.
530.
531.
532.
533.
534.
535.
536.
537.
538.
539.
540.
541.
542.
543.
544.
545.
546.
547.
548.
549.
550.
551.
552.
553.
554.
555.
556.
557.
558.
559.
560.
561.
562.
563.
564.
565.
566.
567.
568.
569.
570.
571.
572.
573.
574.
575.
576.
OTL logfile created on: 2011-02-03 19:46:37 - Run 1
OTL by OldTimer - Version 3.2.20.6     Folder = C:\Documents and Settings\Tukanek\Pulpit
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.6001.18702)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 69,00% Memory free
4,00 Gb Paging File | 3,00 Gb Available in Paging File | 86,00% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 34,90 Gb Total Space | 23,04 Gb Free Space | 66,01% Space Free | Partition Type: NTFS
Drive D: | 232,79 Gb Total Space | 108,68 Gb Free Space | 46,69% Space Free | Partition Type: NTFS
Drive F: | 215,00 Gb Total Space | 108,11 Gb Free Space | 50,29% Space Free | Partition Type: NTFS
Drive G: | 215,76 Gb Total Space | 203,16 Gb Free Space | 94,16% Space Free | Partition Type: NTFS
Drive I: | 647,99 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS
 
Computer Name: TUKAN-AC2F70587 | User Name: Tukanek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-02-03 19:46:24 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tukanek\Pulpit\OTL.exe
PRC - [2011-01-05 17:31:41 | 000,912,344 | ---- | M] (Mozilla Corporation) -- F:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-12-24 09:27:32 | 008,790,016 | ---- | M] (Creative Team S.A.) -- F:\Program Files\WapSter\WapSter AQQ\AQQ.exe
PRC - [2010-11-04 17:15:50 | 000,810,144 | ---- | M] (ESET) -- F:\Program Files\ESET\ESET Smart Security\ekrn.exe
PRC - [2010-11-04 17:15:32 | 002,219,184 | ---- | M] (ESET) -- F:\Program Files\ESET\ESET Smart Security\egui.exe
PRC - [2010-10-16 13:24:31 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2009-08-19 20:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) -- C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe
PRC - [2008-09-29 12:44:48 | 000,274,432 | R--- | M] (France Telecom SA) -- C:\Program Files\CardDetector\HUAWEI160\CardDetector.exe
PRC - [2005-06-18 07:01:42 | 000,016,384 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\CTHELPER.EXE
PRC - [2005-02-15 16:10:16 | 000,057,344 | ---- | M] (Creative Technology Ltd) -- F:\Program Files\Creative\SBAudigy4\Surround Mixer\CTSysVol.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-02-03 19:46:24 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tukanek\Pulpit\OTL.exe
MOD - [2010-10-16 13:24:31 | 001,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.6028_x-ww_61e65202\comctl32.dll
MOD - [2005-06-18 07:01:40 | 000,007,168 | ---- | M] (Creative Technology Ltd) -- C:\WINDOWS\system32\CTAGENT.DLL
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV - [2011-02-03 18:53:48 | 000,555,904 | ---- | M] (Sysinternals - www.sysinternals.com) [On_Demand | Stopped] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\temp\X.exe -- (X)
SRV - [2010-11-04 17:18:10 | 000,033,584 | ---- | M] (ESET) [On_Demand | Stopped] -- F:\Program Files\ESET\ESET Smart Security\EHttpSrv.exe -- (EhttpSrv)
SRV - [2010-11-04 17:15:50 | 000,810,144 | ---- | M] (ESET) [Auto | Running] -- F:\Program Files\ESET\ESET Smart Security\ekrn.exe -- (ekrn)
SRV - [2010-03-25 10:25:22 | 030,969,208 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- F:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)
SRV - [2009-08-19 20:56:38 | 000,090,112 | R--- | M] (ASUSTeK Computer Inc.) [Auto | Running] -- C:\Program Files\ASUS\AsSysCtrlService\1.00.02\AsSysCtrlService.exe -- (AsSysCtrlService)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV - File not found [Kernel | Boot | Running] --  -- (sptd)
DRV - [2011-02-03 19:32:54 | 000,103,264 | ---- | M] () [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\f0e762.SYS -- (f0e762)
DRV - [2011-02-03 19:32:54 | 000,103,264 | ---- | M] () [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\49b761.SYS -- (49b761)
DRV - [2011-02-03 19:32:54 | 000,103,264 | ---- | M] () [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\026760.SYS -- (026760)
DRV - [2011-02-03 19:29:13 | 000,185,824 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\557601.sys -- (557601)
DRV - [2011-02-03 19:16:18 | 000,185,824 | ---- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\b27C.sys -- (b27C)
DRV - [2010-10-16 13:24:31 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)
DRV - [2010-08-26 04:33:38 | 005,386,752 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2010-08-04 10:50:36 | 000,140,752 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\eamon.sys -- (eamon)
DRV - [2010-08-03 12:28:36 | 000,055,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\epfwtdi.sys -- (epfwtdi)
DRV - [2010-07-29 12:31:26 | 000,134,512 | ---- | M] (ESET) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\epfw.sys -- (epfw)
DRV - [2010-07-29 12:31:26 | 000,115,008 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ehdrv.sys -- (ehdrv)
DRV - [2010-07-29 12:31:26 | 000,032,608 | ---- | M] (ESET) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\epfwndis.sys -- (Epfwndis)
DRV - [2010-05-26 10:45:04 | 000,018,816 | ---- | M] (Sophos Plc) [Kernel | System | Running] -- C:\WINDOWS\system32\SAVRKBootTasks.sys -- (SAVRKBootTasks)
DRV - [2009-08-22 19:25:00 | 000,009,088 | ---- | M] () [Kernel | On_Demand | Running] -- F:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner32.sys -- (RivaTuner32)
DRV - [2009-08-04 11:28:18 | 000,011,296 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2009-07-01 12:53:34 | 000,013,824 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2009-07-01 12:53:30 | 000,066,688 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008-10-16 10:44:02 | 000,101,120 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbmdm.sys -- (hwdatacard)
DRV - [2008-10-16 10:44:02 | 000,099,840 | R--- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ewusbfake.sys -- (hwusbfake)
DRV - [2005-06-18 07:06:28 | 000,009,216 | R--- | M] (Creative Technology Ltd.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\pfmodnt.sys -- (PfModNT)
DRV - [2005-06-18 06:53:28 | 000,438,784 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctaud2k.sys -- (ctaud2k) Creative Audio Driver (WDM)
DRV - [2005-06-18 06:53:28 | 000,007,168 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctprxy2k.sys -- (ctprxy2k)
DRV - [2005-06-18 06:53:16 | 000,751,104 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ha10kx2k.sys -- (ha10kx2k)
DRV - [2005-06-18 06:53:16 | 000,178,688 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\haP17v2k.sys -- (hap17v2k)
DRV - [2005-06-18 06:53:16 | 000,153,088 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\haP16v2k.sys -- (hap16v2k)
DRV - [2005-06-18 06:53:14 | 000,114,688 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctoss2k.sys -- (ossrv)
DRV - [2005-06-18 06:53:08 | 000,142,336 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctsfm2k.sys -- (ctsfm2k)
DRV - [2005-06-18 06:53:08 | 000,077,824 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\emupia2k.sys -- (emupia)
DRV - [2005-06-18 06:53:04 | 000,501,760 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ctac32k.sys -- (ctac32k)
DRV - [2005-06-07 14:00:16 | 000,340,176 | R--- | M] (Creative Technology Ltd) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ctdvda2k.sys -- (ctdvda2k)
DRV - [2004-08-13 11:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
 
