Damianoo159 utworzono 18 lutego 2010 utworzono 18 lutego 2010 (edytowane) Elo, ostatnio chciac odzyskac haslo do gg sciagnelem kilka programow. Po instalacji ich i resecie komputera windows juz sie nie odpalil. Zielone tlo i error, naszczescie mam zainstalowe dwa systemy. Wszedlem na xp i przeskanowalem nortonem 2010 i znalazlo mi kilka trojanow, info cos tam, hacktool czy cos takiego i jeszcze pare innych. Po uruchomieniu systemu na zielonym tle byly otwarte moje dokumenty, ktore sie same przewijaly, jeszcze wczesniej (po instalacji programow do odzyskania hasla) na pulpicie zaznaczaly sie ikonki i tak jak by ktos strzalke w dol naciskal zaznaczenie przechodzilo na inne. Mozecie mi powiedziec co to moze byc ? Problemu by nie bylo gdybym nie mial waznych danych na kompie, zrobilbym wtedy formata. Jesli chcecie jakies logi czy cos to piscie jaki i skad je wziac. Dolaczam screena z pulpitu PS. robiac screena zauwazylem, ze nie mam uprawnien do zapisywania plikow na dysk, a jestes na koncie admina Prosze o szybko odpowiedz
raazor90 komentarz 18 lutego 2010 komentarz 18 lutego 2010 Daj loga z OTL http://www.forumpc.pl/index.php?showtopic=104338 do działu bezpieczeństwo, naturalnie infekcja
tazman komentarz 18 lutego 2010 komentarz 18 lutego 2010 użyj ctlr+alt+del uruchom aplikacje dalej nowe zadanie wpisz nazwę programu i wpisujesz explorer.exe powinno zadziałać jeśli nie podmiana pliku explorer.exe.Lub robisz tak : Panel sterowania-> opcje folderów-> widok-> zaznacz Pokaz ukryte pliki i foldery start-> uruchom-> "%homepath%\Ustawienia lokalne\Dane aplikacji" usuwasz plik IconCache gdzie resetujesz kompa Możesz też spróbować programem : Taskbar Repair Tool Plus!
Damianoo159 komentarz 18 lutego 2010 Autor komentarz 18 lutego 2010 [log]OTL logfile created on: 2010-02-18 21:24:51 - Run 1 OTL by OldTimer - Version 3.1.28.0 Folder = M:\Users\Damian\Documents Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 7.0.6002.18005) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 57,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = M: | %SystemRoot% = M:\Windows | %ProgramFiles% = M:\Program Files Drive C: | 48,83 Gb Total Space | 37,01 Gb Free Space | 75,79% Space Free | Partition Type: NTFS Drive D: | 219,51 Gb Total Space | 116,29 Gb Free Space | 52,98% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive M: | 197,42 Gb Total Space | 67,43 Gb Free Space | 34,15% Space Free | Partition Type: NTFS Computer Name: DAMIAN-PC Current User Name: Damian Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2010-02-18 21:23:24 | 000,549,376 | ---- | M] (OldTimer Tools) -- M:\Users\Damian\Documents\OTL.exe PRC - [2010-02-18 16:01:33 | 000,215,104 | ---- | M] () -- M:\Windows\System32\PnkBstrB.exe PRC - [2009-11-29 22:40:23 | 000,075,064 | ---- | M] () -- M:\Windows\System32\PnkBstrA.exe PRC - [2009-11-20 19:01:18 | 000,832,296 | ---- | M] (Opera Software) -- M:\Program Files\Opera\opera.exe PRC - [2009-09-27 17:47:00 | 000,215,656 | ---- | M] (NVIDIA Corporation) -- M:\Windows\System32\nvvsvc.exe PRC - [2009-09-15 12:49:40 | 000,018,752 | ---- | M] (ALWIL Software) -- M:\Program Files\Alwil Software\Avast4\aswUpdSv.exe PRC - [2009-08-31 17:07:34 | 011,391,592 | ---- | M] (GG Network S.A.) -- M:\Program Files\Nowe Gadu-Gadu\gg.exe PRC - [2009-08-31 15:56:26 | 000,077,824 | ---- | M] () -- M:\Program Files\Nowe Gadu-Gadu\spellchecker_gg.exe PRC - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () -- M:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe PRC - [2009-04-11 07:27:36 | 002,926,592 | ---- | M] (Microsoft Corporation) -- M:\Windows\explorer.exe PRC - [2009-04-02 20:47:04 | 000,234,888 | ---- | M] () -- M:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe PRC - [2009-04-02 20:47:02 | 000,464,264 | ---- | M] () -- M:\Program Files\AskBarDis\bar\bin\AskService.exe PRC - [2008-05-24 15:02:50 | 000,417,792 | ---- | M] () -- M:\Program Files\Icecast2 Win32\icecastService.exe PRC - [2008-01-21 03:34:48 | 000,142,336 | ---- | M] (Microsoft Corporation) -- M:\Windows\System32\WUDFHost.exe PRC - [2008-01-21 03:32:59 | 000,095,744 | ---- | M] (Microsoft Corporation) -- M:\Windows\System32\mobsync.exe PRC - [2006-02-28 11:42:38 | 000,229,376 | ---- | M] (Apple Computer, Inc.) -- M:\Program Files\Bonjour\mDNSResponder.exe [color=#E56717]========== Modules (SafeList) ==========[/color] MOD - [2010-02-18 21:23:24 | 000,549,376 | ---- | M] (OldTimer Tools) -- M:\Users\Damian\Documents\OTL.exe MOD - [2009-04-11 07:21:38 | 001,686,016 | ---- | M] (Microsoft Corporation) -- M:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.6002.18005_none_5cb72f96088b0de0\comctl32.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-02-18 16:01:33 | 000,215,104 | ---- | M] () [Auto | Running] -- M:\Windows\System32\PnkBstrB.exe -- (PnkBstrB) SRV - [2009-12-16 18:26:00 | 003,453,712 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- M:\Windows\System32\GameMon.des -- (npggsvc) SRV - [2009-11-29 22:40:23 | 000,075,064 | ---- | M] () [Auto | Running] -- M:\Windows\System32\PnkBstrA.exe -- (PnkBstrA) SRV - [2009-09-27 17:47:00 | 000,215,656 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- M:\Windows\System32\nvvsvc.exe -- (nvsvc) SRV - [2009-09-25 02:27:04 | 000,793,088 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- M:\Windows\System32\FntCache.dll -- (FontCache) SRV - [2009-09-15 12:56:43 | 000,138,680 | ---- | M] (ALWIL Software) [Auto | Stopped] -- M:\Program Files\Alwil Software\Avast4\ashServ.exe -- (avast! Antivirus) SRV - [2009-09-15 12:56:28 | 000,254,040 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- M:\Program Files\Alwil Software\Avast4\ashMaiSv.exe -- (avast! Mail Scanner) SRV - [2009-09-15 12:54:13 | 000,352,920 | ---- | M] (ALWIL Software) [On_Demand | Stopped] -- M:\Program Files\Alwil Software\Avast4\ashWebSv.exe -- (avast! Web Scanner) SRV - [2009-09-15 12:49:40 | 000,018,752 | ---- | M] (ALWIL Software) [Auto | Running] -- M:\Program Files\Alwil Software\Avast4\aswUpdSv.exe -- (aswUpdSv) SRV - [2009-08-01 20:08:38 | 000,654,848 | ---- | M] (Macrovision Europe Ltd.) [On_Demand | Stopped] -- M:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2009-04-30 11:23:26 | 000,090,112 | ---- | M] () [Auto | Running] -- M:\Program Files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe -- (OMSI download service) SRV - [2009-04-02 20:47:04 | 000,234,888 | ---- | M] () [Auto | Running] -- M:\Program Files\AskBarDis\bar\bin\ASKUpgrade.exe -- (ASKUpgrade) SRV - [2009-04-02 20:47:02 | 000,464,264 | ---- | M] () [Auto | Running] -- M:\Program Files\AskBarDis\bar\bin\AskService.exe -- (ASKService) SRV - [2008-11-20 20:18:52 | 000,136,120 | ---- | M] (Google) [On_Demand | Stopped] -- M:\Program Files\Google\Common\Google Updater\GoogleUpdaterService.exe -- (gusvc) SRV - [2008-11-04 00:06:28 | 000,441,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- M:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2008-10-25 10:44:08 | 000,065,888 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- M:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2008-05-24 15:02:50 | 000,417,792 | ---- | M] () [Auto | Running] -- M:\Program Files\Icecast2 Win32\icecastService.exe -- (Icecast-trunk) SRV - [2008-01-21 03:33:00 | 000,272,952 | ---- | M] (Microsoft Corporation) [Auto | Running] -- M:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend) SRV - [2007-05-31 08:21:24 | 000,379,784 | ---- | M] (Microsoft Corporation) [Auto | Running] -- M:\Windows\WindowsMobile\wcescomm.dll -- (WcesComm) SRV - [2007-05-31 08:21:18 | 000,183,688 | ---- | M] (Microsoft Corporation) [Auto | Running] -- M:\Windows\WindowsMobile\rapimgr.dll -- (RapiMgr) SRV - [2006-10-26 12:03:08 | 000,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- M:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2006-02-28 11:42:38 | 000,229,376 | ---- | M] (Apple Computer, Inc.) [Auto | Running] -- M:\Program Files\Bonjour\mDNSResponder.exe -- (Bonjour Service) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - [2009-09-27 23:12:22 | 009,509,832 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- M:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm) DRV - [2009-09-17 13:57:29 | 000,008,059 | ---- | M] (Windows (R) 2000 DDK provider) [Kernel | On_Demand | Stopped] -- M:\Windows\gdrv.sys -- (gdrv) DRV - [2009-09-15 12:55:30 | 000,114,768 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- M:\Windows\System32\drivers\aswSP.sys -- (aswSP) DRV - [2009-09-15 12:55:19 | 000,020,560 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- M:\Windows\System32\drivers\aswFsBlk.sys -- (aswFsBlk) DRV - [2009-09-15 12:55:09 | 000,053,328 | ---- | M] (ALWIL Software) [File_System | Auto | Running] -- M:\Windows\System32\drivers\aswMonFlt.sys -- (aswMonFlt) DRV - [2009-09-15 12:54:30 | 000,052,368 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- M:\Windows\System32\drivers\aswTdi.sys -- (aswTdi) DRV - [2009-09-15 12:54:21 | 000,023,152 | ---- | M] (ALWIL Software) [Kernel | System | Running] -- M:\Windows\System32\drivers\aswRdr.sys -- (aswRdr) DRV - [2009-07-26 21:30:15 | 000,721,904 | ---- | M] () [Kernel | Boot | Running] -- M:\Windows\System32\Drivers\sptd.sys -- (sptd) DRV - [2008-05-16 11:33:14 | 000,115,752 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016unic.sys -- (s0016unic) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM) DRV - [2008-05-16 11:33:14 | 000,025,512 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016nd5.sys -- (s0016nd5) Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS) DRV - [2008-05-16 11:33:14 | 000,015,016 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016mdfl.sys -- (s0016mdfl) DRV - [2008-05-16 11:33:12 | 000,120,744 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016mdm.sys -- (s0016mdm) DRV - [2008-05-16 11:33:12 | 000,114,216 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016mgmt.sys -- (s0016mgmt) Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM) DRV - [2008-05-16 11:33:12 | 000,110,632 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016obex.sys -- (s0016obex) DRV - [2008-05-16 11:33:12 | 000,089,256 | ---- | M] (MCCI Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\s0016bus.sys -- (s0016bus) Sony Ericsson Device 0016 driver (WDM) DRV - [2008-02-14 10:03:10 | 002,061,528 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- M:\Windows\System32\drivers\RTKVHDA.sys -- (IntcAzAudAddService) Service for Realtek HD Audio (WDM) DRV - [2008-01-25 09:46:40 | 000,106,496 | ---- | M] (Realtek Corporation ) [Kernel | On_Demand | Running] -- M:\Windows\System32\drivers\Rtlh86.sys -- (RTL8169) DRV - [2008-01-21 03:32:53 | 000,149,560 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\adpu320.sys -- (adpu320) DRV - [2008-01-21 03:32:53 | 000,031,288 | ---- | M] (LSI Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\megasas.sys -- (megasas) DRV - [2008-01-21 03:32:52 | 000,386,616 | ---- | M] (LSI Corporation, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\megasr.sys -- (MegaSR) DRV - [2008-01-21 03:32:52 | 000,101,432 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\adpu160m.sys -- (adpu160m) DRV - [2008-01-21 03:32:52 | 000,074,808 | ---- | M] (Silicon Integrated Systems) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\sisraid4.sys -- (SiSRaid4) DRV - [2008-01-21 03:32:52 | 000,040,504 | ---- | M] (Hewlett-Packard Company) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\hpcisss.sys -- (HpCISSs) DRV - [2008-01-21 03:32:51 | 000,300,600 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\adpahci.sys -- (adpahci) DRV - [2008-01-21 03:32:51 | 000,089,656 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\lsi_sas.sys -- (LSI_SAS) DRV - [2008-01-21 03:32:50 | 001,122,360 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\ql2300.sys -- (ql2300) DRV - [2008-01-21 03:32:50 | 000,118,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\E1G60I32.sys -- (E1G60) Intel(R) DRV - [2008-01-21 03:32:50 | 000,079,928 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\arcsas.sys -- (arcsas) DRV - [2008-01-21 03:32:49 | 000,235,064 | ---- | M] (Intel Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\iastorv.sys -- (iaStorV) DRV - [2008-01-21 03:32:49 | 000,130,616 | ---- | M] (VIA Technologies Inc.,Ltd) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\vsmraid.sys -- (vsmraid) DRV - [2008-01-21 03:32:49 | 000,115,816 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\ulsata2.sys -- (ulsata2) DRV - [2008-01-21 03:32:49 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\lsi_fc.sys -- (LSI_FC) DRV - [2008-01-21 03:32:49 | 000,079,416 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\arc.sys -- (arc) DRV - [2008-01-21 03:32:48 | 000,342,584 | ---- | M] (Emulex) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\elxstor.sys -- (elxstor) DRV - [2008-01-21 03:32:48 | 000,096,312 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\lsi_scsi.sys -- (LSI_SCSI) DRV - [2008-01-21 03:32:47 | 000,102,968 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\nvraid.sys -- (nvraid) DRV - [2008-01-21 03:32:47 | 000,045,112 | ---- | M] (NVIDIA Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\nvstor.sys -- (nvstor) DRV - [2008-01-21 03:32:46 | 000,422,968 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\adp94xx.sys -- (adp94xx) DRV - [2008-01-21 03:32:45 | 000,238,648 | ---- | M] (ULi Electronics Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\uliahci.sys -- (uliahci) DRV - [2008-01-21 03:32:21 | 000,020,024 | ---- | M] (VIA Technologies, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\viaide.sys -- (viaide) DRV - [2008-01-21 03:32:21 | 000,019,000 | ---- | M] (CMD Technology, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\cmdide.sys -- (cmdide) DRV - [2008-01-21 03:32:21 | 000,017,464 | ---- | M] (Acer Laboratories Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\aliide.sys -- (aliide) DRV - [2008-01-09 10:28:34 | 000,027,632 | ---- | M] (Sony Ericsson Mobile Communications) [Kernel | On_Demand | Running] -- M:\Windows\System32\drivers\seehcri.sys -- (seehcri) DRV - [2007-08-17 08:14:44 | 000,891,392 | ---- | M] (Atheros Communications, Inc.) