OTL logfile created on: 2011-08-10 21:05:16 - Run 1
OTL by OldTimer - Version 3.2.26.1     Folder = I:\Nasze dokumenty\MOJE DOKUMENTY\SYSTEMOWE UŻYTKI\Anty-Vir-Spy
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
4,00 Gb Total Physical Memory | 2,63 Gb Available Physical Memory | 65,84% Memory free
6,00 Gb Paging File | 4,22 Gb Available in Paging File | 70,41% Paging File free
Paging file location(s): d:\pagefile.sys 2047 4095 [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 37,26 Gb Total Space | 18,40 Gb Free Space | 49,40% Space Free | Partition Type: NTFS
Drive D: | 9,78 Gb Total Space | 7,69 Gb Free Space | 78,60% Space Free | Partition Type: NTFS
Drive E: | 29,28 Gb Total Space | 27,21 Gb Free Space | 92,95% Space Free | Partition Type: FAT32
Drive F: | 7,99 Gb Total Space | 7,99 Gb Free Space | 100,00% Space Free | Partition Type: FAT32
Drive G: | 99,07 Gb Total Space | 98,61 Gb Free Space | 99,53% Space Free | Partition Type: NTFS
Drive H: | 97,66 Gb Total Space | 19,14 Gb Free Space | 19,60% Space Free | Partition Type: NTFS
Drive I: | 97,66 Gb Total Space | 78,60 Gb Free Space | 80,49% Space Free | Partition Type: NTFS
Drive J: | 112,75 Gb Total Space | 47,04 Gb Free Space | 41,72% Space Free | Partition Type: NTFS
Drive K: | 48,83 Gb Total Space | 27,35 Gb Free Space | 56,02% Space Free | Partition Type: NTFS
 
Computer Name: MAREK-DOMOWY | User Name: Marek | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days
 
[color=#E56717]========== Processes (SafeList) ==========[/color]
 
PRC - [2011-08-10 20:38:31 | 000,579,584 | ---- | M] (OldTimer Tools) -- I:\Nasze dokumenty\MOJE DOKUMENTY\SYSTEMOWE UŻYTKI\Anty-Vir-Spy\OTL.exe
PRC - [2011-05-25 09:25:28 | 002,214,504 | ---- | M] (NVIDIA Corporation) -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2010-09-10 12:05:58 | 001,098,312 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe
PRC - [2010-08-26 00:52:00 | 000,340,552 | ---- | M] (G Data Software AG) -- C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe
PRC - [2010-07-20 13:27:28 | 001,542,728 | ---- | M] (G Data Software AG) -- E:\GDATA 2011\Firewall\GDFirewallTray.exe
PRC - [2010-07-20 13:27:24 | 000,410,696 | ---- | M] (G Data Software AG) -- E:\GDATA 2011\AVK\AVKService.exe
 
 
[color=#E56717]========== Modules (SafeList) ==========[/color]
 
MOD - [2011-08-10 20:38:31 | 000,579,584 | ---- | M] (OldTimer Tools) -- I:\Nasze dokumenty\MOJE DOKUMENTY\SYSTEMOWE UŻYTKI\Anty-Vir-Spy\OTL.exe
MOD - [2010-11-20 13:55:09 | 001,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
 
