r3pu8liqa
Nowy
Liczba postów: 1
|
Sieć niezidentyfikowana po instalacji Dr Web
instalowałem wczoraj program Dr.Web wraz z wbudowanym w ten program firewallem przy instalacji wyskoczył mi komunikat, iż posiadam program antywirusowy Avast, który muszę odinstalować i tak właśnie postąpiłem, następnie podczas instalacji Dr Web wyskoczył mi komunikat z błąd instalacji z komunikatem, iż muszę ponownie uruchomić komputer w celu dokończenia instalacji. Po restarcie Dr.Web próbował dokończyć instalację ale się to nie udało. Po ponownym restarcie komputera przy ikonie połączenie sieciowe mam komunikat „sieć niezidentyfikowana brak połączenia”. Przy próbie odinstalowania Dr.Web mam komunikat, iż nie można „uruchomić spidera” więc wyczyściłem system z tego programu ręczenie sprawdziłem komputer również skanerem m.in antymalware i innymi programami antywirusowymi, które nic nie wykryły. Skontaktowałem się również z moim dostawcą internetu Multimedia Polska ale oni twierdzą, że jest wszystko ok. Naprawa połączenia sieciowego nie pomaga, restart modemu który mam przewodowo podpięty do komputera ani przeinstalowanie karty sieciowej też nie pomaga. Włączając ms config nie ma śladu po DR.Web. Przejechałem system ccleanerem i TuneUp to też nie pomogło a przywrócenie systemu trwa jakie 15 minut i po restarcie otrzymuję komunikat „iż nie można oddzielić plików systemowych”. Może z tego powodu że jakieś dwa dni temu zaciągnąłem aktualizacje. Dodam, że karta sieciowa jest sprawna, zapora systemowa wyłączona.
System Win7 sp1 - poniżej log
Kod:
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2012-09-29 19: 54: 26 | 00,399,432 | ---- | M] (Malwarebytes Corporation) -- C: \Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012-07-14 11: 11: 36 | 00,076,888 | ---- | M] () -- C: \Windows\SysWOW64\PnkBstrA.exe
PRC - [2012-03-03 16: 40: 45 | 00,136,176 | ---- | M] (Google Inc.) -- C: \Program Files (x86)\Google\Update\GoogleUpdate.exe
PRC - [2012-01-18 07: 44: 52 | 00,450,848 | ---- | M] (Logitech Inc.) -- C: \Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe
PRC - [2011-11-11 13: 08: 06 | 00,205,336 | ---- | M] (Logitech Inc.) -- C: \Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe
PRC - [2011-11-11 13: 07: 54 | 00,265,240 | ---- | M] () -- C: \Program Files (x86)\Logitech\LWS\Webcam Software\CameraHelperShell.exe
PRC - [2011-08-12 11: 19: 40 | 00,680,984 | ---- | M] () -- C: \Program Files (x86)\Common Files\LogiShrd\LQCVFX\COCIManager.exe
PRC - [2011-08-02 08: 33: 30 | 04,910,912 | ---- | M] (DT Soft Ltd) -- C: \Program Files (x86)\DAEMON Tools Lite\DTLite.exe
PRC - [2010-01-26 10: 30: 56 | 00,548,352 | ---- | M] (OldTimer Tools) -- E: \Instalki\1.Płyta\AntyVirus, Adware\1. Programs Anty\OTL.exe
PRC - [2007-05-14 23: 22: 22 | 00,035,328 | ---- | M] () -- C: \Program Files (x86)\Winamp\winampa.exe
PRC - [2003-06-19 22: 25: 00 | 00,322,120 | ---- | M] (Microsoft Corporation) -- C: \Program Files (x86)\Common Files\microsoft shared\VS7DEBUG\MDM.EXE
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2012-08-24 07: 51: 27 | 01,129,472 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\wininet.dll
MOD - [2012-04-21 05: 21: 01 | 01,625,088 | ---- | M] (Microsoft Corporation) -- C: \Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.17825_none_72d273598668a06b\GdiPlus.dll
MOD - [2010-11-21 04: 25: 10 | 02,311,168 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\wpdshext.dll
MOD - [2010-11-21 04: 24: 33 | 01,010,688 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\WindowsCodecs.dll
MOD - [2010-11-21 04: 24: 33 | 00,093,696 | ---- | M] (Windows (R) Codename Longhorn DDK provider) -- C: \Windows\SysWOW64\fms.dll
MOD - [2010-11-21 04: 24: 16 | 00,090,112 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\srvcli.dll
MOD - [2010-11-21 04: 24: 02 | 00,034,816 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\cscapi.dll
MOD - [2010-11-21 04: 24: 01 | 00,442,880 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\ntshrui.dll
MOD - [2010-11-21 04: 24: 00 | 00,828,928 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\fontext.dll
MOD - [2010-11-21 04: 23: 55 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C: \Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2\comctl32.dll
MOD - [2010-11-21 04: 23: 48 | 00,485,888 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\comdlg32.dll
MOD - [2010-01-26 10: 30: 56 | 00,548,352 | ---- | M] (OldTimer Tools) -- E: \Instalki\1.Płyta\AntyVirus, Adware\1. Programs Anty\OTL.exe
MOD - [2009-07-14 02: 16: 15 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\slc.dll
MOD - [2009-07-14 02: 15: 14 | 00,189,952 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\EhStorShell.dll
MOD - [2009-07-14 02: 09: 00 | 00,002,048 | ---- | M] (Microsoft Corporation) -- C: \Windows\SysWOW64\normaliz.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV: [b]64bit: [/b] - [2011-10-28 23: 30: 13 | 00,044,544 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\themeservice.dll -- (Themes)
SRV: [b]64bit: [/b] - [2011-05-20 14: 28: 14 | 00,036,160 | ---- | M] (TuneUp Software) [Auto | Running] -- C: \Windows\SysNative\uxtuneup.dll -- (UxTuneUp)
SRV: [b]64bit: [/b] - [2010-11-21 04: 25: 14 | 01,504,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\wbengine.exe -- (wbengine)
SRV: [b]64bit: [/b] - [2010-11-21 04: 25: 14 | 00,689,152 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\FXSSVC.exe -- (Fax)
SRV: [b]64bit: [/b] - [2010-11-21 04: 25: 07 | 00,214,528 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\umrdp.dll -- (UmRdpService)
SRV: [b]64bit: [/b] - [2010-11-21 04: 24: 51 | 00,232,448 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\ListSvc.dll -- (HomeGroupListener)
SRV: [b]64bit: [/b] - [2010-11-21 04: 24: 51 | 00,187,904 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\provsvc.dll -- (HomeGroupProvider)
SRV: [b]64bit: [/b] - [2010-11-21 04: 24: 41 | 00,692,224 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\cscsvc.dll -- (CscService)
SRV: [b]64bit: [/b] - [2010-11-21 04: 24: 34 | 00,114,688 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\AxInstSv.dll -- (AxInstSV)
SRV: [b]64bit: [/b] - [2010-11-21 04: 24: 00 | 00,317,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\dhcpcore.dll -- (Dhcp)
SRV: [b]64bit: [/b] - [2010-11-21 04: 23: 56 | 03,524,608 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\sppsvc.exe -- (sppsvc)
SRV: [b]64bit: [/b] - [2010-11-21 04: 23: 54 | 01,137,664 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\FntCache.dll -- (FontCache)
