OTL logfile created on: 2012-12-21 11:48:15 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = F:\dwl Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,00 Gb Total Physical Memory | 2,43 Gb Available Physical Memory | 81,19% Memory free 4,35 Gb Paging File | 3,88 Gb Available in Paging File | 89,38% Paging File free Paging file location(s): C:\pagefile.sys 1536 3072 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 15,08 Gb Total Space | 7,80 Gb Free Space | 51,76% Space Free | Partition Type: NTFS Drive E: | 40,81 Gb Total Space | 38,17 Gb Free Space | 93,52% Space Free | Partition Type: NTFS Drive F: | 18,64 Gb Total Space | 18,39 Gb Free Space | 98,70% Space Free | Partition Type: NTFS Drive G: | 28,41 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Drive H: | 3,73 Gb Total Space | 1,23 Gb Free Space | 32,88% Space Free | Partition Type: FAT32 Drive I: | 53,81 Gb Total Space | 26,29 Gb Free Space | 48,86% Space Free | Partition Type: NTFS Drive J: | 100,01 Gb Total Space | 22,57 Gb Free Space | 22,57% Space Free | Partition Type: NTFS Drive K: | 58,31 Gb Total Space | 6,17 Gb Free Space | 10,58% Space Free | Partition Type: NTFS Drive L: | 53,81 Gb Total Space | 15,80 Gb Free Space | 29,36% Space Free | Partition Type: NTFS Drive M: | 15,00 Gb Total Space | 14,62 Gb Free Space | 97,45% Space Free | Partition Type: NTFS Drive N: | 17,14 Gb Total Space | 14,59 Gb Free Space | 85,12% Space Free | Partition Type: NTFS Computer Name: USER-290D8218AE | User Name: User | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-12-21 11:47:22 | 000,602,112 | ---- | M] (OldTimer Tools) -- F:\dwl\OTL.exe PRC - [2012-12-20 17:47:21 | 000,916,960 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-11-04 18:43:30 | 001,851,192 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Logitech\SetPointP\SetPoint.exe PRC - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- K:\sauozaw.exe PRC - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- J:\sauozaw.exe PRC - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- C:\Documents and Settings\User\sauozaw.exe PRC - [2012-10-01 08:23:54 | 000,150,328 | ---- | M] (Logitech, Inc.) -- C:\Program Files\Common Files\LogiShrd\KHAL3\KHALMNPR.exe PRC - [2012-07-09 00:32:36 | 005,834,240 | ---- | M] () -- C:\Program Files\topnetinfo\top_netinfo.exe PRC - [2011-10-21 12:25:10 | 000,446,464 | ---- | M] (Lee-Soft.com, Lee Matthew Chantrey) -- C:\Program Files\ViGlance\ViGlance.exe PRC - [2011-05-08 00:11:56 | 005,567,856 | ---- | M] () -- C:\Program Files\Vector Clock Pro\VectorClock-Pro.exe PRC - [2008-04-14 22:51:46 | 000,082,944 | ---- | M] (IBM Corporation) -- C:\WINDOWS\system32\tp4mon.exe PRC - [2008-04-14 21:51:18 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe PRC - [2008-03-09 21:45:26 | 000,056,320 | ---- | M] () -- C:\Program Files\ProcX.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-12-20 17:47:21 | 002,397,152 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2012-12-19 22:53:31 | 011,808,768 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Web\ceaa73525d57f140841e33baf0e6e0bc\System.Web.ni.dll MOD - [2012-12-19 22:53:11 | 000,962,560 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Configuration\080e257a30b25046aa5b573f81e7b40c\System.Configuration.ni.dll MOD - [2012-12-19 22:53:01 | 000,026,624 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\Accessibility\15a53d300ec59f44b85520a7ea3d317f\Accessibility.ni.dll MOD - [2012-12-19 21:27:33 | 001,728,512 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Wizard\2.0.3559.24579__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Wizard.dll MOD - [2012-12-19 21:27:33 | 000,290,816 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime\2.0.3559.24560__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.dll MOD - [2012-12-19 21:27:33 | 000,204,800 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Wizard\2.0.3559.24581__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Wizard.dll MOD - [2012-12-19 21:27:33 | 000,077,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Runtime\2.0.3559.24638__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Runtime.dll MOD - [2012-12-19 21:27:33 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard\2.0.3559.24575__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.dll MOD - [2012-12-19 21:27:33 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Runtime\2.0.3559.24606__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Runtime.dll MOD - [2012-12-19 21:27:33 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Runtime\2.0.3559.24569__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Runtime.dll MOD - [2012-12-19 21:27:32 | 000,491,520 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Wizard\2.0.3559.24658__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Wizard.dll MOD - [2012-12-19 21:27:32 | 000,139,264 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Welcome.Graphics.Dashboard\2.0.3559.24659__90ba9c70f846762e\CLI.Aspect.Welcome.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:32 | 000,110,592 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.WorkstationConfig2.Graphics.Dashboard\2.0.3559.24677__90ba9c70f846762e\CLI.Aspect.WorkstationConfig2.