Skocz do zawartości
Zakładanie tematu: pomocne raporty i informacje
Nadchodzące zmiany w logowaniu

Nagłe spowolnienie pracy komputera, 100% CPU

konrad

Przez konrad
w Windows 7

Rekomendowane odpowiedzi

konrad

konrad

Opublikowano
Opublikowano

Witam wszystkich.

 

Od kilku dni praca na moim komputerze jest praktycznie niemożliwa. Po kilku minutach od włączenia zuzycie procesora wzrasta do 100%, jestem w stanie korzystać z jednego programu naraz, gdy włączę np. outlooka i skype wszystko masakrycznie zwalnia, wpisanie zdania w okienko komunikatora czy włączenie pasjansa trwa kilka minut i dotyczy to wszystkich działań na komputerze.

 

Po kilkuminutowym korzystaniu z internetu pojawia się ten sam problem, CPU 100% i korztanie z fejsbuka jest praktycznie niemozliwe. Gdy wlączam film na youtube, po kilku minutach zaczyna mi sie wieszać, trzeszczeć i przerywać zarówno obraz jak i dźwięk. Podobnie to wygląda gdy odpalam film z dysku, samo włączenie może trwać kilka minut.

 

Komputer zwalnia nagle, niezaleznie od tego co robie i z czego korzystam, muli i sie męczy przez kilkadziesiąt minut do kilku godzin, czasem nagle zaczyna działać normalnie i szybko jak kiedyś, zużycie CPU spada do ok 10%.

 

Nie mam zbyt mocnego sprzętu, ale do tej pory bez problemów mogłem oglądać filmy z dysku i z internetu, grałem w World of Tanks, obrabiałem zdjęcia w photoshopie i przygotowywałem pokazy slajdów, z netu mogłem korzystac godzinami bez najmniejszych problemów itd. Problem pojawił się mniej więcej tydzień temu.

 

Korzystałem z CCleanera i TuneUp'a

Skanowałem Avastem i Trojankillerem

Wrzuciłem logi na hijackthis.de i żadnych zagrożeń nie wykryło.

 

Sprzęt:

HP Pavilion dv 6500

Procesor Intel Core 2 Duo CPU T5450 1.66 Hz 1.67 GHz

Zainstalowny ram 4gb ddr2 z czego 3 dostępne

Grafika GeForce 8400M GS

32bitowy system Windows 7, service pack 1

 

Prosze o pomoc,

pozdrawiam!

Odnośnik do komentarza
Pomoc jest darmowa, ale proszę rozważ przekazanie dotacji na utrzymanie serwisu: klik.
picasso

picasso

Opublikowano
Opublikowano

Poproszę o standardowe logi z OTL do oceny zestawu startowego i innych aspektów.

 

 

Wrzuciłem logi na hijackthis.de i żadnych zagrożeń nie wykryło.

 

Nie radzę korzystać z tych "autoanalizerów", mogą pokazywać bzdury. Jeśli nie jesteś w stanie ocenić samodzielnie raportu, jest to równoznaczne z niezdolnością oceny pracy analizera. Ponadto, HijackThis? To przestarzały program, który nie pokazuje połowy lokalizacji, które należy aktualnie zweryfikować. OTL go bije na głowę.

 

 

 

.

Odnośnik do komentarza
konrad

konrad

Opublikowano
  • Autor
Opublikowano

Jeśli nie jesteś w stanie ocenić samodzielnie raportu, jest to równoznaczne z niezdolnością oceny pracy analizera.

 

Analizer ocenia logi, przy każdym wystawia cene typu safe, czy super safe wraz z nadaniem barwy, np zielony dla braku zagrożenia i ocena tego nie wymaga praktycznie żadnej wiedzy. Inna sprawa, czy ta ocena jest trafna czy nie.

 

 

Poproszę o standardowe logi z OTL do oceny zestawu startowego i innych aspektów.

 

Logi z OTL dołożę poniżej, padł mi komputer podczas skanowania

 

Przy okazji podaje linki do screeny: procesy i HWMonitor

 

 

1. http://gyazo.com/3827fe188a714fbf2630d3c1779e3e3e

2. http://gyazo.com/6a5888d939ac6439fd0530e8b8a5ece8

 

i pixhost

1. http://www.pixhost.org/show/3903/133...c1779e3e3e.png

2. http://www.pixhost.org/show/3903/133...e8b8a5ece8.png

 

HWMonitor:

1. http://gyazo.com/22b31b401b4edced97008191c3885d18

2. http://www.pixhost.org/show/3538/133...91c3885d18.png

Odnośnik do komentarza
konrad

konrad

Opublikowano
  • Autor
Opublikowano

Wklejam raport z OTL, dzięki za zainteresowanie, pozdrawiam i czekam na komentarz specjalisty

 

 

OTL logfile created on: 2012-07-06 00:15:05 - Run 1

OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Administrator\Downloads

Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation

Internet Explorer (Version = 9.0.8112.16421)

Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

 

3,00 Gb Total Physical Memory | 2,11 Gb Available Physical Memory | 70,48% Memory free

6,00 Gb Paging File | 5,10 Gb Available in Paging File | 85,14% Paging File free

Paging file location(s): ?:\pagefile.sys [binary data]

 

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files

Drive C: | 105,86 Gb Total Space | 26,17 Gb Free Space | 24,73% Space Free | Partition Type: NTFS

Drive D: | 5,93 Gb Total Space | 1,44 Gb Free Space | 24,22% Space Free | Partition Type: NTFS

 

Computer Name: KONRAD-KOMPUTER | User Name: Administrator | Logged in as Administrator.

Boot Mode: Normal | Scan Mode: Current user

Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 60 Days

 

========== Processes (SafeList) ==========

 

PRC - [2012-07-06 00:02:09 | 000,595,968 | ---- | M] (OldTimer Tools) -- C:\Users\Administrator\Downloads\OTL.exe

PRC - [2012-06-28 14:51:53 | 000,044,808 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe

PRC - [2012-06-28 14:51:51 | 004,273,976 | ---- | M] (AVAST Software) -- C:\Program Files\AVAST Software\Avast\AvastUI.exe

PRC - [2012-06-24 18:55:53 | 000,186,760 | ---- | M] () -- C:\Program Files\Photodex\ProShow Producer\scsiaccess.exe

PRC - [2012-06-15 00:17:36 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe

PRC - [2011-05-11 17:49:09 | 002,616,320 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe

PRC - [2010-11-20 23:29:19 | 000,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe

PRC - [2008-05-08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) -- C:\Windows\System32\Crypserv.exe

 

 

========== Modules (No Company Name) ==========

 

MOD - [2012-06-22 15:03:44 | 009,459,912 | ---- | M] () -- C:\Windows\System32\Macromed\Flash\NPSWF32_11_3_300_262.dll

MOD - [2012-06-15 00:17:55 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll

MOD - [2011-03-17 00:11:16 | 004,297,568 | ---- | M] () -- C:\Program Files\Common Files\microsoft shared\OFFICE14\Cultures\OFFICE.ODF

 

 

========== Win32 Services (SafeList) ==========

 

