BSOD po aktualizacji W7x64

[hocum]

Witam,

Laptop ma dwa dyski SSD 256MB i HD 500MB.

Na 256 zainstalowane tylko W7x64Pro.

Na 500 zainstalowane W8x64Ent., Centos i BackTrack

Główny bootloader to Grub.

 

Problem dotyczy W7x64Pro

po aktualizacji mam BSOD kod c000021a.

 

Próbowałem następujących kroków (te są bez efektów):

- tryb awaryjny

- Przywróć ostatnią dobra konfg.

Następnie boot z dysku inst. :

- Automatyczna próba naprawy

i system próbował zaraportować

- przywracanie systemu (nie widzi żadnego punktu przywracania)

- z CMD próbowałem "SFC /scannow" itd...

i tak w kółko.

 

Zadzwoniłem do pomocy Microsoftu i nie podał nic nowego.

jedyne zalecenie z ich strony to reinstalacja systemu.

[picasso]

Ten BSOD "The Verification of a KnownDLL failed" już był na forum rozwiązywany, dla formalności pokaże link: KLIK. U Ciebie trzeba dopiero wytypować jakie pliki są uszkodzone. Wstępnie zrób log z FRST.

 

 

  Cytat

- z CMD probowałem "SFC /scannow" itd...

 

Ta komenda ma złą postać. To środowisko zewnętrzne. W takim chodzi inna komenda:

 

sfc /scannow /offbootdir=X:\ /offwindir=Y:\windows

 

X = partycja z plikami rozruchowymi, Y = partycja z Windows. X i Y nie zawsze są tożsame.

 

Ale to zostaw tu na razie, bo i tak "oczekująca naprawa" wisi.

 

 

.

[hocum]

Oczywiscie polecenie sfc mialo postac taka jak podajesz

 

skan z frst:

 

 

  Pokaż ukrytą zawartość

 

Scan result of Farbar Recovery Scan Tool (FRST) (x64) Version: 17-02-2013 01

Ran by SYSTEM at 19-02-2013 22:31:50

Running from I:\

Windows 7 Professional Service Pack 1 (X64) OS Language: Polish

The current controlset is ControlSet001

 

==================== Registry (Whitelisted) ===================

 

HKLM\...\Run: [Apoint] C:\Program Files\DellTPad\Apoint.exe [626552 2012-03-21] (Alps Electric Co., Ltd.)

HKLM\...\Run: [sysTrayApp] C:\Program Files\IDT\WDM\sttray64.exe [525312 2011-01-07] (IDT, Inc.)

HKLM\...\Run: [NtrigApplet] C:\Program Files\N-trig\DuoSense Control Apps\NtrigApplet.exe [2575872 2011-10-04] (N-trig LLC)

HKLM\...\Run: [EvtMgr6] C:\Program Files\Logitech\SetPointP\SetPoint.exe /launchGaming [1744152 2011-10-07] (Logitech, Inc.)

HKLM\...\Run: [DFEPApplication] C:\Program Files\Dell\Feature Enhancement Pack\DFEPApplication.exe [7077432 2012-08-15] (Dell Inc.)

HKLM\...\Run: [FreeFallProtection] C:\Program Files (x86)\STMicroelectronics\AccelerometerP11\FF_Protection.exe [686704 2011-07-25] ()

HKLM\...\Run: [itype] "c:\Program Files\Microsoft IntelliType Pro\itype.exe" [1873256 2011-08-10] (Microsoft Corporation)

HKLM\...\Run: [intelliPoint] "c:\Program Files\Microsoft IntelliPoint\ipoint.exe" [2417032 2011-08-01] (Microsoft Corporation)

HKLM\...\Run: [TdmNotify] C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Trusted Drive Manager\TdmNotify.exe [381296 2011-12-08] (Wave Systems Corp.)

HKLM\...\Run: [intelPROSet] "C:\Program Files\Common Files\Intel\WirelessCommon\iFrmewrk.exe" /tf Intel PROSet/Wireless [4756240 2012-03-29] (Intel® Corporation)

HKLM-x32\...\Run: [iAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe [283160 2010-11-06] (Intel Corporation)

HKLM-x32\...\Run: [iMSS] "C:\Program Files (x86)\Intel\Intel® Management Engine Components\IMSS\PIconStartup.exe" [112408 2012-01-19] (Intel Corporation)

HKLM-x32\...\Run: [] [x]

HKLM-x32\...\Run: [avast] "C:\Program Files\AVAST Software\Avast\avastUI.exe" /nogui [4297136 2012-10-30] (AVAST Software)

HKLM-x32\...\Run: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [113288 2010-11-17] (Renesas Electronics Corporation)

HKLM-x32\...\Run: [Dell Webcam Central] "C:\Program Files (x86)\Dell Webcam\Dell Webcam Central\WebcamDell2.exe" /mode2 [462974 2011-12-16] (Creative Technology Ltd)

HKLM-x32\...\Run: [startCCC] "C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe" MSRun [642728 2012-09-28] (Advanced Micro Devices, Inc.)

HKU\Anetka\...\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /nosplash /minimized [18705664 2013-01-08] (Skype Technologies S.A.)

HKU\Anetka\...\Run: [OfficeSyncProcess] "C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE" [911160 2012-01-18] (Microsoft Corporation)

HKU\Anetka\...\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [393216 2012-09-28] (AMD)

HKU\Anetka\...\RunOnce: [Application Restart #0] C:\Program Files\Windows Sidebar\sidebar.exe [1475584 2010-11-21] (Microsoft Corporation)

HKU\Anetka\...\RunOnce: [Application Restart #1] C:\Program Files\Microsoft Office\Office14\MSOSYNC.EXE [911160 2012-01-18] (Microsoft Corporation)

HKU\Anetka\...\RunOnce: [Application Restart #2] C:\Program Files\Common Files\Microsoft Shared\ink\InputPersonalization.exe "C:\Program Files\Common Files\Microsoft Shared\Ink\InputPersonalization.exe" [383488 2009-07-14] (Microsoft Corporation)

HKU\Hoc\...\Run: [skyDrive] "C:\Users\Hoc\AppData\Local\Microsoft\SkyDrive\SkyDrive.exe" /background [255992 2012-11-16] (Microsoft Corporation)

HKU\Hoc\...\Run: [Gadu-Gadu] "C:\Program Files (x86)\Gadu-Gadu\gg.exe" /tray [2131392 2008-02-28] (Gadu-Gadu S.A.)

HKU\Hoc\...\Run: [AdobeBridge] [x]

HKU\Hoc\...\Run: [skype] "C:\Program Files (x86)\Skype\Phone\Skype.exe" /minimized /regrun [18705664 2013-01-08] (Skype Technologies S.A.)

HKU\Hoc\...\Run: [DAEMON Tools Lite] "C:\Program Files (x86)\DAEMON Tools Lite\DTLite.exe" -autorun [3674320 2013-01-08] (DT Soft Ltd)

HKU\Hoc\...\Run: [] C:\Program Files (x86)\Samsung\Kies\External\FirmwareUpdate\KiesPDLR.exe [844296 2012-12-20] (Samsung)

HKU\Hoc\...\Run: [HydraVisionDesktopManager] "C:\Program Files (x86)\ATI Technologies\HydraVision\HydraDM.exe" [393216 2012-09-28] (AMD)

Winlogon\Notify\LBTWlgn: c:\program files\common files\logishrd\bluetooth\LBTWlgn.dll (Logitech, Inc.)

Winlogon\Notify\spba: C:\Program Files\Common Files\SPBA\homefus2.dll (UPEK Inc.)

Tcpip\Parameters: [DhcpNameServer] 192.168.1.1

Lsa: [Authentication Packages] msv1_0 wvauth

Startup: C:\ProgramData\Start Menu\Programs\Startup\Bluetooth.lnk

ShortcutTarget: Bluetooth.lnk -> X:\Program Files\WIDCOMM\Bluetooth Software\BTTray.exe (No File)

Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Smart Settings.lnk

ShortcutTarget: Smart Settings.lnk -> X:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe (No File)

Startup: C:\Users\Default\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Touch Panel.lnk

ShortcutTarget: Touch Panel.lnk -> X:\Program Files\Dell\Feature Enhancement Pack\TouchPanel.exe (No File)

Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Smart Settings.lnk

ShortcutTarget: Smart Settings.lnk -> X:\Program Files\Dell\Feature Enhancement Pack\SmartSettings.exe (No File)

Startup: C:\Users\Default User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\Touch Panel.lnk

ShortcutTarget: Touch Panel.lnk -> X:\Program Files\Dell\Feature Enhancement Pack\TouchPanel.exe (No File)

 

==================== Services (Whitelisted) ===================

 

4 AcrSch2Svc; "C:\Program Files (x86)\Common Files\Acronis\Schedule2\schedul2.exe" [1126888 2012-08-23] (Acronis)

4 afcdpsrv; C:\Program Files (x86)\Common Files\Acronis\CDP\afcdpsrv.exe [3696632 2013-01-23] (Acronis)

2 avast! Antivirus; "C:\Program Files\AVAST Software\Avast\AvastSvc.exe" [44808 2012-10-30] (AVAST Software)

2 dcevt64; "C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_eventmgr64.exe" [155192 2012-09-19] (Dell Inc.)

2 dcstor64; "C:\Program Files\Dell\SysMgt\dataeng\bin\dsm_sa_datamgr64.exe" [219192 2012-09-19] (Dell Inc.)

2 DFEPService; "C:\Program Files\Dell\Feature Enhancement Pack\DFEPService.exe" [2280504 2012-08-15] (Dell Inc.)

2 dsiasrv; "C:\Program Files (x86)\Dell\SysMgt\dsia\bin\DsiaSrv32.exe" [149400 2011-11-02] (Dell Inc.)

4 EmbassyService; "C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\EMBASSY Client Core\EmbassyServer.exe" [218504 2012-01-17] ()

2 O2SDIOAssist; C:\Windows\SysWOW64\srvany.exe [8192 2003-04-19] ()

2 PnkBstrA; C:\Windows\SysWow64\PnkBstrA.exe [76888 2013-01-13] ()

2 rpcnetp; C:\Windows\System32\rpcnetp.exe [17920 2013-02-19] ()

2 rpcnetp; C:\Windows\SysWow64\rpcnetp.exe [17920 2013-02-19] ()

4 syncagentsrv; "C:\Program Files (x86)\Common Files\Acronis\SyncAgent\syncagentsrv.exe" [7017888 2012-08-18] (Acronis)

2 tcsd_win32.exe; "C:\Program Files (x86)\NTRU Cryptosystems\NTRU TCG Software Stack\bin\tcsd_win32.exe" [1637888 2011-10-08] ()

4 TeamViewer8; "C:\Program Files (x86)\TeamViewer\Version8\TeamViewer_Service.exe" [3467768 2012-12-14] (TeamViewer GmbH)

4 Tenable Nessus; "C:\Program Files\Tenable\Nessus\nessus-service.exe" [11264 2012-02-17] (Tenable Network Security, Inc)

4 vmware-converter-agent; "C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter-a.exe" -s "C:\ProgramData\VMware\VMware vCenter Converter Standalone\converter-agent.xml" [6285 2013-01-23] ()

4 vmware-converter-server; "C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe" -s "C:\ProgramData\VMware\VMware vCenter Converter Standalone\converter-server.xml" [4291 2013-01-23] ()

2 vmware-converter-worker; "C:\Program Files (x86)\VMware\VMware vCenter Converter Standalone\vmware-converter.exe" -s "C:\ProgramData\VMware\VMware vCenter Converter Standalone\converter-worker.xml" [6897 2013-01-23] ()

2 VMwareHostd; "C:\Program Files (x86)\VMware\VMware Workstation\vmware-hostd.exe" -u "C:\ProgramData\VMware\hostd\config.xml" [31995 2011-11-22] ()

2 Wave Authentication Manager Service; C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Authentication Manager\WaveAMService.exe [1679872 2012-01-05] (Wave Systems Corp.)

3 WvPCR; "C:\Program Files\Dell\Dell Data Protection\Access\Advanced\Wave\Common\WvPCR.exe" [198144 2012-01-16] (Wave Systems Corp.)

2 ZeroConfigService; "C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe" [2669840 2012-03-29] (Intel® Corporation)

3 rpcapd; "C:\Program Files (x86)\WinPcap\rpcapd.exe" -d -f "C:\Program Files (x86)\WinPcap\rpcapd.ini" [x]

 

==================== Drivers (Whitelisted) =====================

 

3 61883; C:\Windows\System32\Drivers\61883.sys [60288 2009-07-14] (Microsoft Corporation)

2 aswFsBlk; C:\Windows\System32\Drivers\aswFsBlk.sys [25232 2012-10-30] (AVAST Software)

2 aswMonFlt; C:\Windows\System32\Drivers\aswMonFlt.sys [71600 2012-10-30] (AVAST Software)

1 aswRdr; C:\Windows\System32\Drivers\aswRdr.sys [42328 2011-11-28] (AVAST Software)

1 aswSnx; C:\Windows\System32\Drivers\aswSnx.sys [984144 2012-10-30] (AVAST Software)

1 aswSP; C:\Windows\System32\Drivers\aswSP.sys [370288 2012-10-30] (AVAST Software)

1 aswTdi; C:\Windows\System32\Drivers\aswTdi.sys [59728 2012-10-30] (AVAST Software)

3 AVerAF35; C:\Windows\System32\Drivers\HPAF35.sys [511104 2009-10-19] (Hewlett-Packard)

3 bmdrvr; C:\Windows\SysWow64\Drivers\bmdrvr.sys [74352 2011-03-15] (VMware, Inc.)

3 CVPNDRVA; C:\Windows\System32\Drivers\CVPNDRVA.sys [306536 2011-03-04] ()

3 dcdbas; C:\Windows\System32\DRIVERS\dcdbas64.sys [39016 2012-08-16] (Dell Inc.)

1 dtsoftbus01; C:\Windows\System32\Drivers\dtsoftbus01.sys [283200 2013-01-26] (DT Soft Ltd)

3 HPIR; C:\Windows\System32\Drivers\HPIR.sys [93184 2009-11-16] (Hewlett-Packard)

3 NessusMp60; C:\Windows\System32\Drivers\NessusMp60.sys [44864 2012-02-01] (Tenable Network Security, Inc.)

3 NessusSp60; C:\Windows\System32\Drivers\NessusSp60.sys [44352 2012-02-01] (Tenable Network Security, Inc.)

3 NETwNs64; C:\Windows\System32\DRIVERS\Netwsw00.sys [11471872 2012-03-12] (Intel Corporation)

2 NPF; C:\Windows\System32\Drivers\NPF.sys [35344 2010-06-25] (CACE Technologies, Inc.)

3 NtrigDigitizerUSBLowerFilter; C:\Windows\System32\Drivers\NtrigDigitizerUSBLowerFilter.sys [13776 2011-01-22] (Windows ® Codename Longhorn DDK provider)

3 pwdrvio; \??\C:\Windows\system32\pwdrvio.sys [19936 2011-09-02] ()

3 pwdspio; \??\C:\Windows\system32\pwdspio.sys [13280 2011-09-02] ()

0 sptd; C:\Windows\System32\Drivers\sptd.sys [564824 2013-01-26] (Duplex Secure Ltd.)