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
[color=#E56717]========== FireFox ==========[/color]
 
FF - prefs.js..browser.startup.homepage: "google.pl"
FF - prefs.js..extensions.enabledItems: {d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}:1.3.3
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..network.proxy.autoconfig_url: "http://wpad.lukman.pl/wpad.dat"
FF - prefs.js..network.proxy.type: 2
 
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Components: F:\Program Files\Mozilla Firefox\components [2011-01-14 19:43:44 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.13\extensions\\Plugins: F:\Program Files\Mozilla Firefox\plugins [2011-01-24 16:32:52 | 000,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: F:\Program Files\ESET\ESET Smart Security\Mozilla Thunderbird [2011-01-14 20:36:45 | 000,000,000 | ---D | M]
 
[2011-01-02 22:21:57 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tukanek\Dane aplikacji\Mozilla\Extensions
[2011-02-03 10:11:24 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Tukanek\Dane aplikacji\Mozilla\Firefox\Profiles\ug4nieiq.default\extensions
[2011-01-03 07:14:31 | 000,000,000 | ---D | M] (Adblock Plus) -- C:\Documents and Settings\Tukanek\Dane aplikacji\Mozilla\Firefox\Profiles\ug4nieiq.default\extensions\{d10d0bf8-f5b5-c8b4-a8b2-2b9879e08c5d}
[2011-01-03 15:54:33 | 000,000,000 | ---D | M] (Java Quick Starter) -- F:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011-01-03 15:54:38 | 000,000,000 | ---D | M] (Java Console) -- F:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0015-ABCDEFFEDCBA}
[2011-01-24 16:32:54 | 000,000,000 | ---D | M] (Java Console) -- F:\PROGRAM FILES\MOZILLA FIREFOX\EXTENSIONS\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
 
O1 HOSTS File: ([2011-01-22 17:10:53 | 000,000,027 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1       localhost
O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - F:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - F:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)
O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation)
O4 - HKLM..\Run: [CardDetectorHUAWEI160] C:\Program Files\CardDetector\HUAWEI160\CardDetector.exe (France Telecom SA)
O4 - HKLM..\Run: [CTHelper] C:\WINDOWS\CTHELPER.EXE (Creative Technology Ltd)
O4 - HKLM..\Run: [CTSysVol] F:\Program Files\Creative\SBAudigy4\Surround Mixer\CTSysVol.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [egui] F:\Program Files\ESET\ESET Smart Security\egui.exe (ESET)
O4 - HKLM..\Run: [RivaTunerStartupDaemon] F:\Program Files\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition\RivaTuner.exe ()
O4 - HKLM..\Run: [StartCCC] F:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - F:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: Wyślij &do programu OneNote - F:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_23-windows-i586.cab (Java Plug-in 1.6.0_23)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 94.240.62.1 192.168.1.1
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {AEB6717E-7E19-11d0-97EE-00C04FD91972} - Reg Error: Key error. File not found
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - F:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-01-02 22:12:24 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O32 - AutoRun File - [2010-03-24 00:54:52 | 000,000,175 | R--- | M] () - I:\autorun.inf -- [ CDFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
NetSvcs: 6to4 -  File not found
NetSvcs: Ias -  File not found
NetSvcs: Iprip -  File not found
NetSvcs: NWCWorkstation -  File not found
NetSvcs: Nwsapagent -  File not found
NetSvcs: WmdmPmSp -  File not found
 