SRV - [2012-06-28 14:51:53 | 000,044,808 | ---- | M] (AVAST Software) [Auto | Running] -- C:\Program Files\AVAST Software\Avast\AvastSvc.exe -- (avast! Antivirus)

SRV - [2012-06-24 18:55:53 | 000,186,760 | ---- | M] () [Auto | Running] -- C:\Program Files\Photodex\ProShow Producer\scsiaccess.exe -- (ScsiAccess)

SRV - [2012-06-19 20:18:23 | 000,008,192 | ---- | M] () [Auto | Stopped] -- C:\Windows\System32\srvany.exe -- (KMService)

SRV - [2012-06-19 02:23:46 | 001,343,400 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\Wat\WatAdminSvc.exe -- (WatAdminSvc)

SRV - [2012-06-15 00:17:46 | 000,113,120 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)

SRV - [2012-06-07 19:12:14 | 000,160,944 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files\Skype\Updater\Updater.exe -- (SkypeUpdate)

SRV - [2011-06-12 11:15:00 | 031,125,880 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office14\GROOVE.EXE -- (Microsoft SharePoint Workspace Audit Service)

SRV - [2009-07-14 03:16:13 | 000,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)

SRV - [2009-07-14 03:16:12 | 001,004,544 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\System32\PeerDistSvc.dll -- (PeerDistSvc)

SRV - [2009-07-14 03:15:41 | 000,680,960 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)

SRV - [2008-05-08 01:29:38 | 000,122,880 | ---- | M] (CrypKey (Canada) Ltd.) [Auto | Running] -- C:\Windows\System32\Crypserv.exe -- (Crypkey License)

 

 

========== Driver Services (SafeList) ==========

 

DRV - File not found [Kernel | On_Demand | Stopped] -- System32\drivers\rdvgkmd.sys -- (VGPU)

DRV - [2012-06-28 14:52:42 | 000,353,688 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswSP.sys -- (aswSP)

DRV - [2012-06-28 14:52:42 | 000,054,232 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswTdi.sys -- (aswTdi)

DRV - [2012-06-28 14:52:37 | 000,721,000 | ---- | M] (AVAST Software) [File_System | System | Running] -- C:\Windows\System32\drivers\aswSnx.sys -- (aswSnx)

DRV - [2012-06-28 14:52:37 | 000,057,656 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt)

DRV - [2012-06-28 14:52:37 | 000,044,784 | ---- | M] (AVAST Software) [Kernel | System | Running] -- C:\Windows\System32\drivers\aswRdr2.sys -- (aswRdr)

DRV - [2012-06-28 14:52:36 | 000,021,256 | ---- | M] (AVAST Software) [File_System | Auto | Running] -- C:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk)

DRV - [2012-01-04 16:28:36 | 000,016,128 | ---- | M] (Windows ® Win 7 DDK provider) [File_System | On_Demand | Stopped] -- C:\Windows\System32\drivers\gtkdrv.sys -- (TrojanKillerDriver)

DRV - [2010-11-20 23:29:34 | 000,015,872 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)

DRV - [2010-11-20 23:29:24 | 000,052,224 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbFlt.sys -- (TsUsbFlt)

DRV - [2010-11-20 23:29:03 | 000,175,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vmbus.sys -- (vmbus)

DRV - [2010-11-20 23:29:03 | 000,112,640 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\tsusbhub.sys -- (tsusbhub)

DRV - [2010-11-20 23:29:03 | 000,077,184 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\Synth3dVsc.sys -- (Synth3dVsc)

DRV - [2010-11-20 23:29:03 | 000,062,464 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\dmvsc.sys -- (dmvsc)

DRV - [2010-11-20 23:29:03 | 000,040,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C:\Windows\System32\drivers\vmstorfl.sys -- (storflt)

DRV - [2010-11-20 23:29:03 | 000,028,032 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\storvsc.sys -- (storvsc)

DRV - [2010-11-20 23:29:03 | 000,027,264 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\TsUsbGD.sys -- (TsUsbGD)

DRV - [2010-11-20 23:29:03 | 000,025,600 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\terminpt.sys -- (terminpt)

DRV - [2010-11-20 23:29:03 | 000,017,920 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\VMBusHID.sys -- (VMBusHID)

DRV - [2010-11-20 23:29:03 | 000,005,632 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\vms3cap.sys -- (s3cap)

DRV - [2010-02-25 00:02:30 | 000,015,544 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\CPQBTTN.sys -- (HBtnKey)

DRV - [2009-12-03 16:48:44 | 000,625,224 | ---- | M] (AuthenTec, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\ATSwpWDF.sys -- (ATSwpWDF)

DRV - [2009-10-03 06:02:06 | 009,905,096 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)

DRV - [2009-07-14 01:45:33 | 000,083,456 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- C:\Windows\System32\drivers\serial.sys -- (Serial)

DRV - [2009-07-14 00:13:45 | 001,068,032 | ---- | M] (Motorola Inc.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\smserial.sys -- (smserial)

DRV - [2009-07-14 00:02:51 | 004,231,168 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\netw5v32.sys -- (netw5v32) Sterownik karty Intel®

DRV - [2009-04-29 07:46:54 | 000,015,872 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Kernel | On_Demand | Running] -- C:\Windows\System32\drivers\HpqKbFiltr.sys -- (HpqKbFiltr)

DRV - [2008-03-17 18:45:52 | 000,019,584 | ---- | M] () [Kernel | System | Running] -- C:\Windows\System32\Ckldrv.sys -- (NetworkX)

DRV - [2006-11-14 17:35:20 | 000,037,376 | ---- | M] (REDC) [Kernel | Auto | Running] -- C:\Windows\System32\drivers\rixdptsk.sys -- (rismxdp)

 

 

========== Standard Registry (SafeList) ==========

 

 

========== Internet Explorer ==========

 

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&FORM=IE8SRC

 

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Page_URL = about:blank

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = about:blank

IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}

IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

 

========== FireFox ==========

 

FF - prefs.js..browser.startup.homepage: "about:blank"

FF - user.js - File not found

 

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF32_11_3_300_262.dll ()

FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.5.1: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: disabled File not found

FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeAuthz,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPAUTHZ.DLL (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@microsoft.com/SharePoint,version=14.0: C:\PROGRA~1\MICROS~2\Office14\NPSPWRAP.DLL (Microsoft Corporation)

FF - HKLM\Software\MozillaPlugins\@photodex.com/PhotodexPresenter: C:\Program Files\Photodex Presenter\npPxPlay.dll ( )

 

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\wrc@avast.com: C:\Program Files\AVAST Software\Avast\WebRep\FF

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0.1\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-06-27 15:55:28 | 000,000,000 | ---D | M]

 

[2012-06-19 11:31:03 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Extensions

[2012-07-05 12:05:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\vgcjrruv.default\extensions

[2012-06-22 19:28:07 | 000,000,000 | ---D | M] (DownloadnSave) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\vgcjrruv.default\extensions\4fe4a88daada1@4fe4a88daadda.info

[2012-06-20 16:06:13 | 000,000,000 | ---D | M] (British English Dictionary) -- C:\Users\Administrator\AppData\Roaming\mozilla\Firefox\Profiles\vgcjrruv.default\extensions\en-GB@dictionaries.addons.mozilla.org

