OTL logfile created on: 2011-08-15 04:34:39 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = H:\ Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 1014,11 Mb Total Physical Memory | 855,31 Mb Available Physical Memory | 84,34% Memory free 3,02 Gb Paging File | 2,97 Gb Available in Paging File | 98,35% Paging File free Paging file location(s): C:\pagefile.sys 128 128D:\pagefil [Binary data over 200 bytes] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 15,68 Gb Total Space | 5,57 Gb Free Space | 35,50% Space Free | Partition Type: NTFS Drive D: | 24,80 Gb Total Space | 4,86 Gb Free Space | 19,59% Space Free | Partition Type: NTFS Drive E: | 16,91 Gb Total Space | 4,53 Gb Free Space | 26,80% Space Free | Partition Type: NTFS Drive F: | 17,14 Gb Total Space | 4,76 Gb Free Space | 27,76% Space Free | Partition Type: NTFS Drive H: | 1,90 Gb Total Space | 1,37 Gb Free Space | 71,99% Space Free | Partition Type: FAT Computer Name: Star87996 | User Name: STAR | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2013-04-13 22:03:10 | 000,602,112 | ---- | M] (OldTimer Tools) -- H:\OTL.exe PRC - [2008-04-14 23:51:10 | 000,396,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\cmd.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2011-08-22 19:16:20 | 000,298,496 | ---- | M] () -- C:\WINDOWS\system32\StarInsecure.dll MOD - [2008-06-19 20:53:03 | 000,060,416 | ---- | M] () -- C:\WINDOWS\system32\antiwpa.dll [color=#E56717]========== Services (SafeList) ==========[/color] SRV - File not found [Disabled | Stopped] -- %SystemRoot%\System32\hidserv.dll -- (HidServ) SRV - [2011-08-14 16:42:35 | 000,246,112 | ---- | M] () [Auto | Stopped] -- C:\Program Files\PLAY ONLINE\UpdateDog\ouc.exe -- (PLAY ONLINE. RunOuc) SRV - [2011-08-14 09:13:20 | 000,140,288 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\do2bni.dat -- (winmgmt) SRV - [2011-08-14 01:42:35 | 000,250,808 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\WINDOWS\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2011-03-14 17:27:28 | 000,271,712 | ---- | M] () [Auto | Stopped] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe) SRV - [2010-10-28 18:40:20 | 000,204,800 | ---- | M] () [Auto | Stopped] -- C:\Programme\OnlineUpdateBG\schedservicemain.exe -- (oubgschedservice) SRV - [2010-03-31 14:27:00 | 000,024,576 | ---- | M] (GIGATRONIK Stuttgart GmbH) [Auto | Stopped] -- c:\Programme\StarUserSetter\service\StarUserSetterService.exe -- (SUSService) SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Stopped] -- C:\Program Files\Alcohol Soft\Alcohol 52\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2009-08-11 21:14:06 | 000,132,392 | ---- | M] (Juniper Networks) [Auto | Stopped] -- C:\Program Files\Common Files\Juniper Networks\JUNS\dsAccessService.exe -- (JuniperAccessService) SRV - [2008-04-04 14:38:04 | 000,417,792 | ---- | M] (Transaction Software, D 81829 Munich) [Auto | Stopped] -- C:\Program Files\EWA net\database\TransBase WIS\tbmux32.exe -- (EWA net DB WIS) SRV - [2008-04-04 14:38:04 | 000,417,792 | ---- | M] (Transaction Software, D 81829 Munich) [Auto | Stopped] -- C:\Program Files\EWA net\database\TransBase EWA\tbmux32.exe -- (EWA net DB Core) SRV - [2007-11-27 13:33:52 | 000,417,792 | ---- | M] (Transaction Software, D 81829 Munich) [Auto | Stopped] -- C:\Program Files\EWA net\database\TransBase EPC\tbmux32.exe -- (EWA net DB EPC) SRV - [2007-06-06 22:24:22 | 000,116,928 | ---- | M] (symantec) [On_Demand | Stopped] -- c:\Programme\Symantec_Client_Security\Symantec AntiVirus\SavRoam.exe -- (SavRoam) SRV - [2007-06-06 22:23:46 | 001,821,376 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Programme\Symantec_Client_Security\Symantec AntiVirus\Rtvscan.exe -- (Symantec AntiVirus) SRV - [2007-06-06 22:22:34 | 000,031,424 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Programme\Symantec_Client_Security\Symantec AntiVirus\DefWatch.exe -- (DefWatch) SRV - [2007-05-30 01:33:36 | 000,169,576 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccSetMgr.exe -- (ccSetMgr) SRV - [2007-05-30 01:33:26 | 000,192,104 | ---- | M] (Symantec Corporation) [Auto | Stopped] -- c:\Program Files\Common Files\Symantec Shared\ccEvtMgr.exe -- (ccEvtMgr) SRV - [2007-01-10 16:27:38 | 001,160,792 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- c:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCSvc.exe -- (SPBBCSvc) SRV - [2006-09-02 16:36:33 | 002,528,960 | ---- | M] (Symantec Corporation) [On_Demand | Stopped] -- C:\Program Files\Symantec\LiveUpdate\LuComServer_3_1.EXE -- (LiveUpdate) SRV - [2004-10-25 11:00:52 | 000,007,680 | ---- | M] (Gigatronik) [Auto | Stopped] -- c:\Programme\HardwareAssistent\HWAssistentService.exe -- (HWAssistentService) SRV - [2004-03-10 07:32:32 | 000,073,728 | ---- | M] (KoDiSys GmbH) [Auto | Stopped] -- C:\WINDOWS\zak\service.exe -- (SDImpersonationService) SRV - [2003-07-31 19:29:04 | 000,065,536 | ---- | M] (Alexandria Software Consulting) [Auto | Stopped] -- C:\Program Files\EWA net\server\bin\tomcat.exe -- (EWA net Server) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\UIUSYS.SYS -- (UIUSys) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2011-08-15 17:42:50 | 001,542,392 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20110615.002\navex15.sys -- (NAVEX15) DRV - [2011-08-15 17:42:50 | 000,374,392 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- C:\Program Files\Common Files\Symantec Shared\EENGINE\eeCtrl.sys -- (eeCtrl) DRV - [2011-08-15 17:42:50 | 000,086,008 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\VirusDefs\20110615.002\naveng.sys -- (NAVENG) DRV - [2011-08-15 17:42:04 | 000,436,792 | ---- | M] (Duplex Secure Ltd.) [Kernel | Boot | Stopped] -- C:\WINDOWS\system32\drivers\sptd.sys -- (sptd) DRV - [2011-08-15 17:38:56 | 000,110,952 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\SYMEVENT.SYS -- (SymEvent) DRV - [2011-08-14 16:42:38 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - [2011-08-14 16:42:38 | 000,095,616 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - [2011-08-14 16:42:38 | 000,076,544 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ew_jubusenum.sys -- (huawei_enumerator) DRV - [2011-08-14 16:42:38 | 000,067,584 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_jucdcecm.sys -- (huawei_cdcecm) DRV - [2011-08-14 16:42:38 | 000,027,520 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_juextctrl.sys -- (huawei_ext_ctrl) DRV - [2011-08-14 16:42:38 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV - [2009-05-28 23:23:24 | 004,203,392 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\NETw5x32.sys -- (NETw5x32) DRV - [2009-04-30 15:51:28 | 001,952,512 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\BCMWL5.SYS -- (BCM43XX) DRV - [2007-12-23 18:18:48 | 000,068,696 | ---- | M] (O2Micro) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\oz776.sys -- (guardian2) DRV - [2007-10-25 12:31:06 | 000,017,290 | ---- | M] (Broadcom Corp.