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Speed Launch.lnk - F:\Program Files\Adobe\Reader 8.0\Reader\reader_sl.exe - (Adobe Systems Incorporated)
MsConfig - StartUpFolder: C:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Reader Synchronizer.lnk - F:\Program Files\Adobe\Reader 8.0\Reader\AdobeCollabSync.exe - ()
MsConfig - StartUpReg: [b]ALLUpdate[/b] - hkey= - key= - F:\Program Files\ALLPlayer\ALLUpdate.exe ()
MsConfig - StartUpReg: [b]AQQ[/b] - hkey= - key= - f:\Program Files\WapSter\WapSter AQQ\AQQ.exe (Creative Team S.A.)
MsConfig - StartUpReg: [b]DAEMON Tools Lite[/b] - hkey= - key= - F:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
MsConfig - StartUpReg: [b]MSMSGS[/b] - hkey= - key= - C:\Program Files\Messenger\msmsgs.exe (Microsoft Corporation)
MsConfig - StartUpReg: [b]NeroFilterCheck[/b] - hkey= - key= -  File not found
MsConfig - StartUpReg: [b]Skype[/b] - hkey= - key= - C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
MsConfig - StartUpReg: [b]UpdReg[/b] - hkey= - key= - C:\WINDOWS\Updreg.EXE (Creative Technology Ltd.)
MsConfig - State: "system.ini" - 0
MsConfig - State: "win.ini" - 0
MsConfig - State: "bootini" - 0
MsConfig - State: "services" - 0
MsConfig - State: "startup" - 2
 
