SystemLook 30.07.11 by jpshortstuff
Log created at 18:35 on 08/05/2013 by nowy
Administrator - Elevation successful

========== dir ==========

C:\WINDOWS\System32\jmdp - Parameters: "/s"

---Files---
lmrn.dll	--a---- 306176 bytes	[08:54 07/04/2013]	[08:54 07/04/2013]
sqlite3.dll	--a---- 362029 bytes	[07:25 05/02/2013]	[07:25 05/02/2013]
stij.exe	--a---- 20784 bytes	[13:25 18/03/2013]	[13:25 18/03/2013]
SweetNT.crx	--a---- 70732 bytes	[20:20 10/04/2013]	[13:09 18/02/2013]

No folders found.

C:\WINDOWS\System32\0PQQcsabWsfmis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[09:12 26/04/2013]	[09:12 26/04/2013]

No folders found.

C:\WINDOWS\System32\0PQQcsabcwfmis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[09:12 26/04/2013]	[09:12 26/04/2013]

No folders found.

C:\WINDOWS\System32\0PQQbsabWsttis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[06:37 23/04/2013]	[06:37 23/04/2013]

No folders found.

C:\WINDOWS\0PQQcsabWsfmis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[09:12 26/04/2013]	[09:12 26/04/2013]

No folders found.

C:\WINDOWS\0PQQcsabcwfmis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[09:12 26/04/2013]	[09:12 26/04/2013]

No folders found.

C:\WINDOWS\0PQQbsabWsttis - Parameters: "/s"

---Files---
00000000000000000000.DLL	--a---- 1280 bytes	[06:37 23/04/2013]	[06:37 23/04/2013]

No folders found.

C:\AX NF ZZ - Parameters: "/s"

---Files---
SIFLS7BASB1100.ekb	--ahs-- 2560 bytes	[09:12 26/04/2013]	[16:02 26/04/2013]
SITTS7BASB1100.ekb	--ahs-- 2560 bytes	[15:59 26/04/2013]	[16:02 26/04/2013]

No folders found.

========== reg ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time]
"Description"="Zachowuje synchronizację daty i godziny na wszystkich klientach i serwerach w sieci. Jeśli ta usługa zostanie zatrzymana, synchronizacja daty i godziny stanie się niedostępna. Jeśli ta usługa zostanie wyłączona, wszelkie usługi jawnie od niej zależne przestaną się uruchamiać.
"
"DisplayName"="Usługa Czas systemu Windows"
"ErrorControl"= 0x0000000001 (1)
"Group"=""
"ImagePath"="%SystemRoot%\System32\svchost.exe -k netsvcs"
"Objectname"="LocalSystem"
"Start"= 0x0000000002 (2)
"Type"= 0x0000000020 (32)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Config]
"LastClockRate"= 0x000002625a (156250)
"MinClockRate"= 0x00000260d4 (155860)
"MaxClockRate"= 0x00000263e0 (156640)
"FrequencyCorrectRate"= 0x0000000004 (4)
"PollAdjustFactor"= 0x0000000005 (5)
"LargePhaseOffset"= 0x0000138800 (1280000)
"SpikeWatchPeriod"= 0x000000005a (90)
"HoldPeriod"= 0x0000000005 (5)
"MaxPollInterval"= 0x000000000f (15)
"LocalClockDispersion"= 0x000000000a (10)
"EventLogFlags"= 0x0000000002 (2)
"PhaseCorrectRate"= 0x0000000001 (1)
"MinPollInterval"= 0x000000000a (10)
"UpdateInterval"= 0x0000007530 (30000)
"MaxNegPhaseCorrection"= 0x00ffffffff (-1)
"MaxPosPhaseCorrection"= 0x00ffffffff (-1)
"AnnounceFlags"= 0x000000000a (10)
"MaxAllowedPhaseOffset"= 0x000000012c (300)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\TimeProviders]
(No values found)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\TimeProviders\NtpClient]
"Enabled"= 0x0000000001 (1)
"InputProvider"= 0x0000000001 (1)
"AllowNonstandardModeCombinations"= 0x0000000001 (1)
"CrossSiteSyncFlags"= 0x0000000002 (2)
"ResolvePeerBackoffMinutes"= 0x000000000f (15)
"ResolvePeerBackoffMaxTimes"= 0x0000000007 (7)
"CompatibilityFlags"= 0x0080000000 (-2147483648)
"EventLogFlags"= 0x0000000000 (0)
"DllName"="C:\WINDOWS\system32\w32time.dll"
"SpecialPollTimeRemaining"=" "
"SpecialPollInterval"= 0x0000000e10 (3600)

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\TimeProviders\NtpServer]
"Enabled"= 0x0000000001 (1)
"InputProvider"= 0x0000000000 (0)
"AllowNonstandardModeCombinations"= 0x0000000001 (1)
"DllName"="C:\WINDOWS\system32\w32time.dll"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\W32Time\Enum]
"0"="Root\LEGACY_W32TIME\0000"
"Count"= 0x0000000001 (1)
"NextInstance"= 0x0000000001 (1)


========== filefind ==========

Searching for "w32time.dll"
C:\WINDOWS\system32\w32time.dll	--a---- 176128 bytes	[12:00 15/04/2008]	[12:00 15/04/2008] A672CA3981352F8E9C30FEA056E80A62
C:\WINDOWS\system32\dllcache\w32time.dll	--a--c- 176128 bytes	[12:00 15/04/2008]	[12:00 15/04/2008] A672CA3981352F8E9C30FEA056E80A62

-= EOF =-