 
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
 
SRV:[b]64bit:[/b] - [2009-07-14 03:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2011-05-25 09:25:28 | 002,214,504 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files (x86)\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-05-20 22:35:16 | 000,378,472 | ---- | M] (NVIDIA Corporation) [Auto | Stopped] -- C:\Program Files (x86)\NVIDIA Corporation\3D Vision\nvSCPAPISvr.exe -- (Stereo Service)
SRV - [2010-12-08 14:31:06 | 000,628,736 | ---- | M] (Nokia) [On_Demand | Stopped] -- C:\Program Files (x86)\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer)
SRV - [2010-09-10 12:05:58 | 001,098,312 | ---- | M] (G Data Software AG) [Auto | Running] -- C:\Program Files (x86)\Common Files\G Data\AVKProxy\AVKProxy.exe -- (AVKProxy)
SRV - [2010-08-26 01:29:58 | 001,865,344 | ---- | M] () [Auto | Running] -- E:\GDATA 2011\AVK\AVKWCtlX64.exe -- (AVKWCtl)
SRV - [2010-08-26 00:52:00 | 000,340,552 | ---- | M] (G Data Software AG) [On_Demand | Running] -- C:\Program Files (x86)\Common Files\G Data\GDScan\GDScan.exe -- (GDScan)
SRV - [2010-07-20 13:27:24 | 000,410,696 | ---- | M] (G Data Software AG) [Auto | Running] -- E:\GDATA 2011\AVK\AVKService.exe -- (AVKService)
SRV - [2010-07-19 01:00:38 | 000,948,808 | ---- | M] (G Data Software AG) [On_Demand | Stopped] -- E:\GDATA 2011\AVKTuner\AVKTunerService.exe -- (GDTunerSvc)
SRV - [2010-07-19 00:44:36 | 001,672,776 | ---- | M] (G Data Software AG) [On_Demand | Running] -- E:\GDATA 2011\Firewall\GDFwSvcx64.exe -- (GDFwSvc)
SRV - [2010-07-19 00:30:22 | 000,906,824 | ---- | M] (G Data Software AG) [On_Demand | Stopped] -- E:\GDATA 2011\AVKBackup\AVKBackupService.exe -- (GDBackupSvc)
SRV - [2010-03-18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009-09-20 11:55:20 | 001,037,824 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- E:\HP\Digital Imaging\bin\HPSLPSVC64.DLL -- (HPSLPSVC)
SRV - [2009-06-10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
 
 
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
 
DRV:[b]64bit:[/b] - [2011-08-10 16:57:12 | 000,049,096 | ---- | M] (G Data Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\HookCentre.sys -- (HookCentre)
DRV:[b]64bit:[/b] - [2011-08-10 16:57:11 | 000,085,960 | ---- | M] (G Data Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\MiniIcpt.sys -- (GDMnIcpt)
DRV:[b]64bit:[/b] - [2011-08-10 16:57:11 | 000,040,392 | ---- | M] (G Data Software AG) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\GDBehave.sys -- (GDBehave)
DRV:[b]64bit:[/b] - [2011-08-10 16:36:01 | 000,048,584 | ---- | M] (G DATA Software AG) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\gdwfpcd64.sys -- (gdwfpcd)
DRV:[b]64bit:[/b] - [2011-04-16 21:22:49 | 000,057,288 | ---- | M] (G Data Software AG) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\PktIcpt.sys -- (GDPkIcpt)
DRV:[b]64bit:[/b] - [2011-03-11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:[b]64bit:[/b] - [2011-03-11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:[b]64bit:[/b] - [2010-11-20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:[b]64bit:[/b] - [2010-11-20 13:07:05 | 000,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:[b]64bit:[/b] - [2010-11-20 12:43:57 | 000,032,768 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser.sys -- (usbser)
DRV:[b]64bit:[/b] - [2010-07-30 14:18:04 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltjx64.sys -- (UsbserFilt)
DRV:[b]64bit:[/b] - [2010-07-30 14:18:02 | 000,009,216 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\usbser_lowerfltx64.sys -- (upperdev)
DRV:[b]64bit:[/b] - [2010-07-30 14:18:00 | 000,026,624 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbox64.sys -- (nmwcdc)
DRV:[b]64bit:[/b] - [2010-07-30 14:17:56 | 000,019,456 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\ccdcmbx64.sys -- (nmwcd)
DRV:[b]64bit:[/b] - [2010-03-10 03:48:28 | 000,086,120 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvhda64v.sys -- (NVHDA)
DRV:[b]64bit:[/b] - [2010-03-04 18:26:58 | 000,349,416 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nvmf6264.sys -- (NVNET)
DRV:[b]64bit:[/b] - [2009-07-14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:[b]64bit:[/b] - [2009-07-14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:[b]64bit:[/b] - [2009-07-14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:[b]64bit:[/b] - [2009-06-10 22:38:56 | 000,000,308 | ---- | M] () [File_System | On_Demand | Running] -- C:\Windows\SysNative\wbem\ntfs.mof -- (Ntfs)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:[b]64bit:[/b] - [2009-06-10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:[b]64bit:[/b] - [2009-06-10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:[b]64bit:[/b] - [2008-08-28 11:44:42 | 000,025,600 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\pccsmcfdx64.sys -- (pccsmcfd)
DRV - [2011-08-10 20:56:16 | 000,106,224 | ---- | M] (G Data Software) [Kernel | System | Stopped] -- C:\Windows\SysWOW64\drivers\GRD.sys -- (GRD)
DRV - [2006-09-19 12:44:04 | 000,015,664 | ---- | M] (GEAR Software Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\GEARAspiWDM.sys -- (GEARAspiWDM)
DRV - [2003-07-17 13:56:32 | 000,089,216 | ---- | M] () [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\FO_PAnt.sys -- (FO_PAnt)
DRV - [2002-10-09 14:53:54 | 000,043,904 | ---- | M] (Alfa Corporation) [Kernel | Boot | Stopped] -- C:\Windows\System32\Drivers\AFPAnsi.sys -- (AFPAnsi)
 