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\athrusb.sys -- (athrusb) DRV - [2007-07-07 04:00:00 | 000,906,368 | ---- | M] (NXP Semiconductors Germany GmbH) [Kernel | On_Demand | Running] -- M:\Windows\System32\drivers\3xHybrid.sys -- (3xHybrid) DRV - [2006-11-03 18:01:00 | 000,178,913 | ---- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\V0330Vid.sys -- (V0330VID) DRV - [2006-11-02 10:50:35 | 000,106,088 | ---- | M] (QLogic Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\ql40xx.sys -- (ql40xx) DRV - [2006-11-02 10:50:35 | 000,098,408 | ---- | M] (Promise Technology, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\ulsata.sys -- (UlSata) DRV - [2006-11-02 10:50:19 | 000,045,160 | ---- | M] (IBM Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\nfrd960.sys -- (nfrd960) DRV - [2006-11-02 10:50:17 | 000,041,576 | ---- | M] (Intel Corp./ICP vortex GmbH) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\iirsp.sys -- (iirsp) DRV - [2006-11-02 10:50:11 | 000,071,272 | ---- | M] (Adaptec, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\djsvs.sys -- (aic78xx) DRV - [2006-11-02 10:50:09 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\iteraid.sys -- (iteraid) DRV - [2006-11-02 10:50:07 | 000,035,944 | ---- | M] (Integrated Technology Express, Inc.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\iteatapi.sys -- (iteatapi) DRV - [2006-11-02 10:50:05 | 000,035,944 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\symc8xx.sys -- (Symc8xx) DRV - [2006-11-02 10:50:03 | 000,034,920 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\sym_u3.sys -- (Sym_u3) DRV - [2006-11-02 10:49:59 | 000,033,384 | ---- | M] (LSI Logic Corporation) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\mraid35x.sys -- (Mraid35x) DRV - [2006-11-02 10:49:56 | 000,031,848 | ---- | M] (LSI Logic) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\sym_hi.sys -- (Sym_hi) DRV - [2006-11-02 09:25:24 | 000,071,808 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM) DRV - [2006-11-02 09:24:47 | 000,011,904 | ---- | M] (Brother Industries Ltd.) [Kernel | On_Demand | Stopped] -- M:\Windows\system32\drivers\brusbser.sys -- (BrUsbSer) DRV - [2006-11-02 09:24:46 | 000,005,248 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- M:\Windows\system32\drivers\brfiltup.sys -- (BrFiltUp) DRV - [2006-11-02 09:24:45 | 000,013,568 | ---- | M] (Brother Industries, Ltd.) [Kernel | On_Demand | Stopped] -- M:\Windows\system32\drivers\brfiltlo.sys -- (BrFiltLo) DRV - [2006-11-02 09:24:44 | 000,062,336 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\brserwdm.sys -- (BrSerWdm) DRV - [2006-11-02 09:24:44 | 000,012,160 | ---- | M] (Brother Industries Ltd.) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\brusbmdm.sys -- (BrUsbMdm) DRV - [2006-11-02 08:36:50 | 000,020,608 | ---- | M] (N-trig Innovative Technologies) [Kernel | Disabled | Stopped] -- M:\Windows\system32\drivers\ntrigdigi.sys -- (ntrigdigi) DRV - [2006-11-02 07:37:21 | 000,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | Auto | Running] -- M:\Windows\System32\drivers\secdrv.sys -- (secdrv) DRV - [2006-04-23 03:34:34 | 000,029,184 | ---- | M] (http://libusb-win32.sourceforge.net) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\libusb0.sys -- (libusb0) DRV - [2005-07-07 15:26:00 | 000,006,576 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\k750mdfl.sys -- (k750mdfl) DRV - [2005-07-07 15:25:58 | 000,089,872 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\k750mdm.sys -- (k750mdm) DRV - [2005-07-07 15:25:52 | 000,081,728 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\k750mgmt.sys -- (k750mgmt) DRV - [2005-07-07 15:25:50 | 000,079,488 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\k750obex.sys -- (k750obex) DRV - [2005-02-11 11:19:20 | 000,055,216 | ---- | M] (MCCI) [Kernel | On_Demand | Stopped] -- M:\Windows\System32\drivers\k750bus.sys -- (k750bus) Sony Ericsson 750 driver (WDM) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Default_Search_URL = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Search Page = http://www.google.com IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.onet.pl IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,StartPageCache = 1 IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,Default_Search_URL = http://www.google.com/ie IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Search,SearchAssistant = http://www.google.com/ie IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = *.local [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..extensions.enabledItems: {ABDE892B-13A8-4d1b-88E6-365A6E755758}:1.0 FF - prefs.js..extensions.enabledItems: {BBDA0591-3099-440a-AA10-41764D9DB4DB}:2.0 FF - prefs.js..extensions.enabledItems: {4C0766D3-67A7-45a3-85A2-752F77312F32}:4.0 FF - prefs.js..network.proxy.type: 2 FF - HKLM\software\mozilla\Firefox\Extensions\\{ABDE892B-13A8-4d1b-88E6-365A6E755758}: M:\Program Files\Real\RealPlayer\browserrecord [2009-08-01 09:57:37 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Components: M:\Program Files\Mozilla Firefox\components [2010-01-24 13:04:04 | 000,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.5.3\extensions\\Plugins: M:\Program Files\Mozilla Firefox\plugins [2010-01-24 13:04:04 | 000,000,000 | ---D | M] [2009-09-22 14:37:32 | 000,000,000 | ---D | M] -- M:\Users\Damian\AppData\Roaming\mozilla\Extensions [2009-07-20 21:59:01 | 000,000,000 | ---D | M] -- M:\Users\Damian\AppData\Roaming\mozilla\Firefox\extensions [2009-07-20 21:59:01 | 000,000,000 | ---D | M] (No name found) -- M:\Users\Damian\AppData\Roaming\mozilla\Firefox\extensions\{E9A1DEE0-C623-4439-8932-001E7D17607D} [2009-09-22 14:37:32 | 000,000,000 | ---D | M] -- M:\Users\Damian\AppData\Roaming\mozilla\Firefox\Profiles\8uks2mrp.default\extensions [2010-01-23 22:30:37 | 000,000,000 | ---D | M] -- M:\Program Files\Mozilla Firefox\extensions O1 HOSTS File: ([2006-09-18 22:41:30 | 000,000,761 | ---- | M]) - M:\Windows\System32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: ::1 localhost O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - M:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (AskBar BHO) - {201f27d4-3704-41d6-89c1-aa35e39143ed} - M:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com) O2 - BHO: (RealPlayer Download and Record Plugin for Internet Explorer) - {3049C3E9-B461-4BC5-8870-4C09146192CA} - M:\Program Files\Real\RealPlayer\rpbrowserrecordplugin.dll (RealPlayer) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - M:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - M:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (IEPluginBHO Class) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - M:\Users\Damian\AppData\Roaming\Nowe Gadu-Gadu\_userdata\ggbho.1.dll (GG Network S.A.) O3 - HKLM\..\Toolbar: (Ask Toolbar) - {3041d03e-fd4b-44e0-b742-2d9b88305f98} - M:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com) O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - M:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKCU\..\Toolbar\WebBrowser: (Ask Toolbar) - {3041D03E-FD4B-44E0-B742-2D9B88305F98} - M:\Program Files\AskBarDis\bar\bin\askBar.dll (Ask.com) O3 - HKCU\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - M:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [avast!] M:\Program Files\Alwil Software\Avast4\ashDisp.exe (ALWIL Software) O4 - HKLM..\Run: [GrooveMonitor] M:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [RtHDVCpl] M:\Windows\RtHDVCpl.exe (Realtek Semiconductor) O4 - HKLM..\Run: [Skytel] M:\Windows\SkyTel.exe (Realtek Semiconductor Corp.) O4 - HKLM..\Run: [SunJavaUpdateSched] M:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKLM..\Run: [V0330Cfg.exe] M:\Windows\V0330Cfg.exe (Creative Technology Ltd.) O4 - HKLM..\Run: [Windows Defender] M:\Program Files\Windows Defender\MSASCui.exe (Microsoft Corporation) O4 - HKCU..\Run: [Nowe Gadu-Gadu] M:\Program Files\Nowe Gadu-Gadu\gg.exe (GG Network S.A.) O4 - HKCU..\Run: [RGSC] M:\Program Files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe File not found O8 - Extra context menu item: Add to Google Photos Screensa&ver - M:\Windows\System32\GPhotos.scr (Google Inc.) O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - M:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - M:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - M:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: @M:\Windows\WindowsMobile\INetRepl.dll,-222 - {2EAF5BB1-070F-11D3-9307-00C04FAE2D4F} - M:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : @M:\Windows\WindowsMobile\INetRepl.dll,-223 - {2EAF5BB2-070F-11D3-9307-00C04FAE2D4F} - M:\Windows\WindowsMobile\INetRepl.dll (Microsoft Corporation) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - M:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O10 - NameSpace_Catalog5\Catalog_Entries\000000000005 [] - M:\Program Files\Bonjour\mdnsNSP.dll (Apple Computer, Inc.) O13 - gopher Prefix: missing O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-0016-0000-0018-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_18-windows-i586.cab (Java Plug-in 1.6.0_18) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 194.204.159.1 194.204.152.34 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - M:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - M:\Program Files\Common Files\microsoft shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - M:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - M:\Program Files\Common Files\microsoft shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (explorer.exe) - M:\Windows\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (M:\RECYCLER\services.exe) - M:\RECYCLER\services.exe File not found O22 - SharedTaskScheduler: {73526E5A-FD53-4BE7-B5E2-D3C89D7413DC} - Ave's FolderBg - Reg Error: Key error. File not found O24 - Desktop WallPaper: M:\Users\Damian\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg O24 - Desktop BackupWallPaper: M:\Users\Damian\AppData\Roaming\Microsoft\Windows Photo Gallery\Tapeta z Galerii fotografii systemu Windows.jpg O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - M:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-07-16 22:40:30 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () - M:\autoexec.bat -- [ NTFS ] O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* NetSvcs: FastUserSwitchingCompatibility - File not found NetSvcs: Ias - M:\Windows\System32\ias [2008-01-21 03:46:39 | 000,000,000 | ---D | M] NetSvcs: Irmon - M:\Windows\System32\irmon.dll (Microsoft Corporation) NetSvcs: Nla - File not found NetSvcs: Ntmssvc - File not found NetSvcs: NWCWorkstation - File not found NetSvcs: Nwsapagent - File not found NetSvcs: SRService - File not found NetSvcs: Wmi - M:\Windows\System32\wmi.dll (Microsoft Corporation) NetSvcs: WmdmPmSp - File not found NetSvcs: LogonHours - File not found NetSvcs: PCAudit - File not found NetSvcs: helpsvc - File not found NetSvcs: uploadmgr - File not found [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-02-18 21:22:13 | 000,549,376 | ---- | C] (OldTimer Tools) -- M:\Users\Damian\Documents\OTL.exe [2010-02-18 17:10:16 | 000,000,000 | ---D | C] -- M:\Users\Damian\Desktop\vsk30 [2010-02-14 14:46:40 | 000,000,000 | ---D | C] -- M:\Program