0 tib_mounter; C:\Windows\System32\Drivers\tib_mounter.sys [1093256 2013-01-23] (Acronis)

0 vidsflt; C:\Windows\System32\Drivers\vidsflt.sys [166024 2013-01-23] (Acronis)

2 VMparport; C:\Windows\System32\Drivers\VMparport.sys [31344 2012-04-30] (VMware, Inc.)

3 ALSysIO; \??\C:\Users\Hoc\AppData\Local\Temp\ALSysIO64.sys [x]

1 ArcSec; C:\Windows\System32\drivers\ArcSec.sys [x]

3 cpuz135; \??\C:\Windows\TEMP\cpuz135\cpuz135_x64.sys [x]

3 dgderdrv; C:\Windows\System32\drivers\dgderdrv.sys [x]

3 hwdatacard; C:\Windows\System32\DRIVERS\ewusbmdm.sys [x]

3 WinRing0_1_2_0; \??\C:\Users\Hoc\AppData\Local\Temp\tmp79A1.tmp [x]

 

==================== NetSvcs (Whitelisted) ====================

 

 

==================== One Month Created Files and Folders ========

 

2013-02-14 14:00 - 2013-01-09 02:48 - 17812992 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.dll

2013-02-14 14:00 - 2013-01-09 02:22 - 10925568 ____A (Microsoft Corporation) C:\Windows\System32\ieframe.dll

2013-02-14 14:00 - 2013-01-09 02:19 - 02312704 ____A (Microsoft Corporation) C:\Windows\System32\jscript9.dll

2013-02-14 14:00 - 2013-01-09 02:12 - 01392128 ____A (Microsoft Corporation) C:\Windows\System32\wininet.dll

2013-02-14 14:00 - 2013-01-09 02:12 - 01346048 ____A C:\Windows\System32\urlmon.dll

2013-02-14 14:00 - 2013-01-09 02:11 - 01494528 ____A (Microsoft Corporation) C:\Windows\System32\inetcpl.cpl

2013-02-14 14:00 - 2013-01-09 02:10 - 00237056 ____A (Microsoft Corporation) C:\Windows\System32\url.dll

2013-02-14 14:00 - 2013-01-09 02:09 - 00085504 ____A (Microsoft Corporation) C:\Windows\System32\jsproxy.dll

2013-02-14 14:00 - 2013-01-09 02:07 - 00816640 ____A (Microsoft Corporation) C:\Windows\System32\jscript.dll

2013-02-14 14:00 - 2013-01-09 02:07 - 00599040 ____A (Microsoft Corporation) C:\Windows\System32\vbscript.dll

2013-02-14 14:00 - 2013-01-09 02:07 - 00173056 ____A C:\Windows\System32\ieUnatt.exe

2013-02-14 14:00 - 2013-01-09 02:06 - 00729088 ____A (Microsoft Corporation) C:\Windows\System32\msfeeds.dll

2013-02-14 14:00 - 2013-01-09 02:05 - 02147840 ____A (Microsoft Corporation) C:\Windows\System32\iertutil.dll

2013-02-14 14:00 - 2013-01-09 02:04 - 02382848 ____A (Microsoft Corporation) C:\Windows\System32\mshtml.tlb

2013-02-14 14:00 - 2013-01-09 02:04 - 00096768 ____A (Microsoft Corporation) C:\Windows\System32\mshtmled.dll

2013-02-14 14:00 - 2013-01-09 02:00 - 00248320 ____A (Microsoft Corporation) C:\Windows\System32\ieui.dll

2013-02-14 14:00 - 2013-01-08 23:23 - 12321280 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.dll

2013-02-14 14:00 - 2013-01-08 23:11 - 01800704 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript9.dll

2013-02-14 14:00 - 2013-01-08 23:09 - 09738240 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieframe.dll

2013-02-14 14:00 - 2013-01-08 23:03 - 01427968 ____A C:\Windows\SysWOW64\inetcpl.cpl

2013-02-14 14:00 - 2013-01-08 23:03 - 01129472 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wininet.dll

2013-02-14 14:00 - 2013-01-08 23:03 - 01103872 ____A C:\Windows\SysWOW64\urlmon.dll

2013-02-14 14:00 - 2013-01-08 23:01 - 00231936 ____A C:\Windows\SysWOW64\url.dll

2013-02-14 14:00 - 2013-01-08 23:00 - 00065024 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jsproxy.dll

2013-02-14 14:00 - 2013-01-08 22:59 - 00142848 ____A C:\Windows\SysWOW64\ieUnatt.exe

2013-02-14 14:00 - 2013-01-08 22:58 - 00717824 ____A (Microsoft Corporation) C:\Windows\SysWOW64\jscript.dll

2013-02-14 14:00 - 2013-01-08 22:58 - 00420864 ____A C:\Windows\SysWOW64\vbscript.dll

2013-02-14 14:00 - 2013-01-08 22:57 - 00607744 ____A (Microsoft Corporation) C:\Windows\SysWOW64\msfeeds.dll

2013-02-14 14:00 - 2013-01-08 22:56 - 02382848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtml.tlb

2013-02-14 14:00 - 2013-01-08 22:56 - 01796096 ____A (Microsoft Corporation) C:\Windows\SysWOW64\iertutil.dll

2013-02-14 14:00 - 2013-01-08 22:56 - 00073216 ____A (Microsoft Corporation) C:\Windows\SysWOW64\mshtmled.dll

2013-02-14 14:00 - 2013-01-08 22:53 - 00176640 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ieui.dll

2013-02-14 08:41 - 2013-01-05 06:53 - 05553512 ____A (Microsoft Corporation) C:\Windows\System32\ntoskrnl.exe

2013-02-14 08:41 - 2013-01-05 06:00 - 03967848 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntkrnlpa.exe

2013-02-14 08:41 - 2013-01-05 06:00 - 03913064 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntoskrnl.exe

2013-02-14 08:41 - 2013-01-04 06:46 - 00215040 ____A (Microsoft Corporation) C:\Windows\System32\winsrv.dll

2013-02-14 08:41 - 2013-01-04 05:51 - 00005120 ____A (Microsoft Corporation) C:\Windows\SysWOW64\wow32.dll

2013-02-14 08:41 - 2013-01-04 04:26 - 03153408 ____A (Microsoft Corporation) C:\Windows\System32\win32k.sys

2013-02-14 08:41 - 2013-01-04 03:47 - 00025600 ____A (Microsoft Corporation) C:\Windows\SysWOW64\setup16.exe

2013-02-14 08:41 - 2013-01-04 03:47 - 00014336 ____A (Microsoft Corporation) C:\Windows\SysWOW64\ntvdm64.dll

2013-02-14 08:41 - 2013-01-04 03:47 - 00007680 ____A (Microsoft Corporation) C:\Windows\SysWOW64\instnm.exe

2013-02-14 08:41 - 2013-01-04 03:47 - 00002048 ____A (Microsoft Corporation) C:\Windows\SysWOW64\user.exe

2013-02-14 08:41 - 2013-01-03 07:00 - 01913192 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\tcpip.sys

2013-02-14 08:41 - 2013-01-03 07:00 - 00288088 ____A (Microsoft Corporation) C:\Windows\System32\Drivers\FWPKCLNT.SYS

2013-02-13 14:18 - 2013-02-13 14:19 - 00000012 ____A C:\Users\Hoc\Desktop\samsung router.txt

2013-02-10 01:26 - 2013-02-10 13:30 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-02-08 17:05 - 2013-02-08 17:05 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Rovio

2013-02-07 20:17 - 2013-02-07 20:17 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5

2013-02-07 20:16 - 2013-02-11 19:27 - 00000000 ____D C:\Program Files (x86)\MKV2AC3

2013-02-07 20:16 - 2013-02-07 20:16 - 00002973 ____A C:\Users\Hoc\Desktop\MKV2AC3.lnk

2013-02-07 20:14 - 2013-02-07 20:15 - 18922247 ____A C:\Users\Hoc\Downloads\mkv2ac3_64bits_ver133.zip

2013-02-07 20:14 - 2013-02-07 20:14 - 01582639 ____A C:\Users\Hoc\Downloads\AudioConverter.zip

2013-02-07 20:10 - 2013-02-07 20:10 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\mkvtoolnix

2013-02-07 20:07 - 2013-02-07 20:07 - 00000000 ____D C:\Users\Public\Documents\Adobe

2013-02-07 20:03 - 2013-02-07 20:06 - 00000000 ____D C:\Program Files (x86)\MKVToolNix

2013-02-07 20:03 - 2013-02-07 20:03 - 00001828 ____A C:\Users\Public\Desktop\mkvmerge GUI.lnk

2013-02-07 20:02 - 2013-02-07 20:02 - 00719218 ____A C:\Users\Hoc\Downloads\MKVExtractGUI-2.2.2.9.zip

2013-02-07 20:02 - 2013-02-07 20:02 - 00001220 ____A C:\Users\Public\Desktop\Angry Birds Star Wars.lnk

2013-02-07 20:02 - 2013-02-07 20:02 - 00000000 ____D C:\Users\Hoc\AppData\Local\Google

2013-02-07 20:02 - 2013-02-07 20:02 - 00000000 ____D C:\Program Files (x86)\Rovio

2013-02-07 19:59 - 2013-02-07 20:00 - 08509471 ____A (Moritz Bunkus) C:\Users\Hoc\Downloads\mkvtoolnix-unicode-6.0.0-setup.exe

2013-02-03 23:33 - 2012-09-20 05:35 - 00203104 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudmdm.sys

2013-02-03 23:33 - 2012-09-20 05:35 - 00102368 ____A (DEVGURU Co., LTD.(www.devguru.co.kr)) C:\Windows\System32\Drivers\ssudbus.sys

2013-02-03 21:27 - 2013-02-03 21:27 - 00000000 ____D C:\Users\Public\Documents\CrashDump

2013-02-03 12:07 - 2013-02-03 12:08 - 00000000 ____D C:\Users\Hoc\Downloads\Tapety

2013-02-02 20:06 - 2013-02-02 20:06 - 00001495 ____A C:\Users\Anetka\.recently-used.xbel

2013-02-02 20:02 - 2013-02-02 20:02 - 00000000 ____D C:\Users\Anetka\AppData\Local\Macromedia

2013-02-02 20:01 - 2013-02-02 20:01 - 00000000 ____D C:\Users\Anetka\AppData\Roaming\Mozilla

2013-02-02 20:01 - 2013-02-02 20:01 - 00000000 ____D C:\Users\Anetka\AppData\Local\Mozilla

2013-01-28 15:06 - 2013-01-28 15:06 - 00000000 ____D C:\Users\Anetka\Documents\Dell WebCam Central

2013-01-26 15:38 - 2013-01-26 15:38 - 00000867 ____A C:\Users\Hoc\.recently-used.xbel

2013-01-26 13:13 - 2013-01-26 13:13 - 00283200 ____A (DT Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys

2013-01-26 11:55 - 2013-01-26 13:13 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite

2013-01-26 01:10 - 2013-01-26 01:10 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_WinUsb_01007.Wdf

2013-01-25 23:24 - 2013-01-26 02:04 - 00000000 ____D C:\Samsung Galaxy S3 ToolKit

2013-01-25 23:24 - 2013-01-25 23:25 - 00001802 ____A C:\Users\Hoc\Desktop\Samsung GS3 ToolKit.lnk

2013-01-25 22:30 - 2012-06-27 09:37 - 01490656 ____A (Microsoft Corporation) C:\Windows\System32\WdfCoInstaller01007.dll

2013-01-25 22:30 - 2012-06-27 09:37 - 00708168 ____A (Microsoft Corporation) C:\Windows\System32\WinUSBCoInstaller.dll

2013-01-25 22:29 - 2013-01-26 01:51 - 00000000 ____D C:\Program Files\SAMSUNG

2013-01-25 22:29 - 2013-01-25 22:29 - 00000000 ____D C:\Users\Hoc\Desktop\SAMSUNG_USB_Driver_for_Mobile_Phones

2013-01-25 14:29 - 2013-01-25 15:26 - 00000000 ____D C:\Program Files\IQ Publishing

2013-01-25 14:29 - 2013-01-25 15:26 - 00000000 ____A C:\Users\Hoc\Desktop\Miś Hubert

2013-01-25 14:29 - 2013-01-25 15:26 - 00000000 ____A C:\Users\Anetka\Desktop\Miś Hubert

2013-01-24 09:44 - 2013-01-24 09:44 - 00000000 ____D C:\Users\Anetka\.thumbnails

2013-01-24 09:43 - 2013-02-02 20:06 - 00000000 ____D C:\Users\Anetka\.gimp-2.6

2013-01-24 09:43 - 2013-01-24 09:43 - 00000000 ____D C:\Users\Anetka\Documents\gegl-0.1

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\Documents\samsung

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Samsung

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\AppData\Local\Samsung

2013-01-23 21:59 - 2013-01-23 21:59 - 00000000 ____D C:\Program Files (x86)\MyFree Codec

2013-01-23 21:31 - 2013-01-26 01:50 - 00000000 ____D C:\Program Files (x86)\Samsung

2013-01-23 21:31 - 2013-01-23 21:59 - 00000000 ____D C:\ProgramData\Samsung

2013-01-23 21:31 - 2012-12-18 10:06 - 04659712 ____A (Dmitry Streblechenko) C:\Windows\SysWOW64\Redemption.dll

2013-01-23 21:31 - 2012-12-18 10:06 - 00821824 ____A (Devguru Co., Ltd.) C:\Windows\SysWOW64\dgderapi.dll

2013-01-23 20:18 - 2013-01-23 21:21 - 00000000 ____D C:\ProgramData\Acronis

2013-01-23 20:18 - 2013-01-23 20:18 - 01340040 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 01093256 ____A (Acronis) C:\Windows\System32\Drivers\tib_mounter.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00367200 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00340104 ____A (Acronis) C:\Windows\System32\Drivers\snapman.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00228488 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00166024 ____A (Acronis) C:\Windows\System32\Drivers\vidsflt.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00155272 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys

2013-01-23 20:13 - 2013-01-23 20:13 - 00001256 ____A C:\Users\Public\Desktop\VMware vCenter Converter Standalone Client.lnk

2013-01-23 20:10 - 2013-01-23 20:11 - 132872360 ____A (VMware, Inc. ) C:\Users\Hoc\Downloads\VMware-converter-all-5.0.1-875114.exe

2013-01-23 19:50 - 2013-01-23 19:50 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Acronis

2013-01-23 19:26 - 2013-01-23 20:18 - 00000000 ____A C:\Windows\SysWOW64\wintab32dll.txt

2013-01-23 00:27 - 2013-01-23 00:27 - 00001328 ____A C:\Users\Hoc\Desktop\emule.exe — skrót.lnk

2013-01-22 23:59 - 2013-01-23 00:29 - 00000000 ____D C:\Program Files (x86)\eMule