SRV: [b]64bit: [/b] - [2010-09-28 14: 51: 08 | 00,203,264 | ---- | M] (AMD) [Auto | Running] -- C: \Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV: [b]64bit: [/b] - [2009-08-18 11: 48: 02 | 02,291,568 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Program Files\Common Files\Microsoft Shared\Windows Live\WLIDSVC.EXE -- (wlidsvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 59 | 00,229,888 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\wwansvc.dll -- (WwanSvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 56 | 00,202,240 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\wbiosrvc.dll -- (WbioSrvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 56 | 00,163,840 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysNative\umpo.dll -- (Power)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 54 | 00,065,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\sppuinotify.dll -- (sppuinotify)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 54 | 00,029,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\sensrsvc.dll -- (SensrSvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 54 | 00,017,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\StorSvc.dll -- (StorSvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 53 | 01,361,920 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\PeerDistSvc.dll -- (PeerDistSvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\pnrpsvc.dll -- (PNRPsvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 53 | 00,327,168 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\pnrpsvc.dll -- (p2pimsvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 53 | 00,067,072 | ---- | M] (Microsoft Corporation) [Unknown | Running] -- C: \Windows\SysNative\RpcEpMap.dll -- (RpcEptMapper)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 53 | 00,025,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\pnrpauto.dll -- (PNRPAutoReg)
SRV: [b]64bit: [/b] - [2009-07-14 02: 41: 27 | 01,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV: [b]64bit: [/b] - [2009-07-14 02: 40: 28 | 00,291,328 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\defragsvc.dll -- (defragsvc)
SRV: [b]64bit: [/b] - [2009-07-14 02: 40: 13 | 00,083,968 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\bthserv.dll -- (bthserv)
SRV: [b]64bit: [/b] - [2009-07-14 02: 40: 10 | 00,100,864 | ---- | M] (Microsoft Corporation) [Unknown | Stopped] -- C: \Windows\SysNative\bdesvc.dll -- (BDESVC)
SRV: [b]64bit: [/b] - [2009-07-14 02: 40: 01 | 00,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV: [b]64bit: [/b] - [2009-07-14 02: 40: 01 | 00,032,256 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysNative\appidsvc.dll -- (AppIDSvc)
SRV - [2012-10-27 17: 19: 05 | 00,115,168 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C: \Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2012-09-29 19: 54: 26 | 00,676,936 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C: \Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012-09-29 19: 54: 26 | 00,399,432 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C: \Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012-07-14 11: 11: 36 | 00,076,888 | ---- | M] () [Auto | Running] -- C: \Windows\SysWOW64\PnkBstrA.exe -- (PnkBstrA)
SRV - [2012-05-03 07: 31: 10 | 00,158,856 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C: \Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012-03-03 16: 40: 45 | 00,136,176 | ---- | M] (Google Inc.) [On_Demand | Stopped] -- C: \Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdatem) Usługa Google Update (gupdatem)
SRV - [2012-03-03 16: 40: 45 | 00,136,176 | ---- | M] (Google Inc.) [Auto | Stopped] -- C: \Program Files (x86)\Google\Update\GoogleUpdate.exe -- (gupdate) Usługa Google Update (gupdate)
SRV - [2012-01-30 17: 59: 44 | 00,103,992 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C: \Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2012-01-30 17: 44: 38 | 00,123,960 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C: \Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_64)
SRV - [2012-01-30 17: 44: 38 | 00,051,272 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C: \Windows\Microsoft.NET\Framework64\v4.0.30319\aspnet_state.exe -- (aspnet_state)
SRV - [2012-01-18 07: 44: 52 | 00,450,848 | ---- | M] (Logitech Inc.) [Auto | Running] -- C: \Program Files (x86)\Common Files\LogiShrd\LVMVFM\UMVPFSrv.exe -- (UMVPFSrv)
SRV - [2011-05-20 14: 33: 58 | 02,026,304 | ---- | M] (TuneUp Software) [Auto | Running] -- C: \Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesService64.exe -- (TuneUp.UtilitiesSvc)
SRV - [2011-05-20 14: 28: 08 | 00,029,504 | ---- | M] (TuneUp Software) [Auto | Running] -- C: \Windows\SysWOW64\uxtuneup.dll -- (UxTuneUp)
SRV - [2010-11-21 04: 25: 10 | 00,165,376 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C: \Windows\SysWOW64\provsvc.dll -- (HomeGroupProvider)
SRV - [2010-11-21 04: 24: 09 | 00,254,464 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Windows\SysWOW64\dhcpcore.dll -- (Dhcp)
SRV - [2009-07-14 04: 20: 14 | 00,000,000 | ---D | M] [On_Demand | Stopped] -- C: \Windows\Vss -- (VSS)
SRV - [2009-07-14 04: 20: 14 | 00,000,000 | ---D | M] [Unknown | Stopped] -- C: \Windows\SysWOW64\Msdtc -- (MSDTC)
SRV - [2009-07-13 21: 30: 11 | 00,061,056 | ---- | M] () [On_Demand | Stopped] -- C: \Windows\SysWOW64\wbem\vds.mof -- (vds)
SRV - [2009-06-10 21: 39: 58 | 00,089,920 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C: \Windows\Microsoft.NET\Framework64\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_64)
SRV - [2007-05-04 09: 39: 24 | 00,267,824 | ---- | M] (Nero AG) [On_Demand | Stopped] -- C: \Program Files (x86)\Common Files\Ahead\Lib\NMIndexingService.exe -- (NMIndexingService)
SRV - [2005-04-03 23: 41: 10 | 00,069,632 | ---- | M] (Macrovision Corporation) [On_Demand | Stopped] -- C: \Program Files (x86)\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe -- (IDriverT)
SRV - [2003-06-19 22: 25: 00 | 00,322,120 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C: \Program Files (x86)\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE -- (MDM)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV: [b]64bit: [/b] - [2012-09-29 19: 54: 26 | 00,025,928 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C: \Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV: [b]64bit: [/b] - [2012-06-02 06: 50: 10 | 00,458,704 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\cng.sys -- (CNG)
DRV: [b]64bit: [/b] - [2012-06-02 06: 48: 16 | 00,151,920 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\ksecpkg.sys -- (KSecPkg)
DRV: [b]64bit: [/b] - [2012-01-18 07: 44: 36 | 04,865,568 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\lvuvc64.sys -- (LVUVC64) Logitech Webcam C160(UVC)
