[code] OTS logfile created on: 2010-09-12 18:09:52 - Run 1 OTS by OldTimer - Version 3.1.27.1 Folder = D:\viru Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 502,00 Mb Total Physical Memory | 226,00 Mb Available Physical Memory | 45,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 73,00% Paging File free Paging file location(s): C:\pagefile.sys 756 1512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 52,96 Gb Total Space | 39,08 Gb Free Space | 73,80% Space Free | Partition Type: NTFS Drive D: | 7,45 Gb Total Space | 2,62 Gb Free Space | 35,21% Space Free | Partition Type: FAT32 E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Computer Name: ACER Current User Name: dom Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days [Processes - Safe List] msmpeng.exe -> c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -> [2010-03-25 21:40:44 | 000,017,904 | ---- | M] (Microsoft Corporation) ots.exe -> D:\viru\OTS.exe -> [2010-03-23 21:49:28 | 000,637,440 | ---- | M] (OldTimer Tools) ipluschecker.exe -> C:\Program Files\iPlus\iPlusChecker.exe -> [2009-12-21 13:07:54 | 000,446,464 | ---- | M] () lxdrcoms.exe -> C:\WINDOWS\system32\lxdrcoms.exe -> [2008-05-16 17:39:16 | 000,594,600 | ---- | M] ( ) explorer.exe -> C:\WINDOWS\explorer.exe -> [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) gtdetectsc.exe -> C:\Program Files\iPlus\Drivers\Driver2k\GTMax3.6\GtDetectSc.exe -> [2007-12-20 11:48:42 | 000,204,800 | ---- | M] (OptionNV) gtflashswitch.exe -> C:\Program Files\iPlus\Drivers\Driver2k\GTMax3.6\GtFlashSwitch.exe -> [2007-12-20 11:48:42 | 000,204,800 | ---- | M] (Option) anbmserv.exe -> C:\Acer\eManager\anbmServ.exe -> [2005-06-06 19:08:58 | 001,273,344 | ---- | M] (OSA Technologies Inc.) [Modules - Safe List] ots.exe -> D:\viru\OTS.exe -> [2010-03-23 21:49:28 | 000,637,440 | ---- | M] (OldTimer Tools) serwvdrv.dll -> C:\WINDOWS\system32\serwvdrv.dll -> [2004-08-04 20:00:00 | 000,014,848 | ---- | M] (Microsoft Corporation) umdmxfrm.dll -> C:\WINDOWS\system32\umdmxfrm.dll -> [2004-08-04 20:00:00 | 000,013,312 | ---- | M] (Microsoft Corporation) [Win32 Services - Safe List] (MsMpSvc) Microsoft Antimalware Service [Auto | Running] -> c:\Program Files\Microsoft Security Essentials\MsMpEng.exe -> [2010-03-25 21:40:44 | 000,017,904 | ---- | M] (Microsoft Corporation) (lxdr_device) lxdr_device [Auto | Running] -> C:\WINDOWS\System32\lxdrcoms.exe -> [2008-05-16 17:39:16 | 000,594,600 | ---- | M] ( ) (lxdrCATSCustConnectService) lxdrCATSCustConnectService [Auto | Stopped] -> C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\\lxdrserv.exe -> [2008-05-16 17:39:04 | 000,098,984 | ---- | M] () (GtDetectSc) GtDetectSc Service [Auto | Running] -> C:\Program Files\iPlus\Drivers\Driver2k\GTMax3.6\GtDetectSc.exe -> [2007-12-20 11:48:42 | 000,204,800 | ---- | M] (OptionNV) (GtFlashSwitch) GtFlashSwitch Service [Auto | Running] -> C:\Program Files\iPlus\Drivers\Driver2k\GTMax3.6\GtFlashSwitch.exe -> [2007-12-20 11:48:42 | 000,204,800 | ---- | M] (Option) (anbmService) Notebook Manager Service [Auto | Running] -> C:\Acer\eManager\anbmServ.exe -> [2005-06-06 19:08:58 | 001,273,344 | ---- | M] (OSA Technologies Inc.) [Driver Services - Safe List] (MpFilter) Microsoft Malware Protection Driver [File_System | System | Running] -> C:\WINDOWS\system32\drivers\MpFilter.sys -> [2010-03-25 21:30:22 | 000,151,216 | ---- | M] (Microsoft Corporation) (NwlnkIpx) Protokół transportowy zgodny z NWLink IPX/SPX/NetBIOS [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\nwlnkipx.sys -> [2008-04-14 00:26:08 | 000,088,320 | ---- | M] (Microsoft Corporation) (nm) Sterownik monitora sieci [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\nmnt.sys -> [2008-04-14 00:23:10 | 000,040,320 | ---- | M] (Microsoft Corporation) (amdagp) Sterownik filtru magistrali AGP AMD [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\amdagp.sys -> [2008-04-14 00:06:40 | 000,043,008 | ---- | M] (Advanced Micro Devices, Inc.) (sisagp) Filtr magistrali AGP SIS [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sisagp.sys -> [2008-04-14 00:06:40 | 000,040,960 | ---- | M] (Silicon Integrated Systems Corporation) (HDAudBus) Sterownik magistrali Microsoft UAA dla High Definition Audio [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\Hdaudbus.sys -> [2008-04-13 22:06:06 | 000,144,384 | ---- | M] (Windows (R) Server 2003 DDK provider) (GT72NDISIPXP) GT 72 IP NDIS [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\Gt51Ip.sys -> [2007-12-20 11:48:36 | 000,095,744 | ---- | M] (Option