2013-01-22 23:47 - 2013-01-22 23:47 - 00000000 ____D C:\Users\Anetka\Desktop\Nauka PisaniaPaulina

2013-01-22 23:44 - 2013-01-22 23:44 - 00000000 ____A C:\Windows\Bench32.INI

2013-01-22 23:33 - 2013-01-24 09:44 - 00000000 ____D C:\Users\Anetka\Desktop\Zdjecia dla Cioci

2013-01-22 22:59 - 2013-01-22 22:59 - 00000000 ____D C:\Futuremark

2013-01-22 22:52 - 2009-04-22 10:04 - 00000290 ____A C:\Users\Hoc\Desktop\Shows Desktop.lnk

2013-01-22 22:52 - 2009-04-22 10:04 - 00000272 ____A C:\Users\Hoc\Desktop\Window Switcher.lnk

2013-01-22 22:39 - 2013-01-22 22:39 - 00000000 ____D C:\Users\Hoc\AppData\Local\GHISLER

2013-01-22 22:36 - 2013-01-22 22:40 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\GHISLER

2013-01-22 22:36 - 2013-01-22 22:37 - 00000000 ____D C:\totalcmd

 

 

==================== One Month Modified Files and Folders =======

 

2013-02-19 22:31 - 2013-02-19 22:31 - 00000000 ____D C:\FRST

2013-02-19 12:16 - 2011-10-04 10:16 - 00017920 ____A C:\Windows\SysWOW64\rpcnetp.exe

2013-02-19 12:16 - 2011-10-04 10:16 - 00017920 ____A C:\Windows\System32\rpcnetp.exe

2013-02-15 03:20 - 2011-10-04 09:34 - 01864766 ____A C:\Windows\WindowsUpdate.log

2013-02-15 03:16 - 2011-11-13 23:31 - 00000000 ____D C:\Users\Anetka\AppData\Roaming\Skype

2013-02-15 03:05 - 2009-07-14 03:34 - 00000499 ____A C:\Windows\win.ini

2013-02-15 03:03 - 2011-11-12 11:48 - 00000000 ____D C:\ProgramData\Microsoft Help

2013-02-15 03:03 - 2011-11-10 20:25 - 70004024 ____A (Microsoft Corporation) C:\Windows\System32\MRT.exe

2013-02-15 03:02 - 2010-11-21 13:53 - 00744088 ____A C:\Windows\System32\perfh015.dat

2013-02-15 03:02 - 2010-11-21 13:53 - 00157178 ____A C:\Windows\System32\perfc015.dat

2013-02-15 03:02 - 2009-07-14 06:13 - 01699972 ____A C:\Windows\System32\PerfStringBackup.INI

2013-02-15 03:00 - 2012-10-10 16:52 - 00000930 ____A C:\Windows\Tasks\Adobe Flash Player Updater.job

2013-02-14 20:30 - 2009-07-14 05:45 - 00025040 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

2013-02-14 20:30 - 2009-07-14 05:45 - 00025040 ___AH C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

2013-02-14 20:23 - 2011-11-22 16:56 - 00000000 ____D C:\ProgramData\VMware

2013-02-14 20:23 - 2011-10-04 10:15 - 00058288 ____A (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.dll

2013-02-14 20:23 - 2009-07-14 06:08 - 00000006 ___AH C:\Windows\Tasks\SA.DAT

2013-02-14 20:23 - 2009-07-14 05:51 - 00141602 ____A C:\Windows\setupact.log

2013-02-14 14:00 - 2012-07-17 21:00 - 00000000 ___RD C:\Users\Hoc\SkyDrive

2013-02-14 13:52 - 2011-11-10 20:11 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Skype

2013-02-14 13:42 - 2012-03-27 21:35 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\vlc

2013-02-14 11:05 - 2012-09-03 04:32 - 00000133 __RSH C:\ProgramData\3002.xml

2013-02-14 10:01 - 2012-08-04 12:29 - 00000000 ____D C:\Users\Hoc\Documents\Pliki programu Outlook

2013-02-13 14:19 - 2013-02-13 14:18 - 00000012 ____A C:\Users\Hoc\Desktop\samsung router.txt

2013-02-13 10:29 - 2011-11-10 18:59 - 00000000 ____D C:\Program Files (x86)\Opera

2013-02-11 22:37 - 2012-06-03 22:22 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Mumble

2013-02-11 19:27 - 2013-02-07 20:16 - 00000000 ____D C:\Program Files (x86)\MKV2AC3

2013-02-10 22:48 - 2012-07-29 23:14 - 00000000 ____D C:\Program Files (x86)\Mozilla Maintenance Service

2013-02-10 13:30 - 2013-02-10 01:26 - 00000000 ____D C:\Program Files (x86)\Mozilla Firefox

2013-02-08 17:05 - 2013-02-08 17:05 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Rovio

2013-02-07 20:17 - 2013-02-07 20:17 - 00000000 ____D C:\Program Files (x86)\AviSynth 2.5

2013-02-07 20:16 - 2013-02-07 20:16 - 00002973 ____A C:\Users\Hoc\Desktop\MKV2AC3.lnk

2013-02-07 20:15 - 2013-02-07 20:14 - 18922247 ____A C:\Users\Hoc\Downloads\mkv2ac3_64bits_ver133.zip

2013-02-07 20:14 - 2013-02-07 20:14 - 01582639 ____A C:\Users\Hoc\Downloads\AudioConverter.zip

2013-02-07 20:10 - 2013-02-07 20:10 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\mkvtoolnix

2013-02-07 20:07 - 2013-02-07 20:07 - 00000000 ____D C:\Users\Public\Documents\Adobe

2013-02-07 20:06 - 2013-02-07 20:03 - 00000000 ____D C:\Program Files (x86)\MKVToolNix

2013-02-07 20:03 - 2013-02-07 20:03 - 00001828 ____A C:\Users\Public\Desktop\mkvmerge GUI.lnk

2013-02-07 20:02 - 2013-02-07 20:02 - 00719218 ____A C:\Users\Hoc\Downloads\MKVExtractGUI-2.2.2.9.zip

2013-02-07 20:02 - 2013-02-07 20:02 - 00001220 ____A C:\Users\Public\Desktop\Angry Birds Star Wars.lnk

2013-02-07 20:02 - 2013-02-07 20:02 - 00000000 ____D C:\Users\Hoc\AppData\Local\Google

2013-02-07 20:02 - 2013-02-07 20:02 - 00000000 ____D C:\Program Files (x86)\Rovio

2013-02-07 20:00 - 2013-02-07 19:59 - 08509471 ____A (Moritz Bunkus) C:\Users\Hoc\Downloads\mkvtoolnix-unicode-6.0.0-setup.exe

2013-02-07 02:44 - 2012-03-30 22:24 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\uTorrent

2013-02-05 21:28 - 2012-06-14 22:18 - 00000000 ____D C:\Program Files\Opera

2013-02-03 21:27 - 2013-02-03 21:27 - 00000000 ____D C:\Users\Public\Documents\CrashDump

2013-02-03 12:08 - 2013-02-03 12:07 - 00000000 ____D C:\Users\Hoc\Downloads\Tapety

2013-02-02 20:06 - 2013-02-02 20:06 - 00001495 ____A C:\Users\Anetka\.recently-used.xbel

2013-02-02 20:06 - 2013-01-24 09:43 - 00000000 ____D C:\Users\Anetka\.gimp-2.6

2013-02-02 20:06 - 2011-11-13 23:20 - 00000000 ____D C:\users\Anetka

2013-02-02 20:02 - 2013-02-02 20:02 - 00000000 ____D C:\Users\Anetka\AppData\Local\Macromedia

2013-02-02 20:01 - 2013-02-02 20:01 - 00000000 ____D C:\Users\Anetka\AppData\Roaming\Mozilla

2013-02-02 20:01 - 2013-02-02 20:01 - 00000000 ____D C:\Users\Anetka\AppData\Local\Mozilla

2013-01-31 23:29 - 2011-12-01 12:05 - 00002246 ___AH C:\Users\Hoc\Documents\Default.rdp

2013-01-30 17:31 - 2006-12-02 00:37 - 00058288 ____N (Absolute Software Corp.) C:\Windows\SysWOW64\rpcnet.exe

2013-01-30 17:29 - 2011-10-04 10:17 - 00017920 ____A C:\Windows\SysWOW64\rpcnetp.dll

2013-01-28 15:06 - 2013-01-28 15:06 - 00000000 ____D C:\Users\Anetka\Documents\Dell WebCam Central

2013-01-26 17:07 - 2012-10-16 20:07 - 00000576 ____A C:\Users\Hoc\AppData\Roaming\All CPU MeterV3_Settings.ini

2013-01-26 16:11 - 2011-12-15 17:51 - 00000000 ____D C:\Users\Hoc\Desktop\LAptop

2013-01-26 15:41 - 2011-12-06 23:21 - 00000000 ____D C:\Users\Hoc\.gimp-2.6

2013-01-26 15:38 - 2013-01-26 15:38 - 00000867 ____A C:\Users\Hoc\.recently-used.xbel

2013-01-26 15:38 - 2011-11-10 16:45 - 00000000 ____D C:\users\Hoc

2013-01-26 13:13 - 2013-01-26 13:13 - 00283200 ____A (DT Soft Ltd) C:\Windows\System32\Drivers\dtsoftbus01.sys

2013-01-26 13:13 - 2013-01-26 11:55 - 00000000 ____D C:\Program Files (x86)\DAEMON Tools Lite

2013-01-26 13:13 - 2010-11-21 04:47 - 00034738 ____A C:\Windows\PFRO.log

2013-01-26 11:55 - 2011-11-11 00:03 - 00564824 ____A (Duplex Secure Ltd.) C:\Windows\System32\Drivers\sptd.sys

2013-01-26 02:04 - 2013-01-25 23:24 - 00000000 ____D C:\Samsung Galaxy S3 ToolKit

2013-01-26 01:51 - 2013-01-25 22:29 - 00000000 ____D C:\Program Files\SAMSUNG

2013-01-26 01:50 - 2013-01-23 21:31 - 00000000 ____D C:\Program Files (x86)\Samsung

2013-01-26 01:10 - 2013-01-26 01:10 - 00000000 ___AH C:\Windows\System32\Drivers\Msft_Kernel_WinUsb_01007.Wdf

2013-01-25 23:25 - 2013-01-25 23:24 - 00001802 ____A C:\Users\Hoc\Desktop\Samsung GS3 ToolKit.lnk

2013-01-25 22:29 - 2013-01-25 22:29 - 00000000 ____D C:\Users\Hoc\Desktop\SAMSUNG_USB_Driver_for_Mobile_Phones

2013-01-25 15:26 - 2013-01-25 14:29 - 00000000 ____D C:\Program Files\IQ Publishing

2013-01-25 15:26 - 2013-01-25 14:29 - 00000000 ____A C:\Users\Hoc\Desktop\Miś Hubert

2013-01-25 15:26 - 2013-01-25 14:29 - 00000000 ____A C:\Users\Anetka\Desktop\Miś Hubert

2013-01-24 09:44 - 2013-01-24 09:44 - 00000000 ____D C:\Users\Anetka\.thumbnails

2013-01-24 09:44 - 2013-01-22 23:33 - 00000000 ____D C:\Users\Anetka\Desktop\Zdjecia dla Cioci

2013-01-24 09:43 - 2013-01-24 09:43 - 00000000 ____D C:\Users\Anetka\Documents\gegl-0.1

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Public\Documents\NativeFus_Log

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\Documents\samsung

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Samsung

2013-01-23 22:00 - 2013-01-23 22:00 - 00000000 ____D C:\Users\Hoc\AppData\Local\Samsung

2013-01-23 21:59 - 2013-01-23 21:59 - 00000000 ____D C:\Program Files (x86)\MyFree Codec

2013-01-23 21:59 - 2013-01-23 21:31 - 00000000 ____D C:\ProgramData\Samsung

2013-01-23 21:31 - 2011-10-04 09:49 - 00000000 ___HD C:\Program Files (x86)\InstallShield Installation Information

2013-01-23 21:30 - 2011-02-15 10:58 - 01655944 ____A C:\Windows\SysWOW64\PerfStringBackup.INI

2013-01-23 21:25 - 2011-12-12 22:55 - 00000000 ____D C:\Users\Hoc\AppData\Local\Downloaded Installations

2013-01-23 21:21 - 2013-01-23 20:18 - 00000000 ____D C:\ProgramData\Acronis

2013-01-23 20:18 - 2013-01-23 20:18 - 01340040 ____A (Acronis) C:\Windows\System32\Drivers\tdrpman.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 01093256 ____A (Acronis) C:\Windows\System32\Drivers\tib_mounter.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00367200 ____A (Acronis) C:\Windows\System32\Drivers\afcdp.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00340104 ____A (Acronis) C:\Windows\System32\Drivers\snapman.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00228488 ____A (Acronis) C:\Windows\System32\Drivers\vididr.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00166024 ____A (Acronis) C:\Windows\System32\Drivers\vidsflt.sys

2013-01-23 20:18 - 2013-01-23 20:18 - 00155272 ____A (Acronis) C:\Windows\System32\Drivers\fltsrv.sys

2013-01-23 20:18 - 2013-01-23 19:26 - 00000000 ____A C:\Windows\SysWOW64\wintab32dll.txt

2013-01-23 20:16 - 2012-09-21 16:31 - 00000000 ____D C:\Users\Hoc\Desktop\ATH2013

2013-01-23 20:15 - 2011-11-22 16:59 - 00000000 ____D C:\Users\Hoc\AppData\Local\VMware

2013-01-23 20:13 - 2013-01-23 20:13 - 00001256 ____A C:\Users\Public\Desktop\VMware vCenter Converter Standalone Client.lnk

2013-01-23 20:13 - 2012-03-24 02:10 - 00000000 ____D C:\Program Files (x86)\VMware

2013-01-23 20:13 - 2011-11-22 16:57 - 00001024 ____A C:\.rnd

2013-01-23 20:11 - 2013-01-23 20:10 - 132872360 ____A (VMware, Inc. ) C:\Users\Hoc\Downloads\VMware-converter-all-5.0.1-875114.exe

2013-01-23 19:55 - 2012-03-30 23:10 - 00000000 ____D C:\Program Files (x86)\Acronis

2013-01-23 19:50 - 2013-01-23 19:50 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\Acronis

2013-01-23 00:29 - 2013-01-22 23:59 - 00000000 ____D C:\Program Files (x86)\eMule

2013-01-23 00:27 - 2013-01-23 00:27 - 00001328 ____A C:\Users\Hoc\Desktop\emule.exe — skrót.lnk

2013-01-23 00:12 - 2011-08-09 20:03 - 00000000 ____D C:\Users\Hoc\Desktop\Marcin - smiecuchy

2013-01-23 00:05 - 2012-07-12 18:24 - 00000000 ___AD C:\Users\Hoc\Desktop\Security

2013-01-22 23:47 - 2013-01-22 23:47 - 00000000 ____D C:\Users\Anetka\Desktop\Nauka PisaniaPaulina