DRV: [b]64bit: [/b] - [2012-01-18 07: 44: 28 | 00,351,136 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\lvrs64.sys -- (LVRS64)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 38 | 00,203,320 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ssudmdm.sys -- (ssudmdm) SAMSUNG Mobile USB Modem Drivers (DEVGURU Ver.)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 38 | 00,098,616 | ---- | M] (DEVGURU Co., LTD.(www.devguru.co.kr)) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ssudbus.sys -- (dg_ssudbus) SAMSUNG Mobile USB Composite Device Driver (DEVGURU Ver.)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 34 | 00,161,280 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ss_bmdm.sys -- (ss_bmdm)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 34 | 00,128,000 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ss_bserd.sys -- (ss_bserd)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 34 | 00,127,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ss_bbus.sys -- (ss_bbus) SAMSUNG USB Mobile Device (WDM)
DRV: [b]64bit: [/b] - [2011-12-08 05: 22: 34 | 00,018,944 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ss_bmdfl.sys -- (ss_bmdfl) SAMSUNG USB Mobile Modem (Filter)
DRV: [b]64bit: [/b] - [2011-10-18 19: 52: 47 | 00,270,912 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV: [b]64bit: [/b] - [2011-07-29 13: 54: 56 | 00,016,776 | ---- | M] () [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\epmntdrv.sys -- (epmntdrv)
DRV: [b]64bit: [/b] - [2011-07-29 13: 54: 56 | 00,009,096 | ---- | M] () [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\EuGdiDrv.sys -- (EuGdiDrv)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 41 | 00,514,560 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\csc.sys -- (CSC)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 39 | 00,223,248 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\fvevol.sys -- (fvevol)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 33 | 00,213,888 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\rdyboost.sys -- (rdyboost)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 33 | 00,059,392 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 25 | 00,061,440 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\appid.sys -- (AppID)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 24 | 00,014,720 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\hwpolicy.sys -- (hwpolicy)
DRV: [b]64bit: [/b] - [2010-11-21 04: 24: 09 | 00,029,696 | ---- | M] (Microsoft Corporation) [Kernel | Unknown | Stopped] -- C: \Windows\SysNative\drivers\scfilter.sys -- (scfilter)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 50 | 00,112,128 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\WUDFPf.sys -- (WudfPf)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,199,552 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\vmbus.sys -- (vmbus)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,071,168 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\dmvsc.sys -- (dmvsc)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,046,464 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\vmstorfl.sys -- (storflt)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,034,688 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\storvsc.sys -- (storvsc)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,021,760 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\VMBusHID.sys -- (VMBusHID)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 48 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\vms3cap.sys -- (s3cap)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,350,208 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\HdAudio.sys -- (HdAudAddService)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,229,888 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\1394ohci.sys -- (1394ohci)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,215,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\vhdmp.sys -- (vhdmp)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,184,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\usbvideo.sys -- (usbvideo) Urządzenie wideo USB (WDM)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,109,696 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\USBAUDIO.sys -- (usbaudio) Sterownik audio USB (WDM)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,041,984 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\winusb.sys -- (WinUsb)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,038,912 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\CompositeBus.sys -- (CompositeBus)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,031,232 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\TsUsbGD.sys -- (TsUsbGD)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV: [b]64bit: [/b] - [2010-11-21 04: 23: 47 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\acpipmi.sys -- (AcpiPmi)
DRV: [b]64bit: [/b] - [2010-09-28 15: 26: 12 | 07,883,264 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV: [b]64bit: [/b] - [2010-09-28 14: 14: 48 | 00,285,696 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV: [b]64bit: [/b] - [2010-08-15 23: 42: 00 | 00,116,240 | ---- | M] (ATI Technologies, Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV: [b]64bit: [/b] - [2010-07-06 04: 13: 12 | 00,280,344 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\Rtenic64.sys -- (RTLE8023x64) Realtek 10/100/1000 PCI-E NIC Family NDIS XP(x64)
DRV: [b]64bit: [/b] - [2010-05-31 04: 46: 50 | 00,333,928 | ---- | M] (Realtek ) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV: [b]64bit: [/b] - [2010-04-28 00: 57: 20 | 00,016,200 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\WmVirHid.sys -- (WmVirHid)
DRV: [b]64bit: [/b] - [2010-04-28 00: 57: 12 | 00,026,440 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\WmBEnum.sys -- (WmBEnum)
DRV: [b]64bit: [/b] - [2010-04-27 22: 03: 12 | 00,077,512 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\WmXlCore.sys -- (WmXlCore)
DRV: [b]64bit: [/b] - [2010-04-27 22: 02: 42 | 00,043,976 | ---- | M] (Logitech Inc.) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\WmFilter.sys -- (WmFilter)
DRV: [b]64bit: [/b] - [2009-07-16 04: 38: 40 | 00,015,416 | ---- | M] () [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\ASACPI.sys -- (MTsensor)
DRV: [b]64bit: [/b] - [2009-07-14 02: 52: 20 | 00,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV: [b]64bit: [/b] - [2009-07-14 02: 48: 04 | 00,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV: [b]64bit: [/b] - [2009-07-14 02: 47: 49 | 00,055,376 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\fsdepends.sys -- (FsDepends)
DRV: [b]64bit: [/b] - [2009-07-14 02: 45: 56 | 00,022,096 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\wimmount.sys -- (WIMMount)
DRV: [b]64bit: [/b] - [2009-07-14 02: 45: 55 | 00,036,432 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\vdrvroot.sys -- (vdrvroot)
DRV: [b]64bit: [/b] - [2009-07-14 02: 45: 55 | 00,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV: [b]64bit: [/b] - [2009-07-14 02: 45: 45 | 00,050,768 | ---- | M] (Microsoft Corporation) [Kernel | Boot | Running] -- C: \Windows\SysNative\drivers\pcw.sys -- (pcw)
DRV: [b]64bit: [/b] - [2009-07-14 01: 17: 46 | 00,024,064 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\rdpbus.sys -- (rdpbus)