 
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== Internet Explorer ==========[/color]
 
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
 
 
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
 
IE - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Default Download Directory = I:\Nasze dokumenty\MOJE DOKUMENTY\ŚMIECI
IE - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
 
 
FF:[b]64bit:[/b] - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVision: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dv.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@nvidia.com/3DVisionStreaming: C:\Program Files (x86)\NVIDIA Corporation\3D Vision\npnv3dvstreaming.dll (NVIDIA Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.65\npGoogleUpdate3.dll (Google Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files (x86)\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
 
FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: E:\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-04-20 20:14:58 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Firefox\Extensions\\smartwebprinting@hp.com: E:\HP\Digital Imaging\Smart Web Printing\MozillaAddOn3 [2011-04-20 20:14:58 | 000,000,000 | ---D | M]
 
 
O1 HOSTS File: ([2009-06-10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:[b]64bit:[/b] - BHO: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\GDATA 2011\Webfilter\AvkWebIEx64.dll (G Data Software AG)
O2:[b]64bit:[/b] - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files\Google\GoogleToolbarNotifier\5.5.5126.1836\swg64.dll (Google Inc.)
O2 - BHO: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\GDATA 2011\Webfilter\AvkWebIE.dll (G Data Software AG)
O2 - BHO: (Google Toolbar Notifier BHO) - {AF69DE43-7D58-4638-B6FA-CE66B5AD205D} - C:\Program Files (x86)\Google\GoogleToolbarNotifier\5.5.5126.1836\swg.dll (Google Inc.)
O3:[b]64bit:[/b] - HKLM\..\Toolbar: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\GDATA 2011\Webfilter\AvkWebIEx64.dll (G Data Software AG)
O3 - HKLM\..\Toolbar: (G Data WebFilter) - {0124123D-61B4-456f-AF86-78C53A0790C5} - E:\GDATA 2011\Webfilter\AvkWebIE.dll (G Data Software AG)
O4:[b]64bit:[/b] - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4 - HKLM..\Run: [G Data AntiVirus Tray Application] E:\GDATA 2011\AVKTray\AVKTray.exe (G Data Software AG)
O4 - HKLM..\Run: [GDFirewallTray] E:\GDATA 2011\Firewall\GDFirewallTray.exe (G Data Software AG)
O4 - HKU\S-1-5-19..\Run: [Sidebar]  File not found
O4 - HKU\S-1-5-20..\Run: [Sidebar]  File not found
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin]  File not found
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin]  File not found
O4 - HKU\S-1-5-21-2558534619-850063983-1035865356-1002..\RunOnce: [mctadmin]  File not found
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O7 - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: LogonHoursAction = 2
O7 - HKU\S-1-5-21-2558534619-850063983-1035865356-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: DontDisplayLogonHoursWarnings = 1
O8:[b]64bit:[/b] - Extra context menu item: E&ksport do programu Microsoft Excel - E:\Office2003\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - E:\Office2003\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - E:\Office2003\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262F} http://www.nvidia.com/content/DriverDownload/srl/3.0.0.4/srl_bin/sysreqlab_nvd.cab (System Requirements Lab Class)
O16 - DPF: {E2883E8F-472F-4FB0-9522-AC9BF37916A7} http://platformdl.adobe.com/NOS/getPlusPlus/1.6/gp.cab (Reg Error: Key error.)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.172.224.160 89.228.7.228
O18:[b]64bit:[/b] - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp - No CLSID value found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18:[b]64bit:[/b] - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\SYSTEM\OLE DB\msdaipp.dll (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - C:\PROGRA~2\COMMON~1\MICROS~1\WEBCOM~1\11\OWC11.DLL (Microsoft Corporation)
O18:[b]64bit:[/b] - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O20:[b]64bit:[/b] - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20:[b]64bit:[/b] - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) -  File not found
O21:[b]64bit:[/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2011-06-01 05:55:24 | 000,074,064 | ---- | M] () - C:\AutoMapaSetupLog.txt -- [ NTFS ]
O34 - HKLM BootExecute: (autocheck autochk *) -  File not found
O35:[b]64bit:[/b] - HKLM\..comfile [open] -- "%1" %*
O35:[b]64bit:[/b] - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...com [@ = comfile] -- "%1" %*
O37:[b]64bit:[/b] - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
 