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\btpmw32.sys -- (BCMTPM) DRV - [2007-06-11 15:25:00 | 000,041,856 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfusb.sys -- (Tosrfusb) DRV - [2007-05-24 15:27:00 | 000,064,000 | ---- | M] (TOSHIBA Corporation) [Kernel | System | Stopped] -- C:\WINDOWS\system32\drivers\tosrfcom.sys -- (Tosrfcom) DRV - [2007-05-10 10:24:34 | 001,222,840 | ---- | M] (SigmaTel, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\sthda.sys -- (STHDA) DRV - [2007-04-24 14:20:00 | 000,113,920 | ---- | M] (TOSHIBA CORPORATION) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosrfbd.sys -- (tosrfbd) DRV - [2007-03-01 17:53:00 | 000,073,728 | ---- | M] (TOSHIBA Corporation.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Tosrfhid.sys -- (Tosrfhid) DRV - [2007-02-16 16:46:00 | 000,160,256 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\b57xp32.sys -- (b57w2k) DRV - [2007-01-10 16:27:26 | 000,390,744 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- C:\Program Files\Common Files\Symantec Shared\SPBBC\SPBBCDrv.sys -- (SPBBCDrv) DRV - [2006-10-10 20:33:00 | 000,041,600 | ---- | M] (TOSHIBA Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\tosporte.sys -- (tosporte) DRV - [2006-09-06 14:41:20 | 000,337,592 | ---- | M] (Symantec Corporation) [Kernel | On_Demand | Stopped] -- c:\Programme\Symantec_Client_Security\Symantec AntiVirus\savrt.sys -- (SAVRT) DRV - [2006-09-06 14:41:20 | 000,054,968 | ---- | M] (Symantec Corporation) [Kernel | System | Stopped] -- c:\Programme\Symantec_Client_Security\Symantec AntiVirus\Savrtpel.sys -- (SAVRTPEL) DRV - [2006-08-04 16:39:10 | 000,008,192 | ---- | M] (Conexant Systems, Inc.) [Kernel | Auto | Stopped] -- C:\WINDOWS\system32\drivers\XAudio.sys -- (XAudio) DRV - [2001-10-26 18:07:38 | 000,036,425 | ---- | M] (SMC) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\smcirda.sys -- (SMCIRDA) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-507921405-1897051121-1417001333-1004\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/ IE - HKU\S-1-5-21-507921405-1897051121-1417001333-1004\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKU\S-1-5-21-507921405-1897051121-1417001333-1004\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src=IE-SearchBox&Form=IE8SRC IE - HKU\S-1-5-21-507921405-1897051121-1417001333-1004\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) Hosts file not found O2 - BHO: (WebCGMHlprObj Class) - {56B38F40-4E70-11d4-A076-0080AD86BA2F} - C:\WINDOWS\system32\cgmopenbho.dll (CGM Open Consortium, Inc.) O4 - HKLM..\Run: [BluetoothAuthenticationAgent] C:\WINDOWS\System32\bthprops.cpl (Microsoft Corporation) O4 - HKLM..\Run: [ccApp] c:\Program Files\Common Files\Symantec Shared\ccApp.exe (Symantec Corporation) O4 - HKLM..\Run: [HotFixInstaller] C:\Programme\HotFixInst\HotfixInst.exe (GIGATRONIK Stuttgart GmbH) O4 - HKLM..\Run: [ITSecMng] C:\Program Files\TOSHIBA\Bluetooth Toshiba Stack\ItSecMng.exe ( TOSHIBA CORPORATION) O4 - HKLM..\Run: [LaunchComServer] C:\Program Files\SDconnect Toolkit\bin\TKTray.exe (I+ME ACTIA GmbH, DE, Braunschweig) O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NVHotkey] C:\WINDOWS\System32\nvhotkey.dll (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.dll (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [SDNC] C:\Programme\SDnetControl\SDNC.exe (GIGATRONIK Stuttgart GmbH) O4 - HKLM..\Run: [SigmatelSysTrayApp] C:\Program Files\SigmaTel\C-Major Audio\WDM\stsystra.exe (SigmaTel, Inc.) O4 - HKU\.DEFAULT..\Run: [CTFMON.EXE] C:\WINNT\system32\ctfmon.exe (Microsoft Corporation) O4 - HKU\S-1-5-18..\Run: [CTFMON.EXE] C:\WINNT\system32\ctfmon.exe (Microsoft Corporation) O4 - HKU\S-1-5-21-507921405-1897051121-1417001333-1004..\Run: [AlcoholAutomount] C:\Program Files\Alcohol Soft\Alcohol 52\AxAutoMntSrv.exe (Alcohol Soft Development Team) O4 - HKU\S-1-5-21-507921405-1897051121-1417001333-1004..\Run: [SDprinterConfig] C:\Programme\SDprinterConfig\SDprinterConfig.exe (Gigatronik Stuttgart GmbH) O4 - HKU\S-1-5-21-507921405-1897051121-1417001333-1004..\Run: [StarInsecure] C:\WINDOWS\StarInsecure\hstart.exe (NTWind Software) O4 - Startup: C:\Documents and Settings\administrator\Menu Start\Programy\Autostart\alc.lnk = C:\Programme\Temp\alc.exe () O4 - Startup: C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\etadmetsys.bat () O4 - Startup: C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\xentry-fix.lnk = C:\FixXentry(2.75)\xentry-fix.bat () O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 149 O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_24-windows-i586.cab (Java Plug-in 1.6.0_24) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {E5F5D008-DD2C-4D32-977D-1A0ADF03058B} https://juniper.net/dana-cached/setup/JuniperSetupSP1.cab (JuniperSetupControlXP Class) O16 - DPF: {F27237D7-93C8-44C2-AC6E-D6057B9A918F} https://juniper.net/dana-cached/sc/JuniperSetupClient.cab (JuniperSetupClientControl Class) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{EDEDC86C-B792-433D-9F9D-D039DE90665A}: DhcpNameServer = 192.168.2.1 O20 - AppInit_DLLs: (StarInsecure.dll) - C:\WINDOWS\System32\StarInsecure.dll () O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWS\system32\userinit.exe) - C:\WINDOWS\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\Antiwpa: DllName - (antiwpa.dll) - C:\WINDOWS\System32\antiwpa.dll () O20 - Winlogon\Notify\NavLogon: DllName - (c:\WINDOWS\system32\NavLogon.dll) - C:\WINDOWS\system32\NavLogon.dll (Symantec Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O31 - SafeBoot: UseAlternatShell - 1 O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-12-08 13:17:18 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006-03-24 09:06:42 | 000,000,053 | ---- | M] () - H:\AUTORUN.INF -- [ FAT ] O33 - MountPoints2\{0883159a-d3dd-11e0-a305-0015c54e4270}\Shell - "" = AutoRun O33 - MountPoints2\{0883159a-d3dd-11e0-a305-0015c54e4270}\Shell\AutoRun\command - "" = I:\AutoRun.exe O33 - MountPoints2\{0883159d-d3dd-11e0-a305-0015c54e4270}\Shell - "" = AutoRun O33 - MountPoints2\{0883159d-d3dd-11e0-a305-0015c54e4270}\Shell\AutoRun\command - "" = I:\AutoRun.exe O33 - MountPoints2\{62e640c0-c9e7-11e0-8a4e-0015c54e4270}\Shell - "" = AutoRun O33 - MountPoints2\{62e640c0-c9e7-11e0-8a4e-0015c54e4270}\Shell\AutoRun\command - "" = I:\AutoRun.exe O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = comfile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-02-01 11:08:57 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN [2011-09-26 12:41:54 | 000,614,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll [2011-08-15 22:31:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\XFER [2011-08-15 19:12:50 | 000,000,000 | ---D | C] -- C:\WINDOWS\SxsCaPendDel [2011-08-15 18:42:18 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\GHISLER [2011-08-15 18:30:53 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Juniper Networks [2011-08-15 18:30:50 | 000,000,000 | ---D | C] -- C:\Program Files\Juniper Networks [2011-08-15 18:30:50 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Juniper Networks [2011-08-15 18:28:39 | 000,000,000 | ---D | C] -- C:\Program Files\PTC [2011-08-15 18:25:42 | 000,000,000 | ---D | C] -- C:\WINDOWS\zak [2011-08-15 18:24:30 | 000,000,000 | ---D | C] -- C:\d2ksetup.rc [2011-08-15 18:22:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\STAR DIAGNOSIS [2011-08-15 17:58:04 | 000,157,472 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2011-08-15 17:58:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2011-08-15 17:58:04 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2011-08-15 17:58:04 | 000,073,728 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2011-08-15 17:57:54 | 000,000,000 | ---D | C] -- C:\Program Files\Java [2011-08-15 17:57:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Dane aplikacji\Sun [2011-08-15 17:56:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Service [2011-08-15 17:52:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\LicDir [2011-08-15 17:52:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Menu Start\Programy\Service [2011-08-15 17:52:16 | 000,000,000 | ---D | C] -- C:\USERDATA [2011-08-15 17:49:28 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Moje dokumenty\Alcohol 52% [2011-08-15 17:49:08 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\ApplicationHistory [2011-08-15 17:47:26 | 000,641,808 | ---- | C] (Scansoft) -- C:\WINDOWS\System32\xiffr3_0.dll [2011-08-15 17:47:26 | 000,444,176 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oieng400.dll [2011-08-15 17:47:26 | 000,306,448 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\imgedit.ocx [2011-08-15 17:47:26 | 000,061,200 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oiui400.dll [2011-08-15 17:47:26 | 000,060,688 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\imgcmn.dll [2011-08-15 17:47:26 | 000,038,160 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\jpeg2x32.dll [2011-08-15 17:47:26 | 000,033,552 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\TIFFlt.dll [2011-08-15 17:47:26 | 000,027,920 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\jpeg1x32.dll [2011-08-15 17:47:26 | 000,025,872 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oitwa400.dll [2011-08-15 17:47:26 | 000,021,776 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oislb400.dll [2011-08-15 17:47:26 | 000,013,584 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\imgshl.dll [2011-08-15 17:47:26 | 000,013,072 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oissq400.dll [2011-08-15 17:47:26 | 000,013,072 | ---- | C] (Eastman Software, Inc., A Kodak Business) -- C:\WINDOWS\System32\oiprt400.dll [2011-08-15 17:47:25 | 000,000,000 | ---D | C] -- C:\ChangeLanguage [2011-08-15 17:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Dane aplikacji\Identities [2011-08-15 17:46:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Moje dokumenty\Moje obrazy [2011-08-15 17:46:28 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Moje dokumenty\Moja muzyka [2011-08-15 17:46:28 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\STAR\IETldCache [2011-08-15 17:46:25 | 000,000,000 | --SD | C] -- C:\Documents and Settings\STAR\Dane aplikacji\Microsoft [2011-08-15 17:46:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\STAR\SendTo [2011-08-15 17:46:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\STAR\Recent [2011-08-15 17:46:25 | 000,000,000 | RH-D | C] -- C:\Documents and Settings\STAR\Dane aplikacji [2011-08-15 17:46:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Ulubione [2011-08-15 17:46:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Moje dokumenty [2011-08-15 17:46:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Menu Start [2011-08-15 17:46:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart [2011-08-15 17:46:25 | 000,000,000 | R--D | C] -- C:\Documents and Settings\STAR\Menu Start\Programy\Akcesoria [2011-08-15 17:46:25 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\STAR\Cookies [2011-08-15 17:46:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne [2011-08-15 17:46:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\STAR\Szablony [2011-08-15 17:46:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\STAR\PrintHood [2011-08-15 17:46:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\STAR\NetHood [2011-08-15 17:46:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Pulpit [2011-08-15 17:46:25 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\Microsoft [2011-08-15 17:46:20 | 000,286,844 | ---- | C] (I+ME ACTIA GmbH, DE, Braunschweig) -- C:\WINDOWS\System32\ToolkitApiDll.dll [2011-08-15 17:46:20 | 000,127,101 | ---- | C] (I+ME ACTIA GmbH, DE, Braunschweig) -- C:\WINDOWS\System32\ToolkitTrace.dll [2011-08-15 17:46:20 | 000,000,000 | ---D | C] -- C:\Program Files\SDconnect Toolkit [2011-08-15 17:46:09 | 000,000,000 | ---D | C] -- C:\Program Files\Temp [2011-08-15 17:45:20 | 000,472,808 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2011-08-15 17:44:55 | 001,081,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\MSCOMCTL.OCX [2011-08-15 17:44:55 | 000,203,976 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\richtx32.ocx [2011-08-15 17:44:55 | 000,140,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\comdlg32.ocx [2011-08-15 17:44:55 | 000,017,920 | ---- | C] (ads-tec GmbH) -- C:\WINDOWS\System32\c3smbus.dll [2011-08-15 17:44:55 | 000,000,000 | ---D | C] -- C:\var [2011-08-15 17:44:55 | 000,000,000 | ---D | C] -- C:\Programme [2011-08-15 17:44:54 | 