[2012-06-27 15:55:28 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions

[2012-07-05 12:05:06 | 000,056,403 | ---- | M] () (No name found) -- C:\USERS\ADMINISTRATOR\APPDATA\ROAMING\MOZILLA\FIREFOX\PROFILES\VGCJRRUV.DEFAULT\EXTENSIONS\TRANSLATOR@ZOLI.BOD.XPI

[2012-06-15 00:19:07 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll

[2012-06-15 01:13:23 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml

[2012-06-15 01:13:23 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml

[2012-06-15 01:13:23 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml

[2012-06-15 01:13:23 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml

[2012-06-15 01:13:23 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml

[2012-06-15 01:13:23 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

 

O1 HOSTS File: ([2012-06-20 12:40:54 | 000,000,826 | ---- | M]) - C:\Windows\System32\drivers\etc\hosts

O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

O2 - BHO: (Office Document Cache Handler) - {B4F3A835-0E21-4959-BA22-42B3008E02FF} - C:\Program Files\Microsoft Office\Office14\URLREDIR.DLL (Microsoft Corporation)

O4 - HKLM..\Run: [avast] C:\Program Files\AVAST Software\Avast\avastUI.exe (AVAST Software)

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5

O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3

O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145

O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office14\EXCEL.EXE (Microsoft Corporation)

O8 - Extra context menu item: Wyślij &do programu OneNote - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office14\ONBttnIE.dll (Microsoft Corporation)

O9 - Extra Button: &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)

O9 - Extra 'Tools' menuitem : &Notatki połączone programu OneNote - {789FE86F-6FC4-46A1-9849-EDE0DB0C95CA} - C:\Program Files\Microsoft Office\Office14\ONBttnIELinkedNotes.dll (Microsoft Corporation)

O13 - gopher Prefix: missing

O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)

O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.0.1

O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A8DBE233-6B36-4C81-AACC-C3925A2BB7BB}: DhcpNameServer = 192.168.0.1

O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)

O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)

O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\System32\userinit.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)

O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found

O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.

O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office14\GROOVEEX.DLL (Microsoft Corporation)

O32 - HKLM CDRom: AutoRun - 1

O32 - AutoRun File - [2009-06-10 23:42:20 | 000,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]

O32 - AutoRun File - [2005-09-11 17:18:54 | 000,000,340 | -HS- | M] () - D:\AUTOMODE -- [ NTFS ]

O34 - HKLM BootExecute: (autocheck autochk *)

O35 - HKLM\..comfile [open] -- "%1" %*

O35 - HKLM\..exefile [open] -- "%1" %*

O37 - HKLM\...com [@ = comfile] -- "%1" %*

O37 - HKLM\...exe [@ = exefile] -- "%1" %*

O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)

O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)

O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

 

========== Files/Folders - Created Within 60 Days ==========

 

[2012-07-05 23:12:43 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Silverlight

[2012-07-05 23:10:45 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Silverlight

[2012-07-05 13:38:37 | 000,000,000 | ---D | C] -- C:\Program Files\Trend Micro

[2012-07-05 13:38:37 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\HiJackThis

[2012-07-04 00:44:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Sun

[2012-07-04 00:42:16 | 000,687,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\deployJava1.dll

[2012-07-04 00:42:15 | 000,772,504 | ---- | C] (Oracle Corporation) -- C:\Windows\System32\npDeployJava1.dll

[2012-07-03 19:57:05 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\avast! Free Antivirus

[2012-07-03 19:52:50 | 000,000,000 | ---D | C] -- C:\Program Files\AVAST Software

[2012-07-03 19:41:20 | 000,000,000 | ---D | C] -- C:\Windows\Minidump

[2012-07-03 19:39:31 | 000,353,688 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys

[2012-07-03 19:39:31 | 000,021,256 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys

[2012-07-03 19:39:28 | 000,044,784 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys

[2012-07-03 19:39:27 | 000,721,000 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys

[2012-07-03 19:39:27 | 000,054,232 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys

[2012-07-03 19:39:24 | 000,057,656 | ---- | C] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys

[2012-07-03 19:36:13 | 000,041,224 | ---- | C] (AVAST Software) -- C:\Windows\avastSS.scr

[2012-07-03 19:36:05 | 000,227,648 | ---- | C] (AVAST Software) -- C:\Windows\System32\aswBoot.exe

[2012-07-03 19:31:04 | 000,000,000 | ---D | C] -- C:\ProgramData\AVAST Software

[2012-07-03 15:46:54 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\GridinSoft Trojan Killer

[2012-07-03 15:45:39 | 000,000,000 | ---D | C] -- C:\Program Files\GridinSoft Trojan Killer

[2012-07-02 15:06:32 | 000,000,000 | -H-D | C] -- C:\ProgramData\CanonBJ

[2012-07-01 14:32:49 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security

[2012-07-01 14:32:49 | 000,000,000 | ---D | C] -- C:\Program Files\Panda Security

[2012-06-30 17:41:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\World of Tanks

[2012-06-29 23:51:58 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\My Cheat Tables

[2012-06-29 23:51:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Cheat Engine 6.2

[2012-06-29 23:51:47 | 000,000,000 | ---D | C] -- C:\Program Files\Cheat Engine 6.2

[2012-06-29 23:44:00 | 000,000,000 | ---D | C] -- C:\Program Files\uTorrent

[2012-06-29 23:43:20 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\uTorrent

[2012-06-29 14:21:31 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Gyazo

[2012-06-28 16:58:03 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Polonus

[2012-06-28 12:10:17 | 000,000,000 | ---D | C] -- C:\Program Files\TuneUp Utilities 2012

[2012-06-28 01:47:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\TuneUp Software

[2012-06-28 01:47:11 | 000,000,000 | ---D | C] -- C:\ProgramData\TuneUp Software

[2012-06-28 01:47:03 | 000,000,000 | -HSD | C] -- C:\ProgramData\{32364CEA-7855-4A3C-B674-53D8E9B97936}

[2012-06-28 01:47:03 | 000,000,000 | -H-D | C] -- C:\ProgramData\Common Files

[2012-06-28 00:17:18 | 000,000,000 | ---D | C] -- C:\Program Files\Trojan Killer

[2012-06-27 01:48:15 | 030,492,535 | ---- | C] (ACD Systems Ltd.) -- C:\Users\Administrator\Desktop\Praca Dyplomowa Konrad Kulczycki.exe

[2012-06-26 00:08:17 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Desktop\chronologia

[2012-06-26 00:07:47 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\ACD FotoAngelo

[2012-06-26 00:05:04 | 000,000,000 | ---D | C] -- C:\ProgramData\ACD Systems

[2012-06-26 00:03:40 | 000,000,000 | ---D | C] -- C:\Windows\Downloaded Installations

[2012-06-24 18:56:24 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\ProShow Producer

[2012-06-24 18:55:52 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex

[2012-06-24 13:33:32 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Gyazo

[2012-06-24 13:33:32 | 000,000,000 | ---D | C] -- C:\Program Files\Gyazo

[2012-06-24 13:22:45 | 000,000,000 | ---D | C] -- C:\Program Files\Photodex Presenter