Files\AV Vcs 6.0 DIAMOND [2010-02-14 13:18:06 | 000,000,000 | ---D | C] -- M:\Users\Damian\Desktop\AV Voice Changer Software Diamond 6.0.34 Retail [2010-02-10 14:25:12 | 003,600,456 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\ntkrnlpa.exe [2010-02-10 14:25:12 | 003,548,216 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\ntoskrnl.exe [2010-02-10 14:25:00 | 001,314,816 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\quartz.dll [2010-02-10 14:24:59 | 000,123,904 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\msvfw32.dll [2010-02-10 14:24:59 | 000,091,136 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\avifil32.dll [2010-02-10 14:24:59 | 000,082,944 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\mciavi32.dll [2010-02-03 23:56:36 | 000,000,000 | ---D | C] -- M:\Users\Damian\WapSter [2010-02-03 23:56:15 | 000,000,000 | ---D | C] -- M:\Program Files\WapSter [2010-01-30 21:48:23 | 000,000,000 | ---D | C] -- M:\Users\Damian\Desktop\Nowy folder (2) [2010-01-29 22:02:47 | 000,000,000 | ---D | C] -- M:\Users\Damian\Documents\OJOsoft Corporation [2010-01-29 22:02:41 | 001,700,352 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\gdiplus.dll [2010-01-29 22:02:41 | 000,000,000 | ---D | C] -- M:\Program Files\Common Files\Common Share [2010-01-29 22:02:40 | 000,000,000 | ---D | C] -- M:\Program Files\OJOsoft [2010-01-29 21:59:41 | 011,260,324 | ---- | C] (http://www.ojosoft.com ) -- M:\Users\Damian\Desktop\total-video-converter.exe [2010-01-25 10:49:21 | 001,334,784 | ---- | C] (Atheros Communications, Inc.) -- M:\Windows\System32\athur.sys [2010-01-25 10:49:21 | 000,000,000 | ---D | C] -- M:\Windows\Options [2010-01-25 10:48:11 | 000,000,000 | ---D | C] -- M:\Users\Damian\Desktop\TL-WN422G [2010-01-23 22:30:50 | 000,000,000 | ---D | C] -- M:\ProgramData\Sun [2010-01-23 22:30:49 | 000,000,000 | ---D | C] -- M:\Program Files\Common Files\Java [2010-01-23 22:30:36 | 000,153,376 | ---- | C] (Sun Microsystems, Inc.) -- M:\Windows\System32\javaws.exe [2010-01-23 22:30:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- M:\Windows\System32\javaw.exe [2010-01-23 22:30:36 | 000,145,184 | ---- | C] (Sun Microsystems, Inc.) -- M:\Windows\System32\java.exe [2010-01-22 07:41:11 | 000,193,024 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\iepeers.dll [2010-01-22 07:41:11 | 000,180,736 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\ieui.dll [2010-01-22 07:41:10 | 000,078,336 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\ieencode.dll [2010-01-22 07:41:09 | 000,380,928 | ---- | C] (Microsoft Corporation) -- M:\Windows\System32\ieapfltr.dll [2010-01-21 22:26:27 | 000,000,000 | ---D | C] -- M:\Program Files\Counter-Strike [2009-09-18 17:48:42 | 000,148,736 | ---- | C] (Avanquest Software) -- M:\ProgramData\hpe1D7F.dll [2009-09-17 12:17:05 | 000,233,472 | ---- | C] (Propellerhead Software AB) -- M:\Users\Damian\AppData\Roaming\REX Shared Library.dll [2009-09-17 12:17:05 | 000,225,280 | ---- | C] (Propellerhead Software AB) -- M:\Users\Damian\AppData\Roaming\Rewire.dll [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2010-02-18 21:23:55 | 002,883,584 | -HS- | M] () -- M:\Users\Damian\NTUSER.DAT [2010-02-18 21:23:24 | 000,549,376 | ---- | M] (OldTimer Tools) -- M:\Users\Damian\Documents\OTL.exe [2010-02-18 21:18:00 | 000,001,062 | ---- | M] () -- M:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1545905530-1466848831-748298963-1000UA.job [2010-02-18 21:16:27 | 000,001,460 | ---- | M] () -- M:\Users\Damian\OTL.exe [2010-02-18 20:43:55 | 000,690,960 | ---- | M] () -- M:\Windows\System32\PerfStringBackup.INI [2010-02-18 20:43:55 | 000,586,980 | ---- | M] () -- M:\Windows\System32\perfh009.dat [2010-02-18 20:43:55 | 000,101,052 | ---- | M] () -- M:\Windows\System32\perfc009.dat [2010-02-18 20:39:28 | 000,216,330 | ---- | M] () -- M:\ProgramData\nvModes.dat [2010-02-18 20:39:27 | 000,216,330 | ---- | M] () -- M:\ProgramData\nvModes.001 [2010-02-18 20:39:26 | 000,004,784 | -H-- | M] () -- M:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-1.C7483456-A289-439d-8115-601632D005A0 [2010-02-18 20:39:26 | 000,004,784 | -H-- | M] () -- M:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-2P-0.C7483456-A289-439d-8115-601632D005A0 [2010-02-18 20:39:24 | 000,000,006 | -H-- | M] () -- M:\Windows\tasks\SA.DAT [2010-02-18 20:39:19 | 000,067,584 | --S- | M] () -- M:\Windows\bootstat.dat [2010-02-18 20:39:17 | 2147,016,704 | -HS- | M] () -- M:\hiberfil.sys [2010-02-18 17:13:07 | 000,000,012 | ---- | M] () -- M:\Windows\bthservsdp.dat [2010-02-18 17:13:01 | 000,524,288 | -HS- | M] () -- M:\Users\Damian\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TMContainer00000000000000000001.regtrans-ms [2010-02-18 17:13:01 | 000,065,536 | -HS- | M] () -- M:\Users\Damian\NTUSER.DAT{d8932e6d-6a6f-11db-b6ab-a038f15a5785}.TM.blf [2010-02-18 17:12:56 | 002,179,330 | -H-- | M] () -- M:\Users\Damian\AppData\Local\IconCache.db [2010-02-18 16:51:57 | 000,000,000 | -H-- | M] () -- M:\Users\Damian\Documents\Default.rdp [2010-02-18 16:31:49 | 000,022,002 | ---- | M] () -- M:\Users\Damian\Documents\sciaga(1).jar [2010-02-18 16:31:21 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\sciaga.jar [2010-02-18 16:01:33 | 000,215,104 | ---- | M] () -- M:\Windows\System32\PnkBstrB.xtr [2010-02-18 16:01:33 | 000,215,104 | ---- | M] () -- M:\Windows\System32\PnkBstrB.exe [2010-02-18 15:53:40 | 000,138,576 | ---- | M] () -- M:\Windows\System32\drivers\PnkBstrK.sys [2010-02-18 14:18:00 | 000,001,010 | ---- | M] () -- M:\Windows\tasks\GoogleUpdateTaskUserS-1-5-21-1545905530-1466848831-748298963-1000Core.job [2010-02-18 13:28:31 | 000,000,420 | -H-- | M] () -- M:\Windows\tasks\User_Feed_Synchronization-{79F88CD3-FC99-483E-9919-10515FCD06C0}.job [2010-02-17 22:19:56 | 001,473,632 | ---- | M] () -- M:\Users\Damian\Documents\SDC11022.JPG [2010-02-17 20:35:44 | 002,319,414 | ---- | M] () -- M:\Users\Damian\Documents\SDC10921.JPG [2010-02-17 20:28:15 | 002,359,097 | ---- | M] () -- M:\Users\Damian\Documents\SDC10948(1).JPG [2010-02-17 20:24:44 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\SDC10948.JPG [2010-02-17 20:22:41 | 002,446,436 | ---- | M] () -- M:\Users\Damian\Documents\SDC10972.JPG [2010-02-17 20:08:57 | 002,351,029 | ---- | M] () -- M:\Users\Damian\Documents\SDC10999.JPG [2010-02-17 20:00:20 | 002,599,901 | ---- | M] () -- M:\Users\Damian\Documents\SDC10996.JPG [2010-02-17 19:36:21 | 002,452,077 | ---- | M] () -- M:\Users\Damian\Documents\SDC10987(1).JPG [2010-02-17 18:04:24 | 002,438,330 | ---- | M] () -- M:\Users\Damian\Documents\SDC10994.JPG [2010-02-17 18:00:25 | 002,283,263 | ---- | M] () -- M:\Users\Damian\Documents\SDC10986.JPG [2010-02-17 17:56:41 | 002,228,609 | ---- | M] () -- M:\Users\Damian\Documents\SDC10985.JPG [2010-02-17 17:46:51 | 002,549,180 | ---- | M] () -- M:\Users\Damian\Documents\SDC10957.JPG [2010-02-17 17:37:38 | 002,212,398 | ---- | M] () -- M:\Users\Damian\Documents\SDC10933.JPG [2010-02-17 17:26:08 | 002,387,780 | ---- | M] () -- M:\Users\Damian\Documents\SDC10932.JPG [2010-02-17 17:12:44 | 002,236,070 | ---- | M] () -- M:\Users\Damian\Documents\SDC10925.JPG [2010-02-17 17:07:13 | 002,197,094 | ---- | M] () -- M:\Users\Damian\Documents\SDC10924.JPG [2010-02-17 17:02:03 | 002,499,365 | ---- | M] () -- M:\Users\Damian\Documents\SDC10922.JPG [2010-02-17 16:56:43 | 002,530,838 | ---- | M] () -- M:\Users\Damian\Documents\SDC10919.JPG [2010-02-17 16:51:08 | 002,582,842 | ---- | M] () -- M:\Users\Damian\Documents\SDC10917.JPG [2010-02-17 16:46:50 | 002,601,521 | ---- | M] () -- M:\Users\Damian\Documents\SDC10915.JPG [2010-02-17 16:45:54 | 000,077,824 | ---- | M] () -- M:\Users\Damian\Desktop\NVC.exe [2010-02-17 16:43:56 | 000,081,920 | ---- | M] () -- M:\Users\Damian\Desktop\NSC.exe [2010-02-17 16:42:57 | 002,475,470 | ---- | M] () -- M:\Users\Damian\Documents\SDC10910.JPG [2010-02-17 16:38:42 | 002,393,106 | ---- | M] () -- M:\Users\Damian\Documents\SDC10909.JPG [2010-02-17 16:33:35 | 002,468,873 | ---- | M] () -- M:\Users\Damian\Documents\SDC10908.JPG [2010-02-17 16:27:50 | 002,483,381 | ---- | M] () -- M:\Users\Damian\Documents\SDC10907.JPG [2010-02-17 15:34:46 | 002,293,371 | ---- | M] () -- M:\Users\Damian\Documents\SDC10904.JPG [2010-02-17 15:29:36 | 002,443,971 | ---- | M] () -- M:\Users\Damian\Documents\SDC10902.JPG [2010-02-17 15:25:50 | 002,587,066 | ---- | M] () -- M:\Users\Damian\Documents\SDC10901.JPG [2010-02-17 15:19:03 | 002,491,790 | ---- | M] () -- M:\Users\Damian\Documents\SDC10900.JPG [2010-02-17 15:14:26 | 002,233,998 | ---- | M] () -- M:\Users\Damian\Documents\SDC10896(1).JPG [2010-02-17 15:11:03 | 002,243,482 | ---- | M] () -- M:\Users\Damian\Documents\SDC10898.JPG [2010-02-17 15:09:49 | 001,882,127 | ---- | M] () -- M:\Users\Damian\Documents\SDC10896.JPG [2010-02-17 15:02:36 | 002,520,075 | ---- | M] () -- M:\Users\Damian\Documents\SDC10894.JPG [2010-02-17 14:58:11 | 002,222,707 | ---- | M] () -- M:\Users\Damian\Documents\SDC10893.JPG [2010-02-17 14:54:46 | 002,490,121 | ---- | M] () -- M:\Users\Damian\Documents\SDC10891.JPG [2010-02-17 14:47:09 | 002,544,157 | ---- | M] () -- M:\Users\Damian\Documents\SDC10885.JPG [2010-02-17 14:40:15 | 002,399,094 | ---- | M] () -- M:\Users\Damian\Documents\SDC10939.JPG [2010-02-17 14:34:43 | 002,361,113 | ---- | M] () -- M:\Users\Damian\Documents\SDC10946.JPG [2010-02-17 14:30:21 | 002,472,158 | ---- | M] () -- M:\Users\Damian\Documents\SDC10974.JPG [2010-02-17 14:24:59 | 002,354,848 | ---- | M] () -- M:\Users\Damian\Documents\SDC11005.JPG [2010-02-16 22:22:27 | 000,137,216 | ---- | M] () -- M:\Users\Damian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-02-16 22:08:09 | 001,452,031 | ---- | M] () -- M:\Users\Damian\Documents\SDC10296(1).JPG [2010-02-16 21:55:40 | 001,443,319 | ---- | M] () -- M:\Users\Damian\Documents\SDC10356.JPG [2010-02-16 21:52:08 | 001,572,347 | ---- | M] () -- M:\Users\Damian\Documents\SDC10348.JPG [2010-02-16 21:48:46 | 001,506,619 | ---- | M] () -- M:\Users\Damian\Documents\SDC10347.JPG [2010-02-16 21:45:25 | 001,637,007 | ---- | M] () -- M:\Users\Damian\Documents\SDC10340.JPG [2010-02-16 21:40:31 | 001,358,354 | ---- | M] () -- M:\Users\Damian\Documents\SDC10331(1).JPG [2010-02-16 21:37:00 | 001,537,555 | ---- | M] () -- M:\Users\Damian\Documents\SDC10326.JPG [2010-02-16 21:33:26 | 001,353,673 | ---- | M] () -- M:\Users\Damian\Documents\SDC10324.JPG [2010-02-16 21:30:38 | 001,573,442 | ---- | M] () -- M:\Users\Damian\Documents\SDC10305.JPG [2010-02-16 21:28:22 | 001,601,584 | ---- | M] () -- M:\Users\Damian\Documents\SDC10303.JPG [2010-02-15 23:22:20 | 000,013,680 | ---- | M] () -- M:\Users\Damian\Desktop\CV.docx [2010-02-15 22:55:36 | 000,014,327 | ---- | M] () -- M:\Users\Damian\Documents\hahahaha.odt [2010-02-15 18:31:41 | 002,390,477 | ---- | M] () -- M:\Users\Damian\Documents\SDC10797.JPG [2010-02-15 18:25:57 | 002,278,625 | ---- | M] () -- M:\Users\Damian\Documents\SDC10798(1).JPG [2010-02-15 18:17:18 | 002,386,856 | ---- | M] () -- M:\Users\Damian\Documents\SDC10880.JPG [2010-02-15 18:11:58 | 002,246,802 | ---- | M] () -- M:\Users\Damian\Documents\SDC10802(1).JPG [2010-02-15 18:05:03 | 002,492,474 | ---- | M] () -- M:\Users\Damian\Documents\SDC10804.JPG [2010-02-15 18:00:10 | 002,452,413 | ---- | M] () -- M:\Users\Damian\Documents\SDC10813.JPG [2010-02-15 17:48:27 | 002,241,242 | ---- | M] () -- M:\Users\Damian\Documents\SDC10726.JPG [2010-02-15 17:36:34 | 002,388,717 | ---- | M] () -- M:\Users\Damian\Documents\SDC10682.JPG [2010-02-15 17:32:13 | 002,351,326 | ---- | M] () -- M:\Users\Damian\Documents\SDC10634.JPG [2010-02-15 17:26:16 | 002,503,234 | ---- | M] () -- M:\Users\Damian\Documents\SDC10630.JPG [2010-02-15 17:20:29 | 002,425,015 | ---- | M] () -- M:\Users\Damian\Documents\SDC10612.JPG [2010-02-15 17:14:43 | 002,227,933 | ---- | M] () -- M:\Users\Damian\Documents\SDC10878.JPG [2010-02-15 17:10:02 | 002,278,327 | ---- | M] () -- M:\Users\Damian\Documents\SDC10883.JPG [2010-02-15 17:07:07 | 002,573,587 | ---- | M] () -- M:\Users\Damian\Documents\SDC10840.JPG [2010-02-15 17:02:23 | 002,491,355 | ---- | M] () -- M:\Users\Damian\Documents\SDC10833.JPG [2010-02-15 16:56:46 | 002,532,924 | ---- | M] () -- M:\Users\Damian\Documents\SDC10835.JPG [2010-02-15 16:52:43 | 002,580,892 | ---- | M] () -- M:\Users\Damian\Documents\SDC10866.JPG [2010-02-15 16:45:55 | 002,274,944 | ---- | M] () -- M:\Users\Damian\Documents\SDC10876.JPG [2010-02-15 16:38:54 | 002,597,144 | ---- | M] () -- M:\Users\Damian\Documents\SDC10872.JPG [2010-02-14 23:06:30 | 002,187,571 | ---- | M] () -- M:\Users\Damian\Documents\SDC10868.JPG [2010-02-14 23:00:52 | 002,198,842 | ---- | M] () -- M:\Users\Damian\Documents\SDC10865.JPG [2010-02-14 22:54:49 | 002,205,573 | ---- | M] () -- M:\Users\Damian\Documents\SDC10861.JPG [2010-02-14 22:46:27 | 002,318,244 | ---- | M] () -- M:\Users\Damian\Documents\SDC10860.JPG [2010-02-14 22:22:00 | 002,598,280 | ---- | M] () -- M:\Users\Damian\Documents\SDC10855.JPG [2010-02-14 22:17:49 | 002,268,314 | ---- | M] () -- M:\Users\Damian\Documents\SDC10852.JPG [2010-02-14 22:14:32 | 002,594,298 | ---- | M] () -- M:\Users\Damian\Documents\SDC10851.JPG [2010-02-14 22:09:43 | 002,584,983 | ---- | M] () -- M:\Users\Damian\Documents\SDC10850.JPG [2010-02-14 22:03:37 | 002,601,295 | ---- | M] () -- M:\Users\Damian\Documents\SDC10849.JPG [2010-02-14 21:59:59 | 002,265,380 | ---- | M] () -- M:\Users\Damian\Documents\SDC10845.JPG [2010-02-14 21:55:02 | 002,541,805 | ---- | M] () -- M:\Users\Damian\Documents\SDC10843.JPG [2010-02-14 21:50:22 | 002,160,226 | ---- | M] () -- M:\Users\Damian\Documents\SDC10842.JPG [2010-02-14 21:47:21 | 002,404,876 | ---- | M] () -- M:\Users\Damian\Documents\SDC10841.JPG [2010-02-14 21:42:22 | 002,122,120 | ---- | M] () -- M:\Users\Damian\Documents\SDC10839.JPG [2010-02-14 21:38:30 | 002,473,715 | ---- | M] () -- M:\Users\Damian\Documents\SDC10838.JPG [2010-02-14 21:34:06 | 002,515,367 | ---- | M] () -- M:\Users\Damian\Documents\SDC10837.JPG [2010-02-14 21:30:13 | 002,318,895 | ---- | M] () -- M:\Users\Damian\Documents\SDC10834.JPG [2010-02-14 21:27:11 | 002,572,245 | ---- | M] () -- M:\Users\Damian\Documents\SDC10832.JPG [2010-02-14 21:22:28 | 002,254,495 | ---- | M] () -- M:\Users\Damian\Documents\SDC10831.JPG [2010-02-14 21:17:20 | 002,456,288 | ---- | M] () -- M:\Users\Damian\Documents\SDC10830.JPG [2010-02-14 21:10:23 | 002,403,911 | ---- | M] () -- M:\Users\Damian\Documents\SDC10829.JPG [2010-02-14 21:01:45 | 002,508,722 | ---- | M] () -- M:\Users\Damian\Documents\SDC10826.JPG [2010-02-14 20:57:58 | 002,453,532 | ---- | M] () -- M:\Users\Damian\Documents\SDC10825.JPG [2010-02-14 20:54:24 | 002,583,443 | ---- | M] () -- M:\Users\Damian\Documents\SDC10823.JPG [2010-02-14 20:50:30 | 002,145,577 | ---- | M] () -- M:\Users\Damian\Documents\SDC10821.JPG [2010-02-14 20:45:23 | 002,433,564 | ---- | M] () -- M:\Users\Damian\Documents\SDC10820.JPG [2010-02-14 20:41:10 | 002,390,589 | ---- | M] () -- M:\Users\Damian\Documents\SDC10819.JPG [2010-02-14 20:36:24 | 002,523,052 | ---- | M] () -- M:\Users\Damian\Documents\SDC10818.JPG [2010-02-14 20:32:48 | 002,491,475 | ---- | M] () -- M:\Users\Damian\Documents\SDC10817.JPG [2010-02-14 20:24:24 | 002,319,763 | ---- | M] () -- M:\Users\Damian\Documents\SDC10816.JPG [2010-02-14 20:18:08 | 002,361,138 | ---- | M] () -- M:\Users\Damian\Documents\SDC10815.JPG [2010-02-14 19:59:23 | 002,520,818 | ---- | M] () -- M:\Users\Damian\Documents\SDC10814.JPG [2010-02-14 19:53:21 | 002,495,333 | ---- | M] () -- M:\Users\Damian\Documents\SDC10812.JPG [2010-02-14 19:48:15 | 002,568,106 | ---- | M] () -- M:\Users\Damian\Documents\SDC10810.JPG [2010-02-14 19:43:43 | 002,367,888 | ---- | M] () -- M:\Users\Damian\Documents\SDC10809.JPG [2010-02-14 19:40:38 | 002,446,280 | ---- | M] () -- M:\Users\Damian\Documents\SDC10808.JPG [2010-02-14 19:35:45 | 002,503,402 | ---- | M] () -- M:\Users\Damian\Documents\SDC10805.JPG [2010-02-14 19:29:30 | 002,246,802 | ---- | M] () -- M:\Users\Damian\Documents\SDC10802.JPG [2010-02-14 19:23:13 | 002,605,149 | ---- | M] () -- M:\Users\Damian\Documents\SDC10800.JPG [2010-02-14 19:16:49 | 002,278,625 | ---- | M] () -- M:\Users\Damian\Documents\SDC10798.JPG [2010-02-14 19:11:50 | 002,259,950 | ---- | M] () -- M:\Users\Damian\Documents\SDC10796.JPG [2010-02-14 19:08:30 | 002,258,166 | ---- | M] () -- M:\Users\Damian\Documents\SDC10794.JPG [2010-02-14 17:40:09 | 002,523,683 | ---- | M] () -- M:\Users\Damian\Documents\SDC10730.JPG [2010-02-14 16:49:32 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\Obraz 056(2).jpg [2010-02-14 16:48:42 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\Obraz 056(1).jpg [2010-02-14 16:48:12 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\Obraz 056.jpg [2010-02-14 16:43:43 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\221020091521(1).jpg [2010-02-14 14:47:24 | 000,001,034 | ---- | M] () -- M:\Users\Damian\Desktop\Voice Changer 6.0 Diamond.lnk [2010-02-14 14:43:57 | 000,901,035 | ---- | M] () -- M:\Users\Damian\Documents\Daria 371.jpg [2010-02-14 14:07:41 | 000,000,000 | ---- | M] () -- M:\Users\Damian\Documents\221020091521.jpg [2010-02-14 13:10:12 | 008,901,956 | ---- | M] () -- M:\Users\Damian\Documents\AV_Voice_Changer6.0.34.rar [2010-02-13 21:03:31 | 001,548,887 | ---- | M] () -- M:\Users\Damian\Documents\SDC10113.JPG [2010-02-13 20:05:36 | 001,590,286 | ---- | M] () -- M:\Users\Damian\Documents\SDC10133(1).JPG [2010-02-13 20:01:43 | 001,526,178 | ---- | M] () -- M:\Users\Damian\Documents\SDC10134.JPG [2010-02-13 19:59:41 | 001,629,078 | ---- | M] () -- M:\Users\Damian\Documents\SDC10130.JPG [2010-02-13 19:53:38 | 001,635,278 | ---- | M] () -- M:\Users\Damian\Documents\SDC10112.JPG [2010-02-13 19:42:06 | 001,634,007 | ---- | M] () -- M:\Users\Damian\Documents\SDC10032.JPG [2010-02-13 19:33:33 | 001,562,915 | ---- | M] () -- M:\Users\Damian\Documents\SDC11613.JPG [2010-02-13 19:30:06 | 001,410,015 | ---- | M] () -- M:\Users\Damian\Documents\SDC11625.JPG [2010-02-13 19:29:31 | 001,408,690 | ---- | M] () -- M:\Users\Damian\Documents\SDC11605.JPG [2010-02-13 19:24:39 | 001,510,919 | ---- | M] () -- M:\Users\Damian\Documents\SDC11624.JPG [2010-02-13 19:21:31 | 001,485,021 | ---- | M] () -- M:\Users\Damian\Documents\SDC11607.JPG [2010-02-13 19:16:24 | 000,428,303 | ---- | M] () -- M:\Users\Damian\Documents\SDC11598.JPG [2010-02-13 19:14:08 | 001,591,959 | ---- | M] () -- M:\Users\Damian\Documents\SDC11597.JPG [2010-02-13 18:20:15 | 002,547,934 | ---- | M] () -- M:\Users\Damian\Documents\SDC10773(1).JPG [2010-02-13 18:15:54 | 002,172,451 | ---- | M] () -- M:\Users\Damian\Documents\SDC10771(1).JPG [2010-02-13 18:12:20 | 002,225,973 | ---- | M] () -- M:\Users\Damian\Documents\SDC10772.JPG [2010-02-13 18:10:45 | 000,002,096 | ---- | M] () -- M:\Users\Damian\Documents\SDC10771.JPG [2010-02-13 18:10:39 | 000,002,096 | ---- | M] () -- M:\Users\Damian\Documents\SDC10773.JPG [2010-02-13 18:08:39 | 002,359,225 | ---- | M] () -- M:\Users\Damian\Documents\SDC10792.JPG [2010-02-13 18:01:53 | 002,365,145 | ---- | M] () -- M:\Users\Damian\Documents\SDC10791.JPG [2010-02-13 18:01:50 | 002,862,796 | ---- | M] () -- M:\Users\Damian\Desktop\SDC11525.jpg [2010-02-13 17:58:38 | 002,402,156 | ---- | M] () -- M:\Users\Damian\Documents\SDC10790.JPG [2010-02-13 17:54:01 | 001,914,018 | ---- | M] () -- M:\Users\Damian\Documents\SDC10789.JPG [2010-02-13 17:48:33 | 002,516,267 | ---- | M] () -- M:\Users\Damian\Documents\SDC10788.JPG [2010-02-13 17:39:12 | 002,285,743 | ---- | M] () -- M:\Users\Damian\Documents\SDC10787.JPG [2010-02-13 17:34:09 | 002,413,057 | ---- | M] () -- M:\Users\Damian\Documents\SDC10786.JPG [2010-02-13 17:29:39 | 002,269,306 | ---- | M] () -- M:\Users\Damian\Documents\SDC10785.JPG [2010-02-13 17:25:35 | 002,414,466 | ---- | M] () -- M:\Users\Damian\Documents\SDC10784.JPG [2010-02-13 17:22:29 | 002,406,862 | ---- | M] () -- M:\Users\Damian\Documents\SDC10783.JPG [2010-02-13 17:18:09 | 002,268,972 | ---- | M] () -- M:\Users\Damian\Documents\SDC10781.JPG [2010-02-13 17:14:27 | 002,369,883 | ---- | M] () -- M:\Users\Damian\Documents\SDC10780.JPG [2010-02-13 16:36:32 | 002,414,624 | ---- | M] () -- M:\Users\Damian\Documents\SDC10779.JPG [2010-02-13 16:33:17 | 000,868,045 | ---- | M] () -- M:\Users\Damian\Documents\SDC10777.JPG [2010-02-13 16:31:39 | 002,427,477 | ---- | M] () -- M:\Users\Damian\Documents\SDC10776.JPG [2010-02-13 16:25:46 | 002,497,475 | ---- | M] () -- M:\Users\Damian\Documents\SDC10775.JPG [2010-02-13 16:16:15 | 002,478,284 | ---- | M] () -- M:\Users\Damian\Documents\SDC10774.JPG [2010-02-13 16:12:29 | 002,138,105 | ---- | M] () -- M:\Users\Damian\Documents\SDC10767.JPG [2010-02-13 16:08:40 | 002,494,222 | ---- | M] () -- M:\Users\Damian\Documents\SDC10766.JPG [2010-02-13 16:01:27 | 001,995,092 | ---- | M] () -- M:\Users\Damian\Documents\SDC10764.JPG [2010-02-13 15:58:44 | 002,278,523 | ---- | M] () -- M:\Users\Damian\Documents\SDC10763.JPG [2010-02-13 15:52:18 | 002,433,612 | ---- | M] () -- M:\Users\Damian\Documents\SDC10762.JPG [2010-02-13 15:47:18 | 002,451,622 | ---- | M] () -- M:\Users\Damian\Documents\SDC10761.JPG [2010-02-13 15:43:32 | 002,492,177 | ---- | M] () -- M:\Users\Damian\Documents\SDC10760.JPG [2010-02-13 15:39:27 | 002,420,515 | ---- | M] () -- M:\Users\Damian\Documents\SDC10759.JPG [2010-02-13 15:36:51 | 002,420,567 | ---- | M] () -- M:\Users\Damian\Documents\SDC10757.JPG [2010-02-13 15:30:48 | 002,352,184 | ---- | M] () -- M:\Users\Damian\Documents\SDC10756.JPG [2010-02-13 15:24:10 | 002,172,014 | ---- | M] () -- M:\Users\Damian\Documents\SDC10753.JPG [2010-02-13 15:18:13 | 002,487,333 | ---- | M] () -- M:\Users\Damian\Documents\SDC10750.JPG [2010-02-13 15:12:56 | 002,513,235 | ---- | M] () -- M:\Users\Damian\Documents\SDC10746.JPG [2010-02-13 15:06:45 | 002,237,834 | ---- | M] () -- M:\Users\Damian\Documents\SDC10778.JPG [2010-02-13 15:02:52 | 001,934,728 | ---- | M] () -- M:\Users\Damian\Documents\SDC10747.JPG [2010-02-13 14:57:13 | 002,470,361 | ---- | M] () -- M:\Users\Damian\Documents\SDC10770.JPG [2010-02-13 11:06:03 | 001,556,131 | ---- | M] () -- M:\Users\Damian\Documents\SDC11989.JPG [2010-02-13 11:00:38 | 001,641,169 | ---- | M] () -- M:\Users\Damian\Documents\SDC11996(1).JPG [2010-02-13 10:53:32 | 001,578,470 | ---- | M] () -- M:\Users\Damian\Documents\SDC11999.JPG [2010-02-13 10:49:23 | 001,581,984 | ---- | M] () -- M:\Users\Damian\Documents\SDC12000.JPG [2010-02-11 21:15:10 | 002,456,255 | ---- | M] () -- M:\Users\Damian\Documents\SDC10738.JPG [2010-02-11 17:06:19 | 000,023,289 | ---- | M] () -- M:\Users\Damian\Desktop\help.jpg [2010-02-11 16:59:17 | 000,605,134 | ---- | M] () -- M:\Users\Damian\Desktop\logo.psd [2010-02-11 16:57:19 | 000,082,574 | ---- | M] () -- M:\Users\Damian\Desktop\logo11.jpg [2010-02-11 16:45:33 | 000,079,674 | ---- | M] () -- M:\Users\Damian\Desktop\logo10.jpg [2010-02-11 16:43:48 | 000,075,308 | ---- | M] () -- M:\Users\Damian\Desktop\logo7.jpg [2010-02-11 16:41:44 | 000,074,858 | ---- | M] () -- M:\Users\Damian\Desktop\logo6.jpg [2010-02-11 16:36:35 | 000,091,216 | ---- | M] () -- M:\Users\Damian\Desktop\logo5.jpg [2010-02-11 15:11:19 | 002,190,794 | ---- | M] () -- M:\Users\Damian\Documents\SDC10711.JPG [2010-02-10 22:17:10 | 002,056,738 | ---- | M] () -- M:\Users\Damian\Documents\SDC10706.JPG [2010-02-10 21:36:13 | 002,233,865 | ---- | M] () -- M:\Users\Damian\Documents\SDC10697.JPG [2010-02-08 17:59:30 | 000,126,570 | ---- | M] () -- M:\Users\Damian\Desktop\logo3.jpg [2010-02-08 17:58:10 | 000,128,512 | ---- | M] () -- M:\Users\Damian\Desktop\logo2.jpg [2010-02-08 17:29:23 | 000,003,846 | ---- | M] () -- M:\Users\Damian\Desktop\24026.jpeg [2010-02-08 17:13:48 | 000,022,074 | ---- | M] () -- M:\Users\Damian\Desktop\800px-Barczewo_gimnazjum.jpg.jpg [2010-02-07 20:40:52 | 002,419,731 | ---- | M] () -- M:\Users\Damian\Documents\SDC10595.JPG [2010-02-06 22:49:59 | 000,954,039 | ---- | M] () -- M:\Users\Damian\Desktop\zdjęcie1215.jpg [2010-02-06 22:44:57 | 000,933,291 | ---- | M] () -- M:\Users\Damian\Desktop\SDC11485.jpg [2010-02-06 22:33:54 | 000,923,479 | ---- | M] () -- M:\Users\Damian\Documents\Zdjęcie0047.jpg [2010-02-06 22:29:06 | 000,836,430 | ---- | M] () -- M:\Users\Damian\Documents\Zdjęcie0046.jpg [2010-02-05 14:39:56 | 033,410,946 | ---- | M] () -- M:\Users\Damian\Desktop\SDC11481.AVI [2010-02-05 13:29:21 | 000,237,733 | ---- | M] () -- M:\Users\Damian\Desktop\ghost.jpg [2010-02-04 01:14:11 | 000,069,259 | ---- | M] () -- M:\Users\Damian\Desktop\fff.jpg [2010-02-03 18:20:14 | 000,858,064 | ---- | M] () -- M:\Users\Damian\Desktop\Honda_stunt_bike.jpg [2010-02-03 18:16:35 | 000,199,508 | ---- | M] () -- M:\Users\Damian\Desktop\Tapeta z Galerii fotografii systemu Windows.jpg [2010-02-01 00:03:59 | 000,182,581 | ---- | M] () -- M:\Users\Damian\Desktop\Bez tytułu.jpg [2010-01-31 19:03:06 | 000,030,131 | ---- | M] () -- M:\Users\Damian\Desktop\a086237df5.jpeg [2010-01-30 21:29:12 | 000,137,104 | ---- | M] () -- M:\Users\Damian\Desktop\peja_200.jpg [2010-01-30 21:26:21 | 000,123,258 | ---- | M] () -- M:\Users\Damian\Desktop\peja_slu.jpg [2010-01-30 19:40:39 | 000,097,280 | ---- | M] () -- M:\Users\Damian\Documents\pno0001.exe [2010-01-30 03:41:17 | 000,327,341 | ---- | M] () -- M:\Users\Damian\Desktop\warszawiak_z_karsina_walencjo.3gp [2010-01-30 03:37:06 | 003,990,010 | ---- | M] () -- M:\Users\Damian\Desktop\warszawiak_z_karsina_walencjo.avi [2010-01-29 22:04:17 | 000,457,866 | ---- | M] () -- M:\Users\Damian\Desktop\Kacper_-_kat_NEW.3gp [2010-01-29 22:02:45 | 000,001,014 | ---- | M] () -- M:\Users\Damian\Desktop\OJOsoft Total Video Converter.lnk [2010-01-29 22:02:08 | 011,260,324 | ---- | M] (http://www.ojosoft.com ) -- M:\Users\Damian\Desktop\total-video-converter.exe [2010-01-29 21:30:48 | 000,228,655 | ---- | M] () -- M:\Users\Damian\Desktop\kawasaki zx 7-r dzwiek odciecia zaplonu.mp3 [2010-01-29 21:18:21 | 000,274,105 | ---- | M] () -- M:\Users\Damian\Desktop\odcięcie.wma [2010-01-29 21:12:29 | 005,557,180 | ---- | M] () -- M:\Users\Damian\Desktop\Kacper_-_kat.avi [2010-01-25 10:47:38 | 025,424,185 | ---- | M] () -- M:\Users\Damian\Desktop\200912311492414.zip [2010-01-25 10:20:27 | 000,010,845 | ---- | M] () -- M:\Users\Damian\Desktop\konto.docx [2010-01-24 13:01:52 | 000,000,219 | ---- | M] () -- M:\Windows\win.ini [2010-01-23 19:48:33 | 000,001,725 | ---- | M] () -- M:\Users\Damian\Desktop\Counter-Strike 1.6.