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:32 | 000,094,208 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Wizard\2.0.3559.24625__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Wizard.dll MOD - [2012-12-19 21:27:32 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard\2.0.3559.24568__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:32 | 000,069,632 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Runtime\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Runtime.dll MOD - [2012-12-19 21:27:32 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.WorkstationConfig2.Graphics.Runtime\2.0.3559.24677__90ba9c70f846762e\CLI.Aspect.WorkstationConfig2.Graphics.Runtime.dll MOD - [2012-12-19 21:27:31 | 000,364,544 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Dashboard\2.0.3559.24624__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:31 | 000,172,032 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Dashboard\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:31 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Runtime\2.0.3559.24624__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Runtime.dll MOD - [2012-12-19 21:27:31 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Runtime\2.0.3559.24619__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Runtime.dll MOD - [2012-12-19 21:27:30 | 000,811,008 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Dashboard\2.0.3559.24608__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:30 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Wizard\2.0.3559.24633__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Wizard.dll MOD - [2012-12-19 21:27:30 | 000,225,280 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.InfoCentre.Graphics.Dashboard\2.0.3559.24581__90ba9c70f846762e\CLI.Aspect.InfoCentre.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:30 | 000,126,976 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Dashboard\2.0.3559.24617__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:30 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Runtime\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Runtime.dll MOD - [2012-12-19 21:27:29 | 000,712,704 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysManager.Graphics.Dashboard\2.0.3559.24570__90ba9c70f846762e\CLI.Aspect.DisplaysManager.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:29 | 000,589,824 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Dashboard\2.0.3559.24582__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:29 | 000,450,560 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Dashboard\2.0.3559.24602__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:29 | 000,438,272 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Dashboard\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:29 | 000,401,408 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Dashboard\2.0.3559.24618__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Dashboard.dll MOD - [2012-12-19 21:27:29 | 000,307,200 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Wizard\2.0.3559.24586__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Wizard.dll MOD - [2012-12-19 21:27:29 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Runtime\2.0.3559.24606__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Runtime.dll MOD - [2012-12-19 21:27:29 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Runtime\2.0.3559.24585__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Runtime.dll MOD - [2012-12-19 21:27:29 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Runtime\2.0.3559.24607__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Runtime.dll MOD - [2012-12-19 21:27:29 | 000,036,864 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Runtime\2.0.3559.24617__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Runtime.dll MOD - [2012-12-19 21:27:29 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Runtime\2.0.3559.24618__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Runtime.dll MOD - [2012-12-19 21:27:28 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation\2.0.3309.28601__90ba9c70f846762e\LOG.Foundation.dll MOD - [2012-12-19 21:27:28 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\NEWAEM.Foundation\2.0.3309.28603__90ba9c70f846762e\NEWAEM.Foundation.dll MOD - [2012-12-19 21:27:28 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS.I0602\2.0.3309.28630__90ba9c70f846762e\DEM.OS.I0602.dll MOD - [2012-12-19 21:27:28 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Hotkeys.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Plugin.Hotkeys.Shared.dll MOD - [2012-12-19 21:27:28 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Actions.CCAA.Shared\2.0.3309.28608__90ba9c70f846762e\AEM.Actions.CCAA.Shared.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Foundation\2.0.3309.28626__90ba9c70f846762e\MOM.Foundation.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.WinMessages.Shared\2.0.3309.28629__90ba9c70f846762e\AEM.Plugin.WinMessages.Shared.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.REG.Shared\2.0.3309.28645__90ba9c70f846762e\AEM.Plugin.REG.Shared.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.GD.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.GD.Shared.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.EEU.Shared\2.0.3309.28627__90ba9c70f846762e\AEM.Plugin.EEU.Shared.dll MOD - [2012-12-19 21:27:28 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.DPPE.Shared\2.0.3309.28647__90ba9c70f846762e\AEM.Plugin.DPPE.Shared.dll MOD - [2012-12-19 21:27:28 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\atixclib\1.0.0.0__90ba9c70f846762e\atixclib.dll MOD - [2012-12-19 21:27:27 | 000,073,728 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation\2.0.3309.28604__90ba9c70f846762e\CLI.Foundation.dll MOD - [2012-12-19 21:27:27 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Shared\2.0.3309.28618__90ba9c70f846762e\CLI.Caste.Graphics.Shared.dll MOD - [2012-12-19 21:27:27 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.Radeon3D.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.Radeon3D.Graphics.Shared.dll MOD - [2012-12-19 21:27:27 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0601\2.0.2573.17685__90ba9c70f846762e\DEM.Graphics.I0601.dll MOD - [2012-12-19 21:27:27 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.TransCode.Graphics.Shared\2.0.3309.28644__90ba9c70f846762e\CLI.Aspect.TransCode.Graphics.Shared.dll MOD - [2012-12-19 21:27:27 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.XManifest\2.0.3309.28669__90ba9c70f846762e\CLI.Foundation.XManifest.dll MOD - [2012-12-19 21:27:27 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.PowerPlay3.