[2012-06-24 13:22:45 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Netscape

[2012-06-24 13:15:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Adobe

[2012-06-24 13:15:03 | 000,000,000 | ---D | C] -- C:\ProgramData\regid.1986-12.com.adobe

[2012-06-24 13:14:55 | 000,000,000 | ---D | C] -- C:\ProgramData\Adobe

[2012-06-24 13:14:55 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe

[2012-06-24 13:12:42 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Photodex

[2012-06-24 13:12:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Photodex

[2012-06-23 17:39:33 | 000,000,000 | ---D | C] -- C:\Windows\System32\RTCOM

[2012-06-23 17:39:10 | 000,140,528 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSWOW.dll

[2012-06-23 17:39:09 | 000,345,328 | ---- | C] (SRS Labs, Inc.) -- C:\Windows\System32\SRSTSXT.dll

[2012-06-23 17:39:04 | 001,497,704 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RTSndMgr.cpl

[2012-06-23 17:39:01 | 002,417,808 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll

[2012-06-23 17:38:59 | 000,645,776 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll

[2012-06-23 17:38:59 | 000,087,696 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInstII.dll

[2012-06-23 17:38:59 | 000,013,416 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoLDR.dll

[2012-06-23 17:38:57 | 003,173,008 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll

[2012-06-23 17:38:53 | 000,359,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEP32A.dll

[2012-06-23 17:38:53 | 000,170,840 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEED32A.dll

[2012-06-23 17:38:53 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEL32A.dll

[2012-06-23 17:38:53 | 000,064,856 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RTEEG32A.dll

[2012-06-23 17:38:51 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DHT32.dll

[2012-06-23 17:38:51 | 000,295,768 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\System32\RP3DAA32.dll

[2012-06-23 17:38:38 | 000,176,736 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTACap.dll

[2012-06-23 17:38:38 | 000,095,840 | ---- | C] (Andrea Electronics Corporation) -- C:\Windows\System32\AERTARen.dll

[2012-06-23 17:38:38 | 000,000,000 | ---D | C] -- C:\Program Files\Realtek

[2012-06-23 17:37:38 | 000,000,000 | -H-D | C] -- C:\Program Files\Temp

[2012-06-23 17:37:34 | 001,706,640 | ---- | C] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll

[2012-06-23 17:37:17 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\InstallShield

[2012-06-23 17:12:08 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\AP Tuner 3.08

[2012-06-23 17:12:08 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\AP Tuner 3.08

[2012-06-23 17:12:07 | 000,000,000 | ---D | C] -- C:\Program Files\AP Tuner

[2012-06-23 12:27:42 | 002,422,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll

[2012-06-23 12:27:42 | 000,045,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll

[2012-06-23 12:27:06 | 000,577,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll

[2012-06-23 12:27:06 | 000,088,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll

[2012-06-23 12:27:06 | 000,035,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wups.dll

[2012-06-23 12:26:49 | 000,171,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll

[2012-06-23 12:26:49 | 000,033,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe

[2012-06-22 19:28:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Premium

[2012-06-22 19:27:56 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\SendSpace

[2012-06-22 19:27:52 | 000,000,000 | ---D | C] -- C:\Program Files\Optimizer Pro

[2012-06-22 19:27:49 | 000,000,000 | ---D | C] -- C:\ProgramData\DownloadnSave

[2012-06-22 19:27:04 | 000,000,000 | ---D | C] -- C:\ProgramData\InstallMate

[2012-06-22 15:18:23 | 000,000,000 | ---D | C] -- C:\Program Files\TrueSuite

[2012-06-22 15:18:20 | 000,000,000 | ---D | C] -- C:\ProgramData\Downloaded Installations

[2012-06-22 15:18:07 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\hpqLog

[2012-06-22 15:17:08 | 001,885,488 | R--- | C] (Hewlett-Packard Company) -- C:\Windows\System32\BttnCmn.dll

[2012-06-22 15:17:08 | 001,885,488 | ---- | C] (Hewlett-Packard Company) -- C:\Windows\System32\BttnCmns.dll

[2012-06-22 15:17:08 | 001,419,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\wdfcoinstaller01005.dll

[2012-06-22 15:17:08 | 000,015,872 | ---- | C] (Hewlett-Packard Development Company, L.P.) -- C:\Windows\System32\drivers\HpqKbFiltr.sys

[2012-06-22 15:17:08 | 000,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard

[2012-06-22 15:17:07 | 000,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information

[2012-06-22 15:16:52 | 000,000,000 | ---D | C] -- C:\Windows\QLB

[2012-06-20 17:36:15 | 000,000,000 | ---D | C] -- C:\Windows\System32\appmgmt

[2012-06-20 17:24:16 | 000,000,000 | ---D | C] -- C:\!KillBox

[2012-06-20 12:29:39 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\WinRAR

[2012-06-20 12:29:39 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\WinRAR

[2012-06-20 12:29:39 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\WinRAR

[2012-06-20 12:29:35 | 000,000,000 | ---D | C] -- C:\Program Files\WinRAR

[2012-06-20 01:51:00 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\The KMPlayer

[2012-06-20 01:50:45 | 000,000,000 | ---D | C] -- C:\Program Files\The KMPlayer

[2012-06-19 20:03:27 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\SharePoint

[2012-06-19 20:03:26 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Office

[2012-06-19 20:00:28 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Synchronization Services

[2012-06-19 20:00:26 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\DESIGNER

[2012-06-19 19:59:31 | 000,000,000 | ---D | C] -- C:\Windows\PCHEALTH

[2012-06-19 19:59:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Sync Framework

[2012-06-19 19:59:31 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft SQL Server Compact Edition

[2012-06-19 19:57:51 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Visual Studio 8

[2012-06-19 19:55:46 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Analysis Services

[2012-06-19 19:54:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Office

[2012-06-19 19:54:06 | 000,000,000 | RH-D | C] -- C:\MSOCache

[2012-06-19 19:41:43 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Microsoft Help

[2012-06-19 15:25:54 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Skype

[2012-06-19 15:25:45 | 000,000,000 | R--D | C] -- C:\Program Files\Skype

[2012-06-19 15:25:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype

[2012-06-19 15:25:45 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype

[2012-06-19 15:25:33 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype

[2012-06-19 15:02:23 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Microsoft Games

[2012-06-19 14:09:24 | 000,000,000 | ---D | C] -- C:\ProgramData\CrypKey

[2012-06-19 14:09:00 | 000,165,888 | ---- | C] (Kenonic Controls) -- C:\Windows\Ckconfig.exe

[2012-06-19 14:09:00 | 000,122,880 | ---- | C] (CrypKey (Canada) Ltd.) -- C:\Windows\System32\Crypserv.exe

[2012-06-19 13:12:05 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\wargaming.net

[2012-06-19 13:00:43 | 000,527,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_7.dll

[2012-06-19 13:00:43 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_5.dll

[2012-06-19 13:00:42 | 000,239,960 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_7.dll

[2012-06-19 13:00:41 | 002,106,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_43.dll

[2012-06-19 13:00:40 | 001,868,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_43.dll