2013-01-22 23:44 - 2013-01-22 23:44 - 00000000 ____A C:\Windows\Bench32.INI

2013-01-22 22:59 - 2013-01-22 22:59 - 00000000 ____D C:\Futuremark

2013-01-22 22:40 - 2013-01-22 22:36 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\GHISLER

2013-01-22 22:39 - 2013-01-22 22:39 - 00000000 ____D C:\Users\Hoc\AppData\Local\GHISLER

2013-01-22 22:37 - 2013-01-22 22:36 - 00000000 ____D C:\totalcmd

2013-01-22 22:30 - 2011-11-10 20:11 - 00000000 ___RD C:\Program Files (x86)\Skype

2013-01-22 22:30 - 2011-11-10 20:11 - 00000000 ____D C:\ProgramData\Skype

2013-01-22 00:26 - 2012-10-30 22:29 - 00000000 ____D C:\Users\Hoc\AppData\Roaming\TS3Client

2013-01-21 00:18 - 2012-04-13 23:13 - 00000261 ____A C:\Users\Hoc\AppData\Roaming\Battery Meter_Settings.ini

2013-01-20 17:54 - 2009-07-14 04:20 - 00000000 __RHD C:\Users\Public\Libraries

 

==================== Known DLLs (Whitelisted) =================

 

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () C:\Windows\System32\URLMON.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () C:\Windows\SysWOW64\URLMON.dll

 

==================== Bamital & volsnap Check =================

 

C:\Windows\System32\winlogon.exe => MD5 is legit

C:\Windows\System32\wininit.exe => MD5 is legit

C:\Windows\SysWOW64\wininit.exe => MD5 is legit

C:\Windows\explorer.exe => MD5 is legit

C:\Windows\SysWOW64\explorer.exe => MD5 is legit

C:\Windows\System32\svchost.exe => MD5 is legit

C:\Windows\SysWOW64\svchost.exe => MD5 is legit

C:\Windows\System32\services.exe => MD5 is legit

C:\Windows\System32\User32.dll => MD5 is legit

C:\Windows\SysWOW64\User32.dll => MD5 is legit

C:\Windows\System32\userinit.exe => MD5 is legit

C:\Windows\SysWOW64\userinit.exe => MD5 is legit

C:\Windows\System32\Drivers\volsnap.sys => MD5 is legit

 

==================== EXE ASSOCIATION =====================

 

HKLM\...\.exe: exefile => OK

HKLM\...\exefile\DefaultIcon: %1 => OK

HKLM\...\exefile\open\command: "%1" %* => OK

 

==================== Restore Points =========================

 

 

==================== Memory info ===========================

 

Percentage of memory in use: 10%

Total physical RAM: 8145.05 MB

Available physical RAM: 7271.09 MB

Total Pagefile: 8143.25 MB

Available Pagefile: 7266.3 MB

Total Virtual: 8192 MB

Available Virtual: 8191.9 MB

 

==================== Partitions =============================

 

1 Drive c: (OS) (Fixed) (Total:190.93 GB) (Free:48.75 GB) NTFS

2 Drive d: (RECOVERY) (Fixed) (Total:0.38 GB) (Free:0.15 GB) NTFS ==>[system with boot components (obtained from reading drive)]

3 Drive e: (Data) (Fixed) (Total:365.72 GB) (Free:57.33 GB) NTFS

4 Drive f: () (Fixed) (Total:49.71 GB) (Free:5.81 GB) NTFS

6 Drive i: () (Removable) (Total:7.52 GB) (Free:4.13 GB) NTFS

7 Drive x: (Boot) (Fixed) (Total:0.03 GB) (Free:0.03 GB) NTFS

8 Drive y: (Zastrzeżone przez system) (Fixed) (Total:0.34 GB) (Free:0.1 GB) NTFS ==>[system with boot components (obtained from reading drive)]

 

Nr dysku Stan Rozmiar Wolne Dyn GPT

-------- ------------- ------- ------- --- ---

Dysk 0 Online 465 GB 0 B

Dysk 1 Online 238 GB 1024 KB

Dysk 2 Online 7701 MB 0 B

 

Partitions of Disk 0:

===============

 

Identyfikator dysku: 2C360175

 

Partycja ### Typ Rozmiar Przesuni©cie

------------- ---------------- ------- ------------

Partycja 1 OEM 39 MB 31 KB

Partycja 2 Podstawowy 365 GB 40 MB

Partycja 3 Podstawowy 350 MB 365 GB

Partycja 4 Podstawowy 49 GB 366 GB

 

==================================================================================

 

Disk: 0

Partycja 1

Typ : DE

Ukryta : Tak

Aktywna : Nie

Przesuni©cie w bajtach: 32256

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 7 FAT Partycja 39 MB Zdrowy Ukryty

 

=========================================================

 

Disk: 0

Partycja 2

Typ : 07

Ukryta : Nie

Aktywna : Nie

Przesuni©cie w bajtach: 41943040

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 1 E Data NTFS Partycja 365 GB Zdrowy

 

=========================================================

 

Disk: 0

Partycja 3

Typ : 07

Ukryta : Nie

Aktywna : Tak

Przesuni©cie w bajtach: 392731557888

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 2 Y Zastrzeľone NTFS Partycja 350 MB Zdrowy

 

=========================================================

 

Disk: 0

Partycja 4

Typ : 07

Ukryta : Nie

Aktywna : Nie

Przesuni©cie w bajtach: 393098559488

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 3 F NTFS Partycja 49 GB Zdrowy

 

=========================================================

 

Partitions of Disk 1:

===============

 

Identyfikator dysku: C434F791

 

Partycja ### Typ Rozmiar Przesuni©cie

------------- ---------------- ------- ------------

Partycja 1 OEM 23 MB 31 KB

Partycja 2 Podstawowy 384 MB 23 MB

Partycja 3 Podstawowy 190 GB 407 MB

Partycja 0 Rozszerzony 47 GB 191 GB

Partycja 4 Logiczny 45 GB 191 GB

Partycja 5 Logiczny 2019 MB 236 GB

 

==================================================================================

 

Disk: 1

Partycja 1

Typ : DE

Ukryta : Tak

Aktywna : Nie

Przesuni©cie w bajtach: 32256

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 7 FAT Partycja 23 MB Zdrowy Ukryty

 

=========================================================

 

Disk: 1

Partycja 2

Typ : 07

Ukryta : Nie

Aktywna : Tak

Przesuni©cie w bajtach: 24675840

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 4 D RECOVERY NTFS Partycja 384 MB Zdrowy

 

=========================================================

 

Disk: 1

Partycja 3

Typ : 07

Ukryta : Nie

Aktywna : Nie

Przesuni©cie w bajtach: 427714560

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 5 C OS NTFS Partycja 190 GB Zdrowy

 

=========================================================

 

Disk: 1

Partycja 4

Typ : 83

Ukryta : Tak

Aktywna : Nie

Przesuni©cie w bajtach: 205432815616

 

Brak woluminu skojarzonego

 

=========================================================

 

Disk: 1

Partycja 5

Typ : 82

Ukryta : Tak

Aktywna : Nie

Przesuni©cie w bajtach: 253943087104

 

Brak woluminu skojarzonego

 

=========================================================

 

Partitions of Disk 2:

===============

 

Identyfikator dysku: 005F894C

 

Partycja ### Typ Rozmiar Przesuni©cie

------------- ---------------- ------- ------------

Partycja 1 Podstawowy 7701 MB 31 KB

 

==================================================================================

 

Disk: 2

Partycja 1

Typ : 07

Ukryta : Nie

Aktywna : Tak

Przesuni©cie w bajtach: 32256

 

Wolumin ### Lit Etykieta Fs Typ Rozmiar Stan Info

----------- --- ----------- ----- ---------- ------- --------- --------

* Wolumin 6 I NTFS Wymienny 7701 MB Zdrowy

 

=========================================================

 

Last Boot: 2013-02-13 11:00

 

==================== End Of Log =============================

 

 

[picasso]

Z listy KnownDLLs wynika, że są uszkodzone obie wersje URLMON.dll (32-bit i 64-bit):

 

==================== Known DLLs (Whitelisted) =================

 

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () C:\Windows\System32\URLMON.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () C:\Windows\SysWOW64\URLMON.dll

 

To nie jedyne szkody. Wśród świeżo modyfikowanych są także inne (mniej istotne) pliki pozbawione sygnatury Microsoftu:

 

==================== One Month Created Files and Folders ========

 

2013-02-14 14:00 - 2013-01-09 02:12 - 01346048 ____A C:\Windows\System32\urlmon.dll

2013-02-14 14:00 - 2013-01-09 02:07 - 00173056 ____A C:\Windows\System32\ieUnatt.exe

2013-02-14 14:00 - 2013-01-08 23:03 - 01427968 ____A C:\Windows\SysWOW64\inetcpl.cpl

2013-02-14 14:00 - 2013-01-08 23:03 - 01103872 ____A C:\Windows\SysWOW64\urlmon.dll

2013-02-14 14:00 - 2013-01-08 23:01 - 00231936 ____A C:\Windows\SysWOW64\url.dll

2013-02-14 14:00 - 2013-01-08 22:59 - 00142848 ____A C:\Windows\SysWOW64\ieUnatt.exe

2013-02-14 14:00 - 2013-01-08 22:58 - 00420864 ____A C:\Windows\SysWOW64\vbscript.dll

 

Teraz precyzyjny skan na wersje komponentów, by było wiadome gdzie podstawiać prawidłowe kopie. Uruchom FRST i w polu Search wpisz nazwy plików przedzielone średnikami:

 

URLMON.dll;url.dll;vbscript.dll;ieUnatt.exe

 

Klik w Search File(s). Przedstaw log wynikowy.

 

 

 

.

[hocum]

raport z wyszukiwania dokładnego :

 

 

  Pokaż ukrytą zawartość

 

Farbar Recovery Scan Tool (x64) Version: 17-02-2013 01

Ran by SYSTEM at 2013-02-19 22:56:37

Running from I:\

 

================== Search: "URLMON.dll;url.dll;vbscript.dll;ieUnatt.exe" ===================

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_090001c791551032\url.dll

[2013-02-14 14:00] - [2013-01-08 21:40] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20565_none_090cd247914b26ef\url.dll

[2012-12-13 10:12] - [2012-11-14 02:32] - 0231936 ____A (Microsoft Corporation) 7224CEEF85D179222CE8F58C63C8B6E9

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20562_none_0909d169914ddaea\url.dll

[2012-11-17 02:50] - [2012-10-08 08:36] - 0231936 ____A (Microsoft Corporation) 3F32A20F3D9A6F72A6DCA4F0EAFCE42D

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20557_none_0919a2c791413dac\url.dll

[2012-09-23 01:05] - [2012-08-24 08:11] - 0231936 ____A (Microsoft Corporation) B28BA84ED8E30A5C3697E2BFCD6FCD59

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20554_none_0916a1e99143f1a7\url.dll

[2012-08-16 23:49] - [2012-06-28 23:53] - 0231936 ____A (Microsoft Corporation) A7485D61FB26AD8B4433B5E7F19233F1

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20553_none_0915a19f9144d850\url.dll

[2012-07-11 15:45] - [2012-06-02 09:15] - 0231936 ____A (Microsoft Corporation) 12B941C94F00B689F65C06BBAE9279BE

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20551_none_0913a10b9146a5a2\url.dll

[2012-06-12 21:24] - [2012-05-17 23:17] - 0231936 ____A (Microsoft Corporation) EE75E95343AA7CA371E0CE0F0263EE7A

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20548_none_092572fd91383b12\url.dll

[2012-04-12 21:28] - [2012-02-28 01:57] - 0231936 ____A (Microsoft Corporation) C13F9364FC9FA88429F22806E9BF0BC4

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20546_none_09237269913a0864\url.dll

[2012-02-17 11:37] - [2011-12-14 03:27] - 0231936 ____A (Microsoft Corporation) 2C483BF3AC8EECA103784A07EA7ECB2F

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20544_none_092171d5913bd5b6\url.dll

[2011-12-14 16:35] - [2011-11-04 00:06] - 0231936 ____A (Microsoft Corporation) 783E65F5CDA4A4B679BAB48CCE465890

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20537_none_092f429f913105ca\url.dll

[2011-11-10 20:32] - [2011-09-01 02:57] - 0231936 ____A (Microsoft Corporation) CC16F11AEDA7BBA43B0D2D84F737B02C

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16464_none_08823532782e6dce\url.dll

[2013-02-14 14:00] - [2013-01-08 23:01] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16457_none_089005fc78239de2\url.dll

[2012-12-13 10:12] - [2012-11-14 02:55] - 0231936 ____A (Microsoft Corporation) 31B0448CC0694378106582F46D0D07E4

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16455_none_088e056878256b34\url.dll

[2012-11-17 02:50] - [2012-10-08 08:46] - 0231936 ____A (Microsoft Corporation) 51E6B19ACFACDBB372003EE016287E82

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16450_none_088903f67829ec81\url.dll

[2012-09-23 01:05] - [2012-08-24 07:49] - 0231936 ____A (Microsoft Corporation) 339E159B0956BA01B6662BB8546BDE95

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16448_none_089bd632781a9b48\url.dll

[2012-08-16 23:49] - [2012-06-29 01:07] - 0231936 ____A (Microsoft Corporation) C52E66F5FB59B4FC986771B891BE426E

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16447_none_089ad5e8781b81f1\url.dll

[2012-07-11 15:45] - [2012-06-02 09:23] - 0231936 ____A (Microsoft Corporation) AEE054BB5693EB336BA6218EBBEEDF60

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16446_none_0899d59e781c689a\url.dll

[2012-06-12 21:24] - [2012-05-17 23:33] - 0231936 ____A (Microsoft Corporation) 50563BAED52A0A1ACFE44CBDD7E3A86F

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16443_none_0896d4c0781f1c95\url.dll

[2012-04-12 21:28] - [2012-02-28 02:09] - 0231936 ____A (Microsoft Corporation) 8E35C8E822B6BF11D048C1AA2B076388

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16441_none_0894d42c7820e9e7\url.dll

[2012-02-17 11:37] - [2011-12-14 03:55] - 0231936 ____A (Microsoft Corporation) 4D6B982AE082E19FC27291A7E418BCEC

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16440_none_0893d3e27821d090\url.dll

[2011-12-14 16:35] - [2011-11-03 23:38] - 0231936 ____A (Microsoft Corporation) E23A77388F117CE54840B4DA1271E57D

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16437_none_08a5a5d478136600\url.dll

[2011-11-10 20:32] - [2011-09-01 03:27] - 0231936 ____A (Microsoft Corporation) 9D175A60736BD0557A5600E1BA24C3FB

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16421_none_08aa74047810b205\url.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 0231936 ____A (Microsoft Corporation) B3EE64893F111D21EE3E90BB47FA69FB

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_8.0.7600.16385_none_0abb6ea1361fee7e\url.dll