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-02-18 21:16:27 | 000,001,460 | ---- | C] () -- M:\Users\Damian\OTL.exe [2010-02-18 16:51:57 | 000,000,000 | -H-- | C] () -- M:\Users\Damian\Documents\Default.rdp [2010-02-18 16:31:48 | 000,022,002 | ---- | C] () -- M:\Users\Damian\Documents\sciaga(1).jar [2010-02-18 16:31:21 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\sciaga.jar [2010-02-17 22:18:20 | 001,473,632 | ---- | C] () -- M:\Users\Damian\Documents\SDC11022.JPG [2010-02-17 20:33:16 | 002,319,414 | ---- | C] () -- M:\Users\Damian\Documents\SDC10921.JPG [2010-02-17 20:25:43 | 002,359,097 | ---- | C] () -- M:\Users\Damian\Documents\SDC10948(1).JPG [2010-02-17 20:24:44 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\SDC10948.JPG [2010-02-17 20:20:08 | 002,446,436 | ---- | C] () -- M:\Users\Damian\Documents\SDC10972.JPG [2010-02-17 20:06:30 | 002,351,029 | ---- | C] () -- M:\Users\Damian\Documents\SDC10999.JPG [2010-02-17 19:56:05 | 002,599,901 | ---- | C] () -- M:\Users\Damian\Documents\SDC10996.JPG [2010-02-17 19:32:21 | 002,452,077 | ---- | C] () -- M:\Users\Damian\Documents\SDC10987(1).JPG [2010-02-17 18:01:53 | 002,438,330 | ---- | C] () -- M:\Users\Damian\Documents\SDC10994.JPG [2010-02-17 17:58:02 | 002,283,263 | ---- | C] () -- M:\Users\Damian\Documents\SDC10986.JPG [2010-02-17 17:54:21 | 002,228,609 | ---- | C] () -- M:\Users\Damian\Documents\SDC10985.JPG [2010-02-17 17:42:31 | 002,549,180 | ---- | C] () -- M:\Users\Damian\Documents\SDC10957.JPG [2010-02-17 17:34:58 | 002,212,398 | ---- | C] () -- M:\Users\Damian\Documents\SDC10933.JPG [2010-02-17 17:23:38 | 002,387,780 | ---- | C] () -- M:\Users\Damian\Documents\SDC10932.JPG [2010-02-17 17:08:48 | 002,236,070 | ---- | C] () -- M:\Users\Damian\Documents\SDC10925.JPG [2010-02-17 17:04:55 | 002,197,094 | ---- | C] () -- M:\Users\Damian\Documents\SDC10924.JPG [2010-02-17 16:58:22 | 002,499,365 | ---- | C] () -- M:\Users\Damian\Documents\SDC10922.JPG [2010-02-17 16:54:05 | 002,530,838 | ---- | C] () -- M:\Users\Damian\Documents\SDC10919.JPG [2010-02-17 16:47:51 | 002,582,842 | ---- | C] () -- M:\Users\Damian\Documents\SDC10917.JPG [2010-02-17 16:45:54 | 000,077,824 | ---- | C] () -- M:\Users\Damian\Desktop\NVC.exe [2010-02-17 16:44:09 | 002,601,521 | ---- | C] () -- M:\Users\Damian\Documents\SDC10915.JPG [2010-02-17 16:43:56 | 000,081,920 | ---- | C] () -- M:\Users\Damian\Desktop\NSC.exe [2010-02-17 16:40:22 | 002,475,470 | ---- | C] () -- M:\Users\Damian\Documents\SDC10910.JPG [2010-02-17 16:34:48 | 002,393,106 | ---- | C] () -- M:\Users\Damian\Documents\SDC10909.JPG [2010-02-17 16:29:28 | 002,468,873 | ---- | C] () -- M:\Users\Damian\Documents\SDC10908.JPG [2010-02-17 16:25:16 | 002,483,381 | ---- | C] () -- M:\Users\Damian\Documents\SDC10907.JPG [2010-02-17 15:32:20 | 002,293,371 | ---- | C] () -- M:\Users\Damian\Documents\SDC10904.JPG [2010-02-17 15:27:04 | 002,443,971 | ---- | C] () -- M:\Users\Damian\Documents\SDC10902.JPG [2010-02-17 15:23:10 | 002,587,066 | ---- | C] () -- M:\Users\Damian\Documents\SDC10901.JPG [2010-02-17 15:15:23 | 002,491,790 | ---- | C] () -- M:\Users\Damian\Documents\SDC10900.JPG [2010-02-17 15:12:06 | 002,233,998 | ---- | C] () -- M:\Users\Damian\Documents\SDC10896(1).JPG [2010-02-17 15:08:41 | 002,243,482 | ---- | C] () -- M:\Users\Damian\Documents\SDC10898.JPG [2010-02-17 15:05:47 | 001,882,127 | ---- | C] () -- M:\Users\Damian\Documents\SDC10896.JPG [2010-02-17 14:59:59 | 002,520,075 | ---- | C] () -- M:\Users\Damian\Documents\SDC10894.JPG [2010-02-17 14:55:52 | 002,222,707 | ---- | C] () -- M:\Users\Damian\Documents\SDC10893.JPG [2010-02-17 14:50:40 | 002,490,121 | ---- | C] () -- M:\Users\Damian\Documents\SDC10891.JPG [2010-02-17 14:43:39 | 002,544,157 | ---- | C] () -- M:\Users\Damian\Documents\SDC10885.JPG [2010-02-17 14:36:24 | 002,399,094 | ---- | C] () -- M:\Users\Damian\Documents\SDC10939.JPG [2010-02-17 14:32:16 | 002,361,113 | ---- | C] () -- M:\Users\Damian\Documents\SDC10946.JPG [2010-02-17 14:27:00 | 002,472,158 | ---- | C] () -- M:\Users\Damian\Documents\SDC10974.JPG [2010-02-17 14:21:13 | 002,354,848 | ---- | C] () -- M:\Users\Damian\Documents\SDC11005.JPG [2010-02-16 22:05:38 | 001,452,031 | ---- | C] () -- M:\Users\Damian\Documents\SDC10296(1).JPG [2010-02-16 21:53:17 | 001,443,319 | ---- | C] () -- M:\Users\Damian\Documents\SDC10356.JPG [2010-02-16 21:49:25 | 001,572,347 | ---- | C] () -- M:\Users\Damian\Documents\SDC10348.JPG [2010-02-16 21:46:14 | 001,506,619 | ---- | C] () -- M:\Users\Damian\Documents\SDC10347.JPG [2010-02-16 21:43:37 | 001,637,007 | ---- | C] () -- M:\Users\Damian\Documents\SDC10340.JPG [2010-02-16 21:38:03 | 001,358,354 | ---- | C] () -- M:\Users\Damian\Documents\SDC10331(1).JPG [2010-02-16 21:35:08 | 001,537,555 | ---- | C] () -- M:\Users\Damian\Documents\SDC10326.JPG [2010-02-16 21:31:55 | 001,353,673 | ---- | C] () -- M:\Users\Damian\Documents\SDC10324.JPG [2010-02-16 21:28:54 | 001,573,442 | ---- | C] () -- M:\Users\Damian\Documents\SDC10305.JPG [2010-02-16 21:26:38 | 001,601,584 | ---- | C] () -- M:\Users\Damian\Documents\SDC10303.JPG [2010-02-15 23:22:20 | 000,013,680 | ---- | C] () -- M:\Users\Damian\Desktop\CV.docx [2010-02-15 22:55:35 | 000,014,327 | ---- | C] () -- M:\Users\Damian\Documents\hahahaha.odt [2010-02-15 18:29:11 | 002,390,477 | ---- | C] () -- M:\Users\Damian\Documents\SDC10797.JPG [2010-02-15 18:22:14 | 002,278,625 | ---- | C] () -- M:\Users\Damian\Documents\SDC10798(1).JPG [2010-02-15 18:14:49 | 002,386,856 | ---- | C] () -- M:\Users\Damian\Documents\SDC10880.JPG [2010-02-15 18:08:58 | 002,246,802 | ---- | C] () -- M:\Users\Damian\Documents\SDC10802(1).JPG [2010-02-15 18:02:29 | 002,492,474 | ---- | C] () -- M:\Users\Damian\Documents\SDC10804.JPG [2010-02-15 17:57:12 | 002,452,413 | ---- | C] () -- M:\Users\Damian\Documents\SDC10813.JPG [2010-02-15 17:46:06 | 002,241,242 | ---- | C] () -- M:\Users\Damian\Documents\SDC10726.JPG [2010-02-15 17:34:05 | 002,388,717 | ---- | C] () -- M:\Users\Damian\Documents\SDC10682.JPG [2010-02-15 17:29:47 | 002,351,326 | ---- | C] () -- M:\Users\Damian\Documents\SDC10634.JPG [2010-02-15 17:23:41 | 002,503,234 | ---- | C] () -- M:\Users\Damian\Documents\SDC10630.JPG [2010-02-15 17:16:29 | 002,425,015 | ---- | C] () -- M:\Users\Damian\Documents\SDC10612.JPG [2010-02-15 17:12:23 | 002,227,933 | ---- | C] () -- M:\Users\Damian\Documents\SDC10878.JPG [2010-02-15 17:07:40 | 002,278,327 | ---- | C] () -- M:\Users\Damian\Documents\SDC10883.JPG [2010-02-15 17:04:28 | 002,573,587 | ---- | C] () -- M:\Users\Damian\Documents\SDC10840.JPG [2010-02-15 16:59:49 | 002,491,355 | ---- | C] () -- M:\Users\Damian\Documents\SDC10833.JPG [2010-02-15 16:54:09 | 002,532,924 | ---- | C] () -- M:\Users\Damian\Documents\SDC10835.JPG [2010-02-15 16:48:27 | 002,580,892 | ---- | C] () -- M:\Users\Damian\Documents\SDC10866.JPG [2010-02-15 16:42:05 | 002,274,944 | ---- | C] () -- M:\Users\Damian\Documents\SDC10876.JPG [2010-02-15 16:35:52 | 002,597,144 | ---- | C] () -- M:\Users\Damian\Documents\SDC10872.JPG [2010-02-14 23:04:13 | 002,187,571 | ---- | C] () -- M:\Users\Damian\Documents\SDC10868.JPG [2010-02-14 22:58:34 | 002,198,842 | ---- | C] () -- M:\Users\Damian\Documents\SDC10865.JPG [2010-02-14 22:51:11 | 002,205,573 | ---- | C] () -- M:\Users\Damian\Documents\SDC10861.JPG [2010-02-14 22:44:02 | 002,318,244 | ---- | C] () -- M:\Users\Damian\Documents\SDC10860.JPG [2010-02-14 22:19:20 | 002,598,280 | ---- | C] () -- M:\Users\Damian\Documents\SDC10855.JPG [2010-02-14 22:15:27 | 002,268,314 | ---- | C] () -- M:\Users\Damian\Documents\SDC10852.JPG [2010-02-14 22:10:40 | 002,594,298 | ---- | C] () -- M:\Users\Damian\Documents\SDC10851.JPG [2010-02-14 22:05:22 | 002,584,983 | ---- | C] () -- M:\Users\Damian\Documents\SDC10850.JPG [2010-02-14 22:00:56 | 002,601,295 | ---- | C] () -- M:\Users\Damian\Documents\SDC10849.JPG [2010-02-14 21:57:37 | 002,265,380 | ---- | C] () -- M:\Users\Damian\Documents\SDC10845.JPG [2010-02-14 21:51:00 | 002,541,805 | ---- | C] () -- M:\Users\Damian\Documents\SDC10843.JPG [2010-02-14 21:48:06 | 002,160,226 | ---- | C] () -- M:\Users\Damian\Documents\SDC10842.JPG [2010-02-14 21:44:51 | 002,404,876 | ---- | C] () -- M:\Users\Damian\Documents\SDC10841.JPG [2010-02-14 21:40:08 | 002,122,120 | ---- | C] () -- M:\Users\Damian\Documents\SDC10839.JPG [2010-02-14 21:35:57 | 002,473,715 | ---- | C] () -- M:\Users\Damian\Documents\SDC10838.JPG [2010-02-14 21:31:30 | 002,515,367 | ---- | C] () -- M:\Users\Damian\Documents\SDC10837.JPG [2010-02-14 21:27:48 | 002,318,895 | ---- | C] () -- M:\Users\Damian\Documents\SDC10834.JPG [2010-02-14 21:24:32 | 002,572,245 | ---- | C] () -- M:\Users\Damian\Documents\SDC10832.JPG [2010-02-14 21:18:51 | 002,254,495 | ---- | C] () -- M:\Users\Damian\Documents\SDC10831.JPG [2010-02-14 21:13:36 | 002,456,288 | ---- | C] () -- M:\Users\Damian\Documents\SDC10830.JPG [2010-02-14 21:06:42 | 002,403,911 | ---- | C] () -- M:\Users\Damian\Documents\SDC10829.JPG [2010-02-14 20:59:08 | 002,508,722 | ---- | C] () -- M:\Users\Damian\Documents\SDC10826.JPG [2010-02-14 20:55:25 | 002,453,532 | ---- | C] () -- M:\Users\Damian\Documents\SDC10825.JPG [2010-02-14 20:51:05 | 002,583,443 | ---- | C] () -- M:\Users\Damian\Documents\SDC10823.JPG [2010-02-14 20:48:15 | 002,145,577 | ---- | C] () -- M:\Users\Damian\Documents\SDC10821.JPG [2010-02-14 20:42:51 | 002,433,564 | ---- | C] () -- M:\Users\Damian\Documents\SDC10820.JPG [2010-02-14 20:38:40 | 002,390,589 | ---- | C] () -- M:\Users\Damian\Documents\SDC10819.JPG [2010-02-14 20:33:44 | 002,523,052 | ---- | C] () -- M:\Users\Damian\Documents\SDC10818.JPG [2010-02-14 20:30:12 | 002,491,475 | ---- | C] () -- M:\Users\Damian\Documents\SDC10817.JPG [2010-02-14 20:21:56 | 002,319,763 | ---- | C] () -- M:\Users\Damian\Documents\SDC10816.JPG [2010-02-14 20:15:40 | 002,361,138 | ---- | C] () -- M:\Users\Damian\Documents\SDC10815.JPG [2010-02-14 19:55:42 | 002,520,818 | ---- | C] () -- M:\Users\Damian\Documents\SDC10814.JPG [2010-02-14 19:50:45 | 002,495,333 | ---- | C] () -- M:\Users\Damian\Documents\SDC10812.JPG [2010-02-14 19:45:35 | 002,568,106 | ---- | C] () -- M:\Users\Damian\Documents\SDC10810.JPG [2010-02-14 19:41:15 | 002,367,888 | ---- | C] () -- M:\Users\Damian\Documents\SDC10809.JPG [2010-02-14 19:38:06 | 002,446,280 | ---- | C] () -- M:\Users\Damian\Documents\SDC10808.JPG [2010-02-14 19:33:09 | 002,503,402 | ---- | C] () -- M:\Users\Damian\Documents\SDC10805.JPG [2010-02-14 19:25:27 | 002,246,802 | ---- | C] () -- M:\Users\Damian\Documents\SDC10802.JPG [2010-02-14 19:19:01 | 002,605,149 | ---- | C] () -- M:\Users\Damian\Documents\SDC10800.JPG [2010-02-14 19:14:12 | 002,278,625 | ---- | C] () -- M:\Users\Damian\Documents\SDC10798.JPG [2010-02-14 19:09:29 | 002,259,950 | ---- | C] () -- M:\Users\Damian\Documents\SDC10796.JPG [2010-02-14 19:06:08 | 002,258,166 | ---- | C] () -- M:\Users\Damian\Documents\SDC10794.JPG [2010-02-14 17:37:33 | 002,523,683 | ---- | C] () -- M:\Users\Damian\Documents\SDC10730.JPG [2010-02-14 16:49:32 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\Obraz 056(2).jpg [2010-02-14 16:48:42 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\Obraz 056(1).jpg [2010-02-14 16:48:12 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\Obraz 056.jpg [2010-02-14 16:43:43 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\221020091521(1).jpg [2010-02-14 14:47:24 | 000,001,034 | ---- | C] () -- M:\Users\Damian\Desktop\Voice Changer 6.0 Diamond.lnk [2010-02-14 14:43:24 | 000,901,035 | ---- | C] () -- M:\Users\Damian\Documents\Daria 371.jpg [2010-02-14 14:07:41 | 000,000,000 | ---- | C] () -- M:\Users\Damian\Documents\221020091521.jpg [2010-02-14 13:05:33 | 008,901,956 | ---- | C] () -- M:\Users\Damian\Documents\AV_Voice_Changer6.0.34.rar [2010-02-13 21:00:51 | 001,548,887 | ---- | C] () -- M:\Users\Damian\Documents\SDC10113.JPG [2010-02-13 20:03:51 | 001,590,286 | ---- | C] () -- M:\Users\Damian\Documents\SDC10133(1).JPG [2010-02-13 19:59:42 | 001,526,178 | ---- | C] () -- M:\Users\Damian\Documents\SDC10134.JPG [2010-02-13 19:57:55 | 001,629,078 | ---- | C] () -- M:\Users\Damian\Documents\SDC10130.JPG [2010-02-13 19:50:50 | 001,635,278 | ---- | C] () -- M:\Users\Damian\Documents\SDC10112.JPG [2010-02-13 19:40:18 | 001,634,007 | ---- | C] () -- M:\Users\Damian\Documents\SDC10032.JPG [2010-02-13 19:31:49 | 001,562,915 | ---- | C] () -- M:\Users\Damian\Documents\SDC11613.JPG [2010-02-13 19:27:57 | 001,408,690 | ---- | C] () -- M:\Users\Damian\Documents\SDC11605.JPG [2010-02-13 19:26:12 | 001,410,015 | ---- | C] () -- M:\Users\Damian\Documents\SDC11625.JPG [2010-02-13 19:23:00 | 001,510,919 | ---- | C] () -- M:\Users\Damian\Documents\SDC11624.JPG [2010-02-13 19:19:53 | 001,485,021 | ---- | C] () -- M:\Users\Damian\Documents\SDC11607.JPG [2010-02-13 19:15:44 | 000,428,303 | ---- | C] () -- M:\Users\Damian\Documents\SDC11598.JPG [2010-02-13 19:12:19 | 001,591,959 | ---- | C] () -- M:\Users\Damian\Documents\SDC11597.JPG [2010-02-13 18:17:37 | 002,547,934 | ---- | C] () -- M:\Users\Damian\Documents\SDC10773(1).JPG [2010-02-13 18:12:25 | 002,172,451 | ---- | C] () -- M:\Users\Damian\Documents\SDC10771(1).JPG [2010-02-13 18:10:13 | 000,002,096 | ---- | C] () -- M:\Users\Damian\Documents\SDC10771.JPG [2010-02-13 18:10:06 | 000,002,096 | ---- | C] () -- M:\Users\Damian\Documents\SDC10773.JPG [2010-02-13 18:10:00 | 002,225,973 | ---- | C] () -- M:\Users\Damian\Documents\SDC10772.JPG [2010-02-13 18:06:11 | 002,359,225 | ---- | C] () -- M:\Users\Damian\Documents\SDC10792.JPG [2010-02-13 18:01:40 | 002,862,796 | ---- | C] () -- M:\Users\Damian\Desktop\SDC11525.jpg [2010-02-13 17:59:23 | 002,365,145 | ---- | C] () -- M:\Users\Damian\Documents\SDC10791.JPG [2010-02-13 17:55:17 | 002,402,156 | ---- | C] () -- M:\Users\Damian\Documents\SDC10790.JPG [2010-02-13 17:51:57 | 001,914,018 | ---- | C] () -- M:\Users\Damian\Documents\SDC10789.JPG [2010-02-13 17:45:57 | 002,516,267 | ---- | C] () -- M:\Users\Damian\Documents\SDC10788.JPG [2010-02-13 17:35:29 | 002,285,743 | ---- | C] () -- M:\Users\Damian\Documents\SDC10787.JPG [2010-02-13 17:31:28 | 002,413,057 | ---- | C] () -- M:\Users\Damian\Documents\SDC10786.JPG [2010-02-13 17:27:18 | 002,269,306 | ---- | C] () -- M:\Users\Damian\Documents\SDC10785.JPG [2010-02-13 17:23:05 | 002,414,466 | ---- | C] () -- M:\Users\Damian\Documents\SDC10784.JPG [2010-02-13 17:19:59 | 002,406,862 | ---- | C] () -- M:\Users\Damian\Documents\SDC10783.JPG [2010-02-13 17:15:47 | 002,268,972 | ---- | C] () -- M:\Users\Damian\Documents\SDC10781.JPG [2010-02-13 17:12:00 | 002,369,883 | ---- | C] () -- M:\Users\Damian\Documents\SDC10780.JPG [2010-02-13 16:34:02 | 002,414,624 | ---- | C] () -- M:\Users\Damian\Documents\SDC10779.JPG [2010-02-13 16:32:14 | 000,868,045 | ---- | C] () -- M:\Users\Damian\Documents\SDC10777.JPG [2010-02-13 16:29:08 | 002,427,477 | ---- | C] () -- M:\Users\Damian\Documents\SDC10776.JPG [2010-02-13 16:23:11 | 002,497,475 | ---- | C] () -- M:\Users\Damian\Documents\SDC10775.JPG [2010-02-13 16:13:41 | 002,478,284 | ---- | C] () -- M:\Users\Damian\Documents\SDC10774.JPG [2010-02-13 16:10:15 | 002,138,105 | ---- | C] () -- M:\Users\Damian\Documents\SDC10767.JPG [2010-02-13 16:06:06 | 002,494,222 | ---- | C] () -- M:\Users\Damian\Documents\SDC10766.JPG [2010-02-13 15:59:20 | 001,995,092 | ---- | C] () -- M:\Users\Damian\Documents\SDC10764.JPG [2010-02-13 15:54:59 | 002,278,523 | ---- | C] () -- M:\Users\Damian\Documents\SDC10763.JPG [2010-02-13 15:49:47 | 002,433,612 | ---- | C] () -- M:\Users\Damian\Documents\SDC10762.JPG [2010-02-13 15:44:45 | 002,451,622 | ---- | C] () -- M:\Users\Damian\Documents\SDC10761.JPG [2010-02-13 15:40:58 | 002,492,177 | ---- | C] () -- M:\Users\Damian\Documents\SDC10760.JPG [2010-02-13 15:36:57 | 002,420,515 | ---- | C] () -- M:\Users\Damian\Documents\SDC10759.JPG [2010-02-13 15:34:20 | 002,420,567 | ---- | C] () -- M:\Users\Damian\Documents\SDC10757.JPG [2010-02-13 15:28:22 | 002,352,184 | ---- | C] () -- M:\Users\Damian\Documents\SDC10756.JPG [2010-02-13 15:21:54 | 002,172,014 | ---- | C] () -- M:\Users\Damian\Documents\SDC10753.JPG [2010-02-13 15:15:38 | 002,487,333 | ---- | C] () -- M:\Users\Damian\Documents\SDC10750.JPG [2010-02-13 15:08:51 | 002,513,235 | ---- | C] () -- M:\Users\Damian\Documents\SDC10746.JPG [2010-02-13 15:04:25 | 002,237,834 | ---- | C] () -- M:\Users\Damian\Documents\SDC10778.JPG [2010-02-13 15:00:49 | 001,934,728 | ---- | C] () -- M:\Users\Damian\Documents\SDC10747.JPG [2010-02-13 14:54:40 | 002,470,361 | ---- | C] () -- M:\Users\Damian\Documents\SDC10770.JPG [2010-02-13 11:04:14 | 001,556,131 | ---- | C] () -- M:\Users\Damian\Documents\SDC11989.JPG [2010-02-13 10:57:47 | 001,641,169 | ---- | C] () -- M:\Users\Damian\Documents\SDC11996(1).JPG [2010-02-13 10:51:26 | 001,578,470 | ---- | C] () -- M:\Users\Damian\Documents\SDC11999.JPG [2010-02-13 10:46:41 | 001,581,984 | ---- | C] () -- M:\Users\Damian\Documents\SDC12000.JPG [2010-02-11 21:10:19 | 002,456,255 | ---- | C] () -- M:\Users\Damian\Documents\SDC10738.JPG [2010-02-11 17:06:19 | 000,023,289 | ---- | C] () -- M:\Users\Damian\Desktop\help.jpg [2010-02-11 16:57:15 | 000,082,574 | ---- | C] () -- M:\Users\Damian\Desktop\logo11.jpg [2010-02-11 16:45:31 | 000,079,674 | ---- | C] () -- M:\Users\Damian\Desktop\logo10.jpg [2010-02-11 16:43:46 | 000,075,308 | ---- | C] () -- M:\Users\Damian\Desktop\logo7.jpg [2010-02-11 16:39:30 | 000,074,858 | ---- | C] () -- M:\Users\Damian\Desktop\logo6.jpg [2010-02-11 16:36:33 | 000,091,216 | ---- | C] () -- M:\Users\Damian\Desktop\logo5.jpg [2010-02-11 15:08:59 | 002,190,794 | ---- | C] () -- M:\Users\Damian\Documents\SDC10711.JPG [2010-02-10 22:13:59 | 002,056,738 | ---- | C] () -- M:\Users\Damian\Documents\SDC10706.JPG [2010-02-10 21:33:51 | 002,233,865 | ---- | C] () -- M:\Users\Damian\Documents\SDC10697.JPG [2010-02-08 17:59:28 | 000,126,570 | ---- | C] () -- M:\Users\Damian\Desktop\logo3.jpg [2010-02-08 17:58:06 | 000,128,512 | ---- | C] () -- M:\Users\Damian\Desktop\logo2.jpg [2010-02-08 17:29:23 | 000,003,846 | ---- | C] () -- M:\Users\Damian\Desktop\24026.jpeg [2010-02-08 17:29:05 | 000,605,134 | ---- | C] () -- M:\Users\Damian\Desktop\logo.psd [2010-02-08 17:13:48 | 000,022,074 | ---- | C] () -- M:\Users\Damian\Desktop\800px-Barczewo_gimnazjum.jpg.jpg [2010-02-07 20:36:17 | 002,419,731 | ---- | C] () -- M:\Users\Damian\Documents\SDC10595.JPG [2010-02-06 22:49:57 | 000,954,039 | ---- | C] () -- M:\Users\Damian\Desktop\zdjęcie1215.jpg [2010-02-06 22:44:46 | 000,933,291 | ---- | C] () -- M:\Users\Damian\Desktop\SDC11485.jpg [2010-02-06 22:33:37 | 000,923,479 | ---- | C] () -- M:\Users\Damian\Documents\Zdjęcie0047.jpg [2010-02-06 22:28:50 | 000,836,430 | ---- | C] () -- M:\Users\Damian\Documents\Zdjęcie0046.jpg [2010-02-05 22:08:45 | 001,544,552 | ---- | C] () -- M:\Users\Damian\Desktop\SDC11514.JPG [2010-02-05 14:39:03 | 033,410,946 | ---- | C] () -- M:\Users\Damian\Desktop\SDC11481.AVI [2010-02-05 13:29:13 | 000,237,733 | ---- | C] () -- M:\Users\Damian\Desktop\ghost.jpg [2010-02-04 01:14:11 | 000,069,259 | ---- | C] () -- M:\Users\Damian\Desktop\fff.jpg [2010-02-03 18:20:14 | 000,858,064 | ---- | C] () -- M:\Users\Damian\Desktop\Honda_stunt_bike.jpg [2010-02-03 18:14:53 | 000,199,508 | ---- | C] () -- M:\Users\Damian\Desktop\Tapeta z Galerii fotografii systemu Windows.jpg [2010-02-01 00:03:58 | 000,182,581 | ---- | C] () -- M:\Users\Damian\Desktop\Bez tytułu.jpg [2010-01-31 19:03:06 | 000,030,131 | ---- | C] () -- M:\Users\Damian\Desktop\a086237df5.jpeg [2010-01-30 21:29:12 | 000,137,104 | ---- | C] () -- M:\Users\Damian\Desktop\peja_200.jpg [2010-01-30 21:26:21 | 000,123,258 | ---- | C] () -- M:\Users\Damian\Desktop\peja_slu.jpg [2010-01-30 19:40:36 | 000,097,280 | ---- | C] () -- M:\Users\Damian\Documents\pno0001.exe [2010-01-30 03:41:16 | 000,327,341 | ---- | C] () -- M:\Users\Damian\Desktop\warszawiak_z_karsina_walencjo.3gp [2010-01-30 03:35:01 | 003,990,010 | ---- | C] () -- M:\Users\Damian\Desktop\warszawiak_z_karsina_walencjo.avi [2010-01-29 22:04:17 | 000,457,866 | ---- | C] () -- M:\Users\Damian\Desktop\Kacper_-_kat_NEW.3gp [2010-01-29 22:02:45 | 000,001,014 | ---- | C] () -- M:\Users\Damian\Desktop\OJOsoft Total Video Converter.lnk [2010-01-29 21:30:48 | 000,228,655 | ---- | C] () -- M:\Users\Damian\Desktop\kawasaki zx 7-r dzwiek odciecia zaplonu.mp3 [2010-01-29 21:18:20 | 000,274,105 | ---- | C] () -- M:\Users\Damian\Desktop\odcięcie.wma [2010-01-29 21:11:48 | 005,557,180 | ---- | C] () -- M:\Users\Damian\Desktop\Kacper_-_kat.avi [2010-01-25 10:49:21 | 000,015,446 | ---- | C] () -- M:\Windows\System32\netathur.inf [2010-01-25 10:49:21 | 000,000,026 | ---- | C] () -- M:\Windows\System32\athurext.cat [2010-01-25 10:43:06 | 025,424,185 | ---- | C] () -- M:\Users\Damian\Desktop\200912311492414.zip [2010-01-25 10:19:57 | 000,010,845 | ---- | C] () -- M:\Users\Damian\Desktop\konto.docx [2010-01-24 12:51:55 | 000,216,330 | ---- | C] () -- M:\ProgramData\nvModes.001 [2010-01-24 12:51:01 | 000,216,330 | ---- | C] () -- M:\ProgramData\nvModes.dat [2010-01-23 19:48:33 | 000,001,725 | ---- | C] () -- M:\Users\Damian\Desktop\Counter-Strike 1.6.lnk [2010-01-14 19:40:03 | 000,000,038 | ---- | C] () -- M:\Windows\avisplitter.ini [2010-01-14 19:40:01 | 000,881,664 | ---- | C] () -- M:\Windows\System32\xvidcore.dll [2010-01-14 19:40:01 | 000,205,824 | ---- | C] () -- M:\Windows\System32\xvidvfw.dll [2010-01-14 19:39:59 | 000,085,504 | ---- | C] () -- M:\Windows\System32\ff_vfw.dll [2010-01-14 19:39:59 | 000,000,547 | ---- | C] () -- M:\Windows\System32\ff_vfw.dll.manifest [2010-01-09 21:17:46 | 000,178,176 | ---- | C] () -- M:\Windows\System32\unrar.dll [2009-11-29 17:11:48 | 000,138,576 | ---- | C] () -- M:\Windows\System32\drivers\PnkBstrK.sys [2009-11-29 17:11:47 | 000,022,328 | ---- | C] () -- M:\Users\Damian\AppData\Roaming\PnkBstrK.sys [2009-11-29 17:11:29 | 000,000,319 | ---- | C] () -- M:\Windows\game.ini [2009-11-06 10:58:04 | 000,178,975 | ---- | C] () -- M:\Windows\System32\xlive.dll.cat [2009-10-22 16:42:11 | 000,000,016 | ---- | C] () -- M:\Windows\System32\fltrkl11.dll [2009-10-20 14:23:35 | 000,117,248 | ---- | C] () -- M:\Windows\System32\EhStorAuthn.dll [2009-10-13 15:18:22 | 000,028,672 | ---- | C] () -- M:\Windows\System32\InsDrvZD.dll [2009-10-13 15:18:22 | 000,015,872 | ---- | C] () -- M:\Windows\System32\InsDrvZD64.DLL [2009-09-17 14:01:01 | 000,024,206 | ---- | C] () -- M:\Users\Damian\AppData\Roaming\UserTile.png [2009-09-17 13:57:25 | 000,000,010 | ---- | C] () -- M:\Windows\GSetup.ini [2009-08-05 21:12:04 | 008,676,883 | ---- | C] () -- M:\Windows\System32\NCMedia2.dll [2009-08-03 14:07:42 | 000,403,816 | ---- | C] () -- M:\Windows\System32\OGACheckControl.dll [2009-08-01 15:55:27 | 000,000,235 | ---- | C] () -- M:\Users\Damian\AppData\Roaming\devices.xml [2009-08-01 15:55:27 | 000,000,012 | ---- | C] () -- M:\Users\Damian\AppData\Roaming\settings.xml [2009-08-01 15:51:25 | 000,000,523 | ---- | C] () -- M:\ProgramData\hpzinstall.log [2009-08-01 10:39:47 | 001,052,928 | ---- | C] () -- M:\Windows\System32\drivers\CAMTHWDM.sys [2009-08-01 09:57:55 | 000,000,025 | ---- | C] () -- M:\Windows\cdplayer.ini [2009-07-26 21:30:15 | 000,721,904 | ---- | C] () -- M:\Windows\System32\drivers\sptd.sys [2009-07-18 08:57:42 | 000,000,552 | ---- | C] () -- M:\Users\Damian\AppData\Local\d3d8caps.dat [2009-07-18 08:30:06 | 000,000,056 | -H-- | C] () -- M:\ProgramData\ezsidmv.dat [2009-07-18 01:18:06 | 000,000,680 | ---- | C] () -- M:\Users\Damian\AppData\Local\d3d9caps.dat [2009-07-17 19:22:57 | 000,137,216 | ---- | C] () -- M:\Users\Damian\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2009-06-19 19:06:22 | 000,197,912 | ---- | C] () -- M:\Windows\System32\physxcudart_20.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelTraditionalChinese.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelSwedish.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelSpanish.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelSimplifiedChinese.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelPortugese.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelKorean.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelJapanese.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelGerman.dll [2009-06-19 19:06:22 | 000,058,648 | ---- | C] () -- M:\Windows\System32\AgCPanelFrench.dll [2007-06-23 11:44:50 | 000,009,760 | ---- | C] () -- M:\Windows\System32\34CoInstaller.dll [2006-11-02 11:25:26 | 000,557,568 | ---- | C] () -- M:\Windows\System32\hpotscl1.dll [2006-11-02 08:40:29 | 000,013,750 | ---- | C] () -- M:\Windows\System32\pacerprf.ini [color=#E56717]========== Custom Scans ==========[/color] [color=#A23BEC]< %systemdrive%\*.