[2012-06-19 13:00:39 | 000,470,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_43.dll

[2012-06-19 13:00:39 | 000,248,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_43.dll

[2012-06-19 13:00:38 | 001,998,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_43.dll

[2012-06-19 13:00:36 | 000,528,216 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_6.dll

[2012-06-19 13:00:36 | 000,074,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_4.dll

[2012-06-19 13:00:35 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_6.dll

[2012-06-19 13:00:35 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_7.dll

[2012-06-19 13:00:34 | 000,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll

[2012-06-19 13:00:33 | 000,238,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_5.dll

[2012-06-19 13:00:32 | 001,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll

[2012-06-19 13:00:30 | 005,501,792 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dcsx_42.dll

[2012-06-19 13:00:28 | 000,235,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx11_42.dll

[2012-06-19 13:00:27 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_42.dll

[2012-06-19 13:00:26 | 001,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll

[2012-06-19 13:00:25 | 001,846,632 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_41.dll

[2012-06-19 13:00:25 | 000,453,456 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_41.dll

[2012-06-19 13:00:23 | 004,178,264 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_41.dll

[2012-06-19 13:00:22 | 000,517,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_4.dll

[2012-06-19 13:00:22 | 000,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll

[2012-06-19 13:00:21 | 000,235,352 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_4.dll

[2012-06-19 13:00:20 | 000,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll

[2012-06-19 13:00:19 | 002,036,576 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_40.dll

[2012-06-19 13:00:19 | 000,452,440 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_40.dll

[2012-06-19 13:00:17 | 004,379,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_40.dll

[2012-06-19 13:00:15 | 000,514,384 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_3.dll

[2012-06-19 13:00:15 | 000,070,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_2.dll

[2012-06-19 13:00:14 | 000,235,856 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_3.dll

[2012-06-19 13:00:14 | 000,023,376 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_5.dll

[2012-06-19 13:00:13 | 000,509,448 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_2.dll

[2012-06-19 13:00:13 | 000,068,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_1.dll

[2012-06-19 13:00:12 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_2.dll

[2012-06-19 13:00:11 | 001,493,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_39.dll

[2012-06-19 13:00:11 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_39.dll

[2012-06-19 13:00:10 | 003,851,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_39.dll

[2012-06-19 13:00:08 | 000,507,400 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_1.dll

[2012-06-19 13:00:08 | 000,065,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_0.dll

[2012-06-19 13:00:07 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_1.dll

[2012-06-19 13:00:07 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_4.dll

[2012-06-19 13:00:06 | 001,491,992 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_38.dll

[2012-06-19 13:00:06 | 000,467,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_38.dll

[2012-06-19 13:00:04 | 003,850,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_38.dll

[2012-06-19 13:00:03 | 000,479,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_0.dll

[2012-06-19 13:00:02 | 001,420,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_37.dll

[2012-06-19 13:00:02 | 000,462,864 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_37.dll

[2012-06-19 13:00:02 | 000,238,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine3_0.dll

[2012-06-19 13:00:02 | 000,025,608 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_3.dll

[2012-06-19 13:00:00 | 003,786,760 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_37.dll

[2012-06-19 12:59:58 | 000,267,272 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_10.dll

[2012-06-19 12:59:57 | 001,374,232 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_36.dll

[2012-06-19 12:59:57 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_36.dll

[2012-06-19 12:59:56 | 003,734,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_36.dll

[2012-06-19 12:59:54 | 000,267,112 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_9.dll

[2012-06-19 12:59:53 | 001,358,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_35.dll

[2012-06-19 12:59:53 | 000,444,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_35.dll

[2012-06-19 12:59:51 | 003,727,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_35.dll

[2012-06-19 12:59:49 | 000,266,088 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_8.dll

[2012-06-19 12:59:49 | 000,017,928 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_2.dll

[2012-06-19 12:59:48 | 001,124,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_34.dll

[2012-06-19 12:59:48 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_34.dll

[2012-06-19 12:59:46 | 003,497,832 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_34.dll

[2012-06-19 12:59:44 | 000,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll

[2012-06-19 12:59:43 | 000,443,752 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10_33.dll

[2012-06-19 12:59:43 | 000,261,480 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_7.dll

[2012-06-19 12:59:42 | 001,123,696 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_33.dll

[2012-06-19 12:59:41 | 003,495,784 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_33.dll

[2012-06-19 12:59:40 | 000,255,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_6.dll

[2012-06-19 12:59:39 | 000,251,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_5.dll

[2012-06-19 12:59:38 | 000,440,080 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx10.dll

[2012-06-19 12:59:37 | 003,426,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_32.dll

[2012-06-19 12:59:36 | 000,237,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_4.dll

[2012-06-19 12:59:36 | 000,015,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_1.dll

[2012-06-19 12:59:35 | 002,414,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_31.dll

[2012-06-19 12:59:34 | 000,236,824 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_3.dll

[2012-06-19 12:59:34 | 000,062,744 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_2.dll

[2012-06-19 12:59:33 | 000,230,168 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_2.dll

[2012-06-19 12:59:33 | 000,062,672 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_1.dll

[2012-06-19 12:59:32 | 000,229,584 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_1.dll

[2012-06-19 12:59:24 | 002,388,176 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_30.dll

[2012-06-19 12:59:22 | 002,332,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_29.dll

[2012-06-19 12:59:22 | 000,230,096 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xactengine2_0.dll

[2012-06-19 12:59:22 | 000,014,032 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\x3daudio1_0.dll

[2012-06-19 12:59:20 | 002,323,664 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_28.dll

[2012-06-19 12:59:19 | 002,319,568 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_27.dll

[2012-06-19 12:59:17 | 002,297,552 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_26.dll

[2012-06-19 12:59:16 | 002,337,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_25.dll

[2012-06-19 12:59:15 | 002,222,800 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\d3dx9_24.dll

[2012-06-19 12:44:59 | 000,000,000 | ---D | C] -- C:\Windows\System32\directx

[2012-06-19 12:41:06 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\CCleaner

[2012-06-19 12:41:04 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner

[2012-06-19 12:37:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Macromedia

[2012-06-19 12:37:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Macromedia

[2012-06-19 12:37:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Adobe

[2012-06-19 11:41:50 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Pliki programu Outlook

[2012-06-19 11:30:55 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Mozilla

[2012-06-19 11:30:55 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Mozilla

[2012-06-19 11:30:14 | 000,000,000 | ---D | C] -- C:\Users\Administrator\Documents\Notesy programu OneNote

[2012-06-19 11:29:37 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup

[2012-06-19 11:29:37 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Searches

[2012-06-19 11:29:37 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools

[2012-06-19 11:29:30 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Identities

[2012-06-19 11:29:26 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Contacts

[2012-06-19 11:29:15 | 000,000,000 | --SD | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Videos

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Saved Games

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Pictures

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Music

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Maintenance

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Links

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Favorites

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Downloads

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Documents

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\Desktop

[2012-06-19 11:29:15 | 000,000,000 | R--D | C] -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Ustawienia lokalne