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
 
[2011-08-10 16:36:19 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G Data TotalCare 2011
[2011-08-10 16:36:05 | 000,049,096 | ---- | C] (G Data Software AG) -- C:\Windows\SysNative\drivers\HookCentre.sys
[2011-08-10 11:22:55 | 000,096,256 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011-08-10 11:22:55 | 000,072,704 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011-08-10 11:22:54 | 002,303,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011-08-10 11:22:54 | 000,248,320 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011-08-10 11:22:54 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011-08-10 11:22:53 | 001,797,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2011-08-10 11:22:53 | 000,818,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011-08-10 11:22:53 | 000,716,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011-08-10 11:22:53 | 000,237,056 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011-08-10 11:22:53 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011-08-10 11:18:11 | 001,162,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2011-08-10 11:18:11 | 000,338,432 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\conhost.exe
[2011-08-10 11:18:11 | 000,214,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\winsrv.dll
[2011-08-10 11:18:10 | 000,421,888 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2011-08-10 11:18:10 | 000,362,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2011-08-10 11:18:10 | 000,243,200 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2011-08-10 11:18:10 | 000,025,600 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2011-08-10 11:18:10 | 000,016,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2011-08-10 11:18:10 | 000,014,336 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2011-08-10 11:18:10 | 000,013,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2011-08-10 11:18:10 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2011-08-10 11:18:10 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2011-08-10 11:18:10 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2011-08-10 11:18:10 | 000,005,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2011-08-10 11:18:10 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2011-08-10 11:18:10 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2011-08-10 11:18:10 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011-08-10 11:18:09 | 000,007,680 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2011-08-10 11:18:09 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2011-08-10 11:18:09 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2011-08-10 11:18:09 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011-08-10 11:18:09 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2011-08-10 11:18:09 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2011-08-10 11:18:09 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
[2011-08-10 11:18:09 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011-08-10 11:18:09 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011-08-10 11:18:09 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2011-08-10 11:17:40 | 003,912,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntoskrnl.exe
[2011-08-10 11:17:39 | 005,561,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\ntoskrnl.exe
[2011-08-10 11:17:39 | 003,967,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\ntkrnlpa.exe
[2011-08-10 11:17:37 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccu32.dll
[2011-08-10 11:17:37 | 000,106,496 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccr32.dll
[2011-08-10 11:17:36 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbcjt32.dll
[2011-08-10 11:17:36 | 000,212,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbctrac.dll
[2011-08-10 11:17:36 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbctrac.dll
[2011-08-10 11:17:36 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\odbccp32.dll
[2011-08-10 11:17:36 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccp32.dll
[2011-08-10 11:17:36 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccu32.dll
[2011-08-10 11:17:36 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\odbccr32.dll
[2011-08-09 15:51:07 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Microsoft Silverlight
[2011-08-09 08:14:30 | 000,000,000 | ---D | C] -- C:\Users\Marek\AppData\Local\MigWiz
[2011-08-08 20:10:00 | 000,074,000 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrclr40.dll
[2011-08-08 20:09:59 | 000,028,944 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysWow64\msrecr40.dll
[2011-08-08 20:09:57 | 000,139,264 | ---- | C] (G DATA Software Sp. z o.o.) -- C:\Windows\SysWow64\AfpT.dll
[2011-08-08 20:09:57 | 000,043,904 | ---- | C] (Alfa Corporation) -- C:\Windows\SysWow64\drivers\AFPAnsi.sys
[2011-08-08 20:08:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\G DATA Software
[2011-08-08 18:55:52 | 000,000,000 | -HSD | C] -- C:\#GDATA.Trash.Store#
[2011-07-31 15:49:45 | 000,000,000 | ---D | C] -- I:\Nasze dokumenty\MOJE DOKUMENTY\Gothic3ForsakenGods
[2011-07-31 12:35:11 | 000,000,000 | ---D | C] -- C:\Users\Marek\AppData\Roaming\Lavasoft
[2011-07-27 08:58:09 | 000,000,000 | ---D | C] -- C:\Users\Marek\AppData\Roaming\WinRAR
[2011-07-22 19:57:20 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\MSXML 4.0
[2011-07-22 19:32:34 | 000,325,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbport.sys
[2011-07-22 19:32:34 | 000,007,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\SysNative\drivers\usbd.sys
 
