Skocz do zawartości


Zdjęcie

Logi - Podejrzane procesy po formacie

Rozpoczęty przez an0nim1993 , 02 10 2010 16:26

  • Zamknięty Temat jest zamknięty
1 odpowiedź w tym temacie

#1 an0nim1993

an0nim1993

    Nowy

  • 4 postów

Napisano 02 10 2010 - 16:26

Witam. Robilem przed chwila formata kompa i juz zalapalem rozne procesy typu mom, lsass, winlogon.. Zainstalowalem juz gg i opere. Moglby mi ktos powiedziec czy cos jest nie tak?
OTL logfile created on: 2010-10-02 16:47:54 - Run 1OTL by OldTimer - Version 3.2.14.1     Folder = C:\Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstationInternet Explorer (Version = 6.0.2900.5512)Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 75,00% Memory free4,00 Gb Paging File | 3,00 Gb Available in Paging File | 87,00% Paging File freePaging file location(s): D:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program FilesDrive C: | 29,29 Gb Total Space | 29,12 Gb Free Space | 99,41% Space Free | Partition Type: NTFSDrive D: | 195,31 Gb Total Space | 191,17 Gb Free Space | 97,88% Space Free | Partition Type: NTFSDrive E: | 195,31 Gb Total Space | 77,05 Gb Free Space | 39,45% Space Free | Partition Type: NTFSDrive F: | 176,25 Gb Total Space | 176,17 Gb Free Space | 99,96% Space Free | Partition Type: NTFSG: Drive not present or media not loadedH: Drive not present or media not loadedI: Drive not present or media not loadedDrive L: | 7,46 Gb Total Space | 5,22 Gb Free Space | 69,92% Space Free | Partition Type: NTFS Computer Name: KAMILCurrent User Name: enterLogged in as Administrator. Current Boot Mode: NormalScan Mode: All usersCompany Name Whitelist: OnSkip Microsoft Files: OnFile Age = 60 DaysOutput = Standard ========== Processes (All) ========== PRC - [2010-10-02 16:45:21 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL.exePRC - [2010-09-07 02:10:44 | 000,836,464 | ---- | M] (Opera Software) -- C:\opera\opera.exePRC - [2008-07-04 05:12:02 | 000,561,152 | ---- | M] (ATI Technologies Inc.) -- D:\WINDOWS\system32\ati2evxx.exePRC - [2008-05-13 18:07:24 | 000,080,392 | ---- | M] () -- D:\Program Files\GIGABYTE\EnergySaver\GSvr.exePRC - [2008-05-07 09:39:52 | 016,862,208 | R--- | M] (Realtek Semiconductor Corp.) -- D:\WINDOWS\RTHDCPL.exePRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\explorer.exePRC - [2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\winlogon.exePRC - [2008-04-15 14:00:00 | 000,109,056 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\services.exePRC - [2008-04-15 14:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\spoolsv.exePRC - [2008-04-15 14:00:00 | 000,050,688 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\smss.exePRC - [2008-04-15 14:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\alg.exePRC - [2008-04-15 14:00:00 | 000,015,360 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ctfmon.exePRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe  [RPCSS]PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe  [NETWORKSERVICE]PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe  [NETSVCS]PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe  [LOCALSERVICE]PRC - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\svchost.exe  [DCOMLAUNCH]PRC - [2008-04-15 14:00:00 | 000,013,824 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wscntfy.exePRC - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\lsass.exePRC - [2008-04-15 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\csrss.exePRC - [2008-03-20 12:04:46 | 002,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\GG\Gadu-Gadu\gg.exePRC - [2007-07-17 11:13:56 | 000,049,152 | ---- | M] (Advanced Micro Devices Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exePRC - [2007-07-17 11:13:34 | 000,049,152 | ---- | M] (ATI Technologies Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CCC.exePRC - [2005-06-22 16:33:22 | 000,823,296 | ---- | M] () -- C:\Internet\WLanCfgAG.exePRC - [2004-03-29 16:08:16 | 000,049,152 | ---- | M] () -- C:\Internet\WLService.exe  ========== Modules (All) ========== MOD - [2010-10-02 16:45:21 | 000,575,488 | ---- | M] (OldTimer Tools) -- C:\OTL.exeMOD - [2008-04-15 14:00:00 | 008,489,984 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\shell32.dllMOD - [2008-04-15 14:00:00 | 001,287,168 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ole32.dllMOD - [2008-04-15 14:00:00 | 001,054,208 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dllMOD - [2008-04-15 14:00:00 | 001,018,368 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\kernel32.dllMOD - [2008-04-15 14:00:00 | 000,997,888 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\setupapi.dllMOD - [2008-04-15 14:00:00 | 000,822,272 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\comres.dllMOD - [2008-04-15 14:00:00 | 000,714,240 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ntdll.dllMOD - [2008-04-15 14:00:00 | 000,686,592 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\advapi32.dllMOD - [2008-04-15 14:00:00 | 000,584,704 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\rpcrt4.dllMOD - [2008-04-15 14:00:00 | 000,580,096 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\user32.dllMOD - [2008-04-15 14:00:00 | 000,551,936 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\oleaut32.dllMOD - [2008-04-15 14:00:00 | 000,498,688 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\clbcatq.dllMOD - [2008-04-15 14:00:00 | 000,474,112 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\shlwapi.dllMOD - [2008-04-15 14:00:00 | 000,343,040 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msvcrt.dllMOD - [2008-04-15 14:00:00 | 000,297,984 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\MSCTF.dllMOD - [2008-04-15 14:00:00 | 000,285,184 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\gdi32.dllMOD - [2008-04-15 14:00:00 | 000,280,064 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\comdlg32.dllMOD - [2008-04-15 14:00:00 | 000,219,648 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\uxtheme.dllMOD - [2008-04-15 14:00:00 | 000,185,344 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wbem\framedyn.dllMOD - [2008-04-15 14:00:00 | 000,172,544 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\wldap32.dllMOD - [2008-04-15 14:00:00 | 000,146,432 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\winspool.drvMOD - [2008-04-15 14:00:00 | 000,119,808 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\ntmarta.dllMOD - [2008-04-15 14:00:00 | 000,110,592 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\msscript.ocxMOD - [2008-04-15 14:00:00 | 000,084,992 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\olepro32.dllMOD - [2008-04-15 14:00:00 | 000,067,584 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\srclient.dllMOD - [2008-04-15 14:00:00 | 000,064,000 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\samlib.dllMOD - [2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\secur32.dllMOD - [2008-04-15 14:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\psapi.dllMOD - [2008-04-15 14:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) -- D:\WINDOWS\system32\version.dllMOD - [2006-12-21 14:30:44 | 000,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\GG\Gadu-Gadu\ggwhook.dll  ========== Win32 Services (All) ========== SRV - File not found [Auto | Stopped] -- C:\WINDOWS\system32\wuauserv.dll -- (wuauserv)SRV - File not found [Disabled | Stopped] -- D:\WINDOWS\System32\hidserv.dll -- (HidServ)SRV - File not found [On_Demand | Stopped] -- D:\WINDOWS\System32\appmgmts.dll -- (AppMgmt)SRV - [2008-07-04 05:12:02 | 000,561,152 | ---- | M] (ATI Technologies Inc.) [Auto | Running] -- D:\WINDOWS\system32\ati2evxx.exe -- (Ati HotKey Poller)SRV - [2008-07-03 21:05:00 | 000,593,920 | ---- | M] () [Auto | Stopped] -- D:\WINDOWS\system32\ati2sgag.exe -- (ATI Smart)SRV - [2008-05-13 18:07:24 | 000,080,392 | ---- | M] () [Auto | Running] -- D:\Program Files\GIGABYTE\EnergySaver\GSvr.exe -- (GEST