* >[/color] [2006-09-18 22:43:36 | 000,000,024 | ---- | M] () -- M:\autoexec.bat [2006-09-18 22:43:37 | 000,000,010 | ---- | M] () -- M:\config.sys [2010-02-18 20:39:17 | 2147,016,704 | -HS- | M] () -- M:\hiberfil.sys [2009-08-06 11:59:40 | 000,018,906 | ---- | M] () -- M:\MP4debug.log [2010-02-18 20:39:16 | 2460,831,744 | -HS- | M] () -- M:\pagefile.sys [2009-06-27 12:16:28 | 017,843,842 | ---- | M] () -- M:\WRC.wmv [2009-06-27 12:29:28 | 017,803,776 | ---- | M] () -- M:\WRC_.avi [color=#E56717]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 64 bytes -> M:\Users\Damian\Desktop\warszawiak_z_karsina_walencjo.avi:TOC.WMV @Alternate Data Stream - 64 bytes -> M:\Users\Damian\Desktop\SDC11481.AVI:TOC.WMV @Alternate Data Stream - 64 bytes -> M:\Users\Damian\Desktop\Kacper_-_kat.avi:TOC.WMV < End of report > [/log] [log]OTL Extras logfile created on: 2010-02-18 21:24:51 - Run 1 OTL by OldTimer - Version 3.1.28.0 Folder = M:\Users\Damian\Documents Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 7.0.6002.18005) Locale: 00000415 | Country: Poland | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 57,00% Memory free 4,00 Gb Paging File | 3,00 Gb Available in Paging File | 77,00% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = M: | %SystemRoot% = M:\Windows | %ProgramFiles% = M:\Program Files Drive C: | 48,83 Gb Total Space | 37,01 Gb Free Space | 75,79% Space Free | Partition Type: NTFS Drive D: | 219,51 Gb Total Space | 116,29 Gb Free Space | 52,98% Space Free | Partition Type: NTFS E: Drive not present or media not loaded F: Drive not present or media not loaded G: Drive not present or media not loaded H: Drive not present or media not loaded I: Drive not present or media not loaded Drive M: | 197,42 Gb Total Space | 67,43 Gb Free Space | 34,15% Space Free | Partition Type: NTFS Computer Name: DAMIAN-PC Current User Name: Damian Logged in as Administrator. Current Boot Mode: Normal Scan Mode: Current user Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>] .cpl [@ = cplfile] -- M:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- M:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = Opera.HTML] -- M:\Program Files\Opera\Opera.exe (Opera Software) [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>] .html [@ = ChromeHTML] -- M:\Users\Damian\AppData\Local\Google\Chrome\Application\chrome.exe (Google Inc.) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "M:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation) htmlfile [opennew] -- "M:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" http [open] -- "M:\Program Files\Opera\opera.exe" (Opera Software) https [open] -- "M:\Program Files\Opera\opera.exe" (Opera Software) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- M:\PROGRA~1\MICROS~3\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Directory [Winamp.Bookmark] -- "M:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "M:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "M:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "M:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "M:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 "FirewallDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{00937ECA-A4DC-49CF-A6F1-BCCFB9D8E0CE}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{14472DDD-62E6-44AD-BEBE-D27943461381}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{23DEE583-122A-489B-9DAD-E051548E780E}" = rport=445 | protocol=6 | dir=out | app=system | "{363AF18F-BED7-450A-A978-D2AF4D14705D}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{396EF6F0-C9F4-426C-8768-52C44E6B5231}" = lport=138 | protocol=17 | dir=in | app=system | "{3A1AC40A-FD3C-4EC0-A939-A07756FBC433}" = rport=137 | protocol=17 | dir=out | app=system | "{50DD9DAE-7BF7-4204-8891-89DD4F9ABFDA}" = rport=139 | protocol=6 | dir=out | app=system | "{75503375-41F9-45D8-B262-68CB665C3236}" = lport=137 | protocol=17 | dir=in | app=system | "{7AB91F27-F6A8-4F0A-A27C-3BCF4443592B}" = rport=138 | protocol=17 | dir=out | app=system | "{8BBC9A01-A99F-4883-8272-B8FAF0D0F77C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{90A22FA0-83D2-4F11-A2AC-D054C35B9F7F}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{925E0385-5450-4392-8339-BBE18A6A9A65}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{9FDC3914-5471-4271-9E2E-34EB927F394C}" = lport=445 | protocol=6 | dir=in | app=system | "{A11C60E0-A1B1-4B66-BF39-D9E6CE0A4E0F}" = lport=139 | protocol=6 | dir=in | app=system | "{A17289DD-4A56-4E90-83EC-4C427047BC7C}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{B0EDA020-3520-4BF9-ABF1-0E95D1B7F311}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{C69B7729-2C9B-4969-9F39-049973E38585}" = lport=6004 | protocol=17 | dir=in | app=m:\program files\microsoft office\office12\outlook.exe | "{C9E59E51-2071-4EBF-A933-7936BD3D3420}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{F179C800-769F-4903-8080-38F79D948B43}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{06AC23DB-D4FA-48AD-B038-BA2F26BD5DC5}" = protocol=6 | dir=in | app=m:\windows\system32\pnkbstra.exe | "{09DDD879-96D3-4271-9485-DAF7304D7EF6}" = protocol=6 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\gtaiv.exe | "{0E4E83DC-FC2E-4AA0-A44B-21CCACBF8BF7}" = protocol=6 | dir=in | app=m:\windows\system32\pnkbstrb.exe | "{22DB1DB5-0DD0-4BB4-A75B-23840C1573F5}" = protocol=17 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\gtaiv.exe | "{2370FCF6-55B6-42A3-97D1-B1057D30E056}" = protocol=6 | dir=in | app=m:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | "{3232B1E1-C486-4535-A3D9-C327DFAB5A32}" = protocol=6 | dir=in | app=m:\program files\rockstar games\rockstar games social club\rgsclauncher.exe | "{394261F3-4AD3-4EF5-9A22-DD0F8DDF4805}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{4F5AECD1-FB99-41DB-8040-FB3E2C3AB393}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{5A3503CC-2F0C-4676-9EB2-1FDE30F033BD}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{5F114B06-8ACA-4D73-AD93-75CB32EB64B1}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{656DB3EF-33B1-46F6-A4E9-C12978463771}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{6B1E1C8F-B0A9-40D4-8C7D-56D634133E07}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{6D4A7836-8CD7-4F0B-95D3-7D686FA77E7D}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{70FF0195-1524-4EF0-BE46-5085C1A84951}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{74B48BDC-7758-475C-AED7-BE8DBE88C701}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{7A27865A-F1B2-4F66-991D-530580BF0A4F}" = protocol=6 | dir=in | app=m:\program files\microsoft office\office12\onenote.exe | "{80D0BD89-14FB-4410-A255-1B48F1D5B79E}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{80F4DCCE-8C91-43AA-A5B0-8C4AB7214383}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{9048473E-E211-4BED-9641-99B116A66F38}" = protocol=6 | dir=in | app=m:\program files\microsoft office\office12\groove.exe | "{99ABEBA2-F2B4-4228-BBEF-A92CEFAE096B}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{A66F51CF-ECCF-4941-9632-B0FDF9C6E8CD}" = protocol=17 | dir=in | app=m:\program files\activision\call of duty 4 - modern warfare\iw3mp.exe | "{A7FD24EA-EC9B-4086-8DC9-70CF5CBA726F}" = protocol=17 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\launchgtaiv.exe | "{B6098277-8D52-42A3-AD6A-083246CB6B12}" = dir=in | app=m:\program files\skype\phone\skype.exe | "{C13221C8-3946-4100-B413-373AFFDC296F}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{C5C751BB-7E7F-4113-B046-08FF6FC6697A}" = protocol=6 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\launchgtaiv.exe | "{DD686FF1-0736-4737-9F9E-CB953DB10BDA}" = protocol=17 | dir=in | app=m:\windows\system32\pnkbstrb.exe | "{DDC406DB-CB4C-41B4-A61E-453EF0A59E60}" = protocol=17 | dir=in | app=m:\windows\system32\pnkbstra.exe | "{DF5310AB-9BEA-4038-B89F-2F20F096708F}" = protocol=17 | dir=in | app=m:\program files\microsoft office\office12\groove.exe | "{E3788FE4-3A52-437D-A3B0-4DD6E30625EB}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{F0929F59-3623-4D27-98A2-E7E21A1EF738}" = protocol=17 | dir=in | app=m:\program files\rockstar games\rockstar games social club\rgsclauncher.exe | "{F834E96A-AED8-495F-9764-DD101C889646}" = protocol=17 | dir=in | app=m:\program files\microsoft office\office12\onenote.exe | "{FA7B3493-06D9-4921-8D73-440EA05E06F2}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "TCP Query User{0921EF52-24A3-4335-AE3B-60016EF7D762}M:\program files\postal 2 stp\system\postal2.exe" = protocol=6 | dir=in | app=m:\program files\postal 2 stp\system\postal2.exe | "TCP Query User{14505A61-9173-4383-AC1F-6046B08745D2}M:\program files\nowe gadu-gadu\gg.exe" = protocol=6 | dir=in | app=m:\program files\nowe gadu-gadu\gg.exe | "TCP Query User{190C278A-4234-4369-985B-474CBAF39759}M:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=m:\program files\java\jre6\bin\javaw.exe | "TCP Query User{26A74A8E-E8B3-48F2-96F6-C97CB90E3B35}M:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=m:\program files\java\jre6\bin\java.exe | "TCP Query User{3C195B0F-1285-4FF4-90BD-6AC4A94F81FF}M:\program files\opera\opera.exe" = protocol=6 | dir=in | app=m:\program files\opera\opera.exe | "TCP Query User{677A6215-5486-4A05-BDD4-327516BAABE4}M:\users\damian\desktop\nsc.exe" = protocol=6 | dir=in | app=m:\users\damian\desktop\nsc.exe | "TCP Query User{681FA681-C529-4100-AC6E-CDB36F2A7ED1}M:\program files\real\realplayer\realplay.exe" = protocol=6 | dir=in | app=m:\program files\real\realplayer\realplay.exe | "TCP Query User{7C0EB17F-B8AF-4E86-8BD3-9BDC8C4FB0CA}M:\program files\nowe gadu-gadu\gg.exe" = protocol=6 | dir=in | app=m:\program files\nowe gadu-gadu\gg.exe | "TCP Query User{9CE7AC70-68C1-4F45-B9D7-AA25E02E41AB}M:\program files\counter-strike\hl.exe" = protocol=6 | dir=in | app=m:\program files\counter-strike\hl.exe | "TCP Query User{A117412F-E034-42DE-855B-0B99FCBAD3FD}M:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=m:\program files\vuze\azureus.exe | "TCP Query User{A2F29381-4875-47C2-91C9-5898C5367BC9}M:\program files\postal 2 stp\system\postal2.exe" = protocol=6 | dir=in | app=m:\program files\postal 2 stp\system\postal2.exe | "TCP Query User{B3685C79-A28F-49B2-8BAD-29A91EC7FE17}M:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=m:\program files\java\jre6\bin\javaw.exe | "TCP Query User{C9F5A800-1852-48FD-864B-380E8F4177AD}M:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\gtaiv.exe | "TCP Query User{D936819C-4FFA-4023-A43E-BBF10C36FA2D}M:\program files\vuze\azureus.exe" = protocol=6 | dir=in | app=m:\program files\vuze\azureus.exe | "TCP Query User{E1C2D66B-86F1-45F3-8471-E5DCD9FCC24B}M:\program files\icecast2 win32\icecast2win.exe" = protocol=6 | dir=in | app=m:\program files\icecast2 win32\icecast2win.exe | "TCP Query User{F9BAF9B6-6CE8-473B-B082-30FAE37F2DD7}M:\program files\opera\opera.exe" = protocol=6 | dir=in | app=m:\program files\opera\opera.exe | "UDP Query User{20D4E3B8-EDC6-4BDB-9864-4074EC13DFCA}M:\program files\icecast2 win32\icecast2win.exe" = protocol=17 | dir=in | app=m:\program files\icecast2 win32\icecast2win.exe | "UDP Query User{3069913F-9542-4C00-B42B-DB4D3E31D7BD}M:\program files\postal 2 stp\system\postal2.exe" = protocol=17 | dir=in | app=m:\program files\postal 2 stp\system\postal2.exe | "UDP Query User{35FEBA40-A601-4AA8-82CE-91DCA2C28BC0}M:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=m:\program files\java\jre6\bin\javaw.exe | "UDP Query User{420D3F60-5060-4F6E-9DEB-1628905CCDF5}M:\program files\counter-strike\hl.exe" = protocol=17 | dir=in | app=m:\program files\counter-strike\hl.exe | "UDP Query User{4D0C66D9-D08B-4BFC-81A9-FE52230F28C6}M:\program files\nowe gadu-gadu\gg.exe" = protocol=17 | dir=in | app=m:\program files\nowe gadu-gadu\gg.exe | "UDP Query User{4E2183AE-D5DF-4D7A-A3A7-833F33022E23}M:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=m:\program files\vuze\azureus.exe | "UDP Query User{6344ACC9-C450-4AF6-AEE9-60722C59295A}M:\program files\opera\opera.exe" = protocol=17 | dir=in | app=m:\program files\opera\opera.exe | "UDP Query User{815D265F-3864-4299-A2D3-9BE31DC25DB3}M:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=m:\program files\java\jre6\bin\java.exe | "UDP Query User{8E926271-C4AA-4475-B884-479E48B9E289}M:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=m:\program files\java\jre6\bin\javaw.exe | "UDP Query User{906AF79E-98F3-4487-9736-A2136CF36249}M:\program files\vuze\azureus.exe" = protocol=17 | dir=in | app=m:\program files\vuze\azureus.exe | "UDP Query User{C96185D2-2FBA-4B83-A683-05DA444F5E4C}M:\program files\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=m:\program files\rockstar games\grand theft auto iv\gtaiv.exe | "UDP Query User{C9ACD451-7D7A-49E9-80AB-E0DE6212FA9D}M:\program files\opera\opera.exe" = protocol=17 | dir=in | app=m:\program files\opera\opera.exe | "UDP Query User{CAD848B7-6762-4248-9492-92A740EC9432}M:\users\damian\desktop\nsc.exe" = protocol=17 | dir=in | app=m:\users\damian\desktop\nsc.exe | "UDP Query User{ED6F57E0-BF92-48D0-A687-D88620CC26E9}M:\program files\real\realplayer\realplay.exe" = protocol=17 | dir=in | app=m:\program files\real\realplayer\realplay.exe | "UDP Query User{F91034B7-D984-452B-9C06-BFE66509D78B}M:\program files\postal 2 stp\system\postal2.exe" = protocol=17 | dir=in | app=m:\program files\postal 2 stp\system\postal2.exe | "UDP Query User{FCA6F375-93A1-4190-AB6F-12C535CE036C}M:\program files\nowe gadu-gadu\gg.exe" = protocol=17 | dir=in | app=m:\program files\nowe gadu-gadu\gg.