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
 
[2011-08-10 21:09:08 | 000,001,046 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2011-08-10 21:07:21 | 002,883,584 | -HS- | M] () -- C:\Users\Marek\ntuser.dat
[2011-08-10 20:56:16 | 000,106,224 | ---- | M] (G Data Software) -- C:\Windows\SysWow64\drivers\GRD.sys
[2011-08-10 18:53:50 | 000,015,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2011-08-10 18:53:50 | 000,015,152 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2011-08-10 17:05:39 | 001,549,696 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2011-08-10 17:05:39 | 000,697,674 | ---- | M] () -- C:\Windows\SysNative\perfh015.dat
[2011-08-10 17:05:39 | 000,615,810 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2011-08-10 17:05:39 | 000,134,784 | ---- | M] () -- C:\Windows\SysNative\perfc015.dat
[2011-08-10 17:05:39 | 000,106,190 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2011-08-10 16:58:51 | 000,001,042 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2011-08-10 16:58:34 | 000,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2011-08-10 16:58:21 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2011-08-10 16:58:16 | 3220,713,472 | -HS- | M] () -- C:\hiberfil.sys
[2011-08-10 16:57:28 | 001,386,814 | -H-- | M] () -- C:\Users\Marek\AppData\Local\IconCache.db
[2011-08-10 16:57:12 | 000,049,096 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\HookCentre.sys
[2011-08-10 16:57:11 | 000,085,960 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\MiniIcpt.sys
[2011-08-10 16:57:11 | 000,040,392 | ---- | M] (G Data Software AG) -- C:\Windows\SysNative\drivers\GDBehave.sys
[2011-08-10 16:36:01 | 000,048,584 | ---- | M] (G DATA Software AG) -- C:\Windows\SysNative\drivers\gdwfpcd64.sys
[2011-08-10 11:39:10 | 000,524,288 | -HS- | M] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TMContainer00000000000000000002.regtrans-ms
[2011-08-10 11:39:10 | 000,524,288 | -HS- | M] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TMContainer00000000000000000001.regtrans-ms
[2011-08-10 11:39:10 | 000,065,536 | -HS- | M] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TM.blf
[2011-08-10 11:28:09 | 000,000,534 | ---- | M] () -- C:\Windows\win.ini
[2011-08-09 19:29:20 | 000,000,000 | ---- | M] () -- C:\Users\Marek\AppData\Local\{B32BB2A2-C963-48D3-89B0-62AEE262589F}
[2011-08-08 20:08:50 | 000,000,447 | ---- | M] () -- C:\Users\Public\Desktop\G DATA FotoOffice.lnk
[2011-08-08 19:11:30 | 000,524,288 | -HS- | M] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-08 19:11:30 | 000,065,536 | -HS- | M] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TM.blf
[2011-08-08 19:11:29 | 000,524,288 | -HS- | M] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-08 11:45:00 | 000,044,444 | ---- | M] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\2.pdf
[2011-08-08 11:26:03 | 001,206,438 | ---- | M] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\infor.nfo
[2011-07-25 18:50:00 | 000,030,371 | ---- | M] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\drukiWplat.pdf
[2011-07-22 19:40:27 | 000,287,320 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2011-07-22 07:42:23 | 002,303,488 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript9.dll
[2011-07-22 07:35:31 | 000,237,056 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\url.dll
[2011-07-22 07:33:41 | 000,818,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\jscript.dll
[2011-07-22 07:32:49 | 000,096,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\mshtmled.dll
[2011-07-22 07:30:55 | 000,248,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ieui.dll
[2011-07-22 04:54:43 | 001,797,632 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript9.dll
[2011-07-22 04:47:24 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\url.dll
[2011-07-22 04:45:41 | 000,716,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\jscript.dll
[2011-07-22 04:44:42 | 000,072,704 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\mshtmled.dll
[2011-07-22 04:43:07 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ieui.dll
[2011-07-16 07:41:50 | 000,362,496 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64win.dll