[2009-07-14 00:43] - [2009-07-14 02:16] - 0131584 ____A (Microsoft Corporation) 05A002765A9BCEBDDDB5B10CBF054A08

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_cdb8485d0a549af5\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 21:42] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20565_none_cdc518dd0a4ab1b2\urlmon.dll

[2012-12-13 10:12] - [2012-11-14 02:34] - 1103872 ____A (Microsoft Corporation) 9AAC0C7C0640CC09DC970F4D4C723119

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20562_none_cdc217ff0a4d65ad\urlmon.dll

[2012-11-17 02:50] - [2012-10-08 08:38] - 1103872 ____A (Microsoft Corporation) 8E7042CA1E52F48974EAE772979E402F

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20557_none_cdd1e95d0a40c86f\urlmon.dll

[2012-09-23 01:05] - [2012-08-24 08:13] - 1103872 ____A (Microsoft Corporation) 10DD66F278AC1B682D84E3E350A210E0

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20554_none_cdcee87f0a437c6a\urlmon.dll

[2012-08-16 23:48] - [2012-06-28 23:54] - 1103872 ____A (Microsoft Corporation) FA55910D9A36CEC5929736E62812A4D5

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20553_none_cdcde8350a446313\urlmon.dll

[2012-07-11 15:45] - [2012-06-02 09:17] - 1103872 ____A (Microsoft Corporation) 1496EAE3185CD8C47E46DAF76180BD31

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20551_none_cdcbe7a10a463065\urlmon.dll

[2012-06-12 21:24] - [2012-05-17 23:20] - 1103872 ____A (Microsoft Corporation) B90EC2FD27886CEBA71DB3B6EAFC74FA

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20548_none_cdddb9930a37c5d5\urlmon.dll

[2012-04-12 21:28] - [2012-02-28 01:59] - 1103360 ____A (Microsoft Corporation) 59E5BA0E9F268B2B0EA7C0185150150F

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20546_none_cddbb8ff0a399327\urlmon.dll

[2012-02-17 11:37] - [2011-12-14 03:29] - 1103360 ____A (Microsoft Corporation) D48BB97B11710577FDD025EA39478A18

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20544_none_cdd9b86b0a3b6079\urlmon.dll

[2011-12-14 16:35] - [2011-11-04 00:08] - 1103360 ____A (Microsoft Corporation) 064F6F989238F40B2AA23395E44B259B

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20537_none_cde789350a30908d\urlmon.dll

[2011-11-10 20:32] - [2011-09-01 02:58] - 1102848 ____A (Microsoft Corporation) 96C5CBC5539DD05F0A99CC71541EF35D

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20530_none_cde0872f0a36df2c\urlmon.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 1102336 ____A (Microsoft Corporation) F23351AAC05A803402C56A531F869B31

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_cd3a7bc7f12df891\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16457_none_cd484c91f12328a5\urlmon.dll

[2012-12-13 10:12] - [2012-11-14 02:57] - 1103872 ____A (Microsoft Corporation) 4266A3230981DD4434C55957F6DD497D

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16455_none_cd464bfdf124f5f7\urlmon.dll

[2012-11-17 02:50] - [2012-10-08 08:48] - 1103872 ____A (Microsoft Corporation) FC4EE980C3BD87D35816EC55007E00B5

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16450_none_cd414a8bf1297744\urlmon.dll

[2012-09-23 01:05] - [2012-08-24 07:51] - 1103872 ____A (Microsoft Corporation) 9FAC0F6D5F3D922DB294E30CD3F62369

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16448_none_cd541cc7f11a260b\urlmon.dll

[2012-08-16 23:48] - [2012-06-29 01:09] - 1103872 ____A (Microsoft Corporation) 667981F2E7C26275F0694B58EEE303B9

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16447_none_cd531c7df11b0cb4\urlmon.dll

[2012-07-11 15:45] - [2012-06-02 09:26] - 1103872 ____A (Microsoft Corporation) 1408CF9B0DD2AAA80D8E7087C8A2E3BC

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16446_none_cd521c33f11bf35d\urlmon.dll

[2012-06-12 21:23] - [2012-05-17 23:36] - 1103872 ____A (Microsoft Corporation) CAAF911D2E61AE5C1518F53BEF54C698

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16443_none_cd4f1b55f11ea758\urlmon.dll

[2012-04-12 21:28] - [2012-02-28 02:12] - 1103360 ____A (Microsoft Corporation) 4C162B2A8E175F46DB41B21C77688221

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16441_none_cd4d1ac1f12074aa\urlmon.dll

[2012-02-17 11:37] - [2011-12-14 03:57] - 1103360 ____A (Microsoft Corporation) 79F14B5DF9E17E12193337ED4EE1C491

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16440_none_cd4c1a77f1215b53\urlmon.dll

[2011-12-14 16:35] - [2011-11-03 23:40] - 1103360 ____A (Microsoft Corporation) 814638F572F497D96B17BF254113D9A4

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16437_none_cd5dec69f112f0c3\urlmon.dll

[2011-11-10 20:32] - [2011-09-01 03:28] - 1102848 ____A (Microsoft Corporation) 3BF5881CB3D3402ADE70BE9E96E18C67

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16430_none_cd56ea63f1193f62\urlmon.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 1102336 ____A (Microsoft Corporation) DF6DE2F5AFB9FA1CFA02081EF9B3E7E8

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16421_none_cd62ba99f1103cc8\urlmon.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 1102336 ____A (Microsoft Corporation) AA5F4683A0C3C40D90377AA238A6F1B7

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.7601.17514_none_d1a4c8feac0dfcdb\urlmon.dll

[2010-11-21 04:24] - [2010-11-21 04:24] - 1229824 ____A (Microsoft Corporation) EBB431C6332107651CD2E2715A707994

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20573_none_c7a279a64e2fe61c\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 21:36] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20565_none_c7af4a264e25fcd9\vbscript.dll

[2012-12-13 10:12] - [2012-11-14 02:29] - 0420864 ____A (Microsoft Corporation) 55B05D2F8E30D2D9F405633FFDFD1578

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20562_none_c7ac49484e28b0d4\vbscript.dll

[2012-11-17 02:50] - [2012-10-08 08:33] - 0420864 ____A (Microsoft Corporation) 86B5CB80DACF22C5C980325E7FA94AF4

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20557_none_c7bc1aa64e1c1396\vbscript.dll

[2012-09-23 01:05] - [2012-08-24 08:08] - 0420864 ____A (Microsoft Corporation) FD44BF4FB0FF0BE01AAAE82785B00F23

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16464_none_c724ad11350943b8\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 22:58] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16457_none_c7327ddb34fe73cc\vbscript.dll

[2012-12-13 10:12] - [2012-11-14 02:48] - 0420864 ____A (Microsoft Corporation) 4071D132E66ACDA3776F1FEAD19E6E01

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16455_none_c7307d473500411e\vbscript.dll

[2012-11-17 02:50] - [2012-10-08 08:43] - 0420864 ____A (Microsoft Corporation) E4966988D2BF90B7A5866401B830FA74

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16450_none_c72b7bd53504c26b\vbscript.dll

[2012-09-23 01:05] - [2012-08-24 07:47] - 0420864 ____A (Microsoft Corporation) DBBBE5B64E2FE1AF8BE76CCAA2B54DFC

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16421_none_c74cebe334eb87ef\vbscript.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 0420864 ____A (Microsoft Corporation) 5E7A2CF7719161C5E6C0E47D67AD45AE

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.21634_none_b148b00392152731\vbscript.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 0428032 ____A (Microsoft Corporation) 295A91AC1D3A703A938C021E894B51E8

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.17535_none_b0c0138278f6a0be\vbscript.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 0428032 ____A (Microsoft Corporation) C3AF4F995ECB8BFCA6A3B0A3979DD2B6

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.17514_none_b0d4b31078e74f85\vbscript.dll

[2010-11-21 04:24] - [2010-11-21 04:24] - 0427520 ____A (Microsoft Corporation) B6C47E0FB844FDB75A8DAE5A6487CB8F

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_aeaa76603a47639c\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 21:37] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20565_none_aeb746e03a3d7a59\ieUnatt.exe

[2012-12-13 10:12] - [2012-11-14 02:30] - 0142848 ____A (Microsoft Corporation) 8BB6730562AAFDF4D12BC70717162EA3

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20562_none_aeb446023a402e54\ieUnatt.exe

[2012-11-17 02:50] - [2012-10-08 08:34] - 0142848 ____A (Microsoft Corporation) 5547B93865E4A1F8B347AB82C8011DFA

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20557_none_aec417603a339116\ieUnatt.exe

[2012-09-23 01:05] - [2012-08-24 08:09] - 0142848 ____A (Microsoft Corporation) B173660C6A653DD35C5CB370CE91A807

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20554_none_aec116823a364511\ieUnatt.exe

[2012-08-16 23:48] - [2012-06-28 23:49] - 0142848 ____A (Microsoft Corporation) 5EB56622020D7775D6F49E5A71FE71DF

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20553_none_aec016383a372bba\ieUnatt.exe

[2012-07-11 15:45] - [2012-06-02 09:13] - 0142848 ____A (Microsoft Corporation) 1FEDCD8440973D58865329729B7522FB

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20551_none_aebe15a43a38f90c\ieUnatt.exe

[2012-06-12 21:23] - [2012-05-17 23:14] - 0142848 ____A (Microsoft Corporation) 258C51D9814FF238C0D8F93A22316D5E

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_ae2ca9cb2120c138\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 22:59] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16457_none_ae3a7a952115f14c\ieUnatt.exe

[2012-12-13 10:12] - [2012-11-14 02:49] - 0142848 ____A (Microsoft Corporation) DCFA393FA7F8FFAAE4A4A1F5E3E7CD64

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16455_none_ae387a012117be9e\ieUnatt.exe

[2012-11-17 02:50] - [2012-10-08 08:44] - 0142848 ____A (Microsoft Corporation) 081F82EDB9B37A0FC60700C0DD96347D

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16450_none_ae33788f211c3feb\ieUnatt.exe

[2012-09-23 01:05] - [2012-08-24 07:47] - 0142848 ____A (Microsoft Corporation) 8621FE8577BCFB8B5CB15897D4A9024A

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16448_none_ae464acb210ceeb2\ieUnatt.exe

[2012-08-16 23:48] - [2012-06-29 01:04] - 0142848 ____A (Microsoft Corporation) EAC0B548CEFC82BB7CCC429197DC2F75

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16447_none_ae454a81210dd55b\ieUnatt.exe

[2012-07-11 15:45] - [2012-06-02 09:20] - 0142848 ____A (Microsoft Corporation) 94532D14FC8F02A119BA9F9DDD5A12DA

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16446_none_ae444a37210ebc04\ieUnatt.exe

[2012-06-12 21:23] - [2012-05-17 23:29] - 0142848 ____A (Microsoft Corporation) FD62A333C71E8B868611F487420F0A5D

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16421_none_ae54e89d2103056f\ieUnatt.exe

[2011-10-04 11:01] - [2011-10-04 11:01] - 0142848 ____A (Microsoft Corporation) 46418F422DA88859AECE4C0A1AEB752B

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.7601.17514_none_b296f701dc00c582\ieUnatt.exe

[2010-11-21 04:25] - [2010-11-21 04:25] - 0139264 ____A (Microsoft Corporation) EB93C2852842F76872DCFB19735775DC

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20573_none_bd4dcf5419cf2421\vbscript.dll

[2013-02-14 14:00] - [2013-01-09 00:49] - 0599040 ____A (Microsoft Corporation) E76365D18C0A55DAE17BA9A05BA2324C

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20565_none_bd5a9fd419c53ade\vbscript.dll

[2012-12-13 10:12] - [2012-11-14 04:55] - 0599040 ____A (Microsoft Corporation) 921C34365948A14AAEE24C38DD899074

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20562_none_bd579ef619c7eed9\vbscript.dll

[2012-11-17 02:49] - [2012-10-08 11:05] - 0599040 ____A (Microsoft Corporation) 4B8DCBE0197D00348960CB42F024E381

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20557_none_bd67705419bb519b\vbscript.dll

[2012-09-23 01:05] - [2012-08-24 10:47] - 0599040 ____A (Microsoft Corporation) 1C222E0F1BFFB7DEDC6D3FCDD0A0DD54

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16464_none_bcd002bf00a881bd\vbscript.dll

[2013-02-14 14:00] - [2013-01-09 02:07] - 0599040 ____A (Microsoft Corporation) BD69A0116B11A91761AB30A25DCB4C9D

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16457_none_bcddd389009db1d1\vbscript.dll

[2012-12-13 10:12] - [2012-11-14 06:57] - 0599040 ____A (Microsoft Corporation) 6E6602DE23AB3776007702FC9540E8E9

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16455_none_bcdbd2f5009f7f23\vbscript.dll

[2012-11-17 02:50] - [2012-10-08 12:17] - 0599040 ____A (Microsoft Corporation) F83E66031901DC0DCCE30CBC4265A762

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16450_none_bcd6d18300a40070\vbscript.dll

[2012-09-23 01:05] - [2012-08-24 11:13] - 0599040 ____A (Microsoft Corporation) F50F26E6DC3082D8334F2946CE9125FA

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16421_none_bcf84191008ac5f4\vbscript.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 0603648 ____A (Microsoft Corporation) DDC0B23D7EB77356E8D32FFE05718C6E

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.21634_none_a6f405b15db46536\vbscript.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 0612864 ____A (Microsoft Corporation) 70B937EA3252AE8C0FF34A97275C8BCC

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.17535_none_a66b69304495dec3\vbscript.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 0612864 ____A (Microsoft Corporation) 547DD96B3C425FCF583EBE349981EF98

 

C:\Windows\winsxs\amd64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_6.1.7601.17514_none_a68008be44868d8a\vbscript.dll

[2010-11-21 04:24] - [2010-11-21 04:24] - 0612864 ____A (Microsoft Corporation) 380C3F69472B96B5D35AF834855EE8BF

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_651e9d4b49b28168\url.dll

[2013-02-14 14:00] - [2013-01-09 00:53] - 0237056 ____A () 625E3E643559D386D809FC1F29B94496

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20565_none_652b6dcb49a89825\url.dll

[2012-12-13 10:12] - [2012-11-14 04:59] - 0237056 ____A (Microsoft Corporation) 84D801F7BDEF9E0CCCCAB7EBE394A15A

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20562_none_65286ced49ab4c20\url.dll

[2012-11-17 02:50] - [2012-10-08 11:09] - 0237056 ____A (Microsoft Corporation) 828C17CAD179A0269A5B144BFD993D3B

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20557_none_65383e4b499eaee2\url.dll

[2012-09-23 01:05] - [2012-08-24 10:51] - 0237056 ____A (Microsoft Corporation) 3A117C782813B93BE4C59DB1812AD3F4

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20554_none_65353d6d49a162dd\url.dll

[2012-08-16 23:49] - [2012-06-29 02:50] - 0237056 ____A (Microsoft Corporation) ACCDB3ADE5E7B9E969F9FB21B57F9B89

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20553_none_65343d2349a24986\url.dll