DRV: [b]64bit: [/b] - [2009-07-14 01: 16: 35 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV: [b]64bit: [/b] - [2009-07-14 01: 10: 24 | 00,060,416 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV: [b]64bit: [/b] - [2009-07-14 01: 09: 50 | 00,019,968 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\usb8023x.sys -- (usb_rndisx)
DRV: [b]64bit: [/b] - [2009-07-14 01: 09: 26 | 00,012,800 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\wfplwf.sys -- (WfpLwf)
DRV: [b]64bit: [/b] - [2009-07-14 01: 08: 13 | 00,035,328 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\ndiscap.sys -- (NdisCap)
DRV: [b]64bit: [/b] - [2009-07-14 01: 07: 21 | 00,024,576 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\vwifibus.sys -- (vwifibus)
DRV: [b]64bit: [/b] - [2009-07-14 01: 06: 52 | 00,009,728 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\umpass.sys -- (UmPass)
DRV: [b]64bit: [/b] - [2009-07-14 01: 06: 24 | 00,008,192 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV: [b]64bit: [/b] - [2009-07-14 01: 02: 08 | 00,015,360 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\MTConfig.sys -- (MTConfig)
DRV: [b]64bit: [/b] - [2009-07-14 01: 01: 09 | 00,679,936 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\xnacc.sys -- (xnacc)
DRV: [b]64bit: [/b] - [2009-07-14 01: 00: 13 | 00,006,656 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\beep.sys -- (Beep)
DRV: [b]64bit: [/b] - [2009-07-14 00: 37: 18 | 00,040,448 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C: \Windows\SysNative\drivers\discache.sys -- (discache)
DRV: [b]64bit: [/b] - [2009-07-14 00: 31: 06 | 00,026,624 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\hidbatt.sys -- (HidBatt)
DRV: [b]64bit: [/b] - [2009-07-14 00: 31: 03 | 00,017,664 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\CmBatt.sys -- (CmBatt)
DRV: [b]64bit: [/b] - [2009-07-14 00: 19: 25 | 00,060,928 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C: \Windows\SysNative\drivers\amdppm.sys -- (AmdPPM)
DRV: [b]64bit: [/b] - [2009-06-30 10: 37: 16 | 00,033,800 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C: \Windows\SysNative\drivers\pavboot64.sys -- (pavboot)
DRV: [b]64bit: [/b] - [2009-06-10 21: 34: 33 | 03,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV: [b]64bit: [/b] - [2009-06-10 21: 34: 28 | 00,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV: [b]64bit: [/b] - [2009-06-10 21: 34: 23 | 00,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV: [b]64bit: [/b] - [2009-06-10 21: 31: 59 | 00,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C: \Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2011-10-18 00: 09: 13 | 00,000,000 | ---D | M] [Kernel | System | Running] -- C: \Windows\CSC -- (CSC)
DRV - [2011-07-29 13: 54: 56 | 00,014,216 | ---- | M] () [Kernel | On_Demand | Stopped] -- C: \Windows\SysWOW64\epmntdrv.sys -- (epmntdrv)
DRV - [2011-07-29 13: 54: 56 | 00,008,456 | ---- | M] () [Kernel | On_Demand | Stopped] -- C: \Windows\SysWOW64\EuGdiDrv.sys -- (EuGdiDrv)
DRV - [2011-04-26 14: 30: 20 | 00,011,856 | ---- | M] (TuneUp Software) [Kernel | On_Demand | Running] -- C: \Program Files (x86)\TuneUp Utilities 2011\TuneUpUtilitiesDriver64.sys -- (TuneUpUtilitiesDrv)
DRV - [2009-08-04 03: 28: 28 | 00,013,440 | R--- | M] () [Kernel | System | Running] -- C: \Windows\SysWOW64\drivers\AsIO.sys -- (AsIO)
DRV - [2009-07-14 02: 19: 10 | 00,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C: \Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 02: 16: 19 | 00,016,896 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C: \Windows\SysWOW64\winusb.dll -- (WinUsb)
DRV - [2009-07-14 02: 16: 02 | 00,014,336 | ---- | M] (Microsoft Corporation) [File_System | System | Running] -- C: \Windows\SysWOW64\netbios.dll -- (NetBIOS)
DRV - [2009-06-10 22: 28: 14 | 00,001,088 | ---- | M] () [Kernel | On_Demand | Running] -- C: \Windows\SysWOW64\wbem\mpsdrv.mof -- (mpsdrv)
DRV - [2009-06-10 22: 15: 18 | 00,003,066 | ---- | M] () [Kernel | Boot | Running] -- C: \Windows\SysWOW64\wbem\tcpip.mof -- (Tcpip)
DRV - [2006-07-24 16: 05: 00 | 00,005,632 | ---- | M] () [File_System | System | Stopped] -- C: \Windows\SysWOW64\drivers\StarOpen.sys -- (StarOpen)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C: \Windows\SysWOW64\blank.htm
IE - HKLM\..\URLSearchHook: {32b29df0-2237-4370-9a29-37cebb730e9b} - C: \Program Files (x86)\FreeSoundRecorder\prxtbFre2.dll (Conduit Ltd.)
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Secondary Start Pages = http: //www.gazeta.pl/ [binary data]
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http: //www.google.pl/
IE - HKCU\..\URLSearchHook: {32b29df0-2237-4370-9a29-37cebb730e9b} - C: \Program Files (x86)\FreeSoundRecorder\prxtbFre2.dll (Conduit Ltd.)
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - HKLM\software\mozilla\Mozilla Firefox 16.0.2\extensions\\Components: C: \Program Files (x86)\Mozilla Firefox\components [2012-10-27 17: 19: 05 | 00,000,000 | ---D | M]
[2012-07-15 18: 34: 15 | 00,000,000 | ---D | M] -- C: \Users\Blacha\AppData\Roaming\mozilla\Extensions
[2012-11-04 18: 25: 06 | 00,000,000 | ---D | M] -- C: \Users\Blacha\AppData\Roaming\mozilla\Firefox\Profiles\xcxz5sb8.default\extensions
[2012-08-21 13: 22: 47 | 00,000,000 | ---D | M] (ZoneAlarm Security) -- C: \Users\Blacha\AppData\Roaming\mozilla\Firefox\Profiles\xcxz5sb8.default\extensions\{91da5e8a-3318-4f8c-b67e-5964de3ab546}
[2012-10-27 17: 19: 03 | 00,000,000 | ---D | M] -- C: \Program Files (x86)\Mozilla Firefox\extensions
[2012-10-27 17: 19: 05 | 00,261,600 | ---- | M] (Mozilla Foundation) -- C: \Program Files (x86)\Mozilla Firefox\components\browsercomps.dll
[2012-06-15 00: 13: 23 | 00,002,767 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\allegro-pl.xml
[2012-06-15 00: 13: 23 | 00,001,406 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\fbc-pl.xml
[2012-06-15 00: 13: 23 | 00,000,917 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\merlin-pl.xml
[2012-06-15 00: 13: 23 | 00,000,858 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\pwn-pl.xml
[2012-06-15 00: 13: 23 | 00,001,183 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2012-06-15 00: 13: 23 | 00,001,683 | ---- | M] () -- C: \Program Files (x86)\Mozilla Firefox\searchplugins\wp-pl.xml
O1 HOSTS File: ([2012-11-04 20: 41: 18 | 00,000,804 | ---- | M]) - C: \Windows\SysNative\drivers\etc\hosts
O2: [b]64bit: [/b] - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C: \Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2: [b]64bit: [/b] - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C: \Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2: [b]64bit: [/b] - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C: \Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C: \Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (FreeSoundRecorder Toolbar) - {32b29df0-2237-4370-9a29-37cebb730e9b} - C: \Program Files (x86)\FreeSoundRecorder\prxtbFre2.dll (Conduit Ltd.)