NV) (GT72UBUS) GT 72 U BUS [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\gt72ubus.sys -> [2007-12-20 11:48:36 | 000,051,968 | ---- | M] (Option N.V.) (GTPTSER) GT PT SER [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\gtptser.sys -> [2007-12-20 11:48:36 | 000,008,064 | ---- | M] (Option N.V.) (TaurusUsb) ADSL Modem USB Service [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\torususb.sys -> [2006-05-25 16:28:44 | 000,684,265 | R--- | M] () (NTIDrvr) Upper Class Filter Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\NTIDrvr.sys -> [2005-08-24 19:53:34 | 000,006,144 | ---- | M] (NewTech Infosystems, Inc.) (IntcAzAudAddService) Service for Realtek HD Audio (WDM) [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\RtkHDAud.sys -> [2005-08-09 16:43:00 | 003,855,360 | ---- | M] (Realtek Semiconductor Corp.) (osaio) osaio [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\osaio.sys -> [2005-06-30 16:58:24 | 000,007,296 | ---- | M] (OSA Technologies, An Avocent Company) (HSF_DPV) HSF_DPV [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_DPV.sys -> [2005-06-30 15:16:58 | 001,034,752 | ---- | M] (Conexant Systems, Inc.) (HSFHWAZL) HSFHWAZL [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSFHWAZL.sys -> [2005-06-30 15:16:06 | 000,200,704 | ---- | M] (Conexant Systems, Inc.) (winachsf) winachsf [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\HSF_CNXT.sys -> [2005-06-30 15:16:02 | 000,716,416 | ---- | M] (Conexant Systems, Inc.) (EpmShd) Acer EPM System Hardware Driver [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\epm-shd.sys -> [2005-04-07 18:08:46 | 000,078,208 | ---- | M] (Acer Value Labs, USA) (RTL8023xp) Realtek 10/100/1000 NIC Family all in one NDIS XP Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\Rtlnicxp.sys -> [2005-03-04 11:10:26 | 000,074,496 | ---- | M] (Realtek Semiconductor Corporation ) (osanbm) osanbm [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\osanbm.sys -> [2005-01-14 15:57:16 | 000,004,010 | ---- | M] (Windows (R) 2000 DDK provider) (int15.sys) int15.sys [Kernel | Auto | Running] -> C:\Program Files\acer\eRecovery\int15.sys -> [2005-01-13 14:46:16 | 000,069,632 | ---- | M] () (AR5211) Atheros Wireless Network Adapter Service [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\ar5211.sys -> [2005-01-10 15:47:14 | 000,449,888 | ---- | M] (Atheros Communications, Inc.) (HdAudAddService) Microsoft UAA Function Driver for High Definition Audio Service [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\drivers\Hdaudio.sys -> [2005-01-07 17:07:16 | 000,145,920 | ---- | M] (Windows (R) Server 2003 DDK provider) (UBHelper) UBHelper [Kernel | Boot | Running] -> C:\WINDOWS\system32\drivers\UBHelper.sys -> [2004-12-17 17:14:44 | 000,013,952 | ---- | M] () (DKbFltr) Dritek Keyboard Filter Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\DKbFltr.SYS -> [2004-12-08 14:10:00 | 000,016,896 | ---- | M] (Dritek System Inc.) (w29n51) Sterownik karty Intel(R) PRO/Wireless 2200BG Network Connection dla systemu Windows XP [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\w29n51.sys -> [2004-11-16 12:06:00 | 003,222,784 | ---- | M] (Intel® Corporation) (SynTP) Synaptics TouchPad Driver [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\SynTP.sys -> [2004-10-08 14:33:46 | 000,185,824 | ---- | M] (Synaptics, Inc.) (dac2w2k) dac2w2k [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\dac2w2k.sys -> [2004-08-04 20:00:00 | 000,179,584 | ---- | M] (Mylex Corporation) (NwlnkNb) System NetBIOS NWLink [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\nwlnknb.sys -> [2004-08-04 20:00:00 | 000,063,232 | ---- | M] (Microsoft Corporation) (NwlnkSpx) Protokół NWLink SPX/SPXII [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\nwlnkspx.sys -> [2004-08-04 20:00:00 | 000,055,936 | ---- | M] (Microsoft Corporation) (ql1280) ql1280 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql1280.sys -> [2004-08-04 20:00:00 | 000,049,024 | ---- | M] (QLogic Corporation) (ql12160) ql12160 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql12160.sys -> [2004-08-04 20:00:00 | 000,045,312 | ---- | M] (QLogic Corporation) (ql1080) ql1080 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ql1080.sys -> [2004-08-04 20:00:00 | 000,040,320 | ---- | M] (QLogic Corporation) (ultra) ultra [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\ultra.sys -> [2004-08-04 20:00:00 | 000,036,736 | ---- | M] (Promise Technology, Inc.) (symc8xx) symc8xx [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\symc8xx.sys -> [2004-08-04 20:00:00 | 000,032,640 | ---- | M] (LSI Logic) (sym_u3) sym_u3 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sym_u3.sys -> [2004-08-04 20:00:00 | 000,030,688 | ---- | M] (LSI Logic) (sym_hi) sym_hi [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sym_hi.sys -> [2004-08-04 20:00:00 | 000,028,384 | ---- | M] (LSI Logic) (asc) asc [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\asc.sys -> [2004-08-04 20:00:00 | 000,026,496 | ---- | M] (Advanced System Products, Inc.) (Sparrow) Sparrow [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\sparrow.sys -> [2004-08-04 20:00:00 | 000,019,072 | ---- | M] (Adaptec, Inc.) (mraid35x) mraid35x [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\mraid35x.sys -> [2004-08-04 20:00:00 | 000,017,280 | ---- | M] (American Megatrends Inc.) (symc810) symc810 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\symc810.sys -> [2004-08-04 20:00:00 | 000,016,256 | ---- | M] (Symbios Logic Inc.) (asc3550) asc3550 [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\asc3550.sys -> [2004-08-04 20:00:00 | 000,014,848 | ---- | M] (Advanced System Products, Inc.) (CmdIde) CmdIde [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\cmdide.sys -> [2004-08-04 20:00:00 | 000,006,656 | ---- | M] (CMD Technology, Inc.) (AliIde) AliIde [Kernel | Boot | Running] -> C:\WINDOWS\system32\DRIVERS\aliide.sys -> [2004-08-04 20:00:00 | 000,005,248 | ---- | M] (Acer Laboratories Inc.) (EpmPsd) Acer EPM Power Scheme Driver [Kernel | Auto | Running] -> C:\WINDOWS\system32\drivers\epm-psd.sys -> [2004-07-19 13:10:00 | 000,004,096 | ---- | M] (Acer Value Labs, USA) (Stmatm) ATM/ADSL miniport [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\stmatm.sys -> [2003-08-12 15:51:00 | 000,060,255 | R--- | M] (STMicroelectronics ) (PCANDIS5) PCANDIS5 NDIS Protocol Driver [Kernel | On_Demand | Stopped] -> C:\WINDOWS\system32\PCANDIS5.SYS -> [2003-08-04 13:22:44 | 000,016,128 | ---- | M] (Printing Communications Assoc., Inc. (PCAUSA)) (MODEMCSA) Urządzenie filtru strumieniowego usługi Unimodem [Kernel | On_Demand | Running] -> C:\WINDOWS\system32\drivers\MODEMCSA.sys -> [2001-08-17 21:57:38 | 000,016,128 | ---- | M] (Microsoft Corporation) [Registry - Safe List] < Internet Explorer Settings [HKEY_LOCAL_MACHINE\] > -> -> HKEY_LOCAL_MACHINE\: Search\\"Default_Search_URL" -> http://www.google.com/ie -> HKEY_LOCAL_MACHINE\: Search\\"SearchAssistant" -> http://www.google.com/ie -> < Internet Explorer Settings [HKEY_CURRENT_USER\] > -> -> HKEY_CURRENT_USER\: Main\\"Search Page" -> http://www.google.com -> HKEY_CURRENT_USER\: Main\\"Start Page" -> http://www.google.pl/ -> HKEY_CURRENT_USER\: Search\\"SearchAssistant" -> http://www.google.com/ie -> HKEY_CURRENT_USER\: SearchURL\\"" -> http://www.google.com/search?q=%s -> HKEY_CURRENT_USER\: "ProxyEnable" -> 0 -> < FireFox Settings [Prefs.js] > -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla\FireFox\Profiles\zclwmv14.default\prefs.js -> < FireFox Extensions [HKLM] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Mozilla HKLM\software\mozilla\Firefox\Extensions -> -> HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758} -> C:\Program Files\Real\RealPlayer\browserrecord [C:\PROGRAM FILES\REAL\REALPLAYER\BROWSERRECORD] -> [2008-05-05 22:02:24 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 3.6\extensions -> -> HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Components -> C:\Program Files\Mozilla Firefox\components [C:\PROGRAM FILES\MOZILLA FIREFOX\COMPONENTS] -> [2010-09-11 23:58:59 | 000,000,000 | ---D | M] HKLM\software\mozilla\Mozilla Firefox 3.6\extensions\\Plugins -> C:\Program Files\Mozilla Firefox\plugins [C:\PROGRAM FILES\MOZILLA FIREFOX\PLUGINS] -> [2010-09-11 23:58:42 | 000,000,000 | ---D | M] < FireFox Extensions [User Folders] > -> -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Extensions -> [2010-09-11 23:59:09 | 000,000,000 | ---D | M] -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\zclwmv14.default\extensions -> [2010-09-11 23:59:17 | 000,000,000 | ---D | M] No name found -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\zclwmv14.default\extensions\{20a82645-c095-46ed-80e3-08825760534b} -> [2010-09-11 23:59:17 | 000,000,000 | ---D | M] -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla\Firefox\Profiles\zclwmv14.default\extensions\staged-xpis -> [2010-09-11 23:59:16 | 000,000,000 | ---D | M] < FireFox Extensions [Program Folders] > -> -> C:\Program Files\Mozilla Firefox\extensions -> [2010-09-11 23:58:42 | 000,000,000 | ---D | M] < HOSTS File > ([2010-09-11 21:37:26 | 000,419,169 | R--- | M] - 14510 lines) -> C:\WINDOWS\system32\drivers\etc\hosts -> First 25 entries... Reset Hosts 127.0.0.1 localhost 127.0.0.1 www.007guard.com 127.0.0.1 007guard.com 127.0.0.1 008i.com 127.0.0.1 www.008k.com 127.0.0.1 008k.com 127.0.0.1 www.00hq.com 127.0.0.1 00hq.com 127.0.0.1 010402.com 127.0.0.1 www.032439.com 127.0.0.1 032439.com 127.0.0.1 www.0scan.com 127.0.0.1 0scan.com 127.0.0.1 1000gratisproben.com 127.0.0.1 www.1000gratisproben.com 127.0.0.1 1001namen.com 127.0.0.1 www.1001namen.com 127.0.0.1 100888290cs.com 127.0.0.1 www.100888290cs.com 127.0.0.1 www.100sexlinks.com 127.0.0.1 100sexlinks.com 127.0.0.1 10sek.com 127.0.0.1 www.10sek.com 127.0.0.1 www.1-2005-search.com < BHO's [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\ -> {1017A80C-6F09-4548-A84D-EDD6AC9525F0} [HKLM] -> C:\Program Files\Lexmark Toolbar\toolband.dll [Lexmark Pasek narzędzi] -> [2009-05-06 09:03:44 | 000,372,736 | ---- | M] () {3049C3E9-B461-4BC5-8870-4C09146192CA} [HKLM] -> C:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll [RealPlayer Download and Record Plugin for Internet Explorer] -> [2008-05-05 22:02:24 | 000,308,856 | ---- | M] (RealPlayer) {53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [Spybot-S&D IE Protection] -> [2009-01-26 15:31:02 | 001,879,896 | ---- | M] (Safer Networking Limited) {D2C5E510-BE6D-42CC-9F61-E4F939078474} [HKLM] -> C:\Program Files\Lexmark Printable Web\bho.dll [Lexmark ] -> [2008-09-10 11:45:18 | 000,180,224 | ---- | M] () < Internet Explorer ToolBars [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\ToolBar -> "{1017A80C-6F09-4548-A84D-EDD6AC9525F0}" [HKLM] -> C:\Program Files\Lexmark Toolbar\toolband.dll [Lexmark Pasek narzędzi] -> [2009-05-06 09:03:44 | 000,372,736 | ---- | M] () < Internet Explorer ToolBars [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\ -> ShellBrowser\\"{42CDD1BF-3FFB-4238-8AD1-7859DF00B1D6}" [HKLM] -> Reg Error: Key error. [Reg Error: Key error.] -> File not found WebBrowser\\"{1017A80C-6F09-4548-A84D-EDD6AC9525F0}" [HKLM] -> C:\Program Files\Lexmark Toolbar\toolband.dll [Lexmark Pasek narzędzi] -> [2009-05-06 09:03:44 | 000,372,736 | ---- | M] () < Run [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "iPlusManager" -> C:\Program Files\iPlus\iPlusChecker.exe [C:\Program Files\iPlus\iPlusChecker.exe] -> [2009-12-21 13:07:54 | 000,446,464 | ---- | M] () < Run [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run -> "SpybotSD TeaTimer" -> C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe [C:\Program Files\Spybot - Search & Destroy\TeaTimer.exe] -> [2009-03-05 16:07:20 | 002,260,480 | RHS- | M] (Safer-Networking Ltd.) < All Users Startup Folder > -> C:\Documents and Settings\All Users\Menu Start\Programy\Autostart -> -> C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Oprogramowanie Kodak EasyShare.lnk.disabled -> [2008-03-23 22:20:14 | 000,001,745 | ---- | M] () < dom Startup Folder > -> C:\Documents and Settings\dom\Menu Start\Programy\Autostart -> < CurrentVersion Policy Settings - Explorer [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"HonorAutoRunSetting" -> [1] -> File not found < CurrentVersion Policy Settings - System [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System < CurrentVersion Policy Settings - Explorer [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer \\"NoDriveTypeAutoRun" -> [95 00 00 00 [binary data]] -> File not found < Internet Explorer Menu Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\MenuExt\ -> Google Sidewiki... -> Reg Error: Value error. [Reg Error: Value error.] -> File not found < Internet Explorer Extensions [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Extensions\ -> {DFB852A3-47F8-48C4-A200-58CAB36FD2A2}:{53707962-6F74-2D53-2644-206D7942484F} [HKLM] -> C:\Program Files\Spybot - Search & Destroy\SDHelper.dll [Menu: Spybot - Search & Destroy Configuration] -> [2009-01-26 15:31:02 | 001,879,896 | ---- | M] (Safer Networking Limited) < Internet Explorer Extensions [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Extensions\ -> CmdMapping\\"{FB5F1910-F110-11d2-BB9E-00C04F795683}" [HKLM] -> [Reg Error: Key error.] -> File not found < Internet Explorer Plugins [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Plugins\ -> PluginsPageFriendlyName -> Galeria Microsoft ActiveX -> < Default Prefix > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\URL\DefaultPrefix "" -> http:// < Trusted Sites Domains [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 