Service)SRV - [2008-04-15 14:00:00 | 000,483,840 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- D:\WINDOWS\system32\wzcsvc.dll -- (WZCSVC)SRV - [2008-04-15 14:00:00 | 000,435,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\ntmssvc.dll -- (NtmsSvc)SRV - [2008-04-15 14:00:00 | 000,409,088 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\qmgr.dll -- (BITS)SRV - [2008-04-15 14:00:00 | 000,399,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\rpcss.dll -- (RpcSs) Zdalne wywoływanie procedur (RPC)SRV - [2008-04-15 14:00:00 | 000,399,360 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\rpcss.dll -- (DcomLaunch)SRV - [2008-04-15 14:00:00 | 000,334,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\wiaservc.dll -- (stisvc) Windows Image Acquisition (WIA)SRV - [2008-04-15 14:00:00 | 000,330,752 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\ipnathlp.dll -- (SharedAccess)SRV - [2008-04-15 14:00:00 | 000,296,448 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\termsrv.dll -- (TermService)SRV - [2008-04-15 14:00:00 | 000,293,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\qagentrt.dll -- (napagent)SRV - [2008-04-15 14:00:00 | 000,291,840 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\vssvc.exe -- (VSS)SRV - [2008-04-15 14:00:00 | 000,249,856 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\tapisrv.dll -- (TapiSrv)SRV - [2008-04-15 14:00:00 | 000,246,784 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\mswsock.dll -- (Nla) Rozpoznawanie lokalizacji w sieci (NLA)SRV - [2008-04-15 14:00:00 | 000,246,272 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\es.dll -- (EventSystem)SRV - [2008-04-15 14:00:00 | 000,225,280 | ---- | M] (Microsoft Corp., Veritas Software) [On_Demand | Stopped] -- D:\WINDOWS\System32\dmadmin.exe -- (dmadmin)SRV - [2008-04-15 14:00:00 | 000,198,144 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\netman.dll -- (Netman)SRV - [2008-04-15 14:00:00 | 000,193,536 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\schedsvc.dll -- (Schedule)SRV - [2008-04-15 14:00:00 | 000,186,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\upnphost.dll -- (upnphost)SRV - [2008-04-15 14:00:00 | 000,186,368 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\rasmans.dll -- (RasMan)SRV - [2008-04-15 14:00:00 | 000,176,128 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\w32time.dll -- (W32Time)SRV - [2008-04-15 14:00:00 | 000,171,520 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\srsvc.dll -- (srservice)SRV - [2008-04-15 14:00:00 | 000,150,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\imapi.exe -- (ImapiService)SRV - [2008-04-15 14:00:00 | 000,145,408 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\wbem\wmisvc.dll -- (winmgmt)SRV - [2008-04-15 14:00:00 | 000,142,336 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\sessmgr.exe -- (RDSessMgr)SRV - [2008-04-15 14:00:00 | 000,135,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\shsvcs.dll -- (Themes)SRV - [2008-04-15 14:00:00 | 000,135,680 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\shsvcs.dll -- (ShellHWDetection)SRV - [2008-04-15 14:00:00 | 000,135,680 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\shsvcs.dll -- (FastUserSwitchingCompatibility)SRV - [2008-04-15 14:00:00 | 000,133,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\dot3svc.dll -- (Dot3svc)SRV - [2008-04-15 14:00:00 | 000,132,608 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\rsvp.exe -- (RSVP)SRV - [2008-04-15 14:00:00 | 000,132,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\wkssvc.dll -- (lanmanworkstation)SRV - [2008-04-15 14:00:00 | 000,129,024 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\xmlprov.dll -- (xmlprov)SRV - [2008-04-15 14:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\wbem\wmiapsrv.exe -- (WmiApSrv)SRV - [2008-04-15 14:00:00 | 000,126,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\dhcpcsvc.dll -- (Dhcp)SRV - [2008-04-15 14:00:00 | 000,114,688 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\WINDOWS\system32\netdde.exe -- (NetDDEdsdm)SRV - [2008-04-15 14:00:00 | 000,114,688 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\WINDOWS\system32\netdde.exe -- (NetDDE)SRV - [2008-04-15 14:00:00 | 000,109,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\services.exe -- (PlugPlay)SRV - [2008-04-15 14:00:00 | 000,109,056 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\services.exe -- (Eventlog)SRV - [2008-04-15 14:00:00 | 000,098,304 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\scardsvr.exe -- (SCardSvr)SRV - [2008-04-15 14:00:00 | 000,096,768 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\srvsvc.dll -- (LanmanServer)SRV - [2008-04-15 14:00:00 | 000,091,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\smlogsvc.exe -- (SysmonLog)SRV - [2008-04-15 14:00:00 | 000,090,112 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\trkwks.dll -- (TrkWks)SRV - [2008-04-15 14:00:00 | 000,088,576 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\rasauto.dll -- (RasAuto)SRV - [2008-04-15 14:00:00 | 000,080,896 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\wscsvc.dll -- (wscsvc)SRV - [2008-04-15 14:00:00 | 000,078,848 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\System32\msiexec.exe -- (MSIServer)SRV - [2008-04-15 14:00:00 | 000,077,824 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- D:\WINDOWS\system32\browser.dll -- (Browser)SRV - [2008-04-15 14:00:00 | 000,075,264 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\locator.exe -- (RpcLocator) Lokalizator usługi zdalnego wywołania procedury (RPC)SRV - [2008-04-15 14:00:00 | 000,071,680 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\ssdpsrv.dll -- (SSDPSRV)SRV - [2008-04-15 14:00:00 | 000,068,096 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\webclnt.dll -- (WebClient)SRV - [2008-04-15 14:00:00 | 000,062,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\cryptsvc.dll -- (CryptSvc)SRV - [2008-04-15 14:00:00 | 000,061,440 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\kmsvc.dll -- (hkmsvc)SRV - [2008-04-15 14:00:00 | 000,057,856 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\spoolsv.exe -- (Spooler)SRV - [2008-04-15 14:00:00 | 000,053,248 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\WINDOWS\system32\mprdim.dll -- (RemoteAccess)SRV - [2008-04-15 14:00:00 | 000,052,736 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\mspmsnsv.dll -- (WmdmPmSN)SRV - [2008-04-15 14:00:00 | 000,045,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\dnsrslvr.dll -- (Dnscache)SRV - [2008-04-15 14:00:00 | 000,044,544 | ---- | M] (Microsoft Corporation) [On_Demand | Running] -- D:\WINDOWS\system32\alg.exe -- (ALG)SRV - [2008-04-15 14:00:00 | 000,042,496 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\audiosrv.dll -- (AudioSrv)SRV - [2008-04-15 14:00:00 | 000,039,424 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\sens.dll -- (SENS)SRV - [2008-04-15 14:00:00 | 000,038,400 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\pchealth\helpctr\binaries\pchsvc.dll -- (helpsvc)SRV - [2008-04-15 14:00:00 | 000,033,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\WINDOWS\system32\msgsvc.dll -- (Messenger)SRV - [2008-04-15 14:00:00 | 000,033,792 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\eapsvc.dll -- (EapHost) Usługa protokołu uwierzytelniania rozszerzonego (EAP)SRV - [2008-04-15 14:00:00 | 000,033,280 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\clipsrv.exe -- (ClipSrv)SRV - [2008-04-15 14:00:00 | 000,032,768 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\mnmsrvc.exe -- (mnmsrvc)SRV - [2008-04-15 14:00:00 | 000,024,064 | ---- | M] (Microsoft Corp.) [On_Demand | Stopped] -- D:\WINDOWS\system32\dmserver.dll -- (dmserver)SRV - [2008-04-15 14:00:00 | 000,023,040 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\ersvc.dll -- (ERSvc)SRV - [2008-04-15 14:00:00 | 000,018,944 