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C: \Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Windows Live ID Sign-in Helper) - {9030D464-4C02-4ABF-8ECC-5164760863C6} - C: \Program Files (x86)\Common Files\microsoft shared\Windows Live\WindowsLiveLogin.dll (Microsoft Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C: \Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKLM\..\Toolbar: (FreeSoundRecorder Toolbar) - {32b29df0-2237-4370-9a29-37cebb730e9b} - C: \Program Files (x86)\FreeSoundRecorder\prxtbFre2.dll (Conduit Ltd.)
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (FreeSoundRecorder Toolbar) - {32B29DF0-2237-4370-9A29-37CEBB730E9B} - C: \Program Files (x86)\FreeSoundRecorder\prxtbFre2.dll (Conduit Ltd.)
O4: [b]64bit: [/b] - HKLM..\Run: [RtHDVCpl] C: \Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4: [b]64bit: [/b] - HKLM..\Run: [Start WingMan Profiler] C: \Program Files\Logitech\Gaming Software\LWEMon.exe (Logitech Inc.)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C: \Program Files (x86)\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [LWS] C: \Program Files (x86)\Logitech\LWS\Webcam Software\LWS.exe (Logitech Inc.)
O4 - HKLM..\Run: [StartCCC] C: \Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [WinampAgent] C: \Program Files (x86)\Winamp\winampa.exe ()
O4 - HKCU..\Run: [DAEMON Tools Lite] C: \Program Files (x86)\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoControlPanel = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoWindowsUpdate = 0
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8: [b]64bit: [/b] - Extra context menu item: E&ksport do programu Microsoft Excel - C: \Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - C: \Program Files (x86)\Microsoft Office\OFFICE11\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C: \Program Files (x86)\Microsoft Office\OFFICE11\REFIEBAR.DLL (Microsoft Corporation)
O10: [b]64bit: [/b] - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C: \Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10: [b]64bit: [/b] - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C: \Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000007 [] - C: \Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O10 - NameSpace_Catalog5\Catalog_Entries\000000000008 [] - C: \Program Files (x86)\Common Files\microsoft shared\Windows Live\WLIDNSP.DLL (Microsoft Corporation)
O13 - gopher Prefix: missing
O13 - gopher Prefix: missing
O15 - HKCU\..Trusted Domains: kaspersky.pl ([vs] https in Zaufane witryny)
O15 - HKCU\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http: //download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http: //java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http: //acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {CAFEEFAC-0016-0000-0031-ABCDEFFEDCBA} http: //java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 1.6.0_31)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http: //java.sun.com/update/1.6.0/jinstall-1_6_0_31-windows-i586.cab (Java Plug-in 10.9.2)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http: //fpdownload2.macromedia.com/pub/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18: [b]64bit: [/b] - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\msdaipp - No CLSID value found
O18: [b]64bit: [/b] - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\ms-itss {0A9007C0-4076-11D3-8789-0000F8105754} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\mso-offdap11 {32505114-5902-49B2-880A-1F7738E5A384} - Reg Error: Key error. File not found
O18: [b]64bit: [/b] - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - Reg Error: Key error. File not found
O18 - Protocol\Handler\http\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\http\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\https\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C: \Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\mso-offdap {3D9F03FA-7A94-11D3-BE81-0050048385D1} - C: \Program Files (x86)\Common Files\microsoft shared\Web Components\10\OWC10.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C: \Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18: [b]64bit: [/b] - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - Reg Error: Key error. File not found
O18 - Protocol\Filter\text/xml {807553E5-5146-11D5-A672-00B0D022E945} - C: \Program Files (x86)\Common Files\microsoft shared\OFFICE11\MSOXMLMF.DLL (Microsoft Corporation)
O20: [b]64bit: [/b] - HKLM Winlogon: Shell - (explorer.exe) - C: \Windows\explorer.exe (Microsoft Corporation)
O20: [b]64bit: [/b] - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C: \Windows\SysNative\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20: [b]64bit: [/b] - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O20 - HKLM Winlogon: Shell - (explorer.exe) - C: \Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C: \Windows\SysWow64\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21: [b]64bit: [/b] - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30: [b]64bit: [/b] - LSA: Security Packages - (pku2u) - C: \Windows\SysNative\pku2u.dll (Microsoft Corporation)
O30: [b]64bit: [/b] - LSA: Security Packages - (livessp) - C: \Windows\SysNative\livessp.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (pku2u) - C: \Windows\SysWow64\pku2u.dll (Microsoft Corporation)
O30 - LSA: Security Packages - (livessp) - C: \Windows\SysWow64\livessp.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2010-01-26 16: 51: 47 | 00,000,000 | RHSD | M] - D: \autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2010-01-26 16: 51: 47 | 00,000,000 | RHSD | M] - E: \autorun.inf -- [ NTFS ]
O32 - AutoRun File - [2006-08-26 22: 17: 58 | 00,000,054 | R--- | M] () - G: \Autorun.inf -- [ CDFS ]
O33 - MountPoints2\{5256f425-33cd-11e1-a381-f46d040f3cd3}\Shell - "" = AutoRun
O33 - MountPoints2\{5256f425-33cd-11e1-a381-f46d040f3cd3}\Shell\AutoRun\command - "" = F: \AutoRun.exe -- File not found
O33 - MountPoints2\{5256f434-33cd-11e1-a381-f46d040f3cd3}\Shell - "" = AutoRun
O33 - MountPoints2\{5256f434-33cd-11e1-a381-f46d040f3cd3}\Shell\AutoRun\command - "" = F: \AutoRun.exe -- File not found
O33 - MountPoints2\{ea747f06-f914-11e0-80d3-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{ea747f06-f914-11e0-80d3-806e6f6e6963}\Shell\AutoRun\command - "" = G: \.\Bin\ASSETUP.exe -- [2009-12-07 09: 16: 00 | 00,174,720 | R--- | M] ()