000,000,000 | ---D | C] -- C:\WINNT [2011-08-15 17:44:11 | 000,000,000 | R-SD | C] -- C:\WINDOWS\assembly [2011-08-15 17:44:11 | 000,000,000 | ---D | C] -- C:\WINDOWS\Microsoft.NET [2011-08-15 17:44:10 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\URTTemp [2011-08-15 17:44:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\StarInsecure [2011-08-15 17:43:56 | 000,000,000 | ---D | C] -- C:\tmp [2011-08-15 17:43:27 | 000,544,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\msvcr71d.dll [2011-08-15 17:43:27 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2011-08-15 17:43:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Dane aplikacji\Adobe [2011-08-15 17:43:01 | 000,000,000 | ---D | C] -- C:\Program Files\Alcohol Soft [2011-08-15 17:42:50 | 000,086,016 | ---- | C] (MindVision) -- C:\WINDOWS\unvise32qt.exe [2011-08-15 17:42:38 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\QuickTime [2011-08-15 17:42:37 | 000,000,000 | ---D | C] -- C:\Program Files\QuickTime [2011-08-15 17:42:27 | 000,000,000 | ---D | C] -- C:\Temp [2011-08-15 17:42:04 | 000,436,792 | ---- | C] (Duplex Secure Ltd.) -- C:\WINDOWS\System32\drivers\sptd.sys [2011-08-15 17:42:01 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX [2011-08-15 17:41:21 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\XSF Remote [2011-08-15 17:39:11 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\Symantec [2011-08-15 17:38:56 | 000,110,952 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS [2011-08-15 17:38:56 | 000,048,768 | ---- | C] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL [2011-08-15 17:38:40 | 000,466,944 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\capicom.dll [2011-08-15 17:38:40 | 000,000,000 | ---D | C] -- C:\Program Files\Symantec [2011-08-15 17:38:37 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Symantec Shared [2011-08-15 17:38:37 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Symantec [2011-08-15 17:38:24 | 000,000,000 | ---D | C] -- C:\Config.Msi [2011-08-15 17:38:23 | 001,415,680 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wmv9vcm.dll [2011-08-15 17:38:23 | 000,180,224 | ---- | C] (Agere Systems) -- C:\WINDOWS\System32\WAAGS48D.DLL [2011-08-15 17:38:23 | 000,155,648 | ---- | C] (Agere Systems) -- C:\WINDOWS\System32\WNAGS48D.CPL [2011-08-15 17:38:23 | 000,154,112 | ---- | C] (Agere Systems) -- C:\WINDOWS\System32\drivers\WLAGS48D.SYS [2011-08-15 17:38:23 | 000,057,344 | ---- | C] (Agere Systems) -- C:\WINDOWS\System32\WCAGS48D.EXE [2011-08-15 17:38:23 | 000,014,390 | ---- | C] (ads-tec GmbH) -- C:\WINDOWS\System32\C3APIRC.dll [2011-08-15 17:38:23 | 000,007,680 | ---- | C] (Agere Systems) -- C:\WINDOWS\System32\WDAGS48D.DLL [2011-08-15 17:38:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\Repl [2011-08-15 17:38:23 | 000,000,000 | ---D | C] -- C:\WINDOWS\Drivers [2011-08-15 17:36:43 | 000,000,000 | ---D | C] -- C:\totalcmd [2011-08-15 17:36:43 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Total Commander [2011-08-15 17:36:04 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\XPSViewer [2011-08-15 17:36:01 | 000,000,000 | ---D | C] -- C:\Program Files\MSBuild [2011-08-15 17:36:00 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\en-US [2011-08-15 17:35:57 | 000,000,000 | ---D | C] -- C:\Program Files\Reference Assemblies [2011-08-15 17:35:37 | 000,597,504 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\printfilterpipelinesvc.exe [2011-08-15 17:35:37 | 000,117,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\prntvpt.dll [2011-08-15 17:35:37 | 000,089,088 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\filterpipelineprintproc.dll [2011-08-15 17:35:36 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\xpssvcs.dll [2011-08-15 17:35:36 | 001,676,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpssvcs.dll [2011-08-15 17:35:36 | 000,575,488 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\xpsshhdr.dll [2011-08-14 23:50:30 | 000,000,000 | ---D | C] -- C:\WINDOWS\System32\logs [2011-08-14 23:48:52 | 000,000,000 | ---D | C] -- C:\Program Files\EWA net [2011-08-14 23:48:36 | 000,987,136 | ---- | C] (Woodbury Associates Ltd.) -- C:\WINDOWS\System32\UniBox210.ocx [2011-08-14 23:48:36 | 000,438,272 | ---- | C] (Woodbury Associates Ltd.) -- C:\WINDOWS\System32\UniBox10.ocx [2011-08-14 23:48:36 | 000,208,896 | ---- | C] (Woodbury Associates Ltd.) -- C:\WINDOWS\System32\UniBoxVB12.ocx [2011-08-14 23:48:35 | 000,608,448 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\COMCTL32.OCX [2011-08-14 23:48:35 | 000,192,512 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpnls.dll [2011-08-14 23:48:35 | 000,147,456 | ---- | C] (Hewlett Packard GmbH) -- C:\WINDOWS\System32\HPLog.dll [2011-08-14 23:47:50 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\STAR\PrivacIE [2011-08-14 23:46:43 | 000,000,000 | ---D | C] -- C:\WINDOWS\Sun [2011-08-14 22:04:27 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Resource Hacker [2011-08-14 22:04:26 | 000,000,000 | ---D | C] -- C:\Program Files\Resource Hacker [2011-08-14 21:02:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EWA net [2011-08-14 20:16:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\EWA net - WIS Standalone [2011-08-14 20:15:50 | 000,000,000 | ---D | C] -- C:\FixXentry(2.75) [2011-08-14 20:12:48 | 000,000,000 | ---D | C] -- C:\WINDOWS\OCCACHE [2011-08-14 20:12:47 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Autodesk WHIP! [2011-08-14 20:12:46 | 000,499,712 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\heidiw.dll [2011-08-14 20:12:46 | 000,278,528 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\szbw.hdi [2011-08-14 20:12:46 | 000,237,568 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\whiptkw.dll [2011-08-14 20:12:46 | 000,106,496 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\dllongw.dll [2011-08-14 20:12:46 | 000,090,112 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\gdifontw.hdi [2011-08-14 20:12:46 | 000,061,440 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\gdiw.hdi [2011-08-14 20:12:46 | 000,040,960 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\rblastw.hdi [2011-08-14 20:12:46 | 000,028,672 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\mtlw.dll [2011-08-14 20:12:46 | 000,024,576 | ---- | C] (Autodesk, Inc.) -- C:\WINDOWS\System32\texturew.dll [2011-08-14 20:12:46 | 000,000,000 | ---D | C] -- C:\Program Files\Autodesk WHIP! [2011-08-14 20:12:40 | 000,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe [2011-08-14 20:12:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\WINDOWS [2011-08-14 19:54:31 | 000,000,000 | -HSD | C] -- C:\Documents and Settings\STAR\IECompatCache [2011-08-14 19:25:26 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Dane aplikacji\Macromedia [2011-08-14 18:49:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Office Genuine Advantage [2011-08-14 18:08:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Xentry [2011-08-14 17:36:30 | 000,159,744 | ---- | C] (ads-tec GmbH) -- C:\WINDOWS\System32\C4FlashDll.dll [2011-08-14 17:36:30 | 000,086,016 | ---- | C] (ads-tec) -- C:\WINDOWS\System32\ADSTouchService.exe [2011-08-14 17:35:58 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Symulacja DAS [2011-08-14 17:12:09 | 000,000,000 | ---D | C] -- C:\Program Files\Web_Etm [2011-08-14 17:10:32 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\Alcohol 52% [2011-08-14 17:04:26 | 000,014,390 | ---- | C] (ads-tec GmbH) -- C:\WINDOWS\System32\C3AP993d.rra [2011-08-14 17:03:11 | 000,024,576 | ---- | C] (Gigatronik Stuttgart GmbH) -- C:\WINDOWS\System32\dllcache\helpctr.exe [2011-08-14 16:43:25 | 000,023,808 | ---- | C] (ads-tec GmbH) -- C:\WINDOWS\System32\drivers\c3smbus.sys [2011-08-14 16:43:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Menu Start\Programy\PLAY ONLINE [2011-08-14 16:43:15 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE [2011-08-14 16:42:55 | 000,014,640 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\spmsgXP_2k3.dll [2011-08-14 16:42:48 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01007.dll [2011-08-14 16:42:48 | 001,112,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll [2011-08-14 16:42:48 | 000,861,696 | ---- | C] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys [2011-08-14 16:42:48 | 000,245,376 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [2011-08-14 16:42:48 | 000,199,168 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [2011-08-14 16:42:48 | 000,102,784 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [2011-08-14 16:42:48 | 000,095,616 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [2011-08-14 16:42:48 | 000,076,544 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2011-08-14 16:42:48 | 000,067,584 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [2011-08-14 16:42:48 | 000,028,672 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccid.sys [2011-08-14 16:42:48 | 000,027,520 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [2011-08-14 16:42:48 | 000,025,856 | ---- | C] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [2011-08-14 16:42:48 | 000,019,200 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [2011-08-14 16:42:48 | 000,011,136 | ---- | C] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2011-08-14 16:42:31 | 000,000,000 | ---D | C] -- C:\Program Files\PLAY ONLINE [2011-08-14 16:41:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService [2011-08-14 15:58:06 | 000,000,000 | ---D | C] -- C:\WINDOWS\pss [2011-08-14 15:56:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\Adobe [2011-08-14 13:55:42 | 000,172,032 | ---- | C] (Conexant Systems, Inc) -- C:\WINDOWS\System32\Uci32114.dll [2011-08-14 13:55:42 | 000,008,192 | ---- | C] (Conexant Systems, Inc.) -- C:\WINDOWS\System32\drivers\XAudio.sys [2011-08-14 13:55:00 | 000,172,032 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\igfxres.dll [2011-08-14 13:52:59 | 002,412,544 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4icd32.dll [2011-08-14 13:52:59 | 001,589,248 | ---- | C] (Intel Corporation) -- C:\WINDOWS\System32\ig4dev32.dll [2011-08-14 13:28:20 | 000,000,000 | ---D | C] -- C:\dell [2011-08-14 13:20:45 | 000,000,000 | ---D | C] -- C:\Documents and Settings\STAR\Menu Start\Programy\EPC [2011-08-14 12:14:15 | 000,053,376 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\1394bus.sys [2011-08-14 12:14:15 | 000,006,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\enum1394.sys [2011-08-14 12:14:04 | 000,094,208 | ---- | C] (SigmaTel, Inc.) -- C:\WINDOWS\System32\stacsv.exe [2011-08-14 09:13:20 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Dane aplikacji\do2bni.dat [2011-08-14 09:13:20 | 000,033,280 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Dane aplikacji\rundll32.exe [2011-08-14 09:13:16 | 000,140,288 | ---- | C] (Microsoft Corporation) -- C:\Documents and Settings\STAR\3842105.dll [2011-08-14 01:42:34 | 000,697,272 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2011-08-14 01:42:34 | 000,073,656 | ---- | C] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011-08-14 01:38:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Adobe [2011-08-01 15:16:50 | 000,000,000 | -H-D | C] -- C:\WINDOWS\$hf_mig$ [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-06-02 15:19:38 | 000,329,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll [2012-06-02 15:19:38 | 000,024,088 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wucltui.dll.mui [2012-06-02 15:19:38 | 000,015,896 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll.mui [2012-06-02 15:19:34 | 000,097,304 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\cdm.dll [2012-06-02 15:19:34 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups2.dll [2012-06-02 15:19:34 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wups.dll [2012-06-02 15:19:24 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wuapi.dll [2011-11-10 08:40:30 | 000,012,540 | ---- | M] () -- C:\WINDOWS\System32\wpa.bak [2011-10-10 16:22:52 | 000,692,736 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcomm.dll [2011-10-03 10:31:32 | 005,971,456 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtml.dll [2011-09-28 09:06:42 | 000,602,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\crypt32.dll [2011-09-26 12:41:54 | 000,614,400 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\uiautomationcore.dll [2011-09-26 12:41:54 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\oleaccrc.dll [2011-09-26 12:41:54 | 000,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleaccrc.dll [2011-09-26 12:41:20 | 000,220,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\oleacc.dll [2011-09-06 16:10:09 | 001,859,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\win32k.sys [2011-09-06 16:10:09 | 001,859,200 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\win32k.sys [2011-08-23 18:40:14 | 011,081,728 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ieframe.dll [2011-08-23 01:40:15 | 001,212,416 