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.PowerPlay3.Graphics.Shared.dll MOD - [2012-12-19 21:27:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared\2.0.3309.28620__90ba9c70f846762e\CLI.Component.Wizard.Shared.dll MOD - [2012-12-19 21:27:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared\2.0.3309.28617__90ba9c70f846762e\CLI.Component.Dashboard.Shared.dll MOD - [2012-12-19 21:27:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared\2.0.3309.28611__90ba9c70f846762e\CLI.Component.Client.Shared.dll MOD - [2012-12-19 21:27:27 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.WorkstationConfig2.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.WorkstationConfig2.Graphics.Shared.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.OS\2.0.3309.28645__90ba9c70f846762e\DEM.OS.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics.I0706\2.0.2743.23304__90ba9c70f846762e\DEM.Graphics.I0706.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Graphics\2.0.3309.28630__90ba9c70f846762e\DEM.Graphics.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\DEM.Foundation\2.0.2573.17684__90ba9c70f846762e\DEM.Foundation.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared\2.0.3309.28617__90ba9c70f846762e\CLI.Component.Runtime.Shared.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Wizard.Shared\2.0.3309.28631__90ba9c70f846762e\CLI.Caste.Graphics.Wizard.Shared.dll MOD - [2012-12-19 21:27:27 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Dashboard.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Caste.Graphics.Dashboard.Shared.dll MOD - [2012-12-19 21:27:26 | 000,503,808 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Implementation\2.0.3559.24686__90ba9c70f846762e\ResourceManagement.Foundation.Implementation.dll MOD - [2012-12-19 21:27:26 | 000,065,536 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceTV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceTV.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.MMVideo.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.MMVideo.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,053,248 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCRT.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceCRT.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,049,152 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceDFP.Graphics.Shared\2.0.3309.28634__90ba9c70f846762e\CLI.Aspect.DeviceDFP.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Plugin.Source.Kit.Server\2.0.3559.24667__90ba9c70f846762e\AEM.Plugin.Source.Kit.Server.dll MOD - [2012-12-19 21:27:26 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceCV.Graphics.Shared\2.0.3309.28636__90ba9c70f846762e\CLI.Aspect.DeviceCV.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceProperty.Graphics.Shared\2.0.3309.28624__90ba9c70f846762e\CLI.Aspect.DeviceProperty.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysColour2.Graphics.Shared\2.0.3309.28632__90ba9c70f846762e\CLI.Aspect.DisplaysColour2.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DeviceLCD.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.DeviceLCD.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.CustomFormats.Graphics.Shared\2.0.3309.28627__90ba9c70f846762e\CLI.Aspect.CustomFormats.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.DisplaysOptions.Graphics.Shared\2.0.3309.28635__90ba9c70f846762e\CLI.Aspect.DisplaysOptions.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ACE.Graphics.DisplaysManager.Shared\2.0.2573.17685__90ba9c70f846762e\ACE.Graphics.DisplaysManager.Shared.dll MOD - [2012-12-19 21:27:26 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Aspect.HotkeysHandling.Graphics.Shared\2.0.3309.28630__90ba9c70f846762e\CLI.Aspect.HotkeysHandling.Graphics.Shared.dll MOD - [2012-12-19 21:27:26 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Foundation\2.0.3309.28626__90ba9c70f846762e\APM.Foundation.dll MOD - [2012-12-19 21:27:26 | 000,016,384 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server.Shared\2.0.3309.28617__90ba9c70f846762e\AEM.Server.Shared.dll MOD - [2012-12-19 21:27:26 | 000,014,848 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AxInterop.WBOCXLib\1.0.0.0__90ba9c70f846762e\AxInterop.WBOCXLib.dll MOD - [2012-12-19 21:27:26 | 000,013,312 | ---- | M] () -- C:\WINDOWS\assembly\GAC\Interop.WBOCXLib\1.0.0.0__90ba9c70f846762e\Interop.WBOCXLib.dll MOD - [2012-12-19 21:27:26 | 000,007,168 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Extension.EEU\2.0.3559.24555__90ba9c70f846762e\CLI.Component.Runtime.Extension.EEU.dll MOD - [2012-12-19 21:27:25 | 000,544,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Systemtray\2.0.3559.24647__90ba9c70f846762e\CLI.Component.Systemtray.dll MOD - [2012-12-19 21:27:25 | 000,405,504 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard\2.0.3559.24574__90ba9c70f846762e\CLI.Component.Wizard.dll MOD - [2012-12-19 21:27:25 | 000,106,496 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\MOM.Implementation\2.0.3559.24653__90ba9c70f846762e\MOM.Implementation.dll MOD - [2012-12-19 21:27:25 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime\2.0.3559.24557__90ba9c70f846762e\CLI.Component.Runtime.dll MOD - [2012-12-19 21:27:25 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation\2.0.3559.24651__90ba9c70f846762e\LOG.Foundation.Implementation.dll MOD - [2012-12-19 21:27:25 | 000,057,344 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.SkinFactory\2.0.3559.24559__90ba9c70f846762e\CLI.Component.SkinFactory.dll MOD - [2012-12-19 21:27:25 