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
[b]64bit: [/b] O35 - comfile [open] -- "%1" %* File not found
[b]64bit: [/b] O35 - exefile [open] -- "%1" %* File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2012-11-08 17: 47: 43 | 00,280,344 | ---- | C] (Realtek Semiconductor Corporation ) -- C: \Windows\SysNative\drivers\Rtenic64.sys
[2012-11-08 17: 47: 43 | 00,107,552 | ---- | C] (Realtek Semiconductor Corporation) -- C: \Windows\SysNative\RTNUninst64.dll
[2012-11-08 16: 03: 18 | 00,000,000 | -HSD | C] -- C: \Config.Msi
[2012-11-07 23: 46: 45 | 00,916,456 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\deployJava1.dll
[2012-11-07 23: 46: 44 | 01,034,216 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\npDeployJava1.dll
[2012-11-07 23: 46: 44 | 00,289,768 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\javaws.exe
[2012-11-07 23: 46: 33 | 00,108,008 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\WindowsAccessBridge-64.dll
[2012-11-07 23: 46: 32 | 00,189,416 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\javaw.exe
[2012-11-07 23: 46: 32 | 00,188,904 | ---- | C] (Oracle Corporation) -- C: \Windows\SysNative\java.exe
[2012-11-07 23: 46: 20 | 00,000,000 | ---D | C] -- C: \Program Files\Java
[2012-11-07 23: 37: 17 | 00,999,496 | ---- | C] (Solid State Networks) -- C: \Users\Blacha\Desktop\install_flashplayer11x32ax_gtbd_chrd_dn_aih.exe
[2012-11-07 23: 33: 29 | 00,294,912 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\browserchoice.exe
[2012-11-07 23: 31: 17 | 00,096,768 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\mshtmled.dll
[2012-11-07 23: 31: 17 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\mshtmled.dll
[2012-11-07 23: 31: 16 | 00,420,864 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\vbscript.dll
[2012-11-07 23: 31: 16 | 00,248,320 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\ieui.dll
[2012-11-07 23: 31: 16 | 00,176,640 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\ieui.dll
[2012-11-07 23: 31: 16 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\ieUnatt.exe
[2012-11-07 23: 31: 15 | 00,237,056 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\url.dll
[2012-11-07 23: 31: 15 | 00,231,936 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\url.dll
[2012-11-07 23: 31: 15 | 00,142,848 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\ieUnatt.exe
[2012-11-07 23: 31: 14 | 02,312,704 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\jscript9.dll
[2012-11-07 23: 31: 14 | 01,494,528 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\inetcpl.cpl
[2012-11-07 23: 31: 14 | 01,427,968 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\inetcpl.cpl
[2012-11-07 23: 31: 14 | 00,729,088 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\msfeeds.dll
[2012-11-07 23: 31: 13 | 01,392,128 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wininet.dll
[2012-11-07 23: 31: 13 | 01,129,472 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\wininet.dll
[2012-11-07 23: 31: 13 | 00,607,744 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\msfeeds.dll
[2012-11-07 23: 31: 12 | 01,800,704 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\jscript9.dll
[2012-11-07 23: 31: 12 | 00,816,640 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\jscript.dll
[2012-11-07 23: 31: 12 | 00,717,824 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\jscript.dll
[2012-11-07 23: 31: 12 | 00,599,040 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\vbscript.dll
[2012-11-07 23: 31: 12 | 00,085,504 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\jsproxy.dll
[2012-11-07 23: 31: 11 | 02,144,768 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\iertutil.dll
[2012-11-07 23: 31: 11 | 00,065,024 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\jsproxy.dll
[2012-11-07 23: 30: 12 | 00,159,232 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\imagehlp.dll
[2012-11-07 23: 30: 12 | 00,081,408 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\imagehlp.dll
[2012-11-07 23: 30: 12 | 00,023,408 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\drivers\fs_rec.sys
[2012-11-07 23: 30: 11 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\wmi.dll
[2012-11-07 23: 30: 11 | 00,005,120 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wmi.dll
[2012-11-07 23: 16: 10 | 00,805,376 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\cdosys.dll
[2012-11-07 23: 16: 09 | 01,133,568 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\cdosys.dll
[2012-11-07 23: 15: 54 | 00,314,880 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\webio.dll
[2012-11-07 23: 15: 53 | 00,395,776 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\webio.dll
[2012-11-07 23: 15: 40 | 05,559,664 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\ntoskrnl.exe
[2012-11-07 23: 15: 39 | 03,968,880 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\ntkrnlpa.exe
[2012-11-07 23: 15: 39 | 03,914,096 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\ntoskrnl.exe
[2012-11-07 23: 15: 35 | 00,458,704 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\drivers\cng.sys
[2012-11-07 23: 15: 34 | 00,307,200 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\ncrypt.dll
[2012-11-07 23: 15: 34 | 00,151,920 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\drivers\ksecpkg.sys
[2012-11-07 23: 15: 33 | 01,447,936 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\lsasrv.dll
[2012-11-07 23: 15: 33 | 00,219,136 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\ncrypt.dll
[2012-11-07 23: 15: 33 | 00,136,192 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\sspicli.dll
[2012-11-07 23: 15: 33 | 00,029,184 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\sspisrv.dll
[2012-11-07 23: 15: 33 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\secur32.dll
[2012-11-07 23: 15: 30 | 00,376,688 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\drivers\netio.sys
[2012-11-07 23: 15: 29 | 00,288,624 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\drivers\FWPKCLNT.SYS
[2012-11-07 23: 15: 25 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\msxml3r.dll
[2012-11-07 23: 15: 25 | 00,002,048 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\msxml3r.dll
[2012-11-07 23: 15: 22 | 01,731,920 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\ntdll.dll