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\Temporary Internet Files

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Szablony

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\SendTo

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Recent

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\PrintHood

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\NetHood

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\Moje wideo

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\Moje obrazy

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Moje dokumenty

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Documents\Moja muzyka

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Menu Start

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\Historia

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Dane aplikacji

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\AppData\Local\Dane aplikacji

[2012-06-19 11:29:15 | 000,000,000 | -HSD | C] -- C:\Users\Administrator\Cookies

[2012-06-19 11:29:15 | 000,000,000 | -H-D | C] -- C:\Users\Administrator\AppData

[2012-06-19 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Temp

[2012-06-19 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Local\Microsoft

[2012-06-19 11:29:15 | 000,000,000 | ---D | C] -- C:\Users\Administrator\AppData\Roaming\Media Center Programs

[2012-06-19 11:00:51 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft Help

[2012-06-19 10:40:29 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft.NET

[2012-06-19 10:32:14 | 000,000,000 | ---D | C] -- C:\Windows\System32\Wat

[2012-06-19 02:27:00 | 002,382,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2012-06-19 02:26:58 | 000,176,640 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll

[2012-06-19 02:26:58 | 000,142,848 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe

[2012-06-19 02:26:58 | 000,065,024 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll

[2012-06-19 02:26:56 | 001,800,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll

[2012-06-19 02:26:56 | 000,231,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\url.dll

[2012-06-19 02:26:55 | 001,427,968 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl

[2012-06-19 01:10:36 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Maintenance Service

[2012-06-19 01:10:36 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla

[2012-06-19 01:10:34 | 000,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox

[2012-06-19 00:40:00 | 000,465,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisdecd.dll

[2012-06-19 00:40:00 | 000,075,776 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\psisrndr.ax

[2012-06-19 00:39:58 | 000,478,720 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\timedate.cpl

[2012-06-19 00:39:05 | 000,919,040 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorets.dll

[2012-06-19 00:38:59 | 000,002,048 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tzres.dll

[2012-06-19 00:38:37 | 000,067,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\packager.dll

[2012-06-19 00:38:35 | 001,549,312 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\tquery.dll

[2012-06-19 00:38:35 | 001,401,344 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssrch.dll

[2012-06-19 00:38:35 | 000,666,624 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssvp.dll

[2012-06-19 00:38:35 | 000,337,408 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssph.dll

[2012-06-19 00:38:35 | 000,197,120 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\mssphtb.dll

[2012-06-19 00:38:35 | 000,059,392 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\msscntrs.dll

[2012-06-19 00:38:31 | 003,968,368 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntkrnlpa.exe

[2012-06-19 00:38:31 | 003,913,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\ntoskrnl.exe

[2012-06-19 00:38:28 | 000,534,528 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\EncDec.dll

[2012-06-19 00:38:26 | 000,038,912 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\csrsrv.dll

[2012-06-19 00:38:25 | 001,328,128 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\quartz.dll

[2012-06-19 00:38:25 | 000,514,560 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\qdvd.dll

[2012-06-19 00:38:03 | 000,271,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\conhost.exe

[2012-06-19 00:38:03 | 000,169,984 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\winsrv.dll

[2012-06-19 00:38:03 | 000,006,144 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-security-base-l1-1-0.dll

[2012-06-19 00:38:03 | 000,005,120 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-file-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-threadpool-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,608 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processthreads-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-sysinfo-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-synch-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-misc-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localregistry-l1-1-0.dll

[2012-06-19 00:38:03 | 000,004,096 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-localization-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-xstate-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-processenvironment-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-namedpipe-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-memory-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-libraryloader-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-interlocked-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,584 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-heap-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-util-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-string-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-rtlsupport-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-profile-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-io-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-handle-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-fibers-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-errorhandling-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-delayload-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-debug-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-datetime-l1-1-0.dll

[2012-06-19 00:38:03 | 000,003,072 | -H-- | C] (Microsoft Corporation) -- C:\Windows\System32\api-ms-win-core-console-l1-1-0.dll

[2012-06-19 00:37:59 | 002,343,936 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys

[2012-06-19 00:37:57 | 000,314,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\webio.dll

[2012-06-19 00:37:57 | 000,015,872 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\sspisrv.dll

[2012-06-19 00:37:55 | 000,319,488 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbcjt32.dll

[2012-06-19 00:37:55 | 000,163,840 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbctrac.dll

[2012-06-19 00:37:55 | 000,122,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccp32.dll

[2012-06-19 00:37:55 | 000,086,016 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccu32.dll

[2012-06-19 00:37:55 | 000,081,920 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\odbccr32.dll

[2012-06-19 00:37:52 | 000,129,536 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcorekmts.dll

[2012-06-19 00:37:52 | 000,058,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpwsx.dll

[2012-06-19 00:37:52 | 000,008,192 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdrmemptylst.exe

[2012-06-19 00:36:46 | 001,077,248 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\DWrite.dll

[2012-06-19 00:35:52 | 000,027,008 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\drivers\Diskdump.sys

[2012-06-19 00:35:50 | 000,123,904 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\poqexec.exe

[2012-06-19 00:30:25 | 000,237,072 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe

[2012-06-19 00:18:18 | 000,000,000 | ---D | C] -- C:\ProgramData\NVIDIA

[2012-06-19 00:04:09 | 000,426,184 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe

[2012-06-19 00:04:08 | 000,070,344 | ---- | C] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

[2012-06-19 00:03:52 | 000,000,000 | ---D | C] -- C:\Windows\Panther

[2012-06-19 00:03:34 | 000,000,000 | ---D | C] -- C:\Windows\System32\Macromed

[2012-06-18 23:55:23 | 000,000,000 | -HSD | C] -- C:\Windows\Installer

[2012-06-18 23:55:15 | 000,584,296 | ---- | C] (NVIDIA Corporation) -- C:\Windows\System32\nvuninst.exe

[2012-06-18 23:53:59 | 000,826,880 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\rdpcore.dll

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Ulubione

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Szablony

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Pulpit

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Menu Start

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty

[2012-06-18 23:51:15 | 000,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji

[2012-06-18 23:50:42 | 000,000,000 | ---D | C] -- C:\Windows.old.000

[2012-06-18 23:09:21 | 000,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution

[2012-06-18 23:06:00 | 000,000,000 | ---D | C] -- C:\Windows\Prefetch

[2012-05-23 17:21:27 | 000,000,000 | ---D | C] -- C:\Games

[2012-05-23 16:27:14 | 000,000,000 | ---D | C] -- C:\NVIDIA

 

========== Files - Modified Within 60 Days ==========

 

[2012-07-05 22:53:52 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat

[2012-07-05 22:20:19 | 000,054,968 | ---- | M] () -- C:\Users\Administrator\Desktop\22b31b401b4edced97008191c3885d18.png

[2012-07-05 21:55:00 | 000,058,475 | ---- | M] () -- C:\Users\Administrator\Desktop\6a5888d939ac6439fd0530e8b8a5ece8.png

[2012-07-05 21:53:45 | 000,111,679 | ---- | M] () -- C:\Users\Administrator\Desktop\3827fe188a714fbf2630d3c1779e3e3e.png

[2012-07-05 14:40:13 | 000,016,864 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0

[2012-07-05 14:40:13 | 000,016,864 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0