[2012-07-11 15:45] - [2012-06-02 12:07] - 0237056 ____A (Microsoft Corporation) D95EA1E4E4E9CEA795804EA70F0152D1

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20551_none_65323c8f49a416d8\url.dll

[2012-06-12 21:24] - [2012-05-18 01:45] - 0237056 ____A (Microsoft Corporation) 28AE04D9EC7E55819DDF715F3BB2A0A8

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20548_none_65440e814995ac48\url.dll

[2012-04-12 21:28] - [2012-02-28 04:08] - 0237056 ____A (Microsoft Corporation) 8CC61DAA194A424BF29B2DB7B03E5D65

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20546_none_65420ded4997799a\url.dll

[2012-02-17 11:37] - [2011-12-14 07:09] - 0237056 ____A (Microsoft Corporation) 28E806E6E529A0E95A5F127110679EC9

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20544_none_65400d59499946ec\url.dll

[2011-12-14 16:35] - [2011-11-04 03:17] - 0237056 ____A (Microsoft Corporation) E673CD95C18BCB58D3FF4CC1544F3B21

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20537_none_654dde23498e7700\url.dll

[2011-11-10 20:32] - [2011-09-01 05:38] - 0237056 ____A (Microsoft Corporation) DECF7A7B39ED5F285A9EB86A8E2A87B0

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16464_none_64a0d0b6308bdf04\url.dll

[2013-02-14 14:00] - [2013-01-09 02:10] - 0237056 ____A (Microsoft Corporation) FC94371FCE85F391F976F2BB560367CF

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16457_none_64aea18030810f18\url.dll

[2012-12-13 10:12] - [2012-11-14 07:02] - 0237056 ____A (Microsoft Corporation) 478FDA5AB59331259538FB7B02026836

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16455_none_64aca0ec3082dc6a\url.dll

[2012-11-17 02:50] - [2012-10-08 12:22] - 0237056 ____A (Microsoft Corporation) FF8CD2FD4356FB411FB14C1EC117C668

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16450_none_64a79f7a30875db7\url.dll

[2012-09-23 01:05] - [2012-08-24 11:18] - 0237056 ____A (Microsoft Corporation) D818DFC9D1EDD4A17C31988DAD3A1E2C

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16448_none_64ba71b630780c7e\url.dll

[2012-08-16 23:49] - [2012-06-29 04:47] - 0237056 ____A (Microsoft Corporation) 6B4497C545C7F37BB01401D766BACE6C

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16447_none_64b9716c3078f327\url.dll

[2012-07-11 15:45] - [2012-06-02 13:04] - 0237056 ____A (Microsoft Corporation) 524906A4A2796236CAA264DE8F59B683

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16446_none_64b871223079d9d0\url.dll

[2012-06-12 21:24] - [2012-05-18 02:58] - 0237056 ____A (Microsoft Corporation) 483E1A7AACFE9191DC686164EFFB0813

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16443_none_64b57044307c8dcb\url.dll

[2012-04-12 21:28] - [2012-02-28 07:48] - 0237056 ____A (Microsoft Corporation) DB695D628A2A01442E799BC4B25A1D8E

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16441_none_64b36fb0307e5b1d\url.dll

[2012-02-17 11:37] - [2011-12-14 08:03] - 0237056 ____A (Microsoft Corporation) DD4BB19D0B9FB1A9E4D17DD1AF264740

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16440_none_64b26f66307f41c6\url.dll

[2011-12-14 16:35] - [2011-11-04 02:43] - 0237056 ____A (Microsoft Corporation) 5E884DF1BD2BBDEA61FB88E16EA41485

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16437_none_64c441583070d736\url.dll

[2011-11-10 20:32] - [2011-09-01 06:16] - 0237056 ____A (Microsoft Corporation) BE7363676BE97E723D706E2DD38E1189

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16421_none_64c90f88306e233b\url.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 0236544 ____A (Microsoft Corporation) F29E3B8DE8EEB5D4BD248EF8BBF7B365

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_8.0.7600.16385_none_66da0a24ee7d5fb4\url.dll

[2009-07-14 00:58] - [2009-07-14 02:41] - 0134144 ____A (Microsoft Corporation) D04812703886D98EF66CEEDCAEC12A71

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_a455cc0e05e6a1a1\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 00:50] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20565_none_a4629c8e05dcb85e\ieUnatt.exe

[2012-12-13 10:12] - [2012-11-14 04:56] - 0173056 ____A (Microsoft Corporation) E4493A5FB2096246094B6AB5BA469C00

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20562_none_a45f9bb005df6c59\ieUnatt.exe

[2012-11-17 02:50] - [2012-10-08 11:05] - 0173056 ____A (Microsoft Corporation) 157DF105A5765A137FB855C84D7D3BC4

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20557_none_a46f6d0e05d2cf1b\ieUnatt.exe

[2012-09-23 01:05] - [2012-08-24 10:48] - 0173056 ____A (Microsoft Corporation) F99AF203F487E3FBBE8E4235C1C89BC8

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20554_none_a46c6c3005d58316\ieUnatt.exe

[2012-08-16 23:48] - [2012-06-29 02:47] - 0173056 ____A (Microsoft Corporation) 4FCF85CBAB5994A12A49A5D21C159225

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20553_none_a46b6be605d669bf\ieUnatt.exe

[2012-07-11 15:45] - [2012-06-02 12:04] - 0173056 ____A (Microsoft Corporation) 2C17158B3D79709FED0B1541493E7446

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20551_none_a4696b5205d83711\ieUnatt.exe

[2012-06-12 21:23] - [2012-05-18 01:42] - 0173056 ____A (Microsoft Corporation) 1275E1AB51BF334E8E56E0FEF6430E6D

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_a3d7ff78ecbfff3d\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 02:07] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16457_none_a3e5d042ecb52f51\ieUnatt.exe

[2012-12-13 10:12] - [2012-11-14 06:57] - 0173056 ____A (Microsoft Corporation) 673A1369C77B7A405B97A619848F6757

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16455_none_a3e3cfaeecb6fca3\ieUnatt.exe

[2012-11-17 02:50] - [2012-10-08 12:18] - 0173056 ____A (Microsoft Corporation) DE35C7EEE60336A117F4E1E47695BC3A

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16450_none_a3dece3cecbb7df0\ieUnatt.exe

[2012-09-23 01:05] - [2012-08-24 11:14] - 0173056 ____A (Microsoft Corporation) FFE777CA06F74478C74CE761F4214152

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16448_none_a3f1a078ecac2cb7\ieUnatt.exe

[2012-08-16 23:48] - [2012-06-29 04:43] - 0173056 ____A (Microsoft Corporation) C66041DB93C7B5EDCEF17319DA5682DC

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16447_none_a3f0a02eecad1360\ieUnatt.exe

[2012-07-11 15:45] - [2012-06-02 13:01] - 0173056 ____A (Microsoft Corporation) 573BA161EE8D49F9AED48A72096158EB

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16446_none_a3ef9fe4ecadfa09\ieUnatt.exe

[2012-06-12 21:23] - [2012-05-18 02:55] - 0173056 ____A (Microsoft Corporation) D3CE292FE512582E9B4097B916D6F495

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16421_none_a4003e4aeca24374\ieUnatt.exe

[2011-10-04 11:01] - [2011-10-04 11:01] - 0173056 ____A (Microsoft Corporation) A3886C17DE88FDEB66CDE4A85B97B508

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_8.0.7600.16385_none_a61138e7aab17fed\ieUnatt.exe

[2009-07-14 00:58] - [2009-07-14 02:39] - 0171008 ____A (Microsoft Corporation) 3F239DC36DACC36894F83026C483DDD8

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_29d6e3e0c2b20c2b\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 00:56] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20565_none_29e3b460c2a822e8\urlmon.dll

[2012-12-13 10:12] - [2012-11-14 05:01] - 1346048 ____A (Microsoft Corporation) 11E2F7523DC8E38A341577AA367EFEC0

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20562_none_29e0b382c2aad6e3\urlmon.dll

[2012-11-17 02:50] - [2012-10-08 11:12] - 1346048 ____A (Microsoft Corporation) 0A9748D70B523023D7E806F5310C0D9E

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20557_none_29f084e0c29e39a5\urlmon.dll

[2012-09-23 01:05] - [2012-08-24 10:54] - 1346048 ____A (Microsoft Corporation) 9B3089693741F103ECDC48AB98BA4A7C

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20554_none_29ed8402c2a0eda0\urlmon.dll

[2012-08-16 23:48] - [2012-06-29 02:52] - 1346048 ____A (Microsoft Corporation) 9101747C3D532E75008BCEAF33AA2A67

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20553_none_29ec83b8c2a1d449\urlmon.dll

[2012-07-11 15:45] - [2012-06-02 12:10] - 1346048 ____A (Microsoft Corporation) BBAF6ECE491034A19AE4B60C505547F6

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20551_none_29ea8324c2a3a19b\urlmon.dll

[2012-06-12 21:23] - [2012-05-18 01:48] - 1346048 ____A (Microsoft Corporation) 9B1EAF190047BE758AF80B6A32328BBD

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20548_none_29fc5516c295370b\urlmon.dll

[2012-04-12 21:28] - [2012-02-28 04:10] - 1345536 ____A (Microsoft Corporation) C03F6C11E7F1833917240FED40CE1E9F

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20546_none_29fa5482c297045d\urlmon.dll

[2012-02-17 11:37] - [2011-12-14 07:11] - 1345536 ____A (Microsoft Corporation) 968AA416BCBF991C891340258A9741B2

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20544_none_29f853eec298d1af\urlmon.dll

[2011-12-14 16:35] - [2011-11-04 03:20] - 1345536 ____A (Microsoft Corporation) FD657C32140177DB707064ED8FC0E177

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20537_none_2a0624b8c28e01c3\urlmon.dll

[2011-11-10 20:32] - [2011-09-01 05:40] - 1344512 ____A (Microsoft Corporation) 20C799689410EA9E10390B4FECCE854E

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20530_none_29ff22b2c2945062\urlmon.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 1344000 ____A (Microsoft Corporation) 9406F09BD738F28D6F2653FCF0E645C4

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_2959174ba98b69c7\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16457_none_2966e815a98099db\urlmon.dll

[2012-12-13 10:12] - [2012-11-14 07:04] - 1346048 ____A (Microsoft Corporation) 1DBA462CF92D890D8F8E6472E7E8B4B4

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16455_none_2964e781a982672d\urlmon.dll

[2012-11-17 02:50] - [2012-10-08 12:24] - 1346048 ____A (Microsoft Corporation) E519FD2CE6D57062400537C95C3B17FD

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16450_none_295fe60fa986e87a\urlmon.dll

[2012-09-23 01:05] - [2012-08-24 11:22] - 1346048 ____A (Microsoft Corporation) 2885A3C3148F725CDA0B4C593BA8F7CE

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16448_none_2972b84ba9779741\urlmon.dll

[2012-08-16 23:48] - [2012-06-29 04:49] - 1346048 ____A (Microsoft Corporation) 7F7FE11DF2D67B36DFE5013881619A94

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16447_none_2971b801a9787dea\urlmon.dll

[2012-07-11 15:45] - [2012-06-02 13:05] - 1346048 ____A (Microsoft Corporation) E8FD953D416772794408A68CC20B247D

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16446_none_2970b7b7a9796493\urlmon.dll

[2012-06-12 21:23] - [2012-05-18 02:59] - 1346048 ____A (Microsoft Corporation) CDB011A0A4E0CBAED9C26977365EE584

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16443_none_296db6d9a97c188e\urlmon.dll

[2012-04-12 21:28] - [2012-02-28 07:50] - 1345536 ____A (Microsoft Corporation) 159A2FA05850C3FC2F35DF92542CC573

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16441_none_296bb645a97de5e0\urlmon.dll

[2012-02-17 11:37] - [2011-12-14 08:04] - 1345536 ____A (Microsoft Corporation) DA90E416739ACEE896FE0A411BEEFC9C

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16440_none_296ab5fba97ecc89\urlmon.dll

[2011-12-14 16:35] - [2011-11-04 02:46] - 1345536 ____A (Microsoft Corporation) 0AD86555E7511D6BC4D04CBF6BCA31B6

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16437_none_297c87eda97061f9\urlmon.dll

[2011-11-10 20:32] - [2011-09-01 06:18] - 1344512 ____A (Microsoft Corporation) 5A45CA615944C38CC7D30A0785B631A1

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16430_none_297585e7a976b098\urlmon.dll

[2011-10-04 11:22] - [2011-10-04 11:22] - 1344000 ____A (Microsoft Corporation) DFA0B8720CD43FBF774E4E3E130F75BE

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16421_none_2981561da96dadfe\urlmon.dll

[2011-10-04 11:01] - [2011-10-04 11:01] - 1344000 ____A (Microsoft Corporation) A6D4AE85D9316DDC27E9F8763BD512CD

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_8.0.7601.17514_none_2dc36482646b6e11\urlmon.dll

[2010-11-21 04:24] - [2010-11-21 04:24] - 1490944 ____A (Microsoft Corporation) 5FADA8B707318E1BD63A7E2B81E6C8CB

 

C:\Windows\SysWOW64\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 22:59] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\SysWOW64\url.dll

[2013-02-14 14:00] - [2013-01-08 23:01] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\SysWOW64\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\SysWOW64\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 22:58] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\System32\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 02:07] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\System32\url.dll

[2013-02-14 14:00] - [2013-01-09 02:10] - 0237056 ____A (Microsoft Corporation) FC94371FCE85F391F976F2BB560367CF

 

C:\Windows\System32\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

C:\Windows\System32\vbscript.dll

[2013-02-14 14:00] - [2013-01-09 02:07] - 0599040 ____A (Microsoft Corporation) BD69A0116B11A91761AB30A25DCB4C9D

 

====== End Of Search ======

 

 

[picasso]

Przez nieuwagę nie dopisałam pliku apletu Opcji internetowych inetcpl.cpl na szukanie. Dodaj mi log z takim warunkiem wyszukiwania. A co do pokazanych tu wyników:

 

Dokładny spis wszystkich uszkodzonych komponentów w wersjach 9.4.8112.16464 i 9.4.8112.20573:

 

 

  Pokaż ukrytą zawartość

 

================== Search: "URLMON.dll;url.dll;vbscript.dll;ieUnatt.exe" ===================

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_090001c791551032\url.dll

[2013-02-14 14:00] - [2013-01-08 21:40] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16464_none_08823532782e6dce\url.dll

[2013-02-14 14:00] - [2013-01-08 23:01] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_cdb8485d0a549af5\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 21:42] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_cd3a7bc7f12df891\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20573_none_c7a279a64e2fe61c\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 21:36] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16464_none_c724ad11350943b8\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 22:58] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_aeaa76603a47639c\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 21:37] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_ae2ca9cb2120c138\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 22:59] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_651e9d4b49b28168\url.dll

[2013-02-14 14:00] - [2013-01-09 00:53] - 0237056 ____A () 625E3E643559D386D809FC1F29B94496

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_a455cc0e05e6a1a1\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 00:50] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_a3d7ff78ecbfff3d\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 02:07] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_29d6e3e0c2b20c2b\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 00:56] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_2959174ba98b69c7\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

C:\Windows\SysWOW64\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-08 22:59] - 0142848 ____A () 31478AB932E13E1C1D7B15EA886D4753

 

C:\Windows\SysWOW64\url.dll

[2013-02-14 14:00] - [2013-01-08 23:01] - 0231936 ____A () 1752C7911C8D04385737B333B6372EBE

 

C:\Windows\SysWOW64\urlmon.dll

[2013-02-14 14:00] - [2013-01-08 23:03] - 1103872 ____A () 917F61FBA469FE1A503AC3F1855DF823

 

C:\Windows\SysWOW64\vbscript.dll

[2013-02-14 14:00] - [2013-01-08 22:58] - 0420864 ____A () 8F8BC430D9429DE431B2E041DADBCD6A

 

C:\Windows\System32\ieUnatt.exe

[2013-02-14 14:00] - [2013-01-09 02:07] - 0173056 ____A () AB5C0BAFEB45CCC15F9235F1E3F86C74

 

C:\Windows\System32\urlmon.dll

[2013-02-14 14:00] - [2013-01-09 02:12] - 1346048 ____A () 49FB6E73B5885B75F931B36E80A62FCA

 

 

 

 

1. Paczka plików w identycznych wersjach komponentów: KLIK. Podział wewnętrzny obowiązujący i nic nie przestawiaj. Folder "Pliki" z tej paczki umieść wprost na dysku z Windows, nie wiem jaka to litera.