[2012-11-07 23: 15: 20 | 01,572,864 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\quartz.dll
[2012-11-07 23: 15: 18 | 01,328,128 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\quartz.dll
[2012-11-07 23: 15: 18 | 00,514,560 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\qdvd.dll
[2012-11-07 23: 15: 18 | 00,366,592 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\qdvd.dll
[2012-11-07 23: 15: 13 | 01,031,680 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\rdpcore.dll
[2012-11-07 23: 15: 13 | 00,826,880 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\rdpcore.dll
[2012-11-07 23: 15: 10 | 00,723,456 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\EncDec.dll
[2012-11-07 23: 15: 10 | 00,534,528 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\EncDec.dll
[2012-11-07 23: 15: 07 | 01,544,704 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\DWrite.dll
[2012-11-07 23: 15: 07 | 01,077,248 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\DWrite.dll
[2012-11-07 23: 15: 06 | 00,634,880 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\msvcrt.dll
[2012-11-07 23: 15: 02 | 00,073,216 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\netapi32.dll
[2012-11-07 23: 15: 02 | 00,059,392 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\browcli.dll
[2012-11-07 23: 15: 02 | 00,041,984 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\browcli.dll
[2012-11-07 23: 15: 01 | 00,149,504 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\rdpcorekmts.dll
[2012-11-07 23: 15: 01 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\rdpwsx.dll
[2012-11-07 23: 15: 01 | 00,009,216 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\rdrmemptylst.exe
[2012-11-07 23: 14: 58 | 00,956,928 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\localspl.dll
[2012-11-07 23: 14: 57 | 00,220,160 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wintrust.dll
[2012-11-07 23: 14: 57 | 00,172,544 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\wintrust.dll
[2012-11-07 23: 14: 55 | 00,043,520 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\csrsrv.dll
[2012-11-07 23: 10: 41 | 01,464,320 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\crypt32.dll
[2012-11-07 23: 10: 40 | 00,140,288 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\cryptnet.dll
[2012-11-07 23: 05: 32 | 00,077,312 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\packager.dll
[2012-11-07 23: 05: 32 | 00,067,072 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysWow64\packager.dll
[2012-11-07 22: 52: 08 | 02,622,464 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wucltux.dll
[2012-11-07 22: 52: 08 | 00,057,880 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wuauclt.exe
[2012-11-07 22: 52: 08 | 00,044,056 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wups2.dll
[2012-11-07 22: 51: 57 | 00,701,976 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wuapi.dll
[2012-11-07 22: 51: 57 | 00,099,840 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wudriver.dll
[2012-11-07 22: 51: 57 | 00,038,424 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wups.dll
[2012-11-07 22: 51: 46 | 00,186,752 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wuwebv.dll
[2012-11-07 22: 51: 46 | 00,036,864 | ---- | C] (Microsoft Corporation) -- C: \Windows\SysNative\wuapp.exe
[2012-11-04 20: 49: 33 | 00,016,200 | ---- | C] (McAfee, Inc.) -- C: \Windows\stinger.sys
[2012-11-04 20: 49: 21 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\stinger
[2012-11-04 20: 32: 38 | 00,000,000 | ---D | C] -- C: \Program Files\Common Files\Doctor Web
[2012-11-04 18: 32: 25 | 00,000,000 | ---D | C] -- C: \Users\Blacha\AppData\Roaming\Malwarebytes
[2012-11-04 18: 32: 11 | 00,000,000 | ---D | C] -- C: \ProgramData\Malwarebytes
[2012-11-04 18: 32: 10 | 00,025,928 | ---- | C] (Malwarebytes Corporation) -- C: \Windows\SysNative\drivers\mbam.sys
[2012-11-04 18: 32: 10 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\Malwarebytes' Anti-Malware
[2012-11-04 18: 23: 27 | 00,174,056 | ---- | C] (Oracle Corporation) -- C: \Windows\SysWow64\javaw.exe
[2012-11-04 18: 23: 27 | 00,174,056 | ---- | C] (Oracle Corporation) -- C: \Windows\SysWow64\java.exe
[2012-11-04 18: 23: 27 | 00,095,208 | ---- | C] (Oracle Corporation) -- C: \Windows\SysWow64\WindowsAccessBridge-32.dll
[2012-11-04 17: 55: 28 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\NVIDIA Corporation
[2012-10-27 17: 19: 02 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\Mozilla Firefox
[2012-10-27 17: 06: 53 | 00,000,000 | ---D | C] -- C: \Program Files\Microsoft Silverlight
[2012-10-27 17: 06: 53 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\Microsoft Silverlight
[2012-10-15 15: 51: 02 | 00,000,000 | ---D | C] -- C: \ProgramData\ACD Systems
[2012-10-15 15: 50: 58 | 00,000,000 | ---D | C] -- C: \Program Files (x86)\ACD Systems
[2012-10-15 15: 36: 43 | 00,000,000 | ---D | C] -- C: \Program Files\Temp
[2012-10-13 13: 56: 46 | 00,000,000 | ---D | C] -- C: \Users\Blacha\Desktop\zdjecia mama
[4 C: \Windows\SysWow64\*.tmp files -> C: \Windows\SysWow64\*.tmp -> ]
[1 C: \Windows\SysNative\drivers\*.tmp files -> C: \Windows\SysNative\drivers\*.tmp -> ]
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2012-11-09 07: 34: 13 | 07,340,032 | -HS- | M] () -- C: \Users\Blacha\ntuser.dat
[2012-11-09 07: 22: 50 | 00,067,584 | --S- | M] () -- C: \Windows\bootstat.dat
[2012-11-09 07: 22: 49 | 00,000,000 | ---- | M] () -- C: \Windows\SysNative\drivers\lvuvc.hs
[2012-11-09 06: 56: 28 | 00,031,088 | -H-- | M] () -- C: \Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2012-11-09 06: 56: 28 | 00,031,088 | -H-- | M] () -- C: \Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2012-11-08 21: 22: 45 | 02,929,413 | -H-- | M] () -- C: \Users\Blacha\AppData\Local\IconCache.db
[2012-11-08 21: 04: 37 | 00,036,880 | ---- | M] () -- C: \Users\Blacha\Documents\cc_20121108_210421.reg
[2012-11-08 20: 35: 59 | 00,003,408 | ---- | M] () -- C: \bootsqm.dat
[2012-11-08 15: 56: 29 | 01,676,250 | ---- | M] () -- C: \Windows\SysNative\PerfStringBackup.INI
[2012-11-08 15: 56: 29 | 00,742,602 | ---- | M] () -- C: \Windows\SysNative\perfh015.dat
[2012-11-08 15: 56: 29 | 00,656,430 | ---- | M] () -- C: \Windows\SysNative\perfh009.dat
[2012-11-08 15: 56: 29 | 00,156,240 | ---- | M] () -- C: \Windows\SysNative\perfc015.dat