SafeBootMin: Base - Driver Group
SafeBootMin: Boot Bus Extender - Driver Group
SafeBootMin: Boot file system - Driver Group
SafeBootMin: File system - Driver Group
SafeBootMin: Filter - Driver Group
SafeBootMin: PCI Configuration - Driver Group
SafeBootMin: PNP Filter - Driver Group
SafeBootMin: Primary disk - Driver Group
SafeBootMin: SCSI Class - Driver Group
SafeBootMin: sermouse.sys - Driver
SafeBootMin: System Bus Extender - Driver Group
SafeBootMin: vga.sys - Driver
SafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
SafeBootNet: Base - Driver Group
SafeBootNet: Boot Bus Extender - Driver Group
SafeBootNet: Boot file system - Driver Group
SafeBootNet: File system - Driver Group
SafeBootNet: Filter - Driver Group
SafeBootNet: NDIS Wrapper - Driver Group
SafeBootNet: NetBIOSGroup - Driver Group
SafeBootNet: NetDDEGroup - Driver Group
SafeBootNet: Network - Driver Group
SafeBootNet: NetworkProvider - Driver Group
SafeBootNet: PCI Configuration - Driver Group
SafeBootNet: PNP Filter - Driver Group
SafeBootNet: PNP_TDI - Driver Group
SafeBootNet: Primary disk - Driver Group
SafeBootNet: SCSI Class - Driver Group
SafeBootNet: sermouse.sys - Driver
SafeBootNet: Streams Drivers - Driver Group
SafeBootNet: System Bus Extender - Driver Group
SafeBootNet: TDI - Driver Group
SafeBootNet: vga.sys - Driver
SafeBootNet: {1a3e09be-1e45-494b-9174-d7385b45bbf5} - 
SafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllers
SafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM Drive
SafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDrive
SafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controller
SafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - Hdc
SafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - Keyboard
SafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - Mouse
SafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - Net
SafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClient
SafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetService
SafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTrans
SafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA Adapters
SafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapter
SafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - System
SafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk drive
SafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - Volume
SafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-02-03 19:46:16 | 000,602,624 | ---- | C] (OldTimer Tools) -- C:\Documents and Settings\Tukanek\Pulpit\OTL.exe
[2011-02-03 19:15:58 | 000,000,000 | ---D | C] -- C:\McAfee Rootkit Detective
[2011-02-03 19:12:27 | 000,018,816 | ---- | C] (Sophos Plc) -- C:\WINDOWS\System32\SAVRKBootTasks.sys
[2011-02-03 19:01:51 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos
[2011-02-03 19:01:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Sophos
[2011-02-03 18:53:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Pulpit\RootkitRevealer
[2011-01-29 09:23:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Eidos
[2011-01-28 18:44:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\K-Lite Codec Pack
[2011-01-28 18:44:54 | 000,839,680 | ---- | C] (http://www.mp3dev.org/) -- C:\WINDOWS\System32\lameACM.acm
[2011-01-28 18:44:54 | 000,237,568 | ---- | C] (www.helixcommunity.org) -- C:\WINDOWS\System32\yv12vfw.dll
[2011-01-28 18:44:54 | 000,151,552 | ---- | C] (fccHandler) -- C:\WINDOWS\System32\ac3acm.acm
[2011-01-28 11:55:02 | 014,785,123 | ---- | C] (                                                            ) -- C:\Documents and Settings\Tukanek\Pulpit\K-Lite_Codec_Pack_680_Full(dobreprogramy.pl).exe
[2011-01-27 21:15:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Pulpit\Nowy folder (2)
[2011-01-27 17:35:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\Media Player Classic
[2011-01-27 17:34:51 | 000,278,528 | ---- | C] (Real Networks, Inc) -- C:\WINDOWS\System32\pncrt.dll
[2011-01-27 17:34:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Real Alternative
[2011-01-24 21:04:01 | 000,101,120 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthpan.sys
[2011-01-24 21:03:53 | 000,059,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\rfcomm.sys
[2011-01-24 21:03:53 | 000,017,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthenum.sys
[2011-01-24 21:03:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wshirda.dll
[2011-01-24 21:03:53 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wshirda.dll
[2011-01-24 21:03:52 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\irftp.exe
[2011-01-24 21:03:52 | 000,152,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irftp.exe
[2011-01-24 21:03:52 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\irmon.dll
[2011-01-24 21:03:47 | 000,018,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\bthusb.sys
[2011-01-24 18:57:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\microsoft
[2011-01-24 17:23:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\DAEMON Tools Images
[2011-01-24 16:41:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Eidos
[2011-01-24 16:34:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Sun
[2011-01-24 16:34:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Java
[2011-01-24 16:33:37 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\xlive
[2011-01-24 16:33:37 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Games for Windows - LIVE
[2011-01-24 16:33:24 | 000,000,000 | ---D | C] -- C:\WINDOWS\6833245EDD86479A882A8360D62C8194.TMP
[2011-01-24 16:32:52 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll
[2011-01-24 16:32:52 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2011-01-24 16:32:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2011-01-24 16:32:52 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2011-01-24 16:32:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Downloaded Installations
[2011-01-24 16:29:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer
[2011-01-24 16:29:46 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-us
[2011-01-24 16:29:05 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies
[2011-01-24 16:28:37 | 000,014,048 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsg2.dll
[2011-01-23 12:45:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Pulpit\Energy Mix Vol. 22 (Karnaval Edition 2011)-=CSz=-
[2011-01-22 16:55:26 | 000,000,000 | RHSD | C] -- C:\cmdcons
[2011-01-22 16:51:10 | 000,212,480 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWXCACLS.exe
[2011-01-22 16:51:10 | 000,161,792 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWREG.exe
[2011-01-22 16:51:10 | 000,136,704 | ---- | C] (SteelWerX) -- C:\WINDOWS\SWSC.exe
[2011-01-22 16:51:10 | 000,031,232 | ---- | C] (NirSoft) -- C:\WINDOWS\NIRCMD.exe
[2011-01-22 16:47:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\ERDNT
[2011-01-22 16:46:47 | 000,000,000 | ---D | C] -- C:\Qoobox
[2011-01-22 13:35:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Pulpit\de_kabul3
[2011-01-21 19:20:19 | 000,000,000 | ---D | C] -- C:\WINDOWS\Outlaws
[2011-01-21 10:05:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\4A Games
[2011-01-21 10:01:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\4A Games
[2011-01-21 10:00:14 | 000,000,000 | ---D | C] -- C:\Program Files\NVIDIA Corporation
[2011-01-21 09:58:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Wise Installation Wizard
[2011-01-20 17:12:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Games
[2011-01-20 16:30:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\Microsoft Games
[2011-01-20 16:29:58 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2011-01-19 13:30:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Pulpit\Nowy folder
[2011-01-19 09:33:21 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\appmgmt
[2011-01-18 18:19:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Menu Start\Programy\Fraps
[2011-01-18 16:17:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\skypePM
[2011-01-18 15:26:57 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2011-01-18 15:26:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Skype
[2011-01-18 15:26:56 | 000,000,000 | R--D | C] -- C:\Program Files\Skype
[2011-01-18 15:26:56 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\Skype
[2011-01-18 15:26:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Skype
[2011-01-18 15:13:48 | 001,029,000 | ---- | C] (Skype Technologies S.A.) -- C:\Documents and Settings\Tukanek\Pulpit\SkypeSetup.exe
[2011-01-17 17:33:54 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\My Games
[2011-01-17 17:31:54 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{7451F7D5-591C-4490-8D3B-C73A69A0E782}
[2011-01-17 17:26:17 | 002,291,568 | ---- | C] (Beepa Pty Ltd) -- C:\Documents and Settings\Tukanek\Pulpit\setup.exe
[2011-01-17 17:23:32 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{0691F710-1ECA-4B5A-9727-25554F1BFDC6}
[2011-01-17 17:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Electronic Arts
[2011-01-17 15:02:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\Wireshark
[2011-01-16 14:36:56 | 000,000,000 | R--D | C] -- C:\MSOCache
[2011-01-15 11:08:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ALLPlayer