7429 domain(s) found. -> < Trusted Sites Ranges [HKEY_LOCAL_MACHINE\] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 36 range(s) found. -> < Trusted Sites Domains [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\ -> [Key] 7428 domain(s) found. -> < Trusted Sites Ranges [HKEY_CURRENT_USER\] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Ranges\ -> [Key] 36 range(s) found. -> < Downloaded Program Files > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\ -> {6414512B-B978-451D-A0D8-FCFDF33E833C} [HKLM] -> http://update.microsoft.com/windowsupdate/v6/V5Controls/en/x86/client/wuweb_site.cab?1273951619062 [WUWebControl Class] -> {8AD9C840-044E-11D1-B3E9-00805F499D93} [HKLM] -> http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab [Java Plug-in 1.4.0_03] -> {92ECE6FA-AC2E-4042-BFAE-0C8608E52A43} [HKLM] -> https://www.bph.pl/sezam/components/SignActivX.cab [SignActivX Control] -> {CAFEEFAC-0014-0000-0003-ABCDEFFEDCBA} [HKLM] -> http://java.sun.com/products/plugin/autodl/jinstall-1_4_0_03-win.cab [Java Plug-in 1.4.0_03] -> {D27CDB6E-AE6D-11CF-96B8-444553540000} [HKLM] -> http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab [Shockwave Flash Object] -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\ -> DhcpNameServer -> 194.204.159.1 194.204.152.34 -> < Name Servers [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters\Adapters\ -> {AEEC5887-9571-417A-A876-7B8936D182DB}\\DhcpNameServer -> 194.204.159.1 194.204.152.34 (Intel(R) PRO/Wireless 2200BG Network Connection) -> < Winlogon settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon -> *Shell* -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\\Shell -> Explorer.exe -> C:\WINDOWS\explorer.exe -> [2008-04-14 22:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) *MultiFile Done* -> -> < Winlogon\Notify settings [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\ -> igfxcui -> C:\WINDOWS\System32\igfxdev.dll -> [2005-06-08 10:58:00 | 000,131,072 | R--- | M] (Intel Corporation) < Domain Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List -> < Standard Profile Authorized Applications List > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List -> "C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe" -> C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe [C:\Program Files\Abbyy FineReader 6.0 Sprint\Scan\ScanMan6.exe:*:Enabled:ABBYY FineReader] -> [2007-08-09 22:50:24 | 001,176,864 | ---- | M] (ABBYY (BIT Software)) "C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe" -> C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe [C:\Program Files\Kodak\Kodak EasyShare software\bin\EasyShare.exe:*:Enabled:EasyShare] -> [2007-06-21 22:56:14 | 000,282,624 | ---- | M] (Eastman Kodak Company) "C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe" -> C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe [C:\Program Files\Kodak\KODAK Software Updater\7288971\Program\Kodak Software Updater.exe:*:Enabled:Kodak Software Updater] -> [2004-02-13 14:12:08 | 000,016,423 | ---- | M] () "C:\Program Files\Lexmark 4900 Series\frun.exe" -> C:\Program Files\Lexmark 4900 Series\frun.exe [C:\Program Files\Lexmark 4900 Series\frun.exe:*:Enabled:Lexmark Productivity Studio] -> [2008-01-16 10:24:32 | 000,307,200 | ---- | M] () "C:\Program Files\Lexmark 4900 Series\lxdramon.exe" -> C:\Program Files\Lexmark 4900 Series\lxdramon.exe [C:\Program Files\Lexmark 4900 Series\lxdramon.exe:*:Enabled:Lexmark Device Monitor] -> [2008-09-10 12:24:20 | 000,016,040 | ---- | M] () "C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe" -> C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe [C:\Program Files\Lexmark Fax Solutions\FaxCtr.exe:*:Enabled:Fax software] -> [2008-09-10 12:24:12 | 000,762,536 | ---- | M] () "C:\WINDOWS\System32\lxdrcoms.exe" -> C:\WINDOWS\System32\lxdrcoms.exe [C:\WINDOWS\System32\lxdrcoms.exe:*:Enabled:Lexmark Communications System] -> [2008-05-16 17:39:16 | 000,594,600 | ---- | M] ( ) < SafeBoot AlternateShell [HKEY_LOCAL_MACHINE] > -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot -> < CDROM Autorun Setting [HKEY_LOCAL_MACHINE]> -> HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Cdrom -> "AutoRun" -> 1 -> "DisplayName" -> Sterownik stacji dysków CD-ROM -> "ImagePath" -> [system32\DRIVERS\cdrom.sys] -> File not found < Drives with AutoRun files > -> -> C:\AUTOEXEC.BAT [PATH=%PATH%;C:\PROGRA~1\COMMON~1\MUVEET~1\030625 | ] -> C:\AUTOEXEC.BAT [ NTFS ] -> [2005-08-24 19:54:08 | 000,000,050 | ---- | M] () < MountPoints2 [HKEY_CURRENT_USER] > -> HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\MountPoints2 -> < Registry Shell Spawning - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command -> comfile [open] -> "%1" %* -> exefile [open] -> "%1" %* -> < File Associations - Select to Repair > -> HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\ -> .com [@ = comfile] -> "%1" %* -> .exe [@ = exefile] -> "%1" %* -> [Files/Folders - Created Within 30 Days] DoctorWeb -> C:\Documents and Settings\dom\DoctorWeb -> [2010-09-12 00:56:14 | 000,000,000 | ---D | C] Pobieranie -> C:\Documents and Settings\dom\Moje dokumenty\Pobieranie -> [2010-09-12 00:03:54 | 000,000,000 | ---D | C] Mozilla -> C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\Mozilla -> [2010-09-11 23:58:54 | 000,000,000 | ---D | C] Mozilla -> C:\Documents and Settings\dom\Dane aplikacji\Mozilla -> [2010-09-11 23:58:54 | 000,000,000 | ---D | C] Mozilla Firefox -> C:\Program Files\Mozilla Firefox -> [2010-09-11 23:58:37 | 000,000,000 | ---D | C] Adobe -> C:\Documents and Settings\All Users\Dane aplikacji\Adobe -> [2010-09-11 23:48:31 | 000,000,000 | ---D | C] Adobe -> C:\Program Files\Common Files\Adobe -> [2010-09-11 23:46:56 | 000,000,000 | ---D | C] Config.Msi -> C:\Config.Msi -> [2010-09-11 23:45:22 | 000,000,000 | -HSD | C] Recent -> C:\Documents and Settings\dom\Recent -> [2010-09-11 21:46:01 | 000,000,000 | RH-D | C] CCleaner -> C:\Program Files\CCleaner -> [2010-09-11 21:42:26 | 000,000,000 | ---D | C] ccsetup235.exe -> C:\Documents and Settings\dom\Pulpit\ccsetup235.exe -> [2010-09-11 21:39:33 | 003,427,248 | ---- | C] (Piriform Ltd) Spybot - Search & Destroy -> C:\Program Files\Spybot - Search & Destroy -> [2010-09-11 21:13:58 | 000,000,000 | ---D | C] Spybot - Search & Destroy -> C:\Documents and Settings\All Users\Dane aplikacji\Spybot - Search & Destroy -> [2010-09-11 21:13:58 | 000,000,000 | ---D | C] spoolerlogs -> C:\spoolerlogs -> [2010-09-04 19:58:49 | 000,000,000 | ---D | C] PCHealth -> C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\PCHealth -> [2010-05-23 12:54:39 | 000,000,000 | ---D | M] LXDRhcp.dll -> C:\WINDOWS\System32\LXDRhcp.dll -> [2010-05-06 18:17:46 | 000,438,272 | ---- | C] ( ) lxdrinpa.dll -> C:\WINDOWS\System32\lxdrinpa.dll -> [2010-05-06 18:17:44 | 000,364,544 | ---- | C] ( ) lxdriesc.dll -> C:\WINDOWS\System32\lxdriesc.dll -> [2010-05-06 18:17:43 | 000,339,968 | ---- | C] ( ) lxdrusb1.dll -> C:\WINDOWS\System32\lxdrusb1.dll -> [2010-05-06 18:17:42 | 000,851,968 | ---- | C] ( ) lxdrserv.dll -> C:\WINDOWS\System32\lxdrserv.dll -> [2010-05-06 18:17:41 | 001,069,056 | ---- | C] ( ) lxdrpmui.dll -> C:\WINDOWS\System32\lxdrpmui.dll -> [2010-05-06 18:17:40 | 000,651,264 | ---- | C] ( ) lxdrlmpm.dll -> C:\WINDOWS\System32\lxdrlmpm.dll -> [2010-05-06 18:17:39 | 000,577,536 | ---- | C] ( ) lxdrhbn3.dll -> C:\WINDOWS\System32\lxdrhbn3.dll -> [2010-05-06 18:17:34 | 000,679,936 | ---- | C] ( ) lxdrcomc.dll -> C:\WINDOWS\System32\lxdrcomc.dll -> [2010-05-06 18:17:28 | 000,765,952 | ---- | C] ( ) lxdrcomm.dll -> C:\WINDOWS\System32\lxdrcomm.dll -> [2010-05-06 18:17:28 | 000,376,832 | ---- | C] ( ) Google -> C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Google -> [2010-02-12 17:48:02 | 000,000,000 | ---D | M] Google -> C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Google -> [2010-02-12 17:43:20 | 000,000,000 | ---D | M] Symantec -> C:\Documents and Settings\NetworkService\Dane aplikacji\Symantec -> [2005-12-28 11:30:14 | 000,000,000 | ---D | M] Microsoft -> C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft -> [2005-08-24 19:40:20 | 000,000,000 | ---D | M] Microsoft -> C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft -> [2005-08-24 19:40:18 | 000,000,000 | ---D | M] Microsoft -> C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft -> [2005-08-24 19:29:54 | 000,000,000 | --SD | M] Microsoft -> C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft -> [2005-08-24 19:29:54 | 000,000,000 | --SD | M] 1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 1 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> [Files/Folders - Modified Within 30 Days] MP Scheduled Scan.job -> C:\WINDOWS\tasks\MP Scheduled Scan.job -> [2010-09-12 18:02:19 | 000,000,408 | -H-- | M] () GoogleUpdateTaskMachineUA.