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Runtime.Shared.Private\2.0.3309.28628__90ba9c70f846762e\CLI.Component.Runtime.Shared.Private.dll MOD - [2012-12-19 21:27:25 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Foundation.Private\2.0.3309.28608__90ba9c70f846762e\CLI.Foundation.Private.dll MOD - [2012-12-19 21:27:25 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Private\2.0.3309.28614__90ba9c70f846762e\LOG.Foundation.Private.dll MOD - [2012-12-19 21:27:25 | 000,024,576 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Wizard.Shared.Private\2.0.3309.28627__90ba9c70f846762e\CLI.Component.Wizard.Shared.Private.dll MOD - [2012-12-19 21:27:25 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ResourceManagement.Foundation.Private\2.0.3309.28612__90ba9c70f846762e\ResourceManagement.Foundation.Private.dll MOD - [2012-12-19 21:27:25 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\LOG.Foundation.Implementation.Private\2.0.3309.28626__90ba9c70f846762e\LOG.Foundation.Implementation.Private.dll MOD - [2012-12-19 21:27:24 | 001,142,784 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard\2.0.3559.24565__90ba9c70f846762e\CLI.Component.Dashboard.dll MOD - [2012-12-19 21:27:24 | 000,081,920 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATIDEMOS\2.0.3559.24558__90ba9c70f846762e\ATIDEMOS.dll MOD - [2012-12-19 21:27:24 | 000,061,440 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\APM.Server\2.0.3559.24557__90ba9c70f846762e\APM.Server.dll MOD - [2012-12-19 21:27:24 | 000,045,056 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\AEM.Server\2.0.3559.24556__90ba9c70f846762e\AEM.Server.dll MOD - [2012-12-19 21:27:24 | 000,040,960 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Client.Shared.Private\2.0.3309.28621__90ba9c70f846762e\CLI.Component.Client.Shared.Private.dll MOD - [2012-12-19 21:27:24 | 000,032,768 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\ATICCCom\2.0.0.0__90ba9c70f846762e\ATICCCom.dll MOD - [2012-12-19 21:27:24 | 000,028,672 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CCC.Implementation\2.0.3559.24652__90ba9c70f846762e\CCC.Implementation.dll MOD - [2012-12-19 21:27:24 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Component.Dashboard.Shared.Private\2.0.3309.28624__90ba9c70f846762e\CLI.Component.Dashboard.Shared.Private.dll MOD - [2012-12-19 21:27:24 | 000,020,480 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\CLI.Caste.Graphics.Runtime.Shared.Private\2.0.3309.28637__90ba9c70f846762e\CLI.Caste.Graphics.Runtime.Shared.Private.dll MOD - [2012-12-19 21:26:11 | 005,640,192 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Xml\ee982960c5c06c43b99dd93c8c1763da\System.Xml.ni.dll MOD - [2012-12-19 21:26:06 | 013,107,200 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\54f8c9bcd36b32408e610cf0a9ad0f1f\System.Windows.Forms.ni.dll MOD - [2012-12-19 21:25:55 | 001,626,112 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System.Drawing\78493640187073499d22c4c0996d12a7\System.Drawing.ni.dll MOD - [2012-12-19 21:25:51 | 008,093,696 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\System\987aa136847a9643b2886b3f6051d660\System.ni.dll MOD - [2012-12-19 21:25:40 | 011,415,552 | ---- | M] () -- C:\WINDOWS\assembly\NativeImages_v2.0.50727_32\mscorlib\8842a04366945a46b954a06cd9b659c9\mscorlib.ni.dll MOD - [2012-12-19 21:25:15 | 000,299,008 | ---- | M] () -- C:\WINDOWS\assembly\GAC_MSIL\System.Runtime.Remoting\2.0.0.0__b77a5c561934e089\System.Runtime.Remoting.dll MOD - [2012-12-19 19:39:35 | 014,586,296 | ---- | M] () -- C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll MOD - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- K:\sauozaw.exe MOD - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- J:\sauozaw.exe MOD - [2012-10-15 12:25:14 | 000,061,440 | RHS- | M] () -- C:\Documents and Settings\User\sauozaw.exe MOD - [2012-07-09 00:32:36 | 005,834,240 | ---- | M] () -- C:\Program Files\topnetinfo\top_netinfo.exe MOD - [2011-05-08 00:11:56 | 005,567,856 | ---- | M] () -- C:\Program Files\Vector Clock Pro\VectorClock-Pro.exe MOD - [2010-07-04 22:32:38 | 000,010,752 | ---- | M] () -- C:\Program Files\Unlocker\UnlockerCOM.dll MOD - [2009-07-31 12:09:24 | 000,126,976 | ---- | M] () -- C:\Program Files\Vector Clock Pro\icu4pas36.dll MOD - [2009-05-15 15:01:26 | 000,016,384 | R--- | M] () -- C:\Program Files\ATI Technologies\ATI.ACE\Branding\Branding.dll MOD - [2008-03-09 21:45:26 | 000,056,320 | ---- | M] () -- C:\Program Files\ProcX.exe [color=#E56717]========== Services (SafeList) ==========[/color] SRV - [2012-12-20 17:47:21 | 000,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance) SRV - [2012-10-01 08:22:06 | 000,295,224 | ---- | M] (Logitech, Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\LogiShrd\Bluetooth\LBTServ.exe -- (LBTServ) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-12-19 22:41:04 | 000,114,048 | ---- | M] (Acronis) [Kernel | Boot | Running] -- C:\WINDOWS\system32\drivers\snapman.sys -- (snapman) DRV - [2012-09-18 10:33:00 | 000,043,960 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LHidFilt.Sys -- (LHidFilt) DRV - [2012-09-18 10:33:00 | 000,039,608 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\LMouFilt.Sys -- (LMouFilt) DRV - [2012-09-18 10:33:00 | 000,030,392 | ---- | M] (Logitech, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\LUsbFilt.sys -- (LUsbFilt) DRV - [2012-09-18 10:32:56 | 000,012,216 | ---- | M] (Logitech, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\LBeepKE.sys -- (LBeepKE) DRV - [2011-09-09 04:50:10 | 000,026,624 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl) DRV - [2011-09-09 04:50:09 | 000,089,856 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - [2011-09-09 04:50:09 | 000,073,984 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2011-09-09 04:50:09 | 000,066,688 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm) DRV - [2010-10-07 04:11:00 | 006,609,920 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETwLx32.sys -- (NETwLx32) DRV - [2010-07-27 02:52:02 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2010-07-04 20:51:26 | 000,004,096 | ---- | M] () [Kernel | Unavailable | Unknown] -- C:\Program Files\Unlocker\UnlockerDriver5.sys -- (UnlockerDriver5) DRV - [2010-06-02 15:49:20 | 000,993,464 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_DPV.sys -- (HSF_DPV) DRV - [2010-06-02 15:49:20 | 000,738,360 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSF_CNXT.sys -- (winachsf) DRV - [2010-06-02 15:49:18 | 000,217,016 | ---- | M] (Conexant Systems, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HSFHWAZL.sys -- (HSFHWAZL) DRV - [2010-03-20 05:06:58 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV - [2009-09-29 15:06:14 | 003,565,056 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2008-06-20 12:44:12 | 000,013,824 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\tpm.sys -- (tpm) DRV - [2001-08-17 21:48:14 | 000,011,520 | ---- | M] (IBM Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\TwoTrack.sys -- (TwoTrack) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\S-1-5-21-796845957-963894560-725345543-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:17.0.1 FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32_11_5_502_135.dll () FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-12-20 17:47:21 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 17.0.1\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-12-10 16:08:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\User\Dane aplikacji\Mozilla\Extensions [2012-12-20 17:47:08 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-12-20 17:47:21 | 000,262,112 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2012-11-20 09:04:07 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2012-11-20 09:04:08 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2012-11-20 09:04:08 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2012-11-20 09:04:07 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2012-11-20 09:04:07 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2012-11-20 09:04:07 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml O1 HOSTS File: ([2004-08-04 13:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O4 - HKLM..\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe (Logitech, Inc.) O4 - HKLM..\Run: [StartCCC] C:\Program Files\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.) O4 - HKLM..\Run: [TrackPointSrv] C:\WINDOWS\System32\tp4mon.exe (IBM Corporation) O4 - HKU\S-1-5-21-796845957-963894560-725345543-1003..\Run: [sauozaw] C:\Documents and Settings\User\sauozaw.exe () O4 - HKU\S-1-5-21-796845957-963894560-725345543-1003..\Run: [Vector Clock Pro\Vector-Clock-Pro] C:\Program Files\Vector Clock Pro\VectorClock-Pro.exe () O4 - HKU\S-1-5-21-796845957-963894560-725345543-1003..\Run: [ViGlance] C:\Program Files\ViGlance\ViGlance.exe (Lee-Soft.com, Lee Matthew Chantrey) O4 - Startup: C:\Documents and Settings\User\Menu Start\Programy\Autostart\top_netinfo.lnk = C:\Program Files\topnetinfo\top_netinfo.exe () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 255 O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-796845957-963894560-725345543-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{E13AE582-7542-4C0A-962C-896C9B5B7A0B}: NameServer = 89.108.202.21 89.108.195.21 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\AtiExtEvent: DllName - (Ati2evxx.dll) - C:\WINDOWS\System32\ati2evxx.dll (ATI Technologies Inc.) O20 - Winlogon\Notify\LBTWlgn: DllName - (c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll) - c:\Program Files\Common Files\LogiShrd\Bluetooth\LBTWLgn.dll (Logitech, Inc.) O22 - SharedTaskScheduler: {1984DD45-52CF-49cd-AB77-18F378FEA264} - FencesShellExt - C:\Program Files\Fences\FencesMenu.dll (Stardock) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O24 - Desktop BackupWallPaper: C:\WINDOWS\Web\Wallpaper\Idylla.bmp O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2012-10-15 12:13:05 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - Unable to obtain root file information for disk G:\ O32 - Unable to obtain root file information for disk H:\ O33 - MountPoints2\{88f2bf9f-4a1b-11e2-96c4-a60a98244628}\Shell - "" = AutoRun O33 - MountPoints2\{88f2bf9f-4a1b-11e2-96c4-a60a98244628}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL saUoZAw.EXE O33 - MountPoints2\{88f2bfa1-4a1b-11e2-96c4-a60a98244628}\Shell - "" = AutoRun O33 - MountPoints2\{88f2bfa1-4a1b-11e2-96c4-a60a98244628}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL SauoZaw.eXE O33 - MountPoints2\{88f2bfa2-4a1b-11e2-96c4-a60a98244628}\Shell - "" = AutoRun O33 - MountPoints2\{88f2bfa2-4a1b-11e2-96c4-a60a98244628}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL sauOZAW.EXE O33 - MountPoints2\{88f2bfa4-4a1b-11e2-96c4-a60a98244628}\Shell - "" = AutoRun O33 - MountPoints2\{88f2bfa4-4a1b-11e2-96c4-a60a98244628}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL sauoZAW.eXe O33 - MountPoints2\{d155b19e-4a0a-11e2-96c3-0019d22a19b6}\Shell - "" = AutoRun O33 - MountPoints2\{d155b19e-4a0a-11e2-96c3-0019d22a19b6}\Shell\AutoRun\command - "" = G:\AutoRun.exe -- [2012-02-11 22:06:03 | 000,143,360 | R--- | M] (Huawei Technologies Co., Ltd.) O33 - MountPoints2\{d155b19e-4a0a-11e2-96c3-0019d22a19b6}\Shell\install\command - "" = G:\setup-top_netinfo.exe -- [2012-02-03 21:28:18 | 004,191,594 | R--- | M] () O33 - MountPoints2\{d155b19e-4a0a-11e2-96c3-0019d22a19b6}\Shell\readme\command - "" = notepad info.txt O33 - MountPoints2\{d155b19e-4a0a-11e2-96c3-0019d22a19b6}\Shell\uninstal\command - "" = G:\uninstaller.exe -- [2012-02-09 18:05:17 | 000,090,624 | RH-- | M] (lesiolo) O33 - MountPoints2\{e424c046-4a08-11e2-96c1-0019d22a19b6}\Shell - "" = AutoRun O33 - MountPoints2\{e424c046-4a08-11e2-96c1-0019d22a19b6}\Shell\AutoRun\command - "" = F:\AutoRun.exe O33 - MountPoints2\{e424c046-4a08-11e2-96c1-0019d22a19b6}\Shell\install\command - "" = F:\setup-top_netinfo.EXE O33 - MountPoints2\{e424c046-4a08-11e2-96c1-0019d22a19b6}\Shell\readme\command - "" = notepad info.txt O33 - MountPoints2\{e424c046-4a08-11e2-96c1-0019d22a19b6}\Shell\uninstal\command - "" = F:\uninstaller.exe O33 - MountPoints2\{e424c047-4a08-11e2-96c1-0019d22a19b6}\Shell - "" = AutoRun O33 - MountPoints2\{e424c047-4a08-11e2-96c1-0019d22a19b6}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL sAUOZaw.EXe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-12-21 09:55:58 | 000,021,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidserv.dll [2012-12-21 09:55:53 | 000,014,720 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\kbdhid.sys [2012-12-21 00:39:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Stardock [2012-12-21 00:39:38 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6} [2012-12-21 00:39:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Stardock [2012-12-21 00:39:37 | 000,000,000 | ---D | C] -- C:\Program Files\Fences [2012-12-21 00:39:13 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\PackageAware [2012-12-21 00:35:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\PC Tools [2012-12-21 00:34:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2012-12-21 00:34:36 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\Spyware Doctor 2010_7.0.0.545 + serial -TrT [2012-12-20 22:41:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Vector Clock Pro [2012-12-20 22:41:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Vector Clock Pro [2012-12-20 22:41:26 | 000,000,000 | ---D | C] -- C:\Program Files\Vector Clock Pro [2012-12-20 22:23:16 | 000,000,000 | ---D | C] -- C:\Program Files\WTW [2012-12-20 22:16:47 | 000,000,000 | --SD | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\LibreOffice 3.6 [2012-12-20 22:16:45 | 000,000,000 | ---D | C] -- C:\WINDOWS\ShellNew [2012-12-20 22:15:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Thinstall [2012-12-20 22:15:10 | 000,000,000 | ---D | C] -- C:\Program Files\LibreOffice 3.6 [2012-12-20 22:12:37 | 000,000,000 | -HSD | C] -- C:\Config.Msi [2012-12-20 22:09:50 | 000,000,000 | ---D | C] -- C:\Program Files\ClipTray [2012-12-20 22:08:23 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner [2012-12-20 22:07:01 | 000,000,000 | ---D | C] -- C:\Program Files\ffdshow [2012-12-20 17:54:46 | 000,000,000 | -H-D | C] -- C:\WINDOWS\System32\GroupPolicy [2012-12-20 17:47:07 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox [2012-12-20 17:26:48 | 000,000,000 | ---D | C] -- C:\Program Files\Unlocker [2012-12-20 17:26:48 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\Unlocker [2012-12-20 17:26:03 | 000,000,000 | ---D | C] -- C:\Program Files\ViGlance [2012-12-20 17:26:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [2012-12-19 22:45:34 | 001,392,304 | ---- | C] (Acronis) -- C:\WINDOWS\System32\AutoPartNt.exe [2012-12-19 22:45:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Acronis [2012-12-19 22:41:04 | 000,114,048 | ---- | C] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys [2012-12-19 22:41:03 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Acronis [2012-12-19 22:40:59 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Acronis [2012-12-19 22:40:59 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis [2012-12-19 22:39:11 | 000,000,000 | ---D | C] -- C:\Program Files\Acronis Disk Director Suite [2012-12-19 22:38:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\WinRAR [2012-12-19 22:38:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Menu Start\Programy\WinRAR [2012-12-19 22:38:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\WinRAR [2012-12-19 22:38:09 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR [2012-12-19 21:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\ATI [2012-12-19 21:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\ATI [2012-12-19 21:30:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ATI [2012-12-19 21:27:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Catalyst Control Center [2012-12-19 21:25:04 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2012-12-19 21:24:41 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2012-12-19 21:23:43 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information [2012-12-19 21:23:43 | 000,000,000 | ---D | C] -- C:\Program Files\ATI Technologies [2012-12-19 21:23:16 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield [2012-12-19 21:22:49 | 000,000,000 | ---D | C] -- C:\DRIVERS [2012-12-19 20:44:09 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Pulpit\drivers [2012-12-19 20:31:56 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-12-19 19:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Macromedia [2012-12-19 19:39:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Adobe [2012-12-19 19:39:35 | 000,697,272 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-12-19 19:39:35 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-12-19 19:38:33 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\SoftwareDistribution [2012-12-19 19:31:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Mobile Partner [2012-12-19 19:31:49 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mobile Partner [2012-12-19 19:31:33 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01007.dll [2012-12-19 19:31:33 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll [2012-12-19 19:31:33 | 000,026,624 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [2012-12-19 19:31:32 | 000,861,696 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys [2012-12-19 19:31:32 | 000,239,104 