[2011-07-16 07:41:49 | 000,243,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64.dll
[2011-07-16 07:41:49 | 000,013,312 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\wow64cpu.dll
[2011-07-16 07:39:10 | 000,016,384 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\ntvdm64.dll
[2011-07-16 07:37:12 | 001,162,752 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\kernel32.dll
[2011-07-16 07:37:12 | 000,421,888 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysNative\KernelBase.dll
[2011-07-16 07:21:04 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-security-base-l1-1-0.dll
[2011-07-16 07:21:04 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-threadpool-l1-1-0.dll
[2011-07-16 07:21:04 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-07-16 07:21:04 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-synch-l1-1-0.dll
[2011-07-16 07:21:04 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-07-16 07:21:04 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-xstate-l1-1-0.dll
[2011-07-16 07:21:04 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-util-l1-1-0.dll
[2011-07-16 07:21:04 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-string-l1-1-0.dll
[2011-07-16 07:21:03 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processthreads-l1-1-0.dll
[2011-07-16 07:21:03 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localregistry-l1-1-0.dll
[2011-07-16 07:21:03 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-localization-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-misc-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-memory-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-profile-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-io-l1-1-0.dll
[2011-07-16 07:21:03 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-interlocked-l1-1-0.dll
[2011-07-16 07:21:02 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-file-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-heap-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-handle-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-fibers-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-delayload-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-debug-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-datetime-l1-1-0.dll
[2011-07-16 07:21:02 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysNative\api-ms-win-core-console-l1-1-0.dll
[2011-07-16 06:29:19 | 000,014,336 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\ntvdm64.dll
[2011-07-16 06:25:37 | 000,025,600 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\setup16.exe
[2011-07-16 06:24:23 | 000,005,120 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\wow32.dll
[2011-07-16 06:15:46 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
[2011-07-16 06:15:46 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
[2011-07-16 06:15:46 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
[2011-07-16 06:15:45 | 000,005,120 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
[2011-07-16 06:15:45 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
[2011-07-16 06:15:45 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
[2011-07-16 06:15:45 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
[2011-07-16 06:15:45 | 000,004,096 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-debug-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-datetime-l1-1-0.dll
[2011-07-16 06:15:45 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-console-l1-1-0.dll
[2011-07-16 04:21:44 | 000,007,680 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\instnm.exe
[2011-07-16 04:21:41 | 000,002,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\user.exe
[2011-07-16 04:17:19 | 000,006,144 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
[2011-07-16 04:17:19 | 000,004,608 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
[2011-07-16 04:17:19 | 000,003,584 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
[2011-07-16 04:17:19 | 000,003,072 | -H-- | M] (Microsoft Corporation) -- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
 