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineUA.job -> [2010-09-12 17:59:00 | 000,001,036 | ---- | M] () GoogleUpdateTaskMachineCore.job -> C:\WINDOWS\tasks\GoogleUpdateTaskMachineCore.job -> [2010-09-12 17:56:25 | 000,001,032 | ---- | M] () SA.DAT -> C:\WINDOWS\tasks\SA.DAT -> [2010-09-12 17:56:22 | 000,000,006 | -H-- | M] () bootstat.dat -> C:\WINDOWS\bootstat.dat -> [2010-09-12 17:56:18 | 000,002,048 | --S- | M] () hiberfil.sys -> C:\hiberfil.sys -> [2010-09-12 17:56:17 | 526,503,936 | -HS- | M] () NTUSER.DAT -> C:\Documents and Settings\dom\NTUSER.DAT -> [2010-09-12 17:55:31 | 008,126,464 | -H-- | M] () ntuser.ini -> C:\Documents and Settings\dom\ntuser.ini -> [2010-09-12 17:55:18 | 000,000,188 | -HS- | M] () IconCache.db -> C:\Documents and Settings\dom\Ustawienia lokalne\Dane aplikacji\IconCache.db -> [2010-09-12 17:55:00 | 002,205,544 | -H-- | M] () 8cttycwq.exe -> C:\Documents and Settings\dom\Pulpit\8cttycwq.exe -> [2010-09-12 00:19:00 | 049,369,808 | ---- | M] () perfh015.dat -> C:\WINDOWS\System32\perfh015.dat -> [2010-09-12 00:08:33 | 000,501,588 | ---- | M] () perfh009.dat -> C:\WINDOWS\System32\perfh009.dat -> [2010-09-12 00:08:33 | 000,442,360 | ---- | M] () perfc015.dat -> C:\WINDOWS\System32\perfc015.dat -> [2010-09-12 00:08:33 | 000,089,980 | ---- | M] () perfc009.dat -> C:\WINDOWS\System32\perfc009.dat -> [2010-09-12 00:08:33 | 000,072,008 | ---- | M] () nsreg.dat -> C:\WINDOWS\nsreg.dat -> [2010-09-11 23:59:07 | 000,000,000 | ---- | M] () Mozilla Firefox.lnk -> C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk -> [2010-09-11 23:58:48 | 000,001,606 | ---- | M] () Adobe Reader 9.lnk -> C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk -> [2010-09-11 23:49:16 | 000,001,733 | ---- | M] () logfile -> C:\logfile -> [2010-09-11 23:38:33 | 000,876,547 | ---- | M] () cc_20100911_232729.reg -> C:\Documents and Settings\dom\Moje dokumenty\cc_20100911_232729.reg -> [2010-09-11 23:27:35 | 000,162,520 | ---- | M] () OOo_3.2.1_Win_x86_install-wJRE_pl.exe -> C:\Documents and Settings\dom\Pulpit\OOo_3.2.1_Win_x86_install-wJRE_pl.exe -> [2010-09-11 21:47:42 | 033,230,848 | ---- | M] () ccsetup235.exe -> C:\Documents and Settings\dom\Pulpit\ccsetup235.exe -> [2010-09-11 21:41:11 | 003,427,248 | ---- | M] (Piriform Ltd) hosts -> C:\WINDOWS\System32\drivers\etc\hosts -> [2010-09-11 21:37:26 | 000,419,169 | R--- | M] () eRLog.ini -> C:\WINDOWS\System32\eRLog.ini -> [2010-09-11 20:51:21 | 000,000,000 | ---- | M] () wpa.dbl -> C:\WINDOWS\System32\wpa.dbl -> [2010-09-11 20:49:20 | 000,001,158 | ---- | M] () bthservsdp.dat -> C:\WINDOWS\bthservsdp.dat -> [2010-09-10 21:35:13 | 000,000,012 | ---- | M] () FNTCACHE.DAT -> C:\WINDOWS\System32\FNTCACHE.DAT -> [2010-08-24 15:39:18 | 000,196,160 | ---- | M] () PerfStringBackup.INI -> C:\WINDOWS\System32\PerfStringBackup.INI -> [2010-08-17 14:09:14 | 001,108,014 | ---- | M] () 1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> 1 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> 1 C:\Documents and Settings\All Users\*.tmp files -> C:\Documents and Settings\All Users\*.tmp -> [Files - No Company Name] hiberfil.sys -> C:\hiberfil.sys -> [2010-09-12 17:56:17 | 526,503,936 | -HS- | C] () 8cttycwq.exe -> C:\Documents and Settings\dom\Pulpit\8cttycwq.exe -> [2010-09-12 00:39:11 | 049,369,808 | ---- | C] () nsreg.dat -> C:\WINDOWS\nsreg.dat -> [2010-09-11 23:59:07 | 000,000,000 | ---- | C] () Mozilla Firefox.lnk -> C:\Documents and Settings\All Users\Pulpit\Mozilla Firefox.lnk -> [2010-09-11 23:58:48 | 000,001,606 | ---- | C] () Adobe Reader 9.lnk -> C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk -> [2010-09-11 23:49:15 | 000,001,733 | ---- | C] () cc_20100911_232729.reg -> C:\Documents and Settings\dom\Moje dokumenty\cc_20100911_232729.reg -> [2010-09-11 23:27:32 | 000,162,520 | ---- | C] () OOo_3.2.1_Win_x86_install-wJRE_pl.exe -> C:\Documents and Settings\dom\Pulpit\OOo_3.2.1_Win_x86_install-wJRE_pl.exe -> [2010-09-11 21:42:35 | 033,230,848 | ---- | C] () vorbis.dll -> C:\WINDOWS\System32\vorbis.dll -> [2010-08-07 19:21:33 | 001,253,376 | ---- | C] () vorbisenc.dll -> C:\WINDOWS\System32\vorbisenc.dll -> [2010-08-07 19:21:33 | 001,032,192 | ---- | C] () vorbisfile.dll -> C:\WINDOWS\System32\vorbisfile.dll -> [2010-08-07 19:21:33 | 000,102,400 | ---- | C] () ogg.dll -> C:\WINDOWS\System32\ogg.dll -> [2010-08-07 19:21:32 | 000,061,440 | ---- | C] () GDIPFONTCACHEV1.DAT -> C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT -> [2010-07-06 07:47:20 | 000,041,976 | ---- | C] () zlib.dll -> C:\WINDOWS\System32\zlib.dll -> [2010-05-18 22:48:56 | 000,059,904 | ---- | C] () lxdrvs.dll -> C:\WINDOWS\System32\lxdrvs.dll -> [2010-05-06 18:34:02 | 000,040,960 | ---- | C] () lxdrcoin.dll -> C:\WINDOWS\System32\lxdrcoin.dll -> [2010-05-06 18:33:54 | 000,360,448 | ---- | C] () lxdrcaps.dll -> C:\WINDOWS\System32\lxdrcaps.dll -> [2010-05-06 18:32:11 | 000,081,920 | ---- | C] () lxdrdrs.dll -> C:\WINDOWS\System32\lxdrdrs.dll -> [2010-05-06 18:32:10 | 001,036,288 | ---- | C] () lxdrcnv4.dll -> C:\WINDOWS\System32\lxdrcnv4.dll -> [2010-05-06 18:32:08 | 000,069,632 | ---- | C] () LXF3PMON.DLL -> C:\WINDOWS\System32\LXF3PMON.DLL -> [2010-05-06 18:31:11 | 000,045,056 | ---- | C] () LXF3FXPU.DLL -> C:\WINDOWS\System32\LXF3FXPU.DLL -> [2010-05-06 18:31:11 | 000,032,768 | ---- | C] () lxf3oem.dll -> C:\WINDOWS\System32\lxf3oem.dll -> [2010-05-06 18:30:51 | 000,053,248 | ---- | C] () LXF3PMRC.DLL -> C:\WINDOWS\System32\LXF3PMRC.DLL -> [2010-05-06 18:30:51 | 000,012,288 | ---- | C] () lxdrrwrd.ini -> C:\WINDOWS\System32\lxdrrwrd.ini -> [2010-05-06 18:19:34 | 000,000,044 | ---- | C] () LXDRinst.dll -> C:\WINDOWS\System32\LXDRinst.dll -> [2010-05-06 18:17:48 | 000,389,120 | ---- | C] () lxdrgrd.dll -> C:\WINDOWS\System32\lxdrgrd.dll -> [2010-05-06 18:17:33 | 000,208,896 | ---- | C] () SETUP32.INI -> C:\WINDOWS\SETUP32.INI -> [2009-01-19 14:46:05 | 000,000,000 | ---- | C] () xobglu16.dll -> C:\WINDOWS\xobglu16.dll -> [2008-04-11 18:46:55 | 000,063,488 | ---- | C] () xobglu32.dll -> C:\WINDOWS\xobglu32.dll -> [2008-04-11 18:46:55 | 000,023,552 | ---- | C] () setup.ini -> C:\WINDOWS\System32\setup.ini -> [2007-12-13 16:31:22 | 000,000,902 | R--- | C] () DSLSetup.ini -> C:\WINDOWS\DSLSetup.ini -> [2007-12-13 16:31:22 | 000,000,161 | R--- | C] () torususb.sys -> C:\WINDOWS\System32\drivers\torususb.sys -> [2007-12-13 16:31:19 | 000,684,265 | R--- | C] () ka.ini -> C:\WINDOWS\ka.ini -> [2007-12-06 20:37:58 | 000,000,349 | ---- | C] () cdplayer.ini -> C:\WINDOWS\cdplayer.ini -> [2006-09-02 17:22:39 | 000,000,125 | ---- | C] () ActPanel.dll -> C:\WINDOWS\System32\ActPanel.dll -> [2006-09-02 16:46:25 | 000,041,068 | ---- | C] () GlobalUserInterface.CompositeFont -> C:\WINDOWS\Fonts\GlobalUserInterface.CompositeFont -> [2006-06-29 14:58:52 | 000,030,808 | ---- | C] () GlobalSansSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSansSerif.CompositeFont -> [2006-06-29 14:53:56 | 000,026,489 | ---- | C] () disneysy.ini -> C:\WINDOWS\disneysy.ini -> [2006-05-21 18:11:36 | 000,000,194 | ---- | C] () GlobalSerif.CompositeFont -> C:\WINDOWS\Fonts\GlobalSerif.CompositeFont -> [2006-04-18 15:39:28 | 000,029,779 | ---- | C] () GlobalMonospace.CompositeFont -> C:\WINDOWS\Fonts\GlobalMonospace.CompositeFont -> [2006-04-18 15:39:28 | 000,026,040 | ---- | C] () Disney.ini -> C:\WINDOWS\Disney.ini -> [2006-02-01 19:18:51 | 000,002,581 | ---- | C] () eRLog.ini -> C:\WINDOWS\System32\eRLog.ini -> [2005-12-09 23:50:50 | 000,000,000 | ---- | C] () ALaunch.ini -> C:\WINDOWS\ALaunch.ini -> [2005-12-09 23:49:26 | 000,000,082 | ---- | C] () NT.INI -> C:\WINDOWS\NT.INI -> [2005-12-09 23:46:11 | 000,000,000 | ---- | C] () smscfg.ini -> C:\WINDOWS\smscfg.ini -> [2005-08-25 13:51:48 | 000,000,061 | ---- | C] () Acer.ini -> C:\WINDOWS\Acer.ini -> [2005-08-25 13:31:25 | 000,000,033 | ---- | C] () uninstall.ini -> C:\WINDOWS\uninstall.ini -> [2005-08-25 13:31:23 | 000,000,332 | ---- | C] () NTIBUN4.dll -> C:\WINDOWS\System32\NTIBUN4.dll -> [2005-08-24 19:54:30 | 000,001,024 | RH-- | C] () UBHelper.sys -> C:\WINDOWS\System32\drivers\UBHelper.sys -> [2005-08-24 19:54:18 | 000,013,952 | ---- | C] () NTIMPEG2.dll -> C:\WINDOWS\System32\NTIMPEG2.dll -> [2005-08-24 19:53:36 | 000,001,024 | RH-- | C] () NTIMP3.dll -> C:\WINDOWS\System32\NTIMP3.dll -> [2005-08-24 19:53:36 | 000,001,024 | RH-- | C] () NTIFCD3.dll -> C:\WINDOWS\System32\NTIFCD3.dll -> [2005-08-24 19:53:36 | 000,001,024 | RH-- | C] () NTICDMK7.dll -> C:\WINDOWS\System32\NTICDMK7.dll -> [2005-08-24 19:53:36 | 000,001,024 | RH-- | C] () PowerOption.ini -> C:\WINDOWS\PowerOption.ini -> [2005-08-24 19:41:04 | 000,000,750 | ---- | C] () oeminfo.ini -> C:\WINDOWS\System32\oeminfo.ini -> [2005-08-24 19:40:37 | 000,037,776 | ---- | C] () fxsperf.ini -> C:\WINDOWS\System32\fxsperf.ini -> [2005-08-24 19:33:40 | 000,003,619 | ---- | C] () ANTIV.INI -> C:\WINDOWS\ANTIV.INI -> [2005-08-09 20:34:56 | 000,002,772 | ---- | C] () multiplex_vcd.dll -> C:\WINDOWS\System32\multiplex_vcd.dll -> [2001-12-26 16:12:30 | 000,065,536 | R--- | C] () Hmpg12.dll -> C:\WINDOWS\System32\Hmpg12.dll -> [2001-09-03 23:46:38 | 000,110,592 | R--- | C] () HMPV2_ENC.dll -> C:\WINDOWS\System32\HMPV2_ENC.dll -> [2001-07-30 16:33:56 | 000,118,784 | R--- | C] () HMPV2_ENC_MMX.dll -> C:\WINDOWS\System32\HMPV2_ENC_MMX.dll -> [2001-07-23 22:04:36 | 000,118,784 | R--- | C] () < End of report > [/code]