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\urlmon.dll [2011-08-23 01:40:15 | 000,916,480 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wininet.dll [2011-08-23 01:40:14 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\inetcpl.cpl [2011-08-23 01:40:14 | 001,469,440 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\inetcpl.cpl [2011-08-23 01:40:14 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\mstime.dll [2011-08-23 01:40:14 | 000,611,840 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mstime.dll [2011-08-23 01:40:14 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeeds.dll [2011-08-23 01:40:14 | 000,602,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeeds.dll [2011-08-23 01:40:14 | 000,206,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\occache.dll [2011-08-23 01:40:14 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\url.dll [2011-08-23 01:40:14 | 000,105,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\url.dll [2011-08-23 01:40:14 | 000,066,560 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mshtmled.dll [2011-08-23 01:40:14 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\msfeedsbs.dll [2011-08-23 01:40:14 | 000,055,296 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msfeedsbs.dll [2011-08-23 01:40:14 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\licmgr10.dll [2011-08-23 01:40:14 | 000,043,520 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\licmgr10.dll [2011-08-23 01:40:14 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\jsproxy.dll [2011-08-23 01:40:14 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\jsproxy.dll [2011-08-23 01:40:13 | 002,000,384 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iertutil.dll [2011-08-23 01:40:13 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iepeers.dll [2011-08-23 01:40:13 | 000,184,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iepeers.dll [2011-08-23 01:40:12 | 000,743,424 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedvtool.dll [2011-08-23 01:40:12 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\iedkcs32.dll [2011-08-23 01:40:12 | 000,387,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\iedkcs32.dll [2011-08-22 19:16:20 | 000,298,496 | ---- | M] () -- C:\WINDOWS\System32\StarInsecure.dll [2011-08-22 13:58:29 | 000,385,024 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\html.iec [2011-08-22 13:56:56 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\ie4uinit.exe [2011-08-22 13:56:56 | 000,174,080 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ie4uinit.exe [2011-08-18 09:36:34 | 000,194,240 | ---- | M] () -- C:\WINDOWS\zak.md5 [2011-08-17 15:49:54 | 000,138,496 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\afd.sys [2011-08-15 18:42:40 | 000,000,583 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\DAS.lnk [2011-08-15 18:37:40 | 000,000,000 | ---- | M] () -- C:\WINDOWS\DAS32R2.INI [2011-08-15 18:30:48 | 000,000,078 | ---- | M] () -- C:\WINDOWS\init.ini [2011-08-15 17:57:58 | 000,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\deployJava1.dll [2011-08-15 17:57:58 | 000,157,472 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2011-08-15 17:57:58 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2011-08-15 17:57:58 | 000,145,184 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2011-08-15 17:57:58 | 000,073,728 | ---- | M] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javacpl.cpl [2011-08-15 17:49:10 | 000,096,664 | ---- | M] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2011-08-15 17:49:08 | 000,000,129 | ---- | M] () -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-08-15 17:48:57 | 000,000,526 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\TOTALCMD.lnk [2011-08-15 17:42:53 | 000,000,541 | ---- | M] () -- C:\WINDOWS\System32\QuickTime.qtp [2011-08-15 17:38:56 | 000,110,952 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\drivers\SYMEVENT.SYS [2011-08-15 17:38:56 | 000,048,768 | ---- | M] (Symantec Corporation) -- C:\WINDOWS\System32\S32EVNT1.DLL [2011-08-15 17:38:56 | 000,008,014 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2011-08-15 17:38:56 | 000,000,805 | ---- | M] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2011-08-15 04:33:45 | 000,001,220 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2011-08-15 04:32:58 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2011-08-14 23:55:55 | 000,000,055 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\EWA net user. admin - pass. 12345.url [2011-08-14 23:09:16 | 095,023,320 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\inb2od.pad [2011-08-14 22:53:55 | 000,000,538 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\Skrót do StarPad.lnk [2011-08-14 20:10:53 | 000,000,543 | ---- | M] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\xentry-fix.lnk [2011-08-14 18:39:27 | 000,000,000 | ---- | M] () -- C:\WINDOWS\vpc32.INI [2011-08-14 18:14:00 | 000,000,930 | ---- | M] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2011-08-14 18:12:49 | 000,000,518 | -H-- | M] () -- C:\WINDOWS\HHTWIN.INI [2011-08-14 18:08:24 | 000,000,689 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Xentry.lnk [2011-08-14 18:02:03 | 000,023,392 | ---- | M] () -- C:\WINDOWS\System32\nscompat.tlb [2011-08-14 18:02:03 | 000,016,832 | ---- | M] () -- C:\WINDOWS\System32\amcompat.tlb [2011-08-14 17:57:53 | 000,001,656 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\WIS.lnk [2011-08-14 17:48:01 | 000,000,047 | ---- | M] () -- C:\SETUP.ERR [2011-08-14 17:36:05 | 000,001,529 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\StarFinder.lnk [2011-08-14 17:35:58 | 000,001,588 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\STAR UTILITIES.lnk [2011-08-14 17:35:58 | 000,001,554 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Info.lnk [2011-08-14 17:35:58 | 000,001,536 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\SDMEDIA.lnk [2011-08-14 17:35:44 | 000,000,031 | ---- | M] () -- C:\WINDOWS\starfont.ini [2011-08-14 17:10:36 | 000,000,830 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Alcohol 52%.lnk [2011-08-14 17:07:22 | 000,000,071 | ---- | M] () -- C:\WINDOWS\genkey.ini [2011-08-14 17:03:25 | 000,001,627 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Star Browser.lnk [2011-08-14 16:44:43 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf [2011-08-14 16:44:38 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf [2011-08-14 16:44:22 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf [2011-08-14 16:43:17 | 000,000,722 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2011-08-14 16:43:07 | 000,000,301 | ---- | M] () -- C:\Documents and Settings\STAR\Moje dokumenty\ax_files.xml [2011-08-14 16:43:01 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf [2011-08-14 16:42:59 | 000,000,000 | -H-- | M] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf [2011-08-14 16:42:38 | 000,861,696 | ---- | M] (DiBcom SA) -- C:\WINDOWS\System32\drivers\mod7700.sys [2011-08-14 16:42:38 | 000,245,376 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbnet.sys [2011-08-14 16:42:38 | 000,199,168 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewusbmdm.sys [2011-08-14 16:42:38 | 000,102,784 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwusbdev.sys [2011-08-14 16:42:38 | 000,095,616 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcacm.sys [2011-08-14 16:42:38 | 000,076,544 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jubusenum.sys [2011-08-14 16:42:38 | 000,067,584 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_jucdcecm.sys [2011-08-14 16:42:38 | 000,028,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\usbccid.sys [2011-08-14 16:42:38 | 000,027,520 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_juextctrl.sys [2011-08-14 16:42:38 | 000,025,856 | ---- | M] (Huawei Tech. Co., Ltd.) -- C:\WINDOWS\System32\drivers\ewdcsc.sys [2011-08-14 16:42:38 | 000,019,200 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_hwupgrade.sys [2011-08-14 16:42:38 | 000,011,136 | ---- | M] (Huawei Technologies Co., Ltd.) -- C:\WINDOWS\System32\drivers\ew_usbenumfilter.sys [2011-08-14 16:42:37 | 001,112,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\wdfcoinstaller01007.dll [2011-08-14 16:42:37 | 001,112,288 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\WdfCoInstaller01007.dll [2011-08-14 16:27:24 | 000,000,102 | ---- | M] () -- C:\Documents and Settings\STAR\.ewanapi_cookie [2011-08-14 13:28:48 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat [2011-08-14 13:20:45 | 000,001,806 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\EPC.lnk [2011-08-14 09:13:47 | 000,000,798 | ---- | M] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\msconfig.lnk [2011-08-14 09:13:33 | 000,003,061 | ---- | M] () -- C:\Documents and Settings\All Users\Dane aplikacji\inb2od.js [2011-08-14 09:13:20 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Dane aplikacji\do2bni.dat [2011-08-14 09:13:20 | 000,033,280 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\All Users\Dane aplikacji\rundll32.exe [2011-08-14 09:13:17 | 000,140,288 | ---- | M] (Microsoft Corporation) -- C:\Documents and Settings\STAR\3842105.dll [2011-08-14 08:57:16 | 000,442,124 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2011-08-14 08:57:15 | 000,417,232 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2011-08-14 08:57:15 | 000,071,570 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2011-08-14 08:57:15 | 000,056,690 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2011-08-14 08:51:49 | 000,000,703 | ---- | M] () -- C:\Documents and Settings\STAR\Pulpit\Xentry Simulation.lnk [2011-08-14 08:16:04 | 000,036,868 | ---- | M] () -- C:\WINDOWS\System32\fntData.mzp [2011-08-14 01:47:09 | 000,002,567 | ---- | M] () -- C:\WINDOWS\wincmd.ini [2011-08-14 01:46:18 | 000,000,790 | ---- | M] () -- C:\WINDOWS\starpad.ini [2011-08-14 01:42:34 | 000,697,272 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerApp.exe [2011-08-14 01:42:34 | 000,073,656 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWS\System32\FlashPlayerCPLApp.cpl [2011-08-14 01:08:23 | 000,000,022 | ---- | M] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\etadmetsys.bat [color=#E56717]========== Files Created - No Company Name ==========[/color] [2011-08-15 19:44:42 | 000,000,022 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\etadmetsys.bat [2011-08-15 18:42:40 | 000,000,583 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\DAS.lnk [2011-08-15 18:37:40 | 000,000,000 | ---- | C] () -- C:\WINDOWS\DAS32R2.INI [2011-08-15 18:37:28 | 000,036,868 | ---- | C] () -- C:\WINDOWS\System32\fntData.mzp [2011-08-15 18:30:48 | 000,000,078 | ---- | C] () -- C:\WINDOWS\init.ini [2011-08-15 18:22:41 | 000,001,554 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Info.lnk [2011-08-15 18:22:24 | 000,000,031 | ---- | C] () -- C:\WINDOWS\starfont.ini [2011-08-15 18:02:16 | 000,000,790 | ---- | C] () -- C:\WINDOWS\starpad.ini [2011-08-15 17:56:17 | 000,114,742 | ---- | C] () -- C:\WINDOWS\System32\SerialNumberAccessDll.dll.old [2011-08-15 17:56:17 | 000,114,742 | ---- | C] () -- C:\WINDOWS\System32\SerialNumberAccessDll.dll [2011-08-15 17:55:27 | 000,000,301 | ---- | C] () -- C:\Documents and Settings\STAR\Moje dokumenty\ax_files.xml [2011-08-15 17:49:08 | 000,000,129 | ---- | C] () -- C:\Documents and Settings\STAR\Ustawienia lokalne\Dane aplikacji\fusioncache.dat [2011-08-15 17:48:57 | 000,000,526 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\TOTALCMD.lnk [2011-08-15 17:46:38 | 000,000,807 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Internet Explorer.lnk [2011-08-15 17:46:31 | 000,000,742 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Outlook Express.lnk [2011-08-15 17:46:25 | 000,001,599 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Pomoc zdalna.lnk [2011-08-15 17:46:25 | 000,000,792 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Windows Media Player.lnk [2011-08-15 17:46:24 | 000,000,518 | -H-- | C] () -- C:\WINDOWS\HHTWIN.INI [2011-08-15 17:45:10 | 000,001,588 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\STAR UTILITIES.lnk [2011-08-15 17:44:55 | 000,194,240 | ---- | C] () -- C:\WINDOWS\zak.md5 [2011-08-15 17:44:55 | 000,000,047 | ---- | C] () -- C:\SETUP.ERR [2011-08-15 17:44:17 | 000,001,674 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Online Update BG.lnk [2011-08-15 17:44:05 | 000,298,496 | ---- | C] () -- C:\WINDOWS\System32\StarInsecure.dll [2011-08-15 17:42:46 | 000,000,541 | ---- | C] () -- C:\WINDOWS\System32\QuickTime.qtp [2011-08-15 17:41:21 | 000,001,633 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Star Browser.lnk [2011-08-15 17:41:21 | 000,001,627 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Star Browser.lnk [2011-08-15 17:38:56 | 000,008,014 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.CAT [2011-08-15 17:38:56 | 000,000,805 | ---- | C] () -- C:\WINDOWS\System32\drivers\SYMEVENT.INF [2011-08-15 17:38:23 | 000,360,549 | ---- | C] () -- C:\WINDOWS\System32\ivm_lic.dll [2011-08-15 17:38:23 | 000,012,032 | ---- | C] () -- C:\WINDOWS\System32\drivers\D990TRAN.sys [2011-08-15 17:36:43 | 000,002,567 | ---- | C] () -- C:\WINDOWS\wincmd.ini [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\UC.