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\seclogon.dll -- (seclogon)SRV - [2008-04-15 14:00:00 | 000,018,432 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\ups.exe -- (UPS) Zasilacz awaryjny (UPS)SRV - [2008-04-15 14:00:00 | 000,017,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- D:\WINDOWS\system32\alrsvc.dll -- (Alerter)SRV - [2008-04-15 14:00:00 | 000,015,872 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\w3ssl.dll -- (HTTPFilter)SRV - [2008-04-15 14:00:00 | 000,013,824 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\lmhsvc.dll -- (LmHosts)SRV - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\lsass.exe -- (SamSs)SRV - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\lsass.exe -- (ProtectedStorage)SRV - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [Auto | Running] -- D:\WINDOWS\system32\lsass.exe -- (PolicyAgent)SRV - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\lsass.exe -- (NtLmSsp)SRV - [2008-04-15 14:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\lsass.exe -- (Netlogon)SRV - [2008-04-15 14:00:00 | 000,006,144 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\msdtc.exe -- (MSDTC)SRV - [2008-04-15 14:00:00 | 000,005,632 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\system32\cisvc.exe -- (CiSvc)SRV - [2008-04-15 14:00:00 | 000,005,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\System32\dllhost.exe -- (SwPrv)SRV - [2008-04-15 14:00:00 | 000,005,120 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\System32\dllhost.exe -- (COMSysApp)SRV - [2005-09-23 07:28:56 | 000,066,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)SRV - [2005-09-23 07:28:32 | 000,029,896 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- D:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe -- (aspnet_state)SRV - [2004-03-29 16:08:16 | 000,049,152 | ---- | M] () [Auto | Running] -- C:\Internet\WLService.exe -- (WPCA-132AG Service)  ========== Driver Services (SafeList) ========== DRV - [2010-10-02 16:18:08 | 000,016,608 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Running] -- D:\WINDOWS\gdrv.sys -- (gdrv)DRV - [2008-07-04 08:33:32 | 003,230,720 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)DRV - [2008-05-21 01:53:36 | 000,093,696 | R--- | M] (ATI Research Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\AtiHdmi.sys -- (AtiHdmiService)DRV - [2008-05-07 13:21:40 | 004,739,072 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\RtkHDAud.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM)DRV - [2008-04-15 14:00:00 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\hdaudbus.sys -- (HDAudBus)DRV - [2008-01-03 16:10:16 | 000,105,856 | R--- | M] (Realtek Semiconductor Corporation                           ) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\Rtenicxp.sys -- (RTLE8023xp)DRV - [2005-05-05 02:08:38 | 000,463,168 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\drivers\ar5211.sys -- (AR5211)DRV - [2003-09-25 22:15:32 | 000,015,872 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) [Kernel | On_Demand | Running] -- D:\WINDOWS\system32\GTNDIS5.sys -- (GTNDIS5)  ========== Standard Registry (SafeList) ==========  ========== Internet Explorer ========== IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm      IE - HKU\S-1-5-21-823518204-287218729-1606980848-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0   O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - D:\WINDOWS\system32\drivers\etc\hostsO1 - Hosts: 127.0.0.1       localhostO4 - HKLM..\Run: [Alcmtr] D:\WINDOWS\Alcmtr.exe (Realtek Semiconductor Corp.)O4 - HKLM..\Run: [StartCCC] D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)O4 - HKU\S-1-5-21-823518204-287218729-1606980848-1004..\Run: [Gadu-Gadu] C:\GG\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145O7 - HKU\S-1-5-21-823518204-287218729-1606980848-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323O7 - HKU\S-1-5-21-823518204-287218729-1606980848-1004\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 83.2.242.129O20 - HKLM Winlogon: Shell - (Explorer.exe) - D:\WINDOWS\explorer.exe (Microsoft Corporation)O20 - Winlogon\Notify\AtiExtEvent: DllName - Ati2evxx.dll - D:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.)O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:HomeO24 - Desktop WallPaper: D:\WINDOWS\Web\Wallpaper\Idylla.bmpO24 - Desktop BackupWallPaper: D:\WINDOWS\Web\Wallpaper\Idylla.bmpO32 - HKLM CDRom: AutoRun - 1O32 - AutoRun File - [2010-10-02 15:04:12 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]O34 - HKLM BootExecute: (autocheck autochk *) -  File not foundO35 - HKLM\..comfile [open] -- "%1" %*O35 - HKLM\..exefile [open] -- "%1" %*O37 - HKLM\...com [@ = comfile] -- "%1" %*O37 - HKLM\...exe [@ = exefile] -- "%1" %* NetSvcs: 6to4 -  File not foundNetSvcs: AppMgmt - D:\WINDOWS\System32\appmgmts.dll File not foundNetSvcs: HidServ - D:\WINDOWS\System32\hidserv.dll File not foundNetSvcs: Ias -  File not foundNetSvcs: Iprip -  File not foundNetSvcs: Irmon -  File not foundNetSvcs: NWCWorkstation -  File not foundNetSvcs: Nwsapagent -  File not foundNetSvcs: Wmi - D:\WINDOWS\System32\wmi.dll (Microsoft Corporation)NetSvcs: WmdmPmSp -  File not foundNetSvcs: wuauserv - C:\WINDOWS\system32\wuauserv.dll File not found MsConfig - StartUpReg: <strong class='bbc'>CanonMyPrinter</strong> - hkey= - key= - D:\Program Files\Canon\MyPrinter\BJMyPrt.exe (CANON INC.)MsConfig - StartUpReg: <strong class='bbc'>GEST</strong> - hkey= - key= -  File not foundMsConfig - State: "system.ini" - 0MsConfig - State: "win.ini" - 0MsConfig - State: "bootini" - 0MsConfig - State: "services" - 0MsConfig - State: "startup" - 2 SafeBootMin: AppMgmt - D:\WINDOWS\System32\appmgmts.dll File not foundSafeBootMin: Base - Driver GroupSafeBootMin: Boot Bus Extender - Driver GroupSafeBootMin: Boot file system - Driver GroupSafeBootMin: File system - Driver GroupSafeBootMin: Filter - Driver GroupSafeBootMin: PCI Configuration - Driver GroupSafeBootMin: PEVSystemStart - ServiceSafeBootMin: PNP Filter - Driver GroupSafeBootMin: Primary disk - Driver GroupSafeBootMin: procexp90.Sys - DriverSafeBootMin: SCSI Class - Driver GroupSafeBootMin: sermouse.sys - DriverSafeBootMin: System Bus Extender - Driver GroupSafeBootMin: vga.sys - DriverSafeBootMin: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllersSafeBootMin: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM DriveSafeBootMin: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDriveSafeBootMin: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controllerSafeBootMin: {4D36E96A-E325-11CE-BFC1-08002BE10318} - HdcSafeBootMin: {4D36E96B-E325-11CE-BFC1-08002BE10318} - KeyboardSafeBootMin: {4D36E96F-E325-11CE-BFC1-08002BE10318} - MouseSafeBootMin: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA AdaptersSafeBootMin: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapterSafeBootMin: {4D36E97D-E325-11CE-BFC1-08002BE10318} - SystemSafeBootMin: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk driveSafeBootMin: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - VolumeSafeBootMin: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices SafeBootNet: AppMgmt - D:\WINDOWS\System32\appmgmts.dll File not foundSafeBootNet: Base - Driver GroupSafeBootNet: Boot Bus Extender - Driver GroupSafeBootNet: Boot file system - Driver GroupSafeBootNet: File system - Driver GroupSafeBootNet: Filter - Driver GroupSafeBootNet: NDIS Wrapper - Driver GroupSafeBootNet: NetBIOSGroup - Driver GroupSafeBootNet: NetDDEGroup - Driver GroupSafeBootNet: Network - Driver GroupSafeBootNet: NetworkProvider - Driver GroupSafeBootNet: PCI Configuration - Driver GroupSafeBootNet: PEVSystemStart - ServiceSafeBootNet: PNP Filter - Driver GroupSafeBootNet: PNP_TDI - Driver GroupSafeBootNet: Primary disk - Driver GroupSafeBootNet: procexp90.Sys - DriverSafeBootNet: SCSI Class - Driver GroupSafeBootNet: sermouse.sys - DriverSafeBootNet: Streams Drivers - Driver GroupSafeBootNet: System Bus Extender - Driver GroupSafeBootNet: TDI - Driver GroupSafeBootNet: vga.sys - DriverSafeBootNet: {36FC9E60-C465-11CF-8056-444553540000} - Universal Serial Bus controllersSafeBootNet: {4D36E965-E325-11CE-BFC1-08002BE10318} - CD-ROM DriveSafeBootNet: {4D36E967-E325-11CE-BFC1-08002BE10318} - DiskDriveSafeBootNet: {4D36E969-E325-11CE-BFC1-08002BE10318} - Standard floppy disk controllerSafeBootNet: {4D36E96A-E325-11CE-BFC1-08002BE10318} - HdcSafeBootNet: {4D36E96B-E325-11CE-BFC1-08002BE10318} - KeyboardSafeBootNet: {4D36E96F-E325-11CE-BFC1-08002BE10318} - MouseSafeBootNet: {4D36E972-E325-11CE-BFC1-08002BE10318} - NetSafeBootNet: {4D36E973-E325-11CE-BFC1-08002BE10318} - NetClientSafeBootNet: {4D36E974-E325-11CE-BFC1-08002BE10318} - NetServiceSafeBootNet: {4D36E975-E325-11CE-BFC1-08002BE10318} - NetTransSafeBootNet: {4D36E977-E325-11CE-BFC1-08002BE10318} - PCMCIA AdaptersSafeBootNet: {4D36E97B-E325-11CE-BFC1-08002BE10318} - SCSIAdapterSafeBootNet: {4D36E97D-E325-11CE-BFC1-08002BE10318} - SystemSafeBootNet: {4D36E980-E325-11CE-BFC1-08002BE10318} - Floppy disk driveSafeBootNet: {71A27CDD-812A-11D0-BEC7-08002BE2092F} - VolumeSafeBootNet: {745A17A0-74D3-11D0-B6FE-00A0C90F57DA} - Human Interface Devices ========== Files/Folders - Created Within 60 Days ========== [2010-10-02 16:51:16 | 000,000,000 | -HSD | C] -- D:\WINDOWS\Installer[2010-10-02 16:51:15 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\ODBC[2010-10-02 16:51:13 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\SpeechEngines[2010-10-02 16:51:13 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Microsoft Shared[2010-10-02 16:51:12 | 000,000,000 | R--D | C] -- D:\Program Files[2010-10-02 16:51:12 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files[2010-10-02 16:50:52 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Menu Start[2010-10-02 16:50:52 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty[2010-10-02 16:50:52 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\All Users\Szablony[2010-10-02 16:50:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Ulubione[2010-10-02 16:50:52 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Pulpit[2010-10-02 16:50:43 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\CatRoot2[2010-10-02 16:50:43 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\CatRoot[2010-10-02 16:50:37 | 000,000,000 | --SD | C] -- D:\Documents and Settings\All Users\Dane aplikacji\Microsoft[2010-10-02 16:50:37 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\All Users\Dane aplikacji[2010-10-02 16:50:18 | 000,000,000 | -HSD | C] -- D:\System Volume Information[2010-10-02 16:50:18 | 000,000,000 | ---D | C] -- D:\Documents and Settings[2010-10-02 16:36:28 | 000,000,000 | R-SD | C] -- D:\WINDOWS\Fonts[2010-10-02 16:36:28 | 000,000,000 | RHSD | C] -- D:\WINDOWS\System32\dllcache[2010-10-02 16:36:28 | 000,000,000 | R--D | C] -- D:\WINDOWS\Web[2010-10-02 16:36:28 | 000,000,000 | -H-D | C] -- D:\WINDOWS\inf[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\WinSxS[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\wins[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\wbem[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\usmt[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\twain_32[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Temp[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\system32[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\system[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\spool[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ShellExt[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Setup[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\security[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Resources[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\repair[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ras[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Provisioning[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\pl-pl[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\pl[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\PeerNet[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\pchealth[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\oobe[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\npp[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Network Diagnostic[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\mui[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\mui[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\msapps[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\msagent[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Media[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\L2Schemas[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\java[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\inetsrv[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\IME[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\ime[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\icsxml[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ias[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Help[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\export[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\etc[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Driver Cache[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\drivers\disdn[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\dhcp[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Debug[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Cursors[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Connection Wizard[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\config[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\Config[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\AppPatch[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\addins[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\3com_dmi[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\3076[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\2052[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1054[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1045[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1042[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1041[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1037[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1033[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1031[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1028[2010-10-02 16:36:28 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\1025[2010-10-02 16:25:11 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\<a href="http://www.download.net.pl/297/uTorrent/">uTorrent</a>[2010-10-02 16:15:14 | 000,212,480 | ---- | C] (SteelWerX) -- D:\WINDOWS\SWXCACLS.exe[2010-10-02 16:15:14 | 000,161,792 | ---- | C] (SteelWerX) -- D:\WINDOWS\SWREG.exe[2010-10-02 16:15:14 | 000,136,704 | ---- | C] (SteelWerX) -- D:\WINDOWS\SWSC.exe[2010-10-02 16:15:14 | 000,031,232 | ---- | C] (NirSoft) -- D:\WINDOWS\NIRCMD.exe[2010-10-02 16:15:11 | 000,000,000 | ---D | C] -- D:\WINDOWS\ERDNT[2010-10-02 16:15:10 | 000,000,000 | --SD | C] -- D:\ComboFix[2010-10-02 16:14:46 | 000,000,000 | ---D | C] -- D:\Qoobox[2010-10-02 16:08:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\Macromedia[2010-10-02 16:08:22 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\Adobe[2010-10-02 16:04:32 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Ustawienia lokalne\Dane aplikacji\Opera[2010-10-02 16:04:32 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\Opera[2010-10-02 16:04:29 | 000,000,000 | ---D | C] -- D:\Program Files\Opera[2010-10-02 16:04:02 | 000,000,000 | -HSD | C] -- D:\RECYCLER[2010-10-02 16:02:25 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\Gadu-Gadu[2010-10-02 16:00:09 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Gadu-Gadu[2010-10-02 15:54:48 | 000,000,000 | ---D | C] -- D:\WINDOWS\pss[2010-10-02 15:54:15 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\SoftwareDistribution[2010-10-02 15:52:09 | 000,463,168 | ---- | C] (Atheros Communications, Inc.) -- D:\WINDOWS\System32\drivers\ar5211.sys[2010-10-02 15:52:08 | 000,015,872 | ---- | C] (Printing Communications Assoc., Inc. (PCAUSA)) -- D:\WINDOWS\System32\GTNDIS5.sys[2010-10-02 15:47:28 | 000,105,856 | R--- | C] (Realtek Semiconductor Corporation                           ) -- D:\WINDOWS\System32\drivers\Rtenicxp.sys[2010-10-02 15:47:19 | 000,000,000 | ---D | C] -- D:\WINDOWS\OPTIONS[2010-10-02 15:47:15 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\InstallShield[2010-10-02 15:46:56 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Lang[2010-10-02 15:45:44 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\RTCOM[2010-10-02 15:45:30 | 002,808,832 | R--- | C] (RealTek Semicoductor Corp.) -- D:\WINDOWS\alcwzrd.exe[2010-10-02 15:45:30 | 000,000,000 | ---D | C] -- D:\Program Files\Realtek[2010-10-02 15:42:19 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\ReinstallBackups[2010-10-02 15:42:17 | 000,053,248 | R--- | C] (Windows XP Bundled build C-Centric Single User) -- D:\WINDOWS\System32\CSVer.dll[2010-10-02 15:42:17 | 000,000,000 | ---D | C] -- D:\Program Files\Intel[2010-10-02 15:42:17 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\DRVSTORE[2010-10-02 15:42:10 | 000,000,000 | ---D | C] -- D:\Intel[2010-10-02 15:41:58 | 000,000,000 | ---D | C] -- D:\Program Files\GIGABYTE[2010-10-02 15:39:03 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\CanonBJ[2010-10-02 15:38:55 | 000,000,000 | -H-D | C] -- D:\WINDOWS\System32\CanonIJ Uninstaller Information[2010-10-02 15:38:45 | 000,000,000 | -H-D | C] -- D:\Program Files\CanonBJ[2010-10-02 15:38:01 | 000,000,000 | ---D | C] -- D:\Program Files\Canon[2010-10-02 15:37:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Ustawienia lokalne\Dane aplikacji\ATI[2010-10-02 15:37:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\ATI[2010-10-02 15:37:10 | 000,000,000 | ---D | C] -- D:\Documents and Settings\All Users\Dane aplikacji\ATI[2010-10-02 15:33:25 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\ATI Technologies[2010-10-02 15:31:58 | 000,000,000 | R-SD | C] -- D:\WINDOWS\assembly[2010-10-02 15:31:46 | 000,000,000 | ---D | C] -- D:\WINDOWS\Microsoft.NET[2010-10-02 15:30:58 | 000,093,696 | R--- | C] (ATI Research Inc.) -- D:\WINDOWS\System32\drivers\AtiHdmi.sys[2010-10-02 15:30:20 | 000,000,000 | ---D | C] -- D:\Program Files\ATI Technologies[2010-10-02 15:30:19 | 000,000,000 | -H-D | C] -- D:\Program Files\InstallShield Installation Information[2010-10-02 15:29:45 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\InstallShield[2010-10-02 15:27:24 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Dane aplikacji\Identities[2010-10-02 15:27:23 | 000,000,000 | -H-D | C] -- D:\Program Files\Uninstall Information[2010-10-02 15:27:21 | 000,000,000 | R--D | C] -- D:\Documents and Settings\enter\Moje dokumenty\Moje obrazy[2010-10-02 15:27:21 | 000,000,000 | R--D | C] -- D:\Documents and Settings\enter\Moje dokumenty\Moja muzyka[2010-10-02 15:27:19 | 000,000,000 | --SD | C] -- D:\Documents and Settings\enter\Dane aplikacji\Microsoft[2010-10-02 15:27:19 | 000,000,000 | --SD | C] -- D:\Documents and Settings\enter\Cookies[2010-10-02 15:27:19 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\enter\SendTo[2010-10-02 15:27:19 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\enter\Recent[2010-10-02 15:27:19 | 000,000,000 | RH-D | C] -- D:\Documents and Settings\enter\Dane aplikacji[2010-10-02 15:27:19 | 000,000,000 | R--D | C] -- D:\Documents and Settings\enter\Ulubione[2010-10-02 15:27:19 | 000,000,000 | R--D | C] -- D:\Documents and Settings\enter\Moje dokumenty[2010-10-02 15:27:19 | 000,000,000 | R--D | C] -- D:\Documents and Settings\enter\Menu Start[2010-10-02 15:27:19 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\enter\Szablony[2010-10-02 15:27:19 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\enter\PrintHood[2010-10-02 15:27:19 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\enter\NetHood[2010-10-02 15:27:19 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Pulpit[2010-10-02 15:27:18 | 000,000,000 | -H-D | C] -- D:\Documents and Settings\enter\Ustawienia lokalne[2010-10-02 15:27:18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\enter\Ustawienia lokalne\Dane aplikacji\Microsoft[2010-10-02 15:26:03 | 000,000,000 | ---D | C] -- D:\WINDOWS\SoftwareDistribution[2010-10-02 15:26:02 | 000,000,000 | ---D | C] -- D:\WINDOWS\Prefetch[2010-10-02 15:26:01 | 000,000,000 | --SD | C] -- D:\WINDOWS\System32\Microsoft[2010-10-02 15:26:01 | 000,000,000 | --SD | C] -- D:\Documents and Settings\LocalService\Dane aplikacji\Microsoft[2010-10-02 15:26:01 | 000,000,000 | ---D | C] -- D:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft[2010-10-02 15:06:18 | 000,000,000 | --SD | C] -- D:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft[2010-10-02 15:06:18 | 000,000,000 | ---D | C] -- D:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft[2010-10-02 15:05:15 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rwia330.dll[2010-10-02 15:05:15 | 000,080,384 | ---- | C] (Ricoh Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rwia001.dll[2010-10-02 15:05:15 | 000,029,184 | ---- | C] (RICOH Co., Ltd.) -- D:\WINDOWS\System32\dllcache\rw330ext.dll[2010-10-02 15:04:37 | 000,054,528 | ---- | C] (Philips Semiconductors GmbH) -- D:\WINDOWS\System32\dllcache\cap7146.sys[2010-10-02 15:04:19 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\xircom[2010-10-02 15:04:19 | 000,000,000 | ---D | C] -- D:\Program Files\xerox[2010-10-02 15:04:19 | 000,000,000 | ---D | C] -- D:\Program Files\microsoft frontpage[2010-10-02 15:03:31 | 000,000,000 | -HSD | C] -- D:\Documents and Settings\All Users\DRM[2010-10-02 15:03:25 | 000,000,000 | --SD | C] -- D:\WINDOWS\Downloaded Program Files[2010-10-02 15:03:25 | 000,000,000 | R--D | C] -- D:\WINDOWS\Offline Web Pages[2010-10-02 15:03:17 | 000,000,000 | -H-D | C] -- D:\Program Files\WindowsUpdate[2010-10-02 15:03:14 | 000,000,000 | ---D | C] -- D:\Program Files\Usługi online[2010-10-02 15:03:02 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\DirectX[2010-10-02 15:02:50 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\Services[2010-10-02 15:02:48 | 000,000,000 | --SD | C] -- D:\WINDOWS\Tasks[2010-10-02 15:02:48 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\MSSoap[2010-10-02 15:02:45 | 000,000,000 | ---D | C] -- D:\WINDOWS\srchasst[2010-10-02 15:02:44 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Macromed[2010-10-02 15:02:38 | 000,000,000 | ---D | C] -- D:\Program Files\Movie Maker[2010-10-02 15:02:23 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Restore[2010-10-02 15:02:20 | 000,000,000 | ---D | C] -- D:\Program Files\NetMeeting[2010-10-02 15:02:18 | 000,000,000 | ---D | C] -- D:\Program Files\Outlook Express[2010-10-02 15:02:14 | 000,000,000 | ---D | C] -- D:\Program Files\Common Files\System[2010-10-02 15:02:13 | 000,000,000 | ---D | C] -- D:\Program Files\Internet Explorer[2010-10-02 15:02:12 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty\Moje obrazy[2010-10-02 15:02:03 | 000,000,000 | ---D | C] -- D:\Program Files\ComPlus Applications[2010-10-02 15:01:58 | 000,000,000 | ---D | C] -- D:\WINDOWS\Registration[2010-10-02 15:01:33 | 000,000,000 | R--D | C] -- D:\Documents and Settings\All Users\Dokumenty\Moja muzyka[2010-10-02 15:01:33 | 000,000,000 | ---D | C] -- D:\Program Files\Windows Media Player[2010-10-02 15:01:28 | 000,000,000 | ---D | C] -- D:\Program Files\Messenger[2010-10-02 15:01:26 | 000,000,000 | ---D | C] -- D:\Program Files\MSN Gaming Zone[2010-10-02 15:01:07 | 000,283,136 | ---- | C] (Cinematronics) -- D:\WINDOWS\System32\dllcache\pinball.exe[2010-10-02 15:01:07 | 000,000,000 | ---D | C] -- D:\Program Files\Windows NT[2010-10-02 15:01:03 