[color=#E56717]========== Files Created - No Company Name ==========[/color]
 
[2011-08-10 11:39:09 | 001,386,814 | -H-- | C] () -- C:\Users\Marek\AppData\Local\IconCache.db
[2011-08-10 10:21:34 | 000,524,288 | -HS- | C] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TMContainer00000000000000000002.regtrans-ms
[2011-08-10 10:21:34 | 000,524,288 | -HS- | C] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TMContainer00000000000000000001.regtrans-ms
[2011-08-10 10:21:34 | 000,065,536 | -HS- | C] () -- C:\Users\Marek\ntuser.dat{30e3c609-c329-11e0-9595-fa24af4ee454}.TM.blf
[2011-08-09 19:29:20 | 000,000,000 | ---- | C] () -- C:\Users\Marek\AppData\Local\{B32BB2A2-C963-48D3-89B0-62AEE262589F}
[2011-08-08 20:10:00 | 000,171,967 | ---- | C] () -- C:\Windows\SysWow64\Odbcjet.hlp
[2011-08-08 20:10:00 | 000,007,348 | ---- | C] () -- C:\Windows\SysWow64\Odbcjet.cnt
[2011-08-08 20:09:57 | 000,089,216 | ---- | C] () -- C:\Windows\SysWow64\drivers\FO_PAnt.sys
[2011-08-08 20:08:50 | 000,000,447 | ---- | C] () -- C:\Users\Public\Desktop\G DATA FotoOffice.lnk
[2011-08-08 18:17:15 | 000,524,288 | -HS- | C] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-08 18:17:15 | 000,524,288 | -HS- | C] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-08 18:17:15 | 000,065,536 | -HS- | C] () -- C:\Users\Marek\NTUSER.DAT{d51e0fee-c1d9-11e0-afcb-0019db68be01}.TM.blf
[2011-08-08 18:17:02 | 3220,713,472 | -HS- | C] () -- C:\hiberfil.sys
[2011-08-08 11:45:00 | 000,044,444 | ---- | C] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\2.pdf
[2011-08-08 11:26:03 | 001,206,438 | ---- | C] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\infor.nfo
[2011-07-25 18:50:00 | 000,030,371 | ---- | C] () -- I:\Nasze dokumenty\MOJE DOKUMENTY\drukiWplat.pdf
[2011-06-03 15:35:37 | 000,027,204 | ---- | C] () -- C:\Users\Marek\AppData\Roaming\Osobista książka adresowa.ADR
[2011-05-20 22:35:28 | 000,304,744 | ---- | C] () -- C:\Windows\SysWow64\nvStreaming.exe
[2011-04-20 20:06:28 | 000,229,744 | ---- | C] () -- C:\Windows\hpoins19.dat
[2011-04-20 20:06:28 | 000,013,898 | ---- | C] () -- C:\Windows\hpomdl19.dat
[2011-04-17 10:08:19 | 000,000,017 | ---- | C] () -- C:\Users\Marek\AppData\Local\resmon.resmoncfg
[2011-04-16 23:49:13 | 000,063,472 | ---- | C] () -- C:\Users\Marek\AppData\Local\GDIPFONTCACHEV1.DAT
[2011-04-16 21:46:31 | 000,000,412 | ---- | C] () -- C:\Windows\ODBC.INI
[2010-06-21 05:38:36 | 000,007,282 | ---- | C] () -- C:\Windows\cadx2.ini
[2009-07-14 07:38:36 | 000,067,584 | --S- | C] () -- C:\Windows\bootstat.dat
[2009-07-14 04:35:51 | 000,000,741 | ---- | C] () -- C:\Windows\SysWow64\NOISE.DAT
[2009-07-14 04:35:42 | 000,001,405 | ---- | C] () -- C:\Windows\msdfmap.ini
[2009-07-14 04:34:57 | 000,000,534 | ---- | C] () -- C:\Windows\win.ini
[2009-07-14 04:34:57 | 000,000,219 | ---- | C] () -- C:\Windows\system.ini
[2009-07-14 04:34:42 | 000,215,943 | ---- | C] () -- C:\Windows\SysWow64\dssec.dat
[2009-07-14 02:10:29 | 000,043,131 | ---- | C] () -- C:\Windows\mib.bin
[2009-07-14 01:42:10 | 000,064,000 | ---- | C] () -- C:\Windows\SysWow64\BWContextHandler.dll
[2009-07-13 23:03:59 | 000,364,544 | ---- | C] () -- C:\Windows\SysWow64\msjetoledb40.dll
[2009-06-10 23:26:10 | 000,673,088 | ---- | C] () -- C:\Windows\SysWow64\mlang.dat
[2003-04-08 11:40:22 | 000,005,679 | ---- | C] () -- C:\Windows\SysWow64\OUTLPERF.INI
 
[color=#E56717]========== LOP Check ==========[/color]
 
[2011-06-26 17:53:49 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Gadu-Gadu 10
[2011-05-19 11:20:21 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\Nokia
[2011-04-17 11:31:16 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\OpenFM
[2011-05-19 11:34:51 | 000,000,000 | ---D | M] -- C:\Users\Marek\AppData\Roaming\PC Suite
[2011-07-06 09:29:06 | 000,032,592 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
 
[color=#E56717]========== Purity Check ==========[/color]
 
 
 