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [2012-12-19 19:31:32 | 000,195,200 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [2012-12-19 19:31:32 | 000,102,784 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [2012-12-19 19:31:32 | 000,089,856 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [2012-12-19 19:31:32 | 000,073,984 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2012-12-19 19:31:32 | 000,066,688 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [2012-12-19 19:31:32 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccid.sys [2012-12-19 19:31:32 | 000,025,856 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [2012-12-19 19:31:32 | 000,019,200 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [2012-12-19 19:31:32 | 000,011,136 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2012-12-19 19:30:57 | 000,000,000 | ---D | C] -- C:\Program Files\Mobile Partner [2012-12-19 19:26:21 | 000,000,000 | ---D | C] -- C:\Program Files\topnetinfo [2012-12-19 19:25:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dokumenty\Logishrd [2012-12-19 19:24:52 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech [2012-12-19 19:24:33 | 000,016,400 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys [2012-12-19 19:24:28 | 000,016,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll [2012-12-19 19:24:01 | 000,012,216 | ---- | C] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LBeepKE.sys [2012-12-19 19:23:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Logitech [2012-12-19 19:23:50 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Logishrd [2012-12-19 19:23:45 | 000,000,000 | ---D | C] -- C:\Program Files\Logitech [2012-12-19 19:23:29 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\LogiShrd [2012-12-19 19:23:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Logitech [2012-12-19 19:23:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Logishrd [2012-12-19 19:21:17 | 000,032,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\usbccgp.sys [2012-12-19 19:18:52 | 000,012,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mouhid.sys [2012-12-19 19:18:49 | 000,010,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\hidusb.sys [2012-12-19 19:18:33 | 000,043,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\tp4res.dll [2012-12-19 19:18:33 | 000,043,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4res.dll [2012-12-19 19:18:33 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\drivers\TwoTrack.sys [2012-12-19 19:18:33 | 000,011,520 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\twotrack.sys [2012-12-19 19:18:29 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\tp4.dll [2012-12-19 19:18:29 | 000,031,744 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4.dll [2012-12-19 19:18:28 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\tp4mon.exe [2012-12-19 19:18:28 | 000,082,944 | ---- | C] (IBM Corporation) -- C:\WINDOWS\System32\dllcache\tp4mon.exe [2012-12-10 16:11:00 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Moje dokumenty\Pobieranie [2012-12-10 16:08:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Mozilla [2012-12-10 16:08:39 | 000,000,000 | ---D | C] -- C:\Documents and Settings\User\Dane aplikacji\Mozilla [2012-12-10 16:08:28 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service [2012-12-10 16:08:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Mozilla [7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\User\*.tmp files -> C:\Documents and Settings\User\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-12-21 11:43:57 | 000,000,554 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\ProcX.lnk [2012-12-21 11:39:12 | 000,016,400 | ---- | M] (Logitech, Inc.) -- C:\WINDOWS\System32\drivers\LNonPnP.sys [2012-12-21 10:43:55 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2012-12-21 00:58:34 | 000,138,848 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-12-21 00:39:39 | 000,001,540 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\Customize Fences.lnk [2012-12-20 22:16:47 | 000,000,865 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\LibreOffice.lnk [2012-12-20 22:08:25 | 000,001,548 | ---- | M] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk [2012-12-20 20:05:49 | 000,026,112 | ---- | M] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-12-20 17:55:27 | 000,000,448 | RHS- | M] () -- C:\Documents and Settings\All Users\ntuser.pol [2012-12-20 17:21:08 | 000,001,024 | ---- | M] () -- C:\WINDOWS\System32\AutoPartNt.let [2012-12-20 17:20:20 | 001,392,304 | ---- | M] (Acronis) -- C:\WINDOWS\System32\AutoPartNt.exe [2012-12-19 22:42:35 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\Video.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\Pictures.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\Music.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\Documents.lnk [2012-12-19 22:42:34 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\Passwords.lnk [2012-12-19 22:42:34 | 000,000,148 | ---- | M] () -- C:\Documents and Settings\User\New Folder.lnk [2012-12-19 22:42:32 | 000,000,136 | RHS- | M] () -- C:\Documents and Settings\User\autorun.inf [2012-12-19 22:42:23 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2012-12-19 22:41:04 | 000,114,048 | ---- | M] (Acronis) -- C:\WINDOWS\System32\drivers\snapman.sys [2012-12-19 22:41:03 | 000,001,049 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Acronis Disk Director Suite.lnk [2012-12-19 21:34:50 | 000,000,723 | ---- | M] () -- C:\Documents and Settings\User\Menu Start\Programy\Autostart\top_netinfo.lnk [2012-12-19 21:26:33 | 000,448,586 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2012-12-19 21:26:33 | 000,392,630 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2012-12-19 21:26:33 | 000,074,648 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2012-12-19 