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\MsDtc[2010-10-02 15:01:02 | 000,000,000 | ---D | C] -- D:\WINDOWS\System32\Com[3 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ][3 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ] ========== Files - Modified Within 60 Days ========== [2010-10-02 16:59:14 | 000,005,208 | ---- | M] () -- D:\WINDOWS\System32\pid.PNF[2010-10-02 16:30:51 | 000,000,436 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\µTorrent.lnk[2010-10-02 16:29:01 | 000,984,778 | ---- | M] () -- D:\WINDOWS\System32\PerfStringBackup.INI[2010-10-02 16:29:01 | 000,448,348 | ---- | M] () -- D:\WINDOWS\System32\perfh015.dat[2010-10-02 16:29:01 | 000,392,432 | ---- | M] () -- D:\WINDOWS\System32\perfh009.dat[2010-10-02 16:29:01 | 000,074,450 | ---- | M] () -- D:\WINDOWS\System32\perfc015.dat[2010-10-02 16:29:01 | 000,058,732 | ---- | M] () -- D:\WINDOWS\System32\perfc009.dat[2010-10-02 16:23:18 | 000,000,410 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\Opera.lnk[2010-10-02 16:20:55 | 000,786,432 | -H-- | M] () -- D:\Documents and Settings\enter\NTUSER.DAT[2010-10-02 16:20:55 | 000,000,188 | -HS- | M] () -- D:\Documents and Settings\enter\ntuser.ini[2010-10-02 16:20:50 | 003,746,108 | -H-- | M] () -- D:\Documents and Settings\enter\Ustawienia lokalne\Dane aplikacji\IconCache.db[2010-10-02 16:19:10 | 000,000,496 | ---- | M] () -- D:\Documents and Settings\enter\Pulpit\Gadu-Gadu.lnk[2010-10-02 16:18:04 | 000,013,646 | ---- | M] () -- D:\WINDOWS\System32\wpa.dbl[2010-10-02 16:18:04 | 000,000,006 | -H-- | M] () -- D:\WINDOWS\tasks\SA.DAT[2010-10-02 16:18:02 | 000,002,048 | --S- | M] () -- D:\WINDOWS\bootstat.dat[2010-10-02 15:59:13 | 000,000,477 | ---- | M] () -- D:\WINDOWS\win.ini[2010-10-02 15:59:13 | 000,000,227 | ---- | M] () -- D:\WINDOWS\system.ini[2010-10-02 15:54:34 | 000,013,646 | ---- | M] () -- D:\WINDOWS\System32\wpa.bak[2010-10-02 15:46:56 | 000,940,794 | ---- | M] () -- D:\WINDOWS\System32\LoopyMusic.wav[2010-10-02 15:46:56 | 000,146,650 | ---- | M] () -- D:\WINDOWS\System32\BuzzingBee.wav[2010-10-02 15:39:14 | 000,001,658 | ---- | M] () -- D:\Documents and Settings\All Users\Pulpit\My Printer.lnk[2010-10-02 15:37:14 | 000,012,328 | ---- | M] () -- D:\Documents and Settings\enter\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT[2010-10-02 15:36:47 | 000,000,000 | ---- | M] () -- D:\WINDOWS\ativpsrm.bin[2010-10-02 15:06:21 | 000,008,192 | ---- | M] () -- D:\WINDOWS\REGLOCS.OLD[2010-10-02 15:06:13 | 000,093,480 | ---- | M] () -- D:\WINDOWS\System32\FNTCACHE.DAT[2010-10-02 15:05:33 | 000,000,261 | ---- | M] () -- D:\WINDOWS\System32\$winnt$.inf[2010-10-02 15:04:12 | 000,002,596 | ---- | M] () -- D:\WINDOWS\System32\CONFIG.NT[2010-10-02 15:04:12 | 000,000,000 | ---- | M] () -- D:\WINDOWS\control.ini[2010-10-02 15:04:09 | 000,316,640 | ---- | M] () -- D:\WINDOWS\WMSysPr9.prx[2010-10-02 15:04:08 | 000,023,392 | ---- | M] () -- D:\WINDOWS\System32\nscompat.tlb[2010-10-02 15:04:08 | 000,016,832 | ---- | M] () -- D:\WINDOWS\System32\amcompat.tlb[2010-10-02 15:04:00 | 000,004,293 | ---- | M] () -- D:\WINDOWS\ODBCINST.INI[2010-10-02 15:03:24 | 000,000,488 | RH-- | M] () -- D:\WINDOWS\System32\WindowsLogon.manifest[2010-10-02 15:03:24 | 000,000,488 | RH-- | M] () -- D:\WINDOWS\System32\logonui.exe.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\System32\wuaucpl.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\WindowsShell.Manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\System32\sapi.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\System32\nwc.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\System32\ncpa.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | M] () -- D:\WINDOWS\System32\cdplayer.exe.manifest[2010-10-02 15:02:11 | 000,021,856 | ---- | M] () -- D:\WINDOWS\System32\emptyregdb.dat[2010-10-02 15:02:02 | 000,000,037 | ---- | M] () -- D:\WINDOWS\vbaddin.ini[2010-10-02 15:02:02 | 000,000,036 | ---- | M] () -- D:\WINDOWS\vb.ini[3 D:\WINDOWS\System32\*.tmp files -> D:\WINDOWS\System32\*.tmp -> ][3 D:\WINDOWS\*.tmp files -> D:\WINDOWS\*.tmp -> ] ========== Files Created - No Company Name ========== [2010-10-02 16:59:13 | 000,005,208 | ---- | C] () -- D:\WINDOWS\System32\pid.PNF[2010-10-02 16:51:14 | 001,685,606 | ---- | C] () -- D:\WINDOWS\System32\dllcache\sam.spd[2010-10-02 16:51:14 | 000,000,888 | ---- | C] () -- D:\WINDOWS\System32\dllcache\sam.sdf[2010-10-02 16:51:13 | 000,643,717 | ---- | C] () -- D:\WINDOWS\System32\dllcache\ltts1033.lxa[2010-10-02 16:51:13 | 000,605,050 | ---- | C] () -- D:\WINDOWS\System32\dllcache\r1033tts.lxa[2010-10-02 16:51:11 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28603.nls[2010-10-02 16:51:11 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_28603.nls[2010-10-02 16:51:10 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_857.nls[2010-10-02 16:51:10 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\c_857.nls[2010-10-02 16:51:10 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28599.nls[2010-10-02 16:51:10 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_28599.nls[2010-10-02 16:51:10 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10081.nls[2010-10-02 16:51:10 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10081.nls[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28595.nls[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\C_28595.NLS[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10017.nls[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10017.nls[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10007.nls[2010-10-02 16:51:08 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10007.nls[2010-10-02 16:51:07 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_869.nls[2010-10-02 16:51:07 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\c_869.nls[2010-10-02 16:51:07 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_737.nls[2010-10-02 16:51:07 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\c_737.nls[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_875.nls[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_875.nls[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28597.nls[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\C_28597.NLS[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10006.nls[2010-10-02 16:51:07 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10006.nls[2010-10-02 16:51:06 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_866.nls[2010-10-02 16:51:06 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\c_866.nls[2010-10-02 16:51:06 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_855.nls[2010-10-02 16:51:06 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\c_855.nls[2010-10-02 16:51:06 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28594.nls[2010-10-02 16:51:06 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\C_28594.NLS[2010-10-02 16:51:04 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20127.nls[2010-10-02 16:51:04 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_20127.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10082.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10082.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10029.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10029.