[2011-01-15 11:08:24 | 000,892,928 | ---- | C] (Free Software Foundation) -- C:\WINDOWS\System32\iconv.dll
[2011-01-15 11:08:24 | 000,000,000 | ---D | C] -- C:\Program Files\NAPI-PROJEKT
[2011-01-14 20:37:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\ESET
[2011-01-14 20:37:20 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\ESET
[2011-01-14 20:37:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2011-01-14 20:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\ESET
[2011-01-14 20:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2011-01-14 20:04:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\HP
[2011-01-14 20:04:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Moje zeskanowane obrazy
[2011-01-14 19:58:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\HP
[2011-01-13 18:53:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ASUS OC Profiles
[2011-01-13 18:53:01 | 000,000,000 | ---D | C] -- C:\Program Files\ASUS
[2011-01-11 18:12:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Updater5
[2011-01-11 16:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Codemasters
[2011-01-11 16:37:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Codemasters
[2011-01-11 16:23:08 | 000,107,888 | ---- | C] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-11 14:58:19 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Codemasters
[2011-01-11 14:58:16 | 000,000,000 | ---D | C] -- C:\Program Files\OpenAL
[2011-01-11 13:21:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Criterion Games
[2011-01-11 13:20:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Adobe
[2011-01-11 13:20:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
[2011-01-11 13:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2011-01-11 13:20:08 | 000,000,000 | ---D | C] -- C:\Program Files\Adobe
[2011-01-11 12:45:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\R.G. Catalyst
[2011-01-09 14:51:32 | 000,608,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comctl32.ocx
[2011-01-09 14:51:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Total Video Converter
[2011-01-09 12:35:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun
[2011-01-09 12:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\SharePoint
[2011-01-09 12:27:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Microsoft Office
[2011-01-09 12:27:04 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild
[2011-01-09 12:26:07 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER
[2011-01-09 12:25:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET
[2011-01-09 12:25:50 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework
[2011-01-09 12:25:17 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8
[2011-01-09 12:24:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\SHELLNEW
[2011-01-09 12:24:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services
[2011-01-09 12:24:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Microsoft Help
[2011-01-09 12:24:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft Help
[2011-01-08 13:41:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\Nowy folder
[2011-01-07 18:47:29 | 000,000,000 | ---D | C] -- C:\WINDOWS\Logs
[2011-01-07 17:51:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Menu Start\Programy\RivaTuner v2.24 MSI Master Overclocking Arena 2009 edition
[2011-01-07 17:21:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Dane aplikacji\WinRAR
[2011-01-06 17:59:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Moje dokumenty\NeroVision
[2011-01-05 17:31:29 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\Identities
[2005-06-18 07:04:56 | 000,033,792 | R--- | C] ( ) -- C:\WINDOWS\System32\a3d.dll
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-02-03 19:46:24 | 000,602,624 | ---- | M] (OldTimer Tools) -- C:\Documents and Settings\Tukanek\Pulpit\OTL.exe
[2011-02-03 19:32:55 | 000,005,188 | -HS- | M] () -- C:\WINDOWS\System32\drivers\f0e762.DAT
[2011-02-03 19:32:55 | 000,005,188 | -HS- | M] () -- C:\WINDOWS\System32\drivers\49b761.DAT
[2011-02-03 19:32:55 | 000,005,188 | -HS- | M] () -- C:\WINDOWS\System32\drivers\026760.DAT
[2011-02-03 19:32:54 | 000,103,264 | ---- | M] () -- C:\WINDOWS\System32\drivers\f0e762.SYS
[2011-02-03 19:32:54 | 000,103,264 | ---- | M] () -- C:\WINDOWS\System32\drivers\49b761.SYS
[2011-02-03 19:32:54 | 000,103,264 | ---- | M] () -- C:\WINDOWS\System32\drivers\026760.SYS
[2011-02-03 19:29:13 | 000,185,824 | ---- | M] () -- C:\WINDOWS\System32\557601.sys
[2011-02-03 19:29:00 | 002,021,790 | ---- | M] () -- C:\WINDOWS\System32\9d5600.mht
[2011-02-03 19:16:18 | 000,185,824 | ---- | M] () -- C:\WINDOWS\System32\b27C.sys
[2011-02-03 19:16:10 | 002,021,790 | ---- | M] () -- C:\WINDOWS\System32\d65B.mht
[2011-02-03 19:16:01 | 000,000,679 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\McAfee Rootkit Detective.lnk
[2011-02-03 19:13:22 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-02-03 19:12:42 | 000,032,136 | ---- | M] () -- C:\WINDOWS\System32\BMXStateBkp-{00000001-00000000-00000007-00001102-00000008-10211102}.rfx
[2011-02-03 19:12:42 | 000,032,136 | ---- | M] () -- C:\WINDOWS\System32\BMXState-{00000001-00000000-00000007-00001102-00000008-10211102}.rfx
[2011-02-03 19:12:42 | 000,030,924 | ---- | M] () -- C:\WINDOWS\System32\BMXCtrlState-{00000001-00000000-00000007-00001102-00000008-10211102}.rfx
[2011-02-03 19:12:42 | 000,030,924 | ---- | M] () -- C:\WINDOWS\System32\BMXBkpCtrlState-{00000001-00000000-00000007-00001102-00000008-10211102}.rfx
[2011-02-03 19:12:42 | 000,011,564 | ---- | M] () -- C:\WINDOWS\System32\DVCState-{00000001-00000000-00000007-00001102-00000008-10211102}.rfx
[2011-02-03 19:12:42 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settingsbkup.sfm
[2011-02-03 19:12:42 | 000,001,080 | ---- | M] () -- C:\WINDOWS\System32\settings.sfm
[2011-02-03 19:06:09 | 001,544,639 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\McafeeRootkitDetective.exe
[2011-02-03 19:01:38 | 001,376,832 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\sar_15_sfx.exe
[2011-02-03 18:53:37 | 000,231,390 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\RootkitRevealer.zip
[2011-02-03 18:05:47 | 004,263,406 | R--- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\ComboFix.exe
[2011-02-03 18:02:16 | 004,958,588 | ---- | M] () -- C:\WINDOWS\{00000001-00000000-00000007-00001102-00000008-10211102}.CDF
[2011-02-03 18:02:16 | 004,958,588 | ---- | M] () -- C:\WINDOWS\{00000001-00000000-00000007-00001102-00000008-10211102}.BAK
[2011-02-03 16:38:42 | 003,045,745 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Stachurski 8 Jedwab.mp3
[2011-02-03 15:37:06 | 008,623,378 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Black Eyed Peas - The Time.mp3
[2011-02-03 12:26:50 | 000,000,049 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-02-02 23:07:18 | 000,270,984 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2011-02-02 07:32:21 | 000,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-01-30 15:39:25 | 000,000,162 | -H-- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\~$Ciasto.docx
[2011-01-29 16:27:29 | 000,195,339 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\raPcore Br00tal !.JPG
[2011-01-29 09:23:32 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2011-01-29 09:23:14 | 000,000,605 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Play Batman Arkham Asylum.lnk
[2011-01-28 19:03:42 | 000,245,301 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\1295624799_by_Vethuleion_500.jpg
[2011-01-28 13:57:08 | 734,992,384 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Turysta - The Tourist (2010.R5.LiNE.AC3.XViD-T0XiC-iNK) napisy wgrane.avi
[2011-01-25 17:18:04 | 014,785,123 | ---- | M] (                                                            ) -- C:\Documents and Settings\Tukanek\Pulpit\K-Lite_Codec_Pack_680_Full(dobreprogramy.pl).exe
[2011-01-24 20:56:58 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\UMDF\Msft_User_WpdMtpDr_01_00_00.Wdf
[2011-01-23 08:51:16 | 019,235,932 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\wireshark-win32-1.4.3.exe
[2011-01-22 17:10:53 | 000,000,027 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\hosts
[2011-01-22 12:45:41 | 004,364,084 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\de_kabul3.rar
[2011-01-21 17:14:01 | 001,087,685 | ---- | M] () -- C:\Documents and Settings\Tukanek\Moje dokumenty\4A Games.rar
[2011-01-20 17:12:02 | 000,000,677 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Gears of War.lnk
[2011-01-20 16:30:09 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2011-01-18 18:19:27 | 000,000,529 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Fraps.lnk
[2011-01-18 16:29:38 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-18 16:18:00 | 000,000,056 | -H-- | M] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011-01-18 15:14:01 | 001,029,000 | ---- | M] (Skype Technologies S.A.) -- C:\Documents and Settings\Tukanek\Pulpit\SkypeSetup.exe
[2011-01-17 17:27:29 | 002,291,568 | ---- | M] (Beepa Pty Ltd) -- C:\Documents and Settings\Tukanek\Pulpit\setup.exe
[2011-01-17 17:23:32 | 000,000,623 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Crysis WARHEAD.lnk