[2012-11-08 15: 56: 29 | 00,122,242 | ---- | M] () -- C: \Windows\SysNative\perfc009.dat
[2012-11-08 14: 48: 53 | 01,549,343 | ---- | M] () -- C: \Users\Blacha\Desktop\oskar.jpg
[2012-11-08 07: 20: 48 | 00,424,360 | ---- | M] () -- C: \Windows\SysNative\FNTCACHE.DAT
[2012-11-07 23: 46: 27 | 00,108,008 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\WindowsAccessBridge-64.dll
[2012-11-07 23: 46: 24 | 00,289,768 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\javaws.exe
[2012-11-07 23: 46: 24 | 00,189,416 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\javaw.exe
[2012-11-07 23: 46: 23 | 00,188,904 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\java.exe
[2012-11-07 23: 46: 22 | 01,034,216 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\npDeployJava1.dll
[2012-11-07 23: 46: 22 | 00,916,456 | ---- | M] (Oracle Corporation) -- C: \Windows\SysNative\deployJava1.dll
[2012-11-07 23: 37: 18 | 00,999,496 | ---- | M] (Solid State Networks) -- C: \Users\Blacha\Desktop\install_flashplayer11x32ax_gtbd_chrd_dn_aih.exe
[2012-11-07 18: 39: 06 | 00,282,696 | ---- | M] () -- C: \Windows\SysWow64\PnkBstrB.xtr
[2012-11-07 18: 39: 06 | 00,282,696 | ---- | M] () -- C: \Windows\SysWow64\PnkBstrB.exe
[2012-11-05 16: 22: 09 | 00,000,000 | ---- | M] () -- C: \Windows\SysWow64\config.nt
[2012-11-04 20: 49: 33 | 00,016,200 | ---- | M] (McAfee, Inc.) -- C: \Windows\stinger.sys
[2012-11-04 20: 41: 18 | 00,000,804 | ---- | M] () -- C: \Windows\SysNative\drivers\etc\hosts
[2012-11-04 20: 14: 32 | 00,002,517 | ---- | M] () -- C: \Users\Public\Desktop\Skype.lnks
[2012-11-02 11: 06: 23 | 00,282,696 | ---- | M] () -- C: \Windows\SysWow64\PnkBstrB.ex0
[2012-11-01 08: 26: 13 | 00,696,760 | ---- | M] (Adobe Systems Incorporated) -- C: \Windows\SysWow64\FlashPlayerApp.exe
[2012-11-01 08: 26: 13 | 00,073,656 | ---- | M] (Adobe Systems Incorporated) -- C: \Windows\SysWow64\FlashPlayerCPLApp.cpl
[2012-10-30 23: 50: 30 | 00,285,328 | ---- | M] (AVAST Software) -- C: \Windows\SysNative\aswBoot.exe
[2012-10-23 14: 41: 38 | 00,503,554 | ---- | M] () -- C: \Users\Blacha\Documents\z2.jpg
[2012-10-18 15: 58: 38 | 04,005,263 | ---- | M] () -- C: \Users\Blacha\Desktop\NewStuff6.zip
[2012-10-15 15: 51: 07 | 00,002,901 | ---- | M] () -- C: \Users\Public\Desktop\ACDSee 10 Photo Manager.lnk
[2012-10-12 09: 53: 43 | 00,000,012 | ---- | M] () -- C: \Users\Blacha\intlname.ols
[4 C: \Windows\SysWow64\*.tmp files -> C: \Windows\SysWow64\*.tmp -> ]
[1 C: \Windows\SysNative\drivers\*.tmp files -> C: \Windows\SysNative\drivers\*.tmp -> ]
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2012-11-08 21: 04: 26 | 00,036,880 | ---- | C] () -- C: \Users\Blacha\Documents\cc_20121108_210421.reg
[2012-11-08 20: 35: 59 | 00,003,408 | ---- | C] () -- C: \bootsqm.dat
[2012-11-08 18: 06: 16 | 00,002,305 | ---- | C] () -- C: \ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Adobe Gamma Loader.lnk
[2012-11-08 18: 06: 16 | 00,001,712 | ---- | C] () -- C: \ProgramData\Microsoft\Windows\Start Menu\Programs\Startup\Rainmeter.lnk
[2012-11-08 17: 47: 43 | 00,074,272 | ---- | C] () -- C: \Windows\SysNative\RtNicProp64.dll
[2012-10-15 15: 51: 07 | 00,002,901 | ---- | C] () -- C: \Users\Public\Desktop\ACDSee 10 Photo Manager.lnk
[2012-09-04 09: 15: 37 | 00,004,096 | -H-- | C] () -- C: \Users\Blacha\AppData\Local\keyfile3.drm
[2012-03-22 19: 08: 23 | 00,860,160 | ---- | C] () -- C: \Windows\SysWow64\PSP MixTreble.dll
[2012-03-22 19: 08: 23 | 00,712,704 | ---- | C] () -- C: \Windows\SysWow64\PSP MixPressor.dll
[2012-03-22 19: 08: 23 | 00,647,168 | ---- | C] () -- C: \Windows\SysWow64\PSP MixSaturator.dll
[2012-03-22 19: 08: 23 | 00,483,328 | ---- | C] () -- C: \Windows\SysWow64\PSP MixBass.dll
[2012-02-20 20: 52: 46 | 00,000,106 | ---- | C] () -- C: \ProgramData\Microsoft.SqlServer.Compact.400.32.bc
[2012-01-30 16: 00: 21 | 00,000,000 | ---- | C] () -- C: \ProgramData\LauncherAccess.dt
[2012-01-30 15: 57: 44 | 00,005,632 | ---- | C] () -- C: \Windows\SysWow64\drivers\StarOpen.sys
[2012-01-30 15: 47: 09 | 00,007,605 | ---- | C] () -- C: \Users\Blacha\AppData\Local\Resmon.ResmonCfg
[2012-01-18 07: 44: 00 | 10,920,984 | ---- | C] () -- C: \Windows\SysWow64\LogiDPP.dll
[2012-01-18 07: 44: 00 | 00,336,408 | ---- | C] () -- C: \Windows\SysWow64\DevManagerCore.dll
[2011-12-23 20: 58: 24 | 00,974,848 | ---- | C] () -- C: \Windows\SysWow64\cis-2.4.dll
[2011-12-23 20: 58: 24 | 00,081,920 | ---- | C] () -- C: \Windows\SysWow64\issacapi_bs-2.3.dll
[2011-12-23 20: 58: 24 | 00,065,536 | ---- | C] () -- C: \Windows\SysWow64\issacapi_pe-2.3.dll
[2011-12-23 20: 58: 24 | 00,057,344 | ---- | C] () -- C: \Windows\SysWow64\issacapi_se-2.3.dll
[2011-12-08 14: 01: 22 | 01,614,634 | ---- | C] () -- C: \Windows\SysWow64\PerfStringBackup.INI
[2011-11-03 15: 50: 46 | 00,019,840 | ---- | C] () -- C: \Windows\SysWow64\EuEpmGdi.dll
[2011-11-03 15: 50: 44 | 00,014,216 | ---- | C] () -- C: \Windows\SysWow64\epmntdrv.sys
[2011-11-03 15: 50: 44 | 00,008,456 | ---- | C] () -- C: \Windows\SysWow64\EuGdiDrv.sys
[2011-10-19 14: 46: 30 | 00,000,412 | ---- | C] () -- C: \Windows\ODBC.INI
[2011-10-18 20: 10: 48 | 00,000,041 | ---- | C] () -- C: \Windows\winampa.ini
[2011-10-18 18: 38: 49 | 00,024,576 | R--- | C] () -- C: \Windows\SysWow64\AsIO.dll
[2011-10-18 18: 38: 49 | 00,013,440 | R--- | C] () -- C: \Windows\SysWow64\drivers\AsIO.sys
[2011-10-18 18: 38: 46 | 00,011,832 | ---- | C] () -- C: \Windows\SysWow64\drivers\AsInsHelp64.sys
[2011-10-18 18: 38: 46 | 00,010,216 | ---- | C] () -- C: \Windows\SysWow64\drivers\AsInsHelp32.sys
[2011-10-18 18: 28: 20 | 00,001,769 | ---- | C] () -- C: \Windows\Language_trs.ini
[2011-10-18 18: 28: 09 | 00,030,720 | ---- | C] () -- C: \Windows\Ascd_tmp.ini
[2011-04-09 17: 55: 28 | 00,179,261 | ---- | C] () -- C: \Windows\SysWow64\xlive.dll.cat
[2009-07-14 00: 42: 10 | 00,064,000 | ---- | C] () -- C: \Windows\SysWow64\BWContextHandler.dll
[2009-07-13 22: 03: 59 | 00,364,544 | ---- | C] () -- C: \Windows\SysWow64\msjetoledb40.dll
[2009-04-02 13: 30: 14 | 00,010,296 | ---- | C] () -- C: \Windows\SysWow64\drivers\ASUSHWIO.SYS
[2003-04-08 10: 40: 22 | 00,005,679 | ---- | C] () -- C: \Windows\SysWow64\OUTLPERF.INI
< End of report >
Notatka została dodana 09.11.2012 14:08 . Ostatnia edycja dokonana 09.11.2012 14:08 przez peciaq:
Na przyszłość - logi podawaj w znacznikach CODE.
(Ten post był ostatnio modyfikowany: 09.11.2012 13:13 przez r3pu8liqa.)
09.11.2012 08:23
|