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10010.nls[2010-10-02 16:51:03 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\c_10010.nls[2010-10-02 16:51:00 | 000,001,734 | ---- | C] () -- D:\WINDOWS\System32\AUTOEXEC.NT[2010-10-02 16:50:52 | 000,808,524 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5IIS.CAT[2010-10-02 16:50:52 | 000,399,670 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MAPIMIG.CAT[2010-10-02 16:50:52 | 000,171,588 | ---- | C] () -- D:\WINDOWS\System32\dllcache\startoc.cat[2010-10-02 16:50:52 | 000,037,509 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MW770.CAT[2010-10-02 16:50:52 | 000,033,765 | ---- | C] () -- D:\WINDOWS\System32\dllcache\FP4.CAT[2010-10-02 16:50:52 | 000,016,825 | ---- | C] () -- D:\WINDOWS\System32\dllcache\IMS.CAT[2010-10-02 16:50:52 | 000,013,497 | ---- | C] () -- D:\WINDOWS\System32\dllcache\HPCRDP.CAT[2010-10-02 16:50:52 | 000,012,363 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MSMSGS.CAT[2010-10-02 16:50:52 | 000,010,027 | ---- | C] () -- D:\WINDOWS\System32\dllcache\MSTSWEB.CAT[2010-10-02 16:50:52 | 000,008,599 | ---- | C] () -- D:\WINDOWS\System32\dllcache\IASNT4.CAT[2010-10-02 16:50:52 | 000,007,407 | ---- | C] () -- D:\WINDOWS\System32\dllcache\OEMBIOS.CAT[2010-10-02 16:50:52 | 000,007,334 | ---- | C] () -- D:\WINDOWS\System32\dllcache\wmerrenu.cat[2010-10-02 16:50:51 | 002,033,887 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5.CAT[2010-10-02 16:50:51 | 001,246,357 | ---- | C] () -- D:\WINDOWS\System32\dllcache\SP3.CAT[2010-10-02 16:50:51 | 000,545,588 | ---- | C] () -- D:\WINDOWS\System32\dllcache\NT5INF.CAT[2010-10-02 16:50:18 | 000,093,480 | ---- | C] () -- D:\WINDOWS\System32\FNTCACHE.DAT[2010-10-02 16:46:00 | 000,000,261 | ---- | C] () -- D:\WINDOWS\System32\$winnt$.inf[2010-10-02 16:30:51 | 000,000,436 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\µTorrent.lnk[2010-10-02 16:23:18 | 000,000,410 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\Opera.lnk[2010-10-02 16:19:10 | 000,000,496 | ---- | C] () -- D:\Documents and Settings\enter\Pulpit\Gadu-Gadu.lnk[2010-10-02 16:15:14 | 000,256,512 | ---- | C] () -- D:\WINDOWS\PEV.exe[2010-10-02 16:15:14 | 000,098,816 | ---- | C] () -- D:\WINDOWS\sed.exe[2010-10-02 16:15:14 | 000,080,412 | ---- | C] () -- D:\WINDOWS\grep.exe[2010-10-02 16:15:14 | 000,077,312 | ---- | C] () -- D:\WINDOWS\MBR.exe[2010-10-02 16:15:14 | 000,068,096 | ---- | C] () -- D:\WINDOWS\zip.exe[2010-10-02 15:54:35 | 000,013,646 | ---- | C] () -- D:\WINDOWS\System32\wpa.bak[2010-10-02 15:52:10 | 000,040,960 | ---- | C] () -- D:\WINDOWS\System32\WPCA132AG.dll[2010-10-02 15:52:08 | 000,094,208 | ---- | C] () -- D:\WINDOWS\System32\GTW32N50.dll[2010-10-02 15:52:08 | 000,031,930 | ---- | C] () -- D:\WINDOWS\System32\GTNDIS3.VXD[2010-10-02 15:46:56 | 000,940,794 | ---- | C] () -- D:\WINDOWS\System32\LoopyMusic.wav[2010-10-02 15:46:56 | 000,146,650 | ---- | C] () -- D:\WINDOWS\System32\BuzzingBee.wav[2010-10-02 15:45:50 | 000,000,553 | R--- | C] () -- D:\WINDOWS\USetup.iss[2010-10-02 15:45:48 | 000,049,152 | R--- | C] () -- D:\WINDOWS\System32\ChCfg.exe[2010-10-02 15:39:14 | 000,001,658 | ---- | C] () -- D:\Documents and Settings\All Users\Pulpit\My Printer.lnk[2010-10-02 15:36:47 | 000,000,000 | ---- | C] () -- D:\WINDOWS\ativpsrm.bin[2010-10-02 15:30:41 | 000,593,920 | ---- | C] () -- D:\WINDOWS\System32\ati2sgag.exe[2010-10-02 15:30:38 | 000,013,052 | R--- | C] () -- D:\WINDOWS\atiogl.xml[2010-10-02 15:30:36 | 000,007,167 | R--- | C] () -- D:\WINDOWS\System32\atifglpf.xml[2010-10-02 15:30:35 | 000,887,724 | R--- | C] () -- D:\WINDOWS\System32\ativva6x.dat[2010-10-02 15:30:34 | 003,107,788 | R--- | C] () -- D:\WINDOWS\System32\ativva5x.dat[2010-10-02 15:30:33 | 003,107,788 | R--- | C] () -- D:\WINDOWS\System32\ativvaxx.dat[2010-10-02 15:30:33 | 000,174,819 | R--- | C] () -- D:\WINDOWS\System32\atiicdxx.dat[2010-10-02 15:27:19 | 000,057,344 | -H-- | C] () -- D:\Documents and Settings\enter\ntuser.dat.LOG[2010-10-02 15:27:19 | 000,000,188 | -HS- | C] () -- D:\Documents and Settings\enter\ntuser.ini[2010-10-02 15:27:18 | 000,786,432 | -H-- | C] () -- D:\Documents and Settings\enter\NTUSER.DAT[2010-10-02 15:06:20 | 000,008,192 | ---- | C] () -- D:\WINDOWS\REGLOCS.OLD[2010-10-02 15:05:33 | 000,002,048 | --S- | C] () -- D:\WINDOWS\bootstat.dat[2010-10-02 15:05:29 | 000,028,288 | ---- | C] () -- D:\WINDOWS\System32\dllcache\xjis.nls[2010-10-02 15:05:13 | 000,083,748 | ---- | C] () -- D:\WINDOWS\System32\dllcache\prcp.nls[2010-10-02 15:05:12 | 000,175,104 | ---- | C] () -- D:\WINDOWS\System32\dllcache\pintlcsa.dll[2010-10-02 15:05:12 | 000,083,748 | ---- | C] () -- D:\WINDOWS\System32\dllcache\prc.nls[2010-10-02 15:05:02 | 001,158,818 | ---- | C] () -- D:\WINDOWS\System32\dllcache\korwbrkr.lex[2010-10-02 15:05:02 | 000,047,066 | ---- | C] () -- D:\WINDOWS\System32\dllcache\ksc.nls[2010-10-02 15:04:58 | 000,059,392 | ---- | C] () -- D:\WINDOWS\System32\dllcache\imscinst.exe[2010-10-02 15:04:57 | 000,196,665 | ---- | C] () -- D:\WINDOWS\System32\dllcache\imjpinst.exe[2010-10-02 15:04:56 | 000,134,339 | ---- | C] () -- D:\WINDOWS\System32\dllcache\imekr.lex[2010-10-02 15:04:50 | 013,463,552 | ---- | C] () -- D:\WINDOWS\System32\dllcache\hwxjpn.dll[2010-10-02 15:04:48 | 000,108,827 | ---- | C] () -- D:\WINDOWS\System32\dllcache\hanja.lex[2010-10-02 15:04:45 | 000,094,208 | ---- | C] () -- D:\WINDOWS\System32\dllcache\fpencode.dll[2010-10-02 15:04:39 | 000,173,568 | ---- | C] () -- D:\WINDOWS\System32\dllcache\chtskf.dll[2010-10-02 15:04:37 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_864.nls[2010-10-02 15:04:37 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_862.nls[2010-10-02 15:04:37 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_870.nls[2010-10-02 15:04:36 | 000,180,770 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20932.nls[2010-10-02 15:04:36 | 000,177,698 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20949.nls[2010-10-02 15:04:36 | 000,173,602 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20936.nls[2010-10-02 15:04:36 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_858.nls[2010-10-02 15:04:36 | 000,066,594 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_720.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_708.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_28596.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_21027.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_21025.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20924.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20880.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20871.nls[2010-10-02 15:04:36 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20838.nls[2010-10-02 15:04:35 | 000,187,938 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20005.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20833.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20424.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20423.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20420.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20297.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20290.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20285.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20284.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20280.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20278.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20277.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20273.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20269.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20108.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20107.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20106.nls[2010-10-02 15:04:35 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20105.nls[2010-10-02 15:04:34 | 000,189,986 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1361.nls[2010-10-02 15:04:34 | 000,186,402 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20001.nls[2010-10-02 15:04:34 | 000,185,378 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20003.nls[2010-10-02 15:04:34 | 000,180,258 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20004.nls[2010-10-02 15:04:34 | 000,180,258 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20000.nls[2010-10-02 15:04:34 | 000,173,602 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_20002.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1149.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1148.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1147.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1146.