[2012-07-05 13:38:37 | 000,002,999 | ---- | M] () -- C:\Users\Administrator\Desktop\HiJackThis.lnk

[2012-07-05 00:40:50 | 000,701,260 | ---- | M] () -- C:\Windows\System32\perfh015.dat

[2012-07-05 00:40:50 | 000,618,912 | ---- | M] () -- C:\Windows\System32\perfh009.dat

[2012-07-05 00:40:50 | 000,136,246 | ---- | M] () -- C:\Windows\System32\perfc015.dat

[2012-07-05 00:40:50 | 000,107,232 | ---- | M] () -- C:\Windows\System32\perfc009.dat

[2012-07-03 19:57:06 | 000,002,075 | ---- | M] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk

[2012-07-03 19:57:02 | 000,000,000 | ---- | M] () -- C:\Windows\System32\config.nt

[2012-07-03 15:46:55 | 000,001,097 | ---- | M] () -- C:\Users\Public\Desktop\Trojan Killer.lnk

[2012-07-03 13:34:38 | 000,000,414 | RHS- | M] () -- C:\ProgramData\ntuser.pol

[2012-07-02 14:13:48 | 444,591,017 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil prez.pxc

[2012-07-01 15:24:42 | 000,008,627 | ---- | M] () -- C:\Windows\System32\PAV_FOG.OPC

[2012-07-01 13:42:30 | 000,117,221 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil Project.pxp

[2012-07-01 12:49:00 | 372,553,644 | ---- | M] () -- C:\Users\Administrator\Desktop\Kamil.exe

[2012-06-30 17:41:29 | 000,000,769 | ---- | M] () -- C:\Users\Public\Desktop\World of Tanks.lnk

[2012-06-29 23:51:52 | 000,001,043 | ---- | M] () -- C:\Users\Administrator\Desktop\Cheat Engine.lnk

[2012-06-28 14:52:42 | 000,353,688 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSP.sys

[2012-06-28 14:52:42 | 000,054,232 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswTdi.sys

[2012-06-28 14:52:37 | 000,721,000 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswSnx.sys

[2012-06-28 14:52:37 | 000,057,656 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswMonFlt.sys

[2012-06-28 14:52:37 | 000,044,784 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswRdr2.sys

[2012-06-28 14:52:36 | 000,021,256 | ---- | M] (AVAST Software) -- C:\Windows\System32\drivers\aswFsBlk.sys

[2012-06-28 14:52:20 | 000,041,224 | ---- | M] (AVAST Software) -- C:\Windows\avastSS.scr

[2012-06-28 14:51:49 | 000,227,648 | ---- | M] (AVAST Software) -- C:\Windows\System32\aswBoot.exe

[2012-06-27 16:46:36 | 000,000,965 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk

[2012-06-27 15:55:29 | 000,001,007 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk

[2012-06-26 22:25:26 | 001,600,585 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil prez.psh

[2012-06-26 15:59:03 | 001,588,803 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil prez.bak

[2012-06-26 00:50:15 | 000,007,026 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil Project.ppr

[2012-06-26 00:50:03 | 001,592,904 | ---- | M] () -- C:\Users\Administrator\Desktop\kamil prez.b01

[2012-06-24 18:56:24 | 000,002,087 | ---- | M] () -- C:\Users\Public\Desktop\ProShow Producer.lnk

[2012-06-24 13:33:32 | 000,000,940 | ---- | M] () -- C:\Users\Public\Desktop\Gyazo.lnk

[2012-06-22 15:18:08 | 000,000,000 | -H-- | M] () -- C:\Windows\System32\drivers\Msft_Kernel_ATSwpWDF_01009.Wdf

[2012-06-22 15:03:44 | 000,426,184 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerApp.exe

[2012-06-22 15:03:44 | 000,070,344 | ---- | M] (Adobe Systems Incorporated) -- C:\Windows\System32\FlashPlayerCPLApp.cpl

[2012-06-20 12:57:27 | 000,409,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\systemcpl.dll

[2012-06-20 12:57:27 | 000,013,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\slwga.dll

[2012-06-20 12:40:54 | 000,000,826 | ---- | M] () -- C:\Windows\System32\drivers\etc\hosts

[2012-06-20 11:55:54 | 000,407,096 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT

[2012-06-20 01:51:02 | 000,000,993 | ---- | M] () -- C:\Users\Administrator\Desktop\KMPlayer.lnk

[2012-06-19 20:18:23 | 000,008,192 | ---- | M] () -- C:\Windows\System32\srvany.exe

[2012-06-19 18:28:48 | 000,001,680 | ---- | M] () -- C:\Windows\System32\esnecil.ind

[2012-06-19 15:25:45 | 000,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk

[2012-06-19 14:44:35 | 000,000,127 | ---- | M] () -- C:\Windows\Crypkey.ini

[2012-06-19 14:09:45 | 000,001,680 | ---- | M] () -- C:\Windows\System32\esnecil.nlp

[2012-06-19 14:09:45 | 000,000,004 | ---- | M] () -- C:\Windows\vx86036.dat

[2012-06-19 13:30:54 | 000,293,889 | ---- | M] () -- C:\Windows\System32\drivers\RTAIODAT.DAT

[2012-06-19 00:03:38 | 000,008,192 | RHS- | M] () -- C:\BOOTSECT.BAK

[2012-06-18 23:15:31 | 000,067,908 | ---- | M] () -- C:\Windows\System32\license.rtf

[2012-06-09 19:21:56 | 000,178,688 | ---- | M] () -- C:\Windows\System32\unrar.dll

[2012-06-08 16:18:46 | 003,173,008 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkAPO.dll

[2012-06-06 10:44:20 | 000,645,776 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkApoApi.dll

[2012-06-03 00:19:33 | 000,045,080 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups2.dll

[2012-06-03 00:19:32 | 000,035,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wups.dll

[2012-06-03 00:19:23 | 000,577,048 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapi.dll

[2012-06-03 00:12:32 | 002,422,272 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wucltux.dll

[2012-06-03 00:12:13 | 000,088,576 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wudriver.dll

[2012-06-02 15:19:42 | 000,171,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuwebv.dll

[2012-06-02 15:12:20 | 000,033,792 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wuapp.exe

[2012-06-01 09:37:38 | 002,417,808 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkPgExt.dll

[2012-05-31 18:08:16 | 000,087,696 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\System32\RtkCoInstII.dll

[2012-05-25 18:06:00 | 001,706,640 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Windows\RtlExUpd.dll

[2012-05-18 00:45:37 | 001,800,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jscript9.dll

[2012-05-18 00:35:39 | 001,427,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\inetcpl.cpl

[2012-05-18 00:33:08 | 000,231,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\url.dll

[2012-05-18 00:31:16 | 000,065,024 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\jsproxy.dll

[2012-05-18 00:29:45 | 000,142,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieUnatt.exe

[2012-05-18 00:24:45 | 002,382,848 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\mshtml.tlb

[2012-05-18 00:20:42 | 000,176,640 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ieui.dll

[2012-05-15 03:05:38 | 002,343,936 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\win32k.sys

 

========== Files Created - No Company Name ==========

 