 

2. Skrypt zamieniający pliki operujący na ścieżce C (FRST zmienia tymczasowo liternictwo). Do Notatnika wklej:

 

CMD: copy /y C:\Pliki\x64\16464\urlmon.dll C:\Windows\System32\urlmon.dll
CMD: copy /y C:\Pliki\x64\16464\urlmon.dll C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_2959174ba98b69c7\urlmon.dll
CMD: copy /y C:\Pliki\x64\20573\urlmon.dll C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_29d6e3e0c2b20c2b\urlmon.dll
CMD: copy /y C:\Pliki\x64\20573\url.dll C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_651e9d4b49b28168\url.dll
CMD: copy /y C:\Pliki\x64\16464\ieUnatt.exe C:\Windows\System32\ieUnatt.exe
CMD: copy /y C:\Pliki\x64\16464\ieUnatt.exe C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_a3d7ff78ecbfff3d\ieUnatt.exe
CMD: copy /y C:\Pliki\x64\20573\ieUnatt.exe C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_a455cc0e05e6a1a1\ieUnatt.exe
CMD: copy /y C:\Pliki\x86\16464\urlmon.dll C:\Windows\SysWOW64\urlmon.dll
CMD: copy /y C:\Pliki\x86\16464\urlmon.dll C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_cd3a7bc7f12df891\urlmon.dll
CMD: copy /y C:\Pliki\x86\20573\urlmon.dll C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_cdb8485d0a549af5\urlmon.dll
CMD: copy /y C:\Pliki\x86\16464\url.dll C:\Windows\SysWOW64\url.dll
CMD: copy /y C:\Pliki\x86\16464\url.dll C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16464_none_08823532782e6dce\url.dll
CMD: copy /y C:\Pliki\x86\20573\url.dll C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_090001c791551032\url.dll
CMD: copy /y C:\Pliki\x86\16464\vbscript.dll C:\Windows\SysWOW64\vbscript.dll
CMD: copy /y C:\Pliki\x86\16464\vbscript.dll C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16464_none_c724ad11350943b8\vbscript.dll
CMD: copy /y C:\Pliki\x86\20573\vbscript.dll C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20573_none_c7a279a64e2fe61c\vbscript.dll
CMD: copy /y C:\Pliki\x86\16464\ieUnatt.exe C:\Windows\SysWOW64\ieUnatt.exe
CMD: copy /y C:\Pliki\x86\16464\ieUnatt.exe C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_ae2ca9cb2120c138\ieUnatt.exe
CMD: copy /y C:\Pliki\x86\20573\ieUnatt.exe C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_aeaa76603a47639c\ieUnatt.exe

 

Plik zapisz pod nazwą fixlist.txt. Umieść obok narzędzia FRST.

 

3. Uruchom FRST i wybierz opcję Fix. Wynikowo powstanie log fixlog.txt. Pro forma przedstaw go.

 

Zakładając, że skrypt poprawnie się wykona, Windows zastartuje poprawnie i zostanie do nadrobienia kwestia pliku inetcpl.cpl.

 

 

 

.

[hocum]

1. Wyszukiwanie inetcpl.cpl:

 

 

  Pokaż ukrytą zawartość

 

Farbar Recovery Scan Tool (x64) Version: 17-02-2013 01

Ran by SYSTEM at 2013-02-20 10:12:58

Running from I:\

 

================== Search: "inetcpl.cpl" ===================

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_a80ed69185634019\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 21:42] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20565_none_a81ba711855956d6\inetcpl.cpl

[2012-12-13 10:12] - [2012-11-14 02:33] - 1427968 ____A (Microsoft Corporation) 7C8AF905D8DB2A18F865ACACCABA3200

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20562_none_a818a633855c0ad1\inetcpl.cpl

[2012-11-17 02:50] - [2012-10-08 08:37] - 1427968 ____A (Microsoft Corporation) 14E48FBFAF842E1C8AC67E21641D2136

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20557_none_a8287791854f6d93\inetcpl.cpl

[2012-09-23 01:05] - [2012-08-24 08:12] - 1427968 ____A (Microsoft Corporation) F36E843627A3DDD162D5509E6822920A

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20554_none_a82576b38552218e\inetcpl.cpl

[2012-08-16 23:48] - [2012-06-28 23:55] - 1427968 ____A (Microsoft Corporation) 24DBA6A800568F57F0DE65E6DD6163E5

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20553_none_a824766985530837\inetcpl.cpl

[2012-07-11 15:45] - [2012-06-02 09:16] - 1427968 ____A (Microsoft Corporation) 2841563BACB827FC5330944F613CCCF6

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20551_none_a82275d58554d589\inetcpl.cpl

[2012-06-12 21:23] - [2012-05-17 23:18] - 1427968 ____A (Microsoft Corporation) 19706F03377A8BC398AD099A76677FF5

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20548_none_a83447c785466af9\inetcpl.cpl

[2012-04-12 21:28] - [2012-02-28 01:58] - 1427456 ____A (Microsoft Corporation) 3135D9956E1B9127A39861BC32D10308

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20546_none_a83247338548384b\inetcpl.cpl

[2012-02-17 11:37] - [2011-12-14 03:28] - 1427456 ____A (Microsoft Corporation) 83CD22A9A49E145F8F9527DC484456BC

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20544_none_a830469f854a059d\inetcpl.cpl

[2011-12-14 16:35] - [2011-11-04 00:07] - 1427456 ____A (Microsoft Corporation) CB10970F5C026EDB0608F92EC3B64377

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16464_none_a79109fc6c3c9db5\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 23:03] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16457_none_a79edac66c31cdc9\inetcpl.cpl

[2012-12-13 10:12] - [2012-11-14 02:58] - 1427968 ____A (Microsoft Corporation) DE6652B4B4E9795B53142959FD02A4EB

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16455_none_a79cda326c339b1b\inetcpl.cpl

[2012-11-17 02:50] - [2012-10-08 08:47] - 1427968 ____A (Microsoft Corporation) 70D02070AC871E388654C4622215D589

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16450_none_a797d8c06c381c68\inetcpl.cpl

[2012-09-23 01:05] - [2012-08-24 07:51] - 1427968 ____A (Microsoft Corporation) 020C295B09C7DDAE8B13CB9DE0758B4A

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16448_none_a7aaaafc6c28cb2f\inetcpl.cpl

[2012-08-16 23:48] - [2012-06-29 01:08] - 1427968 ____A (Microsoft Corporation) A664679445BFF4FA5A39D933F1AD7F12

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16447_none_a7a9aab26c29b1d8\inetcpl.cpl

[2012-07-11 15:45] - [2012-06-02 09:25] - 1427968 ____A (Microsoft Corporation) F20D67994CAE796EABF2F57D04F9BADA

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16446_none_a7a8aa686c2a9881\inetcpl.cpl

[2012-06-12 21:23] - [2012-05-17 23:35] - 1427968 ____A (Microsoft Corporation) 65D69DFF0C67B0924F0FA576773AA18F

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16443_none_a7a5a98a6c2d4c7c\inetcpl.cpl

[2012-04-12 21:28] - [2012-02-28 02:11] - 1427456 ____A (Microsoft Corporation) 8D8BE3DCACEA6C8E52D506E7BAAEA2D4

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16441_none_a7a3a8f66c2f19ce\inetcpl.cpl

[2012-02-17 11:37] - [2011-12-14 03:56] - 1427456 ____A (Microsoft Corporation) A7D606507DC77F9C139B58EEDA6BF3FE

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16440_none_a7a2a8ac6c300077\inetcpl.cpl

[2011-12-14 16:35] - [2011-11-03 23:40] - 1427456 ____A (Microsoft Corporation) 059FD7158F7D5F16B838D6C6C8B15109

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16421_none_a7b948ce6c1ee1ec\inetcpl.cpl

[2011-10-04 11:01] - [2011-10-04 11:01] - 1427456 ____A (Microsoft Corporation) 11086A81EB001967452FF9EC8B926613

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_8.0.7601.17514_none_abfb5733271ca1ff\inetcpl.cpl

[2010-11-21 04:25] - [2010-11-21 04:25] - 1466368 ____A (Microsoft Corporation) 689C8B052E742E054402359F3685FE10

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_042d72153dc0b14f\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-09 00:54] - 1494528 ____A () 2CE9B5379279DB37CEE6C216735F39AD

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20565_none_043a42953db6c80c\inetcpl.cpl

[2012-12-13 10:12] - [2012-11-14 04:59] - 1494528 ____A (Microsoft Corporation) 7520BC489F649D41A95AA0572CE91A5C

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20562_none_043741b73db97c07\inetcpl.cpl

[2012-11-17 02:50] - [2012-10-08 11:10] - 1494528 ____A (Microsoft Corporation) 962C89C1D84904444AB033F25BA62AAF

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20557_none_044713153dacdec9\inetcpl.cpl

[2012-09-23 01:05] - [2012-08-24 10:52] - 1494528 ____A (Microsoft Corporation) 479C3BD99156E0792ADD19CDE5F820FA

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20554_none_044412373daf92c4\inetcpl.cpl

[2012-08-16 23:48] - [2012-06-29 02:51] - 1494528 ____A (Microsoft Corporation) FC5894D1035C1973BEC7ED56F11F16D9

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20553_none_044311ed3db0796d\inetcpl.cpl

[2012-07-11 15:45] - [2012-06-02 12:08] - 1494528 ____A (Microsoft Corporation) 1B3861B92D593A5465AC18819E691AAB

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20551_none_044111593db246bf\inetcpl.cpl

[2012-06-12 21:23] - [2012-05-18 01:46] - 1494528 ____A (Microsoft Corporation) 84535641854F8948182B4329DF666193

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20548_none_0452e34b3da3dc2f\inetcpl.cpl

[2012-04-12 21:28] - [2012-02-28 04:09] - 1493504 ____A (Microsoft Corporation) 379B08F69FA505148F54D732DCEB1687

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20546_none_0450e2b73da5a981\inetcpl.cpl

[2012-02-17 11:37] - [2011-12-14 07:11] - 1493504 ____A (Microsoft Corporation) 17D852FBC91C8FC9B84EDC71F59DAB1B

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20544_none_044ee2233da776d3\inetcpl.cpl

[2011-12-14 16:35] - [2011-11-04 03:18] - 1493504 ____A (Microsoft Corporation) F784FF470C94126DD2119C58053417A3

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16464_none_03afa580249a0eeb\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-09 02:11] - 1494528 ____A (Microsoft Corporation) 5A4BC13F8C53017C9147B448870562CD

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16457_none_03bd764a248f3eff\inetcpl.cpl

[2012-12-13 10:12] - [2012-11-14 07:02] - 1494528 ____A (Microsoft Corporation) FD126186C7434D5214093A4A87A0D63F

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16455_none_03bb75b624910c51\inetcpl.cpl

[2012-11-17 02:50] - [2012-10-08 12:22] - 1494528 ____A (Microsoft Corporation) 11103CC5A1A78E347BBDDAC564256D1A

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16450_none_03b6744424958d9e\inetcpl.cpl

[2012-09-23 01:05] - [2012-08-24 11:20] - 1494528 ____A (Microsoft Corporation) 653D9EC63F8A03185B4DC5DF21AC0A1A

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16448_none_03c9468024863c65\inetcpl.cpl

[2012-08-16 23:48] - [2012-06-29 04:48] - 1494528 ____A (Microsoft Corporation) F82044FA23BCBA1BD7453435C9ED30B9

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16447_none_03c846362487230e\inetcpl.cpl

[2012-07-11 15:45] - [2012-06-02 13:04] - 1494528 ____A (Microsoft Corporation) CC06D5777831BE933D4A8519B9198D50

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16446_none_03c745ec248809b7\inetcpl.cpl

[2012-06-12 21:23] - [2012-05-18 02:58] - 1494528 ____A (Microsoft Corporation) 96D7E28CB0010DB5CF3893423F6E6D71

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16443_none_03c4450e248abdb2\inetcpl.cpl

[2012-04-12 21:28] - [2012-02-28 07:48] - 1493504 ____A (Microsoft Corporation) A768E12BB693768C9940A66D3D2DB965

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16441_none_03c2447a248c8b04\inetcpl.cpl

[2012-02-17 11:37] - [2011-12-14 08:03] - 1493504 ____A (Microsoft Corporation) 1281F304A8D8278C3A35C7DDBFEDFF37

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16440_none_03c14430248d71ad\inetcpl.cpl

[2011-12-14 16:35] - [2011-11-04 02:44] - 1493504 ____A (Microsoft Corporation) 6066B38AE3F355113746515998A2FDB0

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16421_none_03d7e452247c5322\inetcpl.cpl

[2011-10-04 11:01] - [2011-10-04 11:01] - 1492992 ____A (Microsoft Corporation) CDBB96D9C82B6E1BAFD0B83369070B7B

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_8.0.7601.17514_none_0819f2b6df7a1335\inetcpl.cpl

[2010-11-21 04:24] - [2010-11-21 04:24] - 1538560 ____A (Microsoft Corporation) FCFF56E69B4961BFB2599E14E7EB7FDE

 

C:\Windows\SysWOW64\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 23:03] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

C:\Windows\System32\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-09 02:11] - 1494528 ____A (Microsoft Corporation) 5A4BC13F8C53017C9147B448870562CD

 

====== End Of Search ======

 

 

 

2. Log z Fix'a:

 

 

  Pokaż ukrytą zawartość

 

Fix result of Farbar Recovery Tool (FRST written by Farbar) (x64) Version: 17-02-2013 01

Ran by SYSTEM at 2013-02-20 10:14:29 Run:1

Running from I:\

 

==============================================

 

 

========= copy /y C:\Pliki\x64\16464\urlmon.dll C:\Windows\System32\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\16464\urlmon.dll C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_2959174ba98b69c7\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\20573\urlmon.dll C:\Windows\winsxs\amd64_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_29d6e3e0c2b20c2b\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\20573\url.dll C:\Windows\winsxs\amd64_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_651e9d4b49b28168\url.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\16464\ieUnatt.exe C:\Windows\System32\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\16464\ieUnatt.exe C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_a3d7ff78ecbfff3d\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x64\20573\ieUnatt.exe C:\Windows\winsxs\amd64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_a455cc0e05e6a1a1\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\urlmon.dll C:\Windows\SysWOW64\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\urlmon.dll C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.16464_none_cd3a7bc7f12df891\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\20573\urlmon.dll C:\Windows\winsxs\x86_microsoft-windows-i..ersandsecurityzones_31bf3856ad364e35_9.4.8112.20573_none_cdb8485d0a549af5\urlmon.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\url.dll C:\Windows\SysWOW64\url.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\url.dll C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.16464_none_08823532782e6dce\url.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\20573\url.dll C:\Windows\winsxs\x86_microsoft-windows-ie-winsockautodialstub_31bf3856ad364e35_9.4.8112.20573_none_090001c791551032\url.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\vbscript.dll C:\Windows\SysWOW64\vbscript.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\vbscript.dll C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.16464_none_c724ad11350943b8\vbscript.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\20573\vbscript.dll C:\Windows\winsxs\wow64_microsoft-windows-scripting-vbscript_31bf3856ad364e35_9.4.8112.20573_none_c7a279a64e2fe61c\vbscript.dll =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\ieUnatt.exe C:\Windows\SysWOW64\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\16464\ieUnatt.exe C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.16464_none_ae2ca9cb2120c138\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

========= copy /y C:\Pliki\x86\20573\ieUnatt.exe C:\Windows\winsxs\wow64_microsoft-windows-ie-internetexplorer_31bf3856ad364e35_9.4.8112.20573_none_aeaa76603a47639c\ieUnatt.exe =========

 

System nie moľe odnale«"  okre˜lonej ˜cieľki.