[2011-01-17 14:58:45 | 000,000,065 | ---- | M] () -- C:\WINDOWS\System32\-1
[2011-01-15 12:17:51 | 007,846,438 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Coolio vs. Tim Resler _ Kylian Mash - Gangsta Paradise _Radio Version_.mp3
[2011-01-15 11:08:25 | 000,000,530 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\ALLPlayer V4.1.lnk
[2011-01-14 15:15:01 | 005,351,625 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Max Farenthide - Just Walk Away (Club Mix).mp3
[2011-01-13 18:52:52 | 000,001,769 | ---- | M] () -- C:\WINDOWS\Language_trs.ini
[2011-01-13 18:52:36 | 000,026,471 | ---- | M] () -- C:\WINDOWS\Ascd_tmp.ini
[2011-01-13 09:00:00 | 000,080,896 | ---- | M] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011-01-13 09:00:00 | 000,000,038 | ---- | M] () -- C:\WINDOWS\avisplitter.ini
[2011-01-11 16:23:08 | 000,107,888 | ---- | M] (Sony DADC Austria AG.) -- C:\WINDOWS\System32\CmdLineExt.dll
[2011-01-11 14:58:19 | 000,000,652 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\GRID.lnk
[2011-01-11 14:58:16 | 000,444,952 | ---- | M] (Creative Labs) -- C:\WINDOWS\System32\wrap_oal.dll
[2011-01-11 14:58:15 | 000,109,080 | ---- | M] (Portions (C) Creative Labs Inc. and NVIDIA Corp.) -- C:\WINDOWS\System32\OpenAL32.dll
[2011-01-11 12:45:36 | 000,000,687 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed Hot Pursuit.lnk
[2011-01-10 19:03:32 | 000,088,745 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Ciasto.docx
[2011-01-10 18:46:07 | 000,000,000 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Nowy Dokument programu Microsoft Word.docx
[2011-01-09 14:59:42 | 158,588,346 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Oficjalny Teledysk Och Karol 2 - Natalia Kukulska - Wierno%u015B%u0107 jest nudna HD[zapiszjako.pl] (1).avi
[2011-01-09 14:51:33 | 000,000,542 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Total Video Converter.lnk
[2011-01-09 14:17:18 | 002,842,616 | ---- | M] () -- C:\Documents and Settings\Tukanek\Pulpit\Feel - Weekend.mp3
[6 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]
[2 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-02-03 19:32:55 | 000,005,188 | -HS- | C] () -- C:\WINDOWS\System32\drivers\f0e762.DAT
[2011-02-03 19:32:55 | 000,005,188 | -HS- | C] () -- C:\WINDOWS\System32\drivers\49b761.DAT
[2011-02-03 19:32:55 | 000,005,188 | -HS- | C] () -- C:\WINDOWS\System32\drivers\026760.DAT
[2011-02-03 19:32:54 | 000,103,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\f0e762.SYS
[2011-02-03 19:32:54 | 000,103,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\49b761.SYS
[2011-02-03 19:32:54 | 000,103,264 | ---- | C] () -- C:\WINDOWS\System32\drivers\026760.SYS
[2011-02-03 19:29:13 | 000,185,824 | ---- | C] () -- C:\WINDOWS\System32\557601.sys
[2011-02-03 19:29:00 | 002,021,790 | ---- | C] () -- C:\WINDOWS\System32\9d5600.mht
[2011-02-03 19:16:18 | 000,185,824 | ---- | C] () -- C:\WINDOWS\System32\b27C.sys
[2011-02-03 19:16:10 | 002,021,790 | ---- | C] () -- C:\WINDOWS\System32\d65B.mht
[2011-02-03 19:16:00 | 000,000,679 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\McAfee Rootkit Detective.lnk
[2011-02-03 19:05:07 | 001,544,639 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\McafeeRootkitDetective.exe
[2011-02-03 19:01:38 | 001,376,832 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\sar_15_sfx.exe
[2011-02-03 18:53:36 | 000,231,390 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\RootkitRevealer.zip
[2011-02-03 14:02:30 | 003,045,745 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Stachurski 8 Jedwab.mp3
[2011-02-03 12:47:31 | 008,623,378 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Black Eyed Peas - The Time.mp3
[2011-02-03 09:22:29 | 734,992,384 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Turysta - The Tourist (2010.R5.LiNE.AC3.XViD-T0XiC-iNK) napisy wgrane.avi
[2011-01-30 15:39:25 | 000,000,162 | -H-- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\~$Ciasto.docx
[2011-01-29 16:27:29 | 000,195,339 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\raPcore Br00tal !.JPG
[2011-01-29 09:23:14 | 000,000,605 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Play Batman Arkham Asylum.lnk
[2011-01-28 19:03:42 | 000,245,301 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\1295624799_by_Vethuleion_500.jpg
[2011-01-28 18:44:55 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2011-01-28 18:44:55 | 000,000,414 | ---- | C] () -- C:\WINDOWS\System32\lame_acm.xml
[2011-01-28 18:44:55 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2011-01-28 18:44:54 | 000,183,808 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2011-01-28 18:44:54 | 000,080,896 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2011-01-24 16:31:18 | 000,162,304 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2011-01-23 08:46:57 | 019,235,932 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\wireshark-win32-1.4.3.exe
[2011-01-22 16:55:28 | 000,000,223 | ---- | C] () -- C:\Boot.bak
[2011-01-22 16:55:27 | 000,262,400 | RHS- | C] () -- C:\cmldr
[2011-01-22 16:51:10 | 000,256,512 | ---- | C] () -- C:\WINDOWS\PEV.exe
[2011-01-22 16:51:10 | 000,098,816 | ---- | C] () -- C:\WINDOWS\sed.exe
[2011-01-22 16:51:10 | 000,089,088 | ---- | C] () -- C:\WINDOWS\MBR.exe
[2011-01-22 16:51:10 | 000,080,412 | ---- | C] () -- C:\WINDOWS\grep.exe
[2011-01-22 16:51:10 | 000,068,096 | ---- | C] () -- C:\WINDOWS\zip.exe
[2011-01-22 16:45:31 | 004,263,406 | R--- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\ComboFix.exe
[2011-01-22 16:32:43 | 000,004,728 | ---- | C] () -- C:\Documents and Settings\Tukanek\Moje dokumenty\user.cfg
[2011-01-22 12:42:55 | 004,364,084 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\de_kabul3.rar
[2011-01-21 17:14:00 | 001,087,685 | ---- | C] () -- C:\Documents and Settings\Tukanek\Moje dokumenty\4A Games.rar
[2011-01-20 17:12:02 | 000,000,677 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Gears of War.lnk
[2011-01-18 18:19:27 | 000,000,529 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Fraps.lnk
[2011-01-18 16:18:00 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2011-01-18 15:26:57 | 000,002,267 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2011-01-17 17:23:32 | 000,000,623 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Crysis WARHEAD.lnk
[2011-01-17 14:58:45 | 000,000,065 | ---- | C] () -- C:\WINDOWS\System32\-1
[2011-01-15 11:12:23 | 007,846,438 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Coolio vs. Tim Resler _ Kylian Mash - Gangsta Paradise _Radio Version_.mp3
[2011-01-15 11:08:25 | 000,810,496 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2011-01-15 11:08:25 | 000,000,530 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\ALLPlayer V4.1.lnk
[2011-01-15 11:08:24 | 000,675,840 | ---- | C] () -- C:\WINDOWS\System32\ac3filter.ax
[2011-01-13 20:58:59 | 005,351,625 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Max Farenthide - Just Walk Away (Club Mix).mp3
[2011-01-13 18:53:03 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2011-01-13 18:53:03 | 000,011,296 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2011-01-11 14:58:19 | 000,000,652 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\GRID.lnk
[2011-01-11 12:45:36 | 000,000,687 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Need for Speed Hot Pursuit.lnk
[2011-01-10 19:03:13 | 000,088,745 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Ciasto.docx
[2011-01-10 18:46:07 | 000,000,000 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Nowy Dokument programu Microsoft Word.docx
[2011-01-09 15:03:38 | 158,588,346 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Oficjalny Teledysk Och Karol 2 - Natalia Kukulska - Wierno%u015B%u0107 jest nudna HD[zapiszjako.pl] (1).avi
[2011-01-09 14:51:32 | 000,000,542 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Total Video Converter.lnk
[2011-01-09 12:36:25 | 002,842,616 | ---- | C] () -- C:\Documents and Settings\Tukanek\Pulpit\Feel - Weekend.mp3
[2011-01-07 17:59:28 | 000,000,049 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2011-01-03 16:01:43 | 000,000,753 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2011-01-03 14:07:08 | 000,087,552 | ---- | C] () -- C:\Documents and Settings\Tukanek\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-01-02 23:03:40 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2011-01-02 22:24:03 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2011-01-02 22:23:58 | 000,001,769 | ---- | C] () -- C:\WINDOWS\Language_trs.ini
[2011-01-02 22:23:54 | 000,026,471 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2011-01-02 22:23:53 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2011-01-02 22:22:01 | 000,046,593 | R--- | C] () -- C:\WINDOWS\System32\e10kxwdm.ini
[2011-01-02 22:22:01 | 000,000,193 | R--- | C] () -- C:\WINDOWS\System32\ctzapxx.ini
[2009-07-14 17:15:00 | 000,178,432 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-01-30 20:49:36 | 000,105,472 | ---- | C] () -- C:\WINDOWS\System32\whysosrs.DLL
[2005-07-11 05:44:12 | 000,038,400 | ---- | C] () -- C:\WINDOWS\System32\CTBURST.DLL
[2005-06-07 14:10:50 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\CTMMACTL.DLL
[2003-03-21 10:56:12 | 000,000,194 | ---- | C] () -- C:\WINDOWS\System32\KILL.INI
 