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\RAR.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKZIP.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\PKUNZIP.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\NOCLOSE.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\LHA.PIF [2011-08-15 17:36:43 | 000,000,545 | ---- | C] () -- C:\WINDOWS\ARJ.PIF [2011-08-15 17:36:21 | 000,064,200 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat [2011-08-14 23:55:55 | 000,000,055 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\EWA net user. admin - pass. 12345.url [2011-08-14 23:48:36 | 000,001,606 | ---- | C] () -- C:\WINDOWS\System32\font.ini [2011-08-14 22:53:55 | 000,000,538 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\Skrót do StarPad.lnk [2011-08-14 22:25:53 | 000,000,102 | ---- | C] () -- C:\Documents and Settings\STAR\.ewanapi_cookie [2011-08-14 20:18:03 | 000,000,543 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\xentry-fix.lnk [2011-08-14 20:16:02 | 000,001,656 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\WIS.lnk [2011-08-14 20:12:46 | 000,040,094 | ---- | C] () -- C:\WINDOWS\System32\whipcrak.wav [2011-08-14 18:39:27 | 000,000,000 | ---- | C] () -- C:\WINDOWS\vpc32.INI [2011-08-14 18:08:24 | 000,000,689 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Xentry.lnk [2011-08-14 17:35:58 | 000,001,536 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\SDMEDIA.lnk [2011-08-14 17:35:19 | 000,001,529 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\StarFinder.lnk [2011-08-14 17:10:36 | 000,000,830 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Alcohol 52%.lnk [2011-08-14 17:07:22 | 000,000,071 | ---- | C] () -- C:\WINDOWS\genkey.ini [2011-08-14 16:44:43 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_juextctrl_01007.Wdf [2011-08-14 16:44:38 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcecm_01007.Wdf [2011-08-14 16:44:22 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jucdcacm_01007.Wdf [2011-08-14 16:43:17 | 000,000,722 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\PLAY ONLINE.lnk [2011-08-14 16:43:01 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\Msft_Kernel_ew_jubusenum_01007.Wdf [2011-08-14 16:42:59 | 000,000,000 | -H-- | C] () -- C:\WINDOWS\System32\drivers\MsftWdf_Kernel_01007_Coinstaller_Critical.Wdf [2011-08-14 13:53:00 | 001,843,784 | ---- | C] () -- C:\WINDOWS\System32\igklg400.dll [2011-08-14 13:52:59 | 001,399,880 | ---- | C] () -- C:\WINDOWS\System32\igklg450.dll [2011-08-14 13:52:59 | 000,147,456 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4926.dll [2011-08-14 13:52:59 | 000,104,636 | ---- | C] () -- C:\WINDOWS\System32\igmedcompkrn.dll [2011-08-14 13:20:45 | 000,001,806 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\EPC.lnk [2011-08-14 12:16:05 | 000,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dll [2011-08-14 09:13:47 | 000,000,798 | ---- | C] () -- C:\Documents and Settings\STAR\Menu Start\Programy\Autostart\msconfig.lnk [2011-08-14 09:13:33 | 000,003,061 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\inb2od.js [2011-08-14 09:13:30 | 095,023,320 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\inb2od.pad [2011-08-14 09:10:26 | 000,060,416 | ---- | C] () -- C:\WINDOWS\System32\antiwpa.dll1472EC [2011-08-14 08:51:49 | 000,000,703 | ---- | C] () -- C:\Documents and Settings\STAR\Pulpit\Xentry Simulation.lnk [2011-08-14 01:42:36 | 000,000,930 | ---- | C] () -- C:\WINDOWS\tasks\Adobe Flash Player Updater.job [2011-02-01 13:11:44 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\rpcnetp.dll [2011-02-01 13:11:05 | 000,017,408 | ---- | C] () -- C:\WINDOWS\System32\rpcnetp.exe [2010-03-12 16:57:51 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat [2010-03-12 16:04:58 | 000,204,800 | ---- | C] () -- C:\WINDOWS\System32\igfxCoIn_v4814.dll [2009-12-08 14:07:13 | 000,031,776 | ---- | C] () -- C:\WINDOWS\System32\nvModes.dat [2009-12-08 14:05:38 | 001,724,416 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2009-12-08 14:05:38 | 001,657,376 | ---- | C] () -- C:\WINDOWS\System32\nwiz.exe [2009-12-08 14:05:38 | 001,101,824 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2009-12-08 14:05:37 | 000,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2009-12-08 14:05:35 | 001,503,232 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2009-12-08 14:05:34 | 001,346,080 | ---- | C] () -- C:\WINDOWS\System32\nvdspsch.exe [2009-12-08 14:05:30 | 000,449,056 | ---- | C] () -- C:\WINDOWS\System32\nvappbar.exe [2009-12-08 14:05:29 | 000,436,768 | ---- | C] () -- C:\WINDOWS\System32\keystone.exe [2009-12-08 14:02:12 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI [2009-12-08 14:00:53 | 000,096,664 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT [2009-12-08 13:19:40 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat [2009-12-08 13:14:02 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat [color=#E56717]========== ZeroAccess Check ==========[/color] [2011-08-15 18:31:08 | 000,000,227 | ---- | M] () -- C:\WINDOWS\assembly\Desktop.ini [HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] [HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] "" = %SystemRoot%\system32\shdocvw.dll -- [2009-09-25 07:37:33 | 001,509,888 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Apartment [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] "" = C:\WINDOWS\system32\wbem\fastprox.dll -- [2009-02-09 12:53:44 | 000,473,600 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Free [HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] "" = C:\WINDOWS\system32\wbem\wbemess.dll -- [2008-04-14 23:50:58 | 000,273,920 | ---- | M] (Microsoft Corporation) "ThreadingModel" = Both [color=#E56717]========== LOP Check ==========[/color] [2011-08-14 16:43:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DatacardService [2011-08-15 18:30:53 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Juniper Networks [2011-08-15 18:03:51 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\LicDir [2011-08-14 16:43:27 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\PLAY ONLINE [color=#E56717]========== Purity Check ==========[/color] < End of report >