 

========= End of CMD: =========

 

 

==== End of Fixlog ====

 

 

 

3. A po tym wszystkim ten sam BSOD.

 

offtop. Czy ty w ogóle sypiasz Picasso? thx za pomoc.

[peter2012]

Fix się w ogóle nie wykonał. Na pewno umieściłeś folder Pliki tam gdzie trzeba (tj. na partycji z plikami Windows)?

[hocum]

ok

Poprawione, mój błąd.

Podczas rozpakowywania 7zip'em kazałem mu założyć katalog Pliki i wyszło \Pliki\Pliki\....

stąd problem

Wszystkie pliki skopiowały sie poprawnie, win sie podniósł.

 

To została jeszcze sprawa inetcpl.cpl

 

Rozwalony jeszcze jest IE9 x32

[picasso]

  Cytat

To została jeszcze sprawa inetcpl.cpl

 

Rozwalony jeszcze jest IE9 x32

 

Musisz nieco poczekać na dostarczenie poprawnych wersji pliku inetcpl.cpl. Chwilowo nie mogę uruchomić wirtualnej maszyny x64, by podebrać identyczne komponenty.

 

"Rozwalonego IE" tu nie opisałeś dostatecznie jasno. Nie sugerujesz się aby Opcjami internetowymi (uszkodzony plik CPL)? Dopóki ten plik nie zostanie podstawiony, nie można oceniać stanu IE.

 

 

 

.

[hocum]

ok, mam jeszcze jednego Laptopa z tym samym systemem (taki sam lap i win).

jaka wersje pliku muszę podegrac

 

Co do IE to działa mi wersja x64 a nie działa 32bit.

Mam taki komunikat

[picasso]

Uszkodzone wystąpienia inetcpl.cpl:

 

 

  Pokaż ukrytą zawartość

 

================== Search: "inetcpl.cpl" ===================

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_a80ed69185634019\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 21:42] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16464_none_a79109fc6c3c9db5\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 23:03] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_042d72153dc0b14f\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-09 00:54] - 1494528 ____A () 2CE9B5379279DB37CEE6C216735F39AD

 

C:\Windows\SysWOW64\inetcpl.cpl

[2013-02-14 14:00] - [2013-01-08 23:03] - 1427968 ____A () 57711120600EE484CE7B1AFEC6E15346

 

 

 

 

Pliki podmień z poziomu płyty za pomocą FRST, by nie babrać się w uprawnieniach:

 

1. Paczka: KLIK. Lokujesz tam gdzie poprzednio.

 

2. Skrypt do FRST:

 

CMD: copy /y C:\Pliki\x86\16464\inetcpl.cpl C:\Windows\SysWOW64\inetcpl.cpl
CMD: copy /y C:\Pliki\x86\16464\inetcpl.cpl C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.16464_none_a79109fc6c3c9db5\inetcpl.cpl
CMD: copy /y C:\Pliki\x86\20573\inetcpl.cpl C:\Windows\winsxs\x86_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_a80ed69185634019\inetcpl.cpl
CMD: copy /y C:\Pliki\x64\20573\inetcpl.cpl C:\Windows\winsxs\amd64_microsoft-windows-i..nternetcontrolpanel_31bf3856ad364e35_9.4.8112.20573_none_042d72153dc0b14f\inetcpl.cpl

 

3. Sprawdź czy zgłasza się błąd z obrazka. Jeśli tak, uruchom SystemLook x64 i w oknie wklej:

 

:filefind

iexplore.exe

 

Klik w Look.

 

 

 

.

[hocum]

Inetcpl skopiował sie bez problemów.

 

log z systemLooka_x64

 

SystemLook 30.07.11 by jpshortstuff
Log created at 22:07 on 21/02/2013 by Hoc
Administrator - Elevation successful

========== filefind ==========

Searching for "iexplore.exe"
C:\Program Files\Internet Explorer\iexplore.exe --a---- 763424 bytes [13:00 14/02/2013] [01:53 09/01/2013] 0100BCF23941C83462E4A70F94C3392E
C:\Program Files (x86)\Internet Explorer\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [22:42 08/01/2013] FC1C091439C493F317CF8E357878FF40
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_8.0.7601.17514_none_1196a9003b674a92\iexplore.exe --a---- 695056 bytes [03:24 21/11/2010] [03:24 21/11/2010] 86257731DDB311FBC283534CC0091634
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16421_none_0d549a9b80698a7f\iexplore.exe --a---- 754480 bytes [10:01 04/10/2011] [10:01 04/10/2011] F1424C1B9B1813BF825E45DF3790BC8A
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16446_none_0d43fc3580754114\iexplore.exe --a---- 754808 bytes [20:23 12/06/2012] [02:51 18/05/2012] 4E99F42504A99D5024C2EFA015001937
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16447_none_0d44fc7f80745a6b\iexplore.exe --a---- 754808 bytes [14:45 11/07/2012] [12:52 02/06/2012] 610F6596921C4BAA8834ADBB9BE272EE
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16448_none_0d45fcc9807373c2\iexplore.exe --a---- 754784 bytes [22:48 16/08/2012] [05:02 29/06/2012] 1223ACBFC1093852DFF039E189599BBD
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16450_none_0d332a8d8082c4fb\iexplore.exe --a---- 754824 bytes [00:05 23/09/2012] [11:23 24/08/2012] 2D53C5F71653EF94E7829846405D4ED2
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16455_none_0d382bff807e43ae\iexplore.exe --a---- 754848 bytes [01:50 17/11/2012] [12:29 08/10/2012] 49442BA6DCE4B4E3C1CB0AB193FE29AD
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16457_none_0d3a2c93807c765c\iexplore.exe --a---- 763424 bytes [09:12 13/12/2012] [07:11 14/11/2012] FD0D2E1FAEBAE5031BE2EB8000D973F1
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_0d2c5bc980874648\iexplore.exe --a---- 763424 bytes [13:00 14/02/2013] [01:53 09/01/2013] 0100BCF23941C83462E4A70F94C3392E
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20551_none_0dbdc7a2999f7e1c\iexplore.exe --a---- 754808 bytes [20:23 12/06/2012] [01:37 18/05/2012] F8B2D47ED17C1D087D14EC747E5AC57A
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20553_none_0dbfc836999db0ca\iexplore.exe --a---- 754808 bytes [14:45 11/07/2012] [11:47 02/06/2012] 004640AB259C1572EBD5FB0A32F63686
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20554_none_0dc0c880999cca21\iexplore.exe --a---- 754808 bytes [22:48 16/08/2012] [02:45 29/06/2012] 5D03518409F37D1483C98869D86E23FF
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20557_none_0dc3c95e999a1626\iexplore.exe --a---- 754824 bytes [00:05 23/09/2012] [10:49 24/08/2012] 5A150AFABB25BEA50CEDC8650A7B8A9E
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20562_none_0db3f80099a6b364\iexplore.exe --a---- 754824 bytes [01:50 17/11/2012] [11:09 08/10/2012] F61714ABCF9BF0CEF0A6249AD4FD490B
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20565_none_0db6f8de99a3ff69\iexplore.exe --a---- 763424 bytes [09:12 13/12/2012] [03:08 16/11/2012] AC4957E154F750DF54F36ADC8E3E040D
C:\Windows\winsxs\amd64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_0daa285e99ade8ac\iexplore.exe --a---- 763424 bytes [13:00 14/02/2013] [00:51 09/01/2013] E3A9B4B4A5C1AB3D903A695B815055B3
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_8.0.7601.17514_none_1beb53526fc80c8d\iexplore.exe --a---- 673040 bytes [03:25 21/11/2010] [03:25 21/11/2010] C613E69C3B191BB02C7A191741A1D024
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16421_none_17a944edb4ca4c7a\iexplore.exe --a---- 748336 bytes [10:01 04/10/2011] [10:01 04/10/2011] 904E13BA41AF2E353A32CF351CA53639
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16446_none_1798a687b4d6030f\iexplore.exe --a---- 748664 bytes [20:23 12/06/2012] [23:21 17/05/2012] 0129BB16161C2FD9A6B19111AB047198
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16447_none_1799a6d1b4d51c66\iexplore.exe --a---- 748664 bytes [14:45 11/07/2012] [09:08 02/06/2012] 34B01BBD8F00B6B9C9248DC4F1E3CD01
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16448_none_179aa71bb4d435bd\iexplore.exe --a---- 748664 bytes [22:48 16/08/2012] [01:00 29/06/2012] 93569D46D79F9756ED077156496AFE23
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16450_none_1787d4dfb4e386f6\iexplore.exe --a---- 748680 bytes [00:05 23/09/2012] [07:34 24/08/2012] 22CC6CDBA678790046693654C3B212E4
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16455_none_178cd651b4df05a9\iexplore.exe --a---- 748704 bytes [01:50 17/11/2012] [08:37 08/10/2012] 270A1342BD5AF95CA25A586B4C2F1522
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16457_none_178ed6e5b4dd3857\iexplore.exe --a---- 757296 bytes [09:12 13/12/2012] [02:56 14/11/2012] 0D286C0FE561D1A7EB30E83A0FF305B2
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_1781061bb4e80843\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [22:42 08/01/2013] FC1C091439C493F317CF8E357878FF40
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20551_none_181271f4ce004017\iexplore.exe --a---- 748664 bytes [20:23 12/06/2012] [22:59 17/05/2012] 268982F1FD671A077C6A2AF41E351436
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20553_none_18147288cdfe72c5\iexplore.exe --a---- 748664 bytes [14:45 11/07/2012] [08:51 02/06/2012] BE967C74B89577B78FB57C061E12B04C
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20554_none_181572d2cdfd8c1c\iexplore.exe --a---- 748664 bytes [22:48 16/08/2012] [23:35 28/06/2012] EB4105348272018D096FEB655CD1608C
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20557_none_181873b0cdfad821\iexplore.exe --a---- 748680 bytes [00:05 23/09/2012] [07:49 24/08/2012] 62188720CE27B982B4285C03163C9FB3
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20562_none_1808a252ce07755f\iexplore.exe --a---- 748704 bytes [01:50 17/11/2012] [08:22 08/10/2012] CECB15F834FC2B4B150449717ADE18DD
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20565_none_180ba330ce04c164\iexplore.exe --a---- 757280 bytes [09:12 13/12/2012] [02:19 14/11/2012] F691418EE9A6344AEB5C1B0518FBF8AE
C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_17fed2b0ce0eaaa7\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [21:32 08/01/2013] FC1C091439C493F317CF8E357878FF40

-= EOF =-

[picasso]

Istotnie, 32-bitowy wykonywalny też uszkodzony, trzy wystąpienia.

 

 

  Pokaż ukrytą zawartość

 

Twój układ:

 

C:\Program Files (x86)\Internet Explorer\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [22:42 08/01/2013] FC1C091439C493F317CF8E357878FF40

 

C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_1781061bb4e80843\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [22:42 08/01/2013] FC1C091439C493F317CF8E357878FF40

 

C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_17fed2b0ce0eaaa7\iexplore.exe --a---- 757280 bytes [13:00 14/02/2013] [21:32 08/01/2013] FC1C091439C493F317CF8E357878FF40

 

 

Mój układ:

 

C:\Program Files (x86)\Internet Explorer\iexplore.exe --a---- 757280 bytes [02:00 18/02/2013] [22:42 08/01/2013] 698EB1E5F8C66344D97C00B5699E871D

 

C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_1781061bb4e80843\iexplore.exe --a---- 757280 bytes [02:00 18/02/2013] [22:42 08/01/2013] 698EB1E5F8C66344D97C00B5699E871D

 

C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_17fed2b0ce0eaaa7\iexplore.exe --a---- 757280 bytes [02:00 18/02/2013] [21:32 08/01/2013] F05982E56ABD835AA8DF260EEC873E5B

 

 

 

 

1. Paczka: KLIK. Lokujesz tam gdzie poprzednio.

 

2. Skrypt do FRST:

 

CMD: copy /y C:\Pliki\16464\iexplore.exe "C:\Program Files (x86)\Internet Explorer\iexplore.exe"
CMD: copy /y C:\Pliki\16464\iexplore.exe C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.16464_none_1781061bb4e80843\iexplore.exe
CMD: copy /y C:\Pliki\20573\iexplore.exe C:\Windows\winsxs\wow64_microsoft-windows-i..etexplorer-optional_31bf3856ad364e35_9.4.8112.20573_none_17fed2b0ce0eaaa7\iexplore.exe

 

 

Wypowiedz się wyraźnie czy jest nadal problem z Internet Explorer.

 

 

.

 

[hocum]

Poszło bez problemu.

IE działa dobrze.

Bardzo dziękuję za pomoc

 

Mam jeszcze jeden problem ale raczej nie związany z ta awarią, bateria ładuje mi sie do 25% i więcej nie da rady.

Ale w tej sprawie napadnę support Della niech oni sie pocą nad tym problemem.

pozdrawiam