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1145.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1144.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1143.nls[2010-10-02 15:04:34 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1142.nls[2010-10-02 15:04:33 | 000,195,618 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10002.nls[2010-10-02 15:04:33 | 000,177,698 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10003.nls[2010-10-02 15:04:33 | 000,173,602 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10008.nls[2010-10-02 15:04:33 | 000,162,850 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10001.nls[2010-10-02 15:04:33 | 000,082,172 | ---- | C] () -- D:\WINDOWS\System32\dllcache\bopomofo.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1141.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1140.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_1047.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10021.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10005.nls[2010-10-02 15:04:33 | 000,066,082 | ---- | C] () -- D:\WINDOWS\System32\dllcache\c_10004.nls[2010-10-02 15:04:32 | 000,066,728 | ---- | C] () -- D:\WINDOWS\System32\dllcache\big5.nls[2010-10-02 15:04:12 | 000,002,596 | ---- | C] () -- D:\WINDOWS\System32\CONFIG.NT[2010-10-02 15:04:08 | 000,023,392 | ---- | C] () -- D:\WINDOWS\System32\nscompat.tlb[2010-10-02 15:04:08 | 000,016,832 | ---- | C] () -- D:\WINDOWS\System32\amcompat.tlb[2010-10-02 15:04:07 | 000,316,640 | ---- | C] () -- D:\WINDOWS\WMSysPr9.prx[2010-10-02 15:03:24 | 000,000,488 | RH-- | C] () -- D:\WINDOWS\System32\WindowsLogon.manifest[2010-10-02 15:03:24 | 000,000,488 | RH-- | C] () -- D:\WINDOWS\System32\logonui.exe.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\wuaucpl.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\WindowsShell.Manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\sapi.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\nwc.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\ncpa.cpl.manifest[2010-10-02 15:03:20 | 000,000,749 | RH-- | C] () -- D:\WINDOWS\System32\cdplayer.exe.manifest[2010-10-02 15:03:08 | 004,399,505 | ---- | C] () -- D:\WINDOWS\System32\dllcache\nls302en.lex[2010-10-02 15:02:56 | 000,048,680 | -HS- | C] () -- D:\WINDOWS\winnt256.bmp[2010-10-02 15:02:56 | 000,048,680 | -HS- | C] () -- D:\WINDOWS\winnt.bmp[2010-10-02 15:02:52 | 000,000,984 | ---- | C] () -- D:\WINDOWS\System32\dllcache\srframe.mmf[2010-10-02 15:02:25 | 000,380,416 | ---- | C] () -- D:\WINDOWS\System32\dllcache\msinfo.dll[2010-10-02 15:02:11 | 000,021,856 | ---- | C] () -- D:\WINDOWS\System32\emptyregdb.dat[2010-10-02 15:01:15 | 000,065,978 | ---- | C] () -- D:\WINDOWS\Bąbelki.bmp[2010-10-02 15:01:15 | 000,065,954 | ---- | C] () -- D:\WINDOWS\Pod mikroskopem.bmp[2010-10-02 15:01:15 | 000,065,832 | ---- | C] () -- D:\WINDOWS\Stiuk z Santa Fe.bmp[2010-10-02 15:01:15 | 000,026,680 | ---- | C] () -- D:\WINDOWS\Wachlarze.bmp[2010-10-02 15:01:15 | 000,026,582 | ---- | C] () -- D:\WINDOWS\Nefryt.bmp[2010-10-02 15:01:15 | 000,017,362 | ---- | C] () -- D:\WINDOWS\Rododendron.bmp[2010-10-02 15:01:15 | 000,017,336 | ---- | C] () -- D:\WINDOWS\Na rybkach.bmp[2010-10-02 15:01:15 | 000,017,062 | ---- | C] () -- D:\WINDOWS\Kawa.bmp[2010-10-02 15:01:15 | 000,016,730 | ---- | C] () -- D:\WINDOWS\Puch.bmp[2010-10-02 15:01:15 | 000,009,522 | ---- | C] () -- D:\WINDOWS\Indiański pled.bmp[2010-10-02 15:01:14 | 000,093,702 | ---- | C] () -- D:\WINDOWS\System32\subrange.uce[2010-10-02 15:01:14 | 000,060,458 | ---- | C] () -- D:\WINDOWS\System32\ideograf.uce[2010-10-02 15:01:14 | 000,024,006 | ---- | C] () -- D:\WINDOWS\System32\gb2312.uce[2010-10-02 15:01:14 | 000,022,984 | ---- | C] () -- D:\WINDOWS\System32\bopomofo.uce[2010-10-02 15:01:14 | 000,016,740 | ---- | C] () -- D:\WINDOWS\System32\shiftjis.uce[2010-10-02 15:01:14 | 000,012,876 | ---- | C] () -- D:\WINDOWS\System32\korean.uce[2010-10-02 15:01:14 | 000,008,484 | ---- | C] () -- D:\WINDOWS\System32\kanji_2.uce[2010-10-02 15:01:14 | 000,006,948 | ---- | C] () -- D:\WINDOWS\System32\kanji_1.uce[2010-10-02 15:01:14 | 000,001,272 | ---- | C] () -- D:\WINDOWS\Niebieska koronka 16.bmp[2010-10-02 15:01:13 | 000,001,225 | ---- | C] () -- D:\WINDOWS\System32\usrlogon.cmd[2010-10-02 15:01:12 | 000,003,286 | ---- | C] () -- D:\WINDOWS\System32\tslabels.h[2010-10-02 15:01:12 | 000,000,768 | ---- | C] () -- D:\WINDOWS\System32\msdtcprf.h[2010-10-02 15:01:08 | 000,063,488 | ---- | C] () -- D:\WINDOWS\System32\wmimgmt.msc ========== LOP Check ========== [2010-10-02 15:39:03 | 000,000,000 | -H-D | M] -- D:\Documents and Settings\All Users\Dane aplikacji\CanonBJ[2010-10-02 16:02:25 | 000,000,000 | ---D | M] -- D:\Documents and Settings\enter\Dane aplikacji\Gadu-Gadu[2010-10-02 16:04:32 | 000,000,000 | ---D | M] -- D:\Documents and Settings\enter\Dane aplikacji\Opera[2010-10-02 16:32:27 | 000,000,000 | ---D | M] -- D:\Documents and Settings\enter\Dane aplikacji\<a href="http://www.download.net.pl/297/uTorrent/">uTorrent</a> ========== Purity Check ==========   ========== Custom Scans ==========  < %systemdrive%\*.* >[2010-10-02 15:47:30 | 000,000,197 | ---- | M] () -- D:\csb.log[2010-10-02 16:17:56 | 2145,386,496 | -HS- | M] () -- D:\pagefile.sys  < MD5 for: AGP440.SYS  >[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:agp440.sys < MD5 for: ATAPI.SYS  >[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:atapi.sys[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\dllcache\atapi.sys[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\drivers\atapi.sys[2008-04-15 14:00:00 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\ReinstallBackups\0006\DriverFiles\i386\atapi.sys[2008-04-14 00:10:32 | 000,096,512 | ---- | M] (Microsoft Corporation) MD5=9F3A2F5AA6875C72BF062C712CFA2674 -- D:\WINDOWS\system32\ReinstallBackups\0007\DriverFiles\i386\atapi.sys < MD5 for: BEEP.SYS  >[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- D:\WINDOWS\system32\dllcache\beep.sys[2008-04-15 14:00:00 | 000,004,224 | ---- | M] (Microsoft Corporation) MD5=DA1F27D85E0D1525F6621372E7B685E9 -- D:\WINDOWS\system32\drivers\beep.sys < MD5 for: CDROM.SYS  >[2008-04-15 14:00:00 | 020,110,420 | ---- | M] () .cab file -- D:\WINDOWS\Driver Cache\i386\sp3.cab:cdrom.sys[2008-04-15 14:00:00 | 000,062,976 | ---- | M] (Microsoft Corporation) MD5=1F4260CC5B42272D71F79E570A27A4FE -- D:\WINDOWS\system32\drivers\cdrom.sys < MD5 for: EVENTLOG.DLL  >[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- D:\WINDOWS\system32\dllcache\eventlog.dll[2008-04-15 14:00:00 | 000,056,320 | ---- | M] (Microsoft Corporation) MD5=35FCCFD093582FA9098762E6F84EE119 -- D:\WINDOWS\system32\eventlog.dll < MD5 for: NDIS.SYS  >[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\system32\dllcache\ndis.sys[2008-04-15 14:00:00 | 000,182,656 | ---- | M] (Microsoft Corporation) MD5=1DF7F42665C94B825322FAE71721130D -- D:\WINDOWS\system32\drivers\ndis.sys < MD5 for: WINLOGON.EXE  >[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- D:\WINDOWS\system32\dllcache\winlogon.exe[2008-04-15 14:00:00 | 000,510,464 | ---- | M] (Microsoft Corporation) MD5=51FD2E13D723857B9CA239AE77150F48 -- D:\WINDOWS\system32\winlogon.exe< End of report >


Użytkownik Katarina edytował ten post 16 10 2010 - 18:04

  • 0

#2 ordynat

ordynat

    Zaawansowany użytkownik

  • 804 postów

Napisano 02 10 2010 - 19:20

Wszystko jest OK.

(Microsoft Corporation) -- D:\WINDOWS\system32\winlogon.exe
(Microsoft Corporation) -- D:\WINDOWS\system32\lsass.exe
(Advanced Micro Devices Inc.) -- D:\Program Files\ATI Technologies\ATI.ACE\Core-Static\MOM.exe

Te wymienione przez Ciebie.
.

  • 0
Wróć do Bezpieczeństwo (wirusy i trojany)


Użytkownicy przeglądający ten temat: 0

0 użytkowników, 0 gości, 0 anonimowych

  1. Forum Komputerowe Tweaks.pl
  2. Oprogramowanie
  3. Bezpieczeństwo (wirusy i trojany)
  4. Polityka prywatności
  5. Szukaj
  6. Regulamin Forum ·