21:26:33 | 000,058,930 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2012-12-19 19:39:35 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2012-12-19 19:39:35 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2012-12-19 19:35:54 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf [2012-12-19 19:35:52 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf [2012-12-19 19:35:19 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf [2012-12-19 19:31:35 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf [2012-12-19 19:24:33 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2012-12-10 15:59:12 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [7 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ] [1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ] [1 C:\Documents and Settings\User\*.tmp files -> C:\Documents and Settings\User\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-12-21 11:43:57 | 000,000,554 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\ProcX.lnk [2012-12-21 11:43:49 | 000,056,320 | ---- | C] () -- C:\Program Files\ProcX.exe [2012-12-21 00:39:39 | 000,001,540 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\Customize Fences.lnk [2012-12-20 22:16:47 | 000,000,865 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\LibreOffice.lnk [2012-12-20 22:09:50 | 000,000,756 | ---- | C] () -- C:\Documents and Settings\User\Menu Start\Programy\ClipTray 1.61.lnk [2012-12-20 22:09:50 | 000,000,731 | ---- | C] () -- C:\Documents and Settings\User\Menu Start\Programy\Uninstall.lnk [2012-12-20 22:09:50 | 000,000,728 | ---- | C] () -- C:\Documents and Settings\User\Menu Start\Programy\ClipTray on the Web.lnk [2012-12-20 22:09:50 | 000,000,722 | ---- | C] () -- C:\Documents and Settings\User\Menu Start\Programy\ClipTray Help.lnk [2012-12-20 22:08:25 | 000,001,548 | ---- | C] () -- C:\Documents and Settings\User\Pulpit\CCleaner.lnk [2012-12-20 22:07:02 | 000,112,640 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll [2012-12-20 18:06:50 | 000,026,112 | ---- | C] () -- C:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-12-20 17:55:27 | 000,000,448 | RHS- | C] () -- C:\Documents and Settings\All Users\ntuser.pol [2012-12-19 22:45:34 | 000,001,024 | ---- | C] () -- C:\WINDOWS\System32\AutoPartNt.let [2012-12-19 22:42:35 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\Video.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\Pictures.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\Music.lnk [2012-12-19 22:42:35 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\Documents.lnk [2012-12-19 22:42:34 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\Passwords.lnk [2012-12-19 22:42:33 | 000,000,148 | ---- | C] () -- C:\Documents and Settings\User\New Folder.lnk [2012-12-19 22:42:32 | 000,000,136 | RHS- | C] () -- C:\Documents and Settings\User\autorun.inf [2012-12-19 22:41:03 | 000,001,049 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Acronis Disk Director Suite.lnk [2012-12-19 21:34:50 | 000,000,723 | ---- | C] () -- C:\Documents and Settings\User\Menu Start\Programy\Autostart\top_netinfo.lnk [2012-12-19 19:35:54 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf [2012-12-19 19:35:52 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf [2012-12-19 19:35:19 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf [2012-12-19 19:31:35 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf [2012-12-19 19:24:33 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01009_Coinstaller_Critical.Wdf [2012-12-10 16:08:30 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Mozilla Firefox.lnk [2012-12-10 15:59:13 | 000,013,646 | ---- | C] () -- C:\WINDOWS\System32\wpa.bak [2012-10-15 13:56:42 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2012-10-15 13:53:13 | 000,138,848 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2012-10-15 12:25:14 | 000,061,440 | RHS- | C] () -- C:\Documents and Settings\User\sauozaw.scr [2012-10-15 12:25:14 | 000,061,440 | RHS- | C] () -- C:\Documents and Settings\User\sauozaw.exe [2012-10-15 12:20:50 | 000,000,000 | ---- | C] () -- C:\WINDOWS\ativpsrm.bin [2012-10-15 12:20:24 | 003,107,788 | ---- | C] () -- C:\WINDOWS\System32\ativva5x.dat [2012-10-15 12:20:24 | 000,887,724 | ---- | C] () -- C:\WINDOWS\System32\ativva6x.dat [2012-10-15 12:20:24 | 000,189,051 | ---- | C] () -- C:\WINDOWS\System32\atiicdxx.dat [2012-10-15 12:15:20 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2012-10-15 12:10:02 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2012-12-19 21:25:04 | 000,000,227 | RHS- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2008-04-14 21:50:48 | 001,499,136 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2008-04-14 21:50:32 | 000,472,064 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 21:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2012-12-19 22:45:31 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Acronis [2012-12-19 19:35:20 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Mobile Partner [2012-12-21 01:04:18 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2012-12-21 00:39:38 | 000,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\{A3A26C56-02C3-4F76-A033-12EE2FB52AE6} [2012-10-15 12:18:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\DRPSu [2012-12-19 19:24:52 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Leadertech [2012-12-21 00:39:39 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Stardock [2012-12-20 22:15:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\Thinstall [2012-12-20 17:26:11 | 000,000,000 | ---D | M] -- C:\Documents and Settings\User\Dane aplikacji\ViGlance [color=#E56717]========== Purity Check ==========[/color] [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 121 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:DFC5A2B2 < End of report >