[color=#E56717]========== Custom Scans ==========[/color]
 
 
[color=#A23BEC]< %systemdrive%\*.* >[/color]
[2011-01-02 22:12:24 | 000,000,000 | ---- | M] () -- C:\AUTOEXEC.BAT
[2011-01-20 16:30:09 | 000,000,223 | ---- | M] () -- C:\Boot.bak
[2011-01-29 09:23:32 | 000,000,339 | RHS- | M] () -- C:\boot.ini
[2010-10-16 13:24:31 | 000,004,952 | RHS- | M] () -- C:\Bootfont.bin
[2004-08-03 23:00:14 | 000,262,400 | RHS- | M] () -- C:\cmldr
[2011-02-03 18:51:36 | 000,017,579 | ---- | M] () -- C:\ComboFix.txt
[2011-01-02 22:12:24 | 000,000,000 | ---- | M] () -- C:\CONFIG.SYS
[2011-01-02 22:12:24 | 000,000,000 | RHS- | M] () -- C:\IO.SYS
[2011-01-02 22:12:24 | 000,000,000 | RHS- | M] () -- C:\MSDOS.SYS
[2010-10-16 13:24:31 | 000,047,564 | RHS- | M] () -- C:\NTDETECT.COM
[2010-10-16 13:24:31 | 000,251,152 | RHS- | M] () -- C:\ntldr
[2011-02-03 19:13:18 | 2145,386,496 | -HS- | M] () -- C:\pagefile.sys
 