[color=#E56717]========== Files - Unicode (All) ==========[/color]
[2011-08-09 09:04:26 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 09:04:26 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 09:04:26 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 09:04:26 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 09:04:26 | 000,262,144 | ---- | M] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀깢
[2011-08-09 09:04:26 | 000,262,144 | ---- | C] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀깢
[2011-08-09 09:04:26 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 09:04:26 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀깢{1c9a3a89-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 09:04:26 | 000,005,120 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀깢.LOG1
[2011-08-09 09:04:26 | 000,005,120 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀깢.LOG1
[2011-08-09 09:04:26 | 000,000,000 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀깢.LOG2
[2011-08-09 09:04:26 | 000,000,000 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀깢.LOG2
[2011-08-09 08:44:03 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 08:44:03 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 08:44:03 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 08:44:03 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 08:44:03 | 000,262,144 | ---- | M] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀ꝝ
[2011-08-09 08:44:03 | 000,262,144 | ---- | C] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀ꝝ
[2011-08-09 08:44:03 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 08:44:03 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀ꝝ{1c9a3a84-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 08:44:03 | 000,005,120 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀ꝝ.LOG1
[2011-08-09 08:44:03 | 000,005,120 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀ꝝ.LOG1
[2011-08-09 08:44:03 | 000,000,000 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀ꝝ.LOG2
[2011-08-09 08:44:03 | 000,000,000 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀ꝝ.LOG2
[2011-08-09 08:00:27 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 08:00:27 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 08:00:27 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-09 08:00:27 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-09 08:00:27 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 08:00:27 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\?G??{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\洴G綀껺{1c9a3a2a-c24b-11e0-a71a-0019db68be01}.TM.blf
[2011-08-09 08:00:26 | 000,262,144 | ---- | M] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀껺
[2011-08-09 08:00:26 | 000,262,144 | ---- | C] ()(C:\Windows\SysWow64\?G??) -- C:\Windows\SysWow64\洴G綀껺
[2011-08-09 08:00:26 | 000,005,120 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀껺.LOG1
[2011-08-09 08:00:26 | 000,005,120 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG1) -- C:\Windows\SysWow64\洴G綀껺.LOG1
[2011-08-09 08:00:26 | 000,000,000 | -HS- | M] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀껺.LOG2
[2011-08-09 08:00:26 | 000,000,000 | -HS- | C] ()(C:\Windows\SysWow64\?G??.LOG2) -- C:\Windows\SysWow64\洴G綀껺.LOG2
[2011-08-08 18:41:36 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-08 18:41:36 | 000,065,536 | -HS- | M] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TM.blf
[2011-08-08 18:41:35 | 000,524,288 | -HS- | M] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-08 18:41:10 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000002.regtrans-ms
[2011-08-08 18:41:10 | 000,524,288 | -HS- | C] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TMContainer00000000000000000001.regtrans-ms
[2011-08-08 18:41:10 | 000,262,144 | ---- | M] ()(C:\Windows\SysWow64\???q) -- C:\Windows\SysWow64\湗瞷퉘q
[2011-08-08 18:41:10 | 000,262,144 | ---- | C] ()(C:\Windows\SysWow64\???q) -- C:\Windows\SysWow64\湗瞷퉘q
[2011-08-08 18:41:10 | 000,065,536 | -HS- | C] ()(C:\Windows\SysWow64\???q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TM.blf) -- C:\Windows\SysWow64\湗瞷퉘q{d51e1037-c1d9-11e0-afcb-0019db68be01}.TM.blf
[2011-08-08 18:41:10 | 000,005,120 | -HS- | M] ()(C:\Windows\SysWow64\???q.LOG1) -- C:\Windows\SysWow64\湗瞷퉘q.LOG1
[2011-08-08 18:41:10 | 000,005,120 | -HS- | C] ()(C:\Windows\SysWow64\???q.LOG1) -- C:\Windows\SysWow64\湗瞷퉘q.LOG1
[2011-08-08 18:41:10 | 000,000,000 | -HS- | M] ()(C:\Windows\SysWow64\???q.LOG2) -- C:\Windows\SysWow64\湗瞷퉘q.LOG2
[2011-08-08 18:41:10 | 000,000,000 | -HS- | C] ()(C:\Windows\SysWow64\???q.LOG2) -- C:\Windows\SysWow64\湗瞷퉘q.LOG2

< End of report >