[2012-07-05 22:20:13 | 000,054,968 | ---- | C] () -- C:\Users\Administrator\Desktop\22b31b401b4edced97008191c3885d18.png

[2012-07-05 21:54:32 | 000,058,475 | ---- | C] () -- C:\Users\Administrator\Desktop\6a5888d939ac6439fd0530e8b8a5ece8.png

[2012-07-05 21:53:27 | 000,111,679 | ---- | C] () -- C:\Users\Administrator\Desktop\3827fe188a714fbf2630d3c1779e3e3e.png

[2012-07-05 13:38:37 | 000,002,999 | ---- | C] () -- C:\Users\Administrator\Desktop\HiJackThis.lnk

[2012-07-04 00:19:58 | 000,178,688 | ---- | C] () -- C:\Windows\System32\unrar.dll

[2012-07-03 19:39:32 | 000,002,075 | ---- | C] () -- C:\Users\Public\Desktop\avast! Free Antivirus.lnk

[2012-07-03 15:46:55 | 000,001,097 | ---- | C] () -- C:\Users\Public\Desktop\Trojan Killer.lnk

[2012-07-01 15:24:42 | 000,008,627 | ---- | C] () -- C:\Windows\System32\PAV_FOG.OPC

[2012-07-01 12:48:41 | 372,553,644 | ---- | C] () -- C:\Users\Administrator\Desktop\Kamil.exe

[2012-06-30 17:41:29 | 000,000,769 | ---- | C] () -- C:\Users\Public\Desktop\World of Tanks.lnk

[2012-06-29 23:51:52 | 000,001,043 | ---- | C] () -- C:\Users\Administrator\Desktop\Cheat Engine.lnk

[2012-06-28 01:05:58 | 000,000,414 | RHS- | C] () -- C:\ProgramData\ntuser.pol

[2012-06-26 00:50:15 | 000,117,221 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil Project.pxp

[2012-06-26 00:50:15 | 000,007,026 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil Project.ppr

[2012-06-26 00:49:41 | 444,591,017 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil prez.pxc

[2012-06-26 00:49:41 | 001,600,585 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil prez.psh

[2012-06-26 00:49:41 | 001,592,904 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil prez.b01

[2012-06-26 00:49:41 | 001,588,803 | ---- | C] () -- C:\Users\Administrator\Desktop\kamil prez.bak

[2012-06-24 18:56:24 | 000,002,087 | ---- | C] () -- C:\Users\Public\Desktop\ProShow Producer.lnk

[2012-06-24 13:33:32 | 000,000,940 | ---- | C] () -- C:\Users\Public\Desktop\Gyazo.lnk

[2012-06-23 17:38:51 | 000,293,889 | ---- | C] () -- C:\Windows\System32\drivers\RTAIODAT.DAT

[2012-06-22 15:18:08 | 000,000,000 | -H-- | C] () -- C:\Windows\System32\drivers\Msft_Kernel_ATSwpWDF_01009.Wdf

[2012-06-20 01:51:02 | 000,000,993 | ---- | C] () -- C:\Users\Administrator\Desktop\KMPlayer.lnk

[2012-06-19 20:25:15 | 000,008,192 | ---- | C] () -- C:\Windows\System32\srvany.exe

[2012-06-19 15:25:45 | 000,002,505 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk

[2012-06-19 14:09:45 | 000,000,004 | ---- | C] () -- C:\Windows\vx86036.dat

[2012-06-19 14:09:25 | 000,001,680 | ---- | C] () -- C:\Windows\System32\esnecil.nlp

[2012-06-19 14:09:25 | 000,001,680 | ---- | C] () -- C:\Windows\System32\esnecil.ind

[2012-06-19 14:09:17 | 000,000,127 | ---- | C] () -- C:\Windows\Crypkey.ini

[2012-06-19 14:09:00 | 000,027,648 | R--- | C] () -- C:\Windows\Setup_ck.exe

[2012-06-19 14:09:00 | 000,019,584 | ---- | C] () -- C:\Windows\System32\Ckldrv.sys

[2012-06-19 14:09:00 | 000,018,432 | ---- | C] () -- C:\Windows\Setup_ck.dll

[2012-06-19 12:41:06 | 000,000,965 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk

[2012-06-19 11:29:38 | 000,001,421 | ---- | C] () -- C:\Users\Administrator\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Internet Explorer.lnk

[2012-06-19 01:10:40 | 000,001,019 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk

[2012-06-19 01:10:40 | 000,001,007 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk

[2012-06-18 23:14:52 | 000,001,345 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Media Center.lnk

[2012-06-18 23:14:36 | 000,001,326 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Windows DVD Maker.lnk

[2011-02-01 21:37:01 | 000,701,260 | ---- | C] () -- C:\Windows\System32\perfh015.dat

[2011-02-01 21:37:01 | 000,337,158 | ---- | C] () -- C:\Windows\System32\perfi015.dat

[2011-02-01 21:37:01 | 000,136,246 | ---- | C] () -- C:\Windows\System32\perfc015.dat

[2011-02-01 21:37:01 | 000,038,710 | ---- | C] () -- C:\Windows\System32\perfd015.dat

[2010-11-20 23:29:34 | 000,080,896 | ---- | C] () -- C:\Windows\System32\RDVGHelper.exe

[2010-11-20 23:29:26 | 000,066,048 | ---- | C] () -- C:\Windows\System32\PrintBrmUi.exe

 

< End of report >

Odnośnik do komentarza
picasso

picasso

Opublikowano
Opublikowano

Do uzupełniania informacji, gdy nikt jeszcze nie odpisał, służy opcja Edytuj, dwa posty niepotrzebnie napisane w serii. Raport z OTL niepełny, brakuje pliku Extras (opcja "Rejestr - skan dodatkowy" nie została ustawiona na "Użyj filtrowania"). Poza tym, proszę logi umieszczaj via załączniki forum. Oczekuję edycji posta powyżej i dostarczenia kompletu logów w załącznikach.

 

 

Analizer ocenia logi, przy każdym wystawia cene typu safe, czy super safe wraz z nadaniem barwy, np zielony dla braku zagrożenia i ocena tego nie wymaga praktycznie żadnej wiedzy. Inna sprawa, czy ta ocena jest trafna czy nie.

 

Ależ ja wiem jak działa ten analizer i dlatego właśnie mówię im "nie". To są automaty pozbawione inteligencji. Już byli tacy użytkownicy, którzy zasugerowani tym co im pokazal automat zrobili sobie krzywdę lub coś nieprawidlowo usunęli. I jak mówię: tym nie sprawdzisz wielu innych miejsc systemowych.

 

 

.

Odnośnik do komentarza

Jeśli chcesz dodać odpowiedź, zaloguj się lub zarejestruj nowe konto

Jedynie zarejestrowani użytkownicy mogą komentować zawartość tej strony.

Zarejestruj nowe konto

Załóż nowe konto. To bardzo proste!

Zarejestruj się

Zaloguj się

Posiadasz już konto? Zaloguj się poniżej.

Zaloguj się
Tematy

  • Ostatnio przeglądający   0 użytkowników

    • Brak zarejestrowanych użytkowników przeglądających tę stronę.
×
×
  • Dodaj nową pozycję...