 
[color=#A23BEC]< MD5 for: AGP440.SYS  >[/color]
[2010-10-16 13:24:31 | 017,819,926 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys
 
[color=#A23BEC]< MD5 for: ATAPI.SYS  >[/color]
[2010-10-16 13:24:31 | 017,819,926 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\ERDNT\cache\atapi.sys
[2008-04-13 23:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- C:\WINDOWS\system32\drivers\atapi.sys
 
[color=#A23BEC]< MD5 for: BEEP.SYS  >[/color]
[2010-10-16 13:24:31 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\ERDNT\cache\beep.sys
[2010-10-16 13:24:31 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\dllcache\beep.sys
[2010-10-16 13:24:31 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- C:\WINDOWS\system32\drivers\beep.sys
 
[color=#A23BEC]< MD5 for: CDROM.SYS  >[/color]
[2010-10-16 13:24:31 | 017,819,926 | ---- | M] () .cab file -- C:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys
[2010-10-16 13:24:31 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- C:\WINDOWS\system32\drivers\cdrom.sys
 
[color=#A23BEC]< MD5 for: NDIS.SYS  >[/color]
[2010-10-16 13:24:31 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\ERDNT\cache\ndis.sys
[2010-10-16 13:24:31 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\dllcache\ndis.sys
[2010-10-16 13:24:31 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- C:\WINDOWS\system32\drivers\ndis.sys
 
[color=#A23BEC]< MD5 for: USERINIT.EXE  >[/color]
[2010-10-16 13:24:31 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\ERDNT\cache\userinit.exe
[2010-10-16 13:24:31 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\dllcache\userinit.exe
[2010-10-16 13:24:31 | 000,026,624 | ---- | M] (Microsoft Corporation) MD5=2A5B37D520508BE6570A3EA79695F5B5 -- C:\WINDOWS\system32\userinit.exe
 
[color=#A23BEC]< MD5 for: WINLOGON.EXE  >[/color]
[2010-10-16 13:24:31 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\ERDNT\cache\winlogon.exe
[2010-10-16 13:24:31 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\dllcache\winlogon.exe
[2010-10-16 13:24:31 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- C:\WINDOWS\system32\winlogon.exe
 
< End of report >
 
Wygenerowano w 0.390s, przy pomocy GeSHi 1.0.8
'
Podziel się na Facebook Podziel się na BLIP Podziel się na Twitter Podziel się na Buzz Podziel się na Flaker Dodaj zakładkę Google Podziel się na Delicious Wykop to!

Nowy Komentarz:

Komentarze:

Brak Komentarzy!

Copyright © 2007 - 2010 wklejto.pl Wszelkie prawa zastrzezone