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{00C5F4F4-62F9-40D7-8000-AD8A9CD0C669}" = Microsoft Games for Windows - LIVE Redistributable "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{26A24AE4-039D-4CA4-87B4-2F83216014FF}" = Java(TM) 6 Update 18 "{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{2FFE93F0-BB72-4E52-8761-354D1AAA9387}" = Sony Ericsson PC Suite 6.007.00 "{3BD98AAF-61B5-46E0-A6C8-593C242C7C48}" = TP-LINK Wireless Client Utility "{3D3E663D-4E7E-4577-A560-7ECDDD45548A}" = PVSonyDll "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{5DB65884-C963-4454-AABA-4CA3089281FA}" = NVIDIA PhysX "{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings "{690BE098-6D0D-493D-B079-BD7E8F81A141}" = Opera 10.10 "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3 "{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = Nawigator obrazów i fotografii HP 2.0 - All-in-One Sterowniki "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{78EFD06D-7583-42F1-9E77-671D8782EB70}" = Adobe Photoshop CS3 "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8169, 8168, 8101E and 8102E Ethernet Network Card Driver for Windows Vista "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{A0516415-ED61-419A-981D-93596DA74165}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{ABDDE972-355B-4AF1-89A8-DA50B7B5C045}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{E9EA2604-8AC9-47D2-8F4B-6BF60787A357}" = Microsoft Office Proofing Tools 2007 Service Pack 2 (SP2) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{0B36C6D6-F5D8-4EAF-BF94-4376A230AD5B}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{3D019598-7B59-447A-80AE-815B703B84FF}" = Security Update for Microsoft Office system 2007 (972581) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{D45F91DE-F0FC-4D5F-9A0C-FDE5B251AAC6}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{79EB535E-76E4-4356-8146-A24EE55AB69D}" = Microsoft Office 2007 Service Pack 2 (SP2) "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{902A57AE-2CCA-47B3-AD61-95C3F9783A43}_is1" = Lyrics4You 2.8 "{904CCF62-818D-4675-BC76-D37EB399F917}" = Centrum obsługi urządzeń z systemem Windows Mobile "{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A1C962E2-2426-49C6-A38B-9A07E40D607C}" = Microsoft Games for Windows - LIVE "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2 "{B2544A03-10D0-4E5E-BA69-0362FFC20D18}" = OGA Notifier 2.0.0048.0 "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{CBF4DADD-974D-49C8-BC83-C6F31554001E}" = Adobe Setup "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1 "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{D92B72E2-C854-4738-8ED6-4C3661CC17AE}" = Adobe Color JA Extra Settings "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{E7044E25-3038-4A76-9064-344AC038043E}" = Centrum obsługi urządzeń z systemem Windows Mobile — aktualizacja sterowników "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "8461-7759-5462-8226" = Vuze "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player "Adobe_678cd98c8365a5647f9a2e539d120a8" = Adobe Photoshop CS3 "AQQ" = WapSter AQQ "ASIO4ALL" = ASIO4ALL "Ask Toolbar_is1" = Vuze Toolbar "AV Voice Changer Software DIAMOND 6.0" = AV Voice Changer Software DIAMOND 6.0 "avast!" = avast! Antivirus "avi2divx_is1" = avi2divx "AviSynth" = AviSynth 2.5 "Counter-Strike 1.6 v32" = Counter-Strike 1.6 v32 "Creative Software AutoUpdate" = Creative Software AutoUpdate "Creative VF0330" = Creative WebCam Vista Driver (1.01.03.00) "Creative WebCam Center" = Creative WebCam Center "Creative WebCam Vista User's Guide English" = Creative WebCam Vista User's Guide (English) "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "Defraggler" = Defraggler "ENTERPRISE" = Microsoft Office Enterprise 2007 "FL Studio 9" = FL Studio 9 "Freez FLV to AVI/MPEG/WMV Converter v1.6_is1" = Freez FLV to AVI/MPEG/WMV Converter "Icecast2 Win32_is1" = Icecast 2.3.2 "IL Download Manager" = IL Download Manager "InstallShield_{931C37FC-594D-43A9-B10F-A2F2B1F03498}" = Call of Duty(R) 4 - Modern Warfare(TM) 1.7 Patch "InstallShield_{E48469CC-635E-4FD5-A122-1497C286D217}" = Call of Duty(R) 4 - Modern Warfare(TM) "KLiteCodecPack_is1" = K-Lite Codec Pack 5.6.1 (Full) "Maximus" = Maximus "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Mozilla Firefox (3.5.3)" = Mozilla Firefox (3.5.3) "Nowe Gadu-Gadu" = Nowe Gadu-Gadu "NVIDIA Drivers" = NVIDIA Drivers "OJOsoft Total Video Converter_is1" = OJOsoft Total Video Converter "Picasa 3" = Picasa 3 "RealPlayer 6.0" = RealPlayer "Sawer" = Sawer "SysInfo" = Creative System Information "SystemRequirementsLab" = System Requirements Lab "Toxic Biohazard" = Toxic Biohazard "Winamp" = Winamp "WinRAR archiver" = Archiwizator WinRAR "ZEN (MTP) Media Explorer" = ZEN Media Explorer [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 2009-07-30 14:58:12 | Computer Name = Damian-PC | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of M:\Users\Damian\AppData\Local\Temp\flaA9A0.tmp failed, 00000005. Error - 2009-07-30 17:45:40 | Computer Name = Damian-PC | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of F:\DSC01525.JPG failed, 00000015. Error - 2009-08-01 10:55:11 | Computer Name = Damian-PC | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of F:\Setup\HPOwrp01.exe failed, 00000005. [ Application Events ] Error - 2010-02-15 10:51:17 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-16 02:40:51 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-16 10:04:05 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-16 14:10:56 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-16 18:04:28 | Computer Name = Damian-PC | Source = EventSystem | ID = 4609 Description = Error - 2010-02-17 02:08:29 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-17 09:16:02 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-18 02:14:22 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-18 08:26:20 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 2010-02-18 11:53:25 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 11:53:26 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 13:26:56 | Computer Name = Damian-PC | Source = volsnap | ID = 393245 Description = Wykonywanie kopii w tle woluminu M: zostało przerwane podczas wykrywania. Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2010-02-18 15:41:00 | Computer Name = Damian-PC | Source = Service Control Manager | ID = 7001 Description = < End of report > [/log]
Mateusz J. komentarz 21 lutego 2010 komentarz 21 lutego 2010 [quote]użyj ctlr+alt+del uruchom aplikacje dalej nowe zadanie wpisz nazwę programu i wpisujesz explorer.exe powinno zadziałać[/quote]Wykoanane? W starcie widać explorer.exe...coś blokuje lub jest on uszkodzony. Pokaż log z ComboFix, widać małą infekcję pendrive.
Damianoo159 komentarz 21 lutego 2010 Autor komentarz 21 lutego 2010 Po wpisaniu explorer.exe ekran sie pojawia, ale trzeba to wpisywac przy kazdym uruchamianiu komputera [log]ComboFix 10-02-20.04 - Damian 2010-02-21 16:44:03.1.2 - x86 Microsoft® Windows Vista™ Home Basic 6.0.6002.2.1250.48.1045.18.2047.1303 [GMT 1:00] Uruchomiony z: m:\users\Damian\Desktop\ComboFix.exe SP: Windows Defender *enabled* (Updated) {D68DDC3A-831F-4FAE-9E44-DA132C1ACF46} . ((((((((((((((((((((((((((((((((((((((( Usunięto ))))))))))))))))))))))))))))))))))))))))))))))))) . m:\recycler\2010-02-18 m:\recycler\S-1-5-21-448539723-651377827-725345543-1004 m:\users\Damian\OTL.exe m:\windows\system32\twain_32.dll . ((((((((((((((((((((((((( Pliki utworzone od 2010-01-21 do 2010-02-21 ))))))))))))))))))))))))))))))) . 2010-02-21 15:37 . 2010-02-21 15:38 -------- d-----w- M:\32788R22FWJFW 2010-02-21 14:23 . 2010-02-21 14:46 -------- d-----w- m:\program files\DScaler 2010-02-21 14:13 . 2010-02-21 14:13 -------- d-----w- m:\programdata\AVS4YOU 2010-02-21 14:13 . 2010-02-21 14:13 -------- d-----w- m:\users\Damian\AppData\Roaming\AVS4YOU 2010-02-21 14:12 . 2003-05-22 12:26 638976 ----a-w- m:\windows\system32\divx.dll 2010-02-21 14:12 . 2003-05-21 23:50 344064 ----a-w- m:\windows\system32\msvcr70.dll 2010-02-21 14:12 . 2003-05-21 23:50 261632 ----a-w- m:\windows\system32\mcdvd_32.dll 2010-02-21 14:12 . 2002-08-20 00:41 413760 ----a-w- m:\windows\system32\mpg4c32.dll 2010-02-21 14:12 . 2002-01-05 14:48 974848 ----a-w- m:\windows\system32\mfc70.dll 2010-02-21 14:12 . 2002-01-05 14:40 487424 ----a-w- m:\windows\system32\msvcp70.dll 2010-02-21 14:12 . 2002-01-05 13:16 536576 ----a-w- m:\windows\system32\msvcr70d.dll 2010-02-21 14:12 . 2003-05-21 23:50 24576 ----a-w- m:\windows\system32\msxml3a.dll 2010-02-21 14:12 . 2010-02-21 14:12 -------- d-----w- m:\program files\AVS4YOU 2010-02-21 14:12 . 2010-02-21 14:12 -------- d-----w- m:\program files\Common Files\AVSMedia 2010-02-21 13:23 . 2010-02-21 13:23 -------- d--h--w- m:\windows\PIF 2010-02-21 09:16 . 2010-02-20 11:34 1324720 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\NAVEX15.SYS 2010-02-21 09:16 . 2010-02-20 11:34 84912 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\NAVENG.SYS 2010-02-21 09:16 . 2009-08-29 09:00 177520 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\NAVENG32.DLL 2010-02-21 09:16 . 2009-08-29 09:00 1647984 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\NAVEX32A.DLL 2010-02-21 09:16 . 2010-02-20 11:34 2747440 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\CCERASER.DLL 2010-02-21 09:16 . 2010-02-20 11:34 259440 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\ECMSVR32.DLL 2010-02-21 09:16 . 2009-08-29 09:00 371248 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\EECTRL.SYS 2010-02-21 09:16 . 2009-08-29 09:00 102448 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\VirusDefs\20100220.022\ERASER.SYS 2010-02-20 15:25 . 2009-10-28 22:37 343088 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\IDSvix86.sys 2010-02-20 15:25 . 2009-10-28 22:37 329592 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\IDSXpx86.sys 2010-02-20 15:25 . 2009-10-28 22:37 811896 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\Scxpx86.dll 2010-02-20 15:25 . 2009-10-28 22:37 488312 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\IDSxpx86.dll 2010-02-20 15:25 . 2009-10-28 22:37 466992 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\IDSviA64.sys 2010-02-20 14:09 . 2010-02-20 14:10 -------- d-----w- m:\program files\NVIDIA Corporation 2010-02-20 11:14 . 2010-02-20 11:14 124976 ----a-w- m:\windows\system32\drivers\SYMEVENT.SYS 2010-02-20 11:14 . 2010-02-20 11:46 -------- d-----w- m:\program files\Common Files\Symantec Shared 2010-02-20 11:14 . 2010-02-20 11:14 -------- d-----w- m:\program files\Symantec 2010-02-20 11:14 . 2009-08-30 00:16 467504 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20090828.002\IDSVia64.sys 2010-02-20 11:14 . 2009-08-30 00:16 342576 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20090828.002\IDSVix86.sys 2010-02-20 11:14 . 2009-08-30 00:16 329080 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20090828.002\IDSxpx86.sys 2010-02-20 11:14 . 2009-08-30 00:16 732024 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20090828.002\Scxpx86.dll 2010-02-20 11:14 . 2009-08-30 00:16 488312 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20090828.002\IDSxpx86.dll 2010-02-20 11:14 . 2009-08-30 00:16 164216 ----a-r- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\IPSFFPlgn\components\IPSFFPl.dll 2010-02-20 11:14 . 2009-08-26 22:13 900464 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\OCS\hsplayer.dll 2010-02-20 11:14 . 2009-09-01 09:02 893296 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\CLT\cltLMSx.dll 2010-02-20 11:13 . 2010-02-20 11:13 -------- d-----w- m:\program files\Norton AntiVirus 2010-02-20 11:13 . 2010-02-20 11:13 -------- d-----w- m:\program files\NortonInstaller 2010-02-20 10:49 . 2010-02-21 09:06 -------- d-----w- m:\windows\system32\drivers\NAV 2010-02-14 13:46 . 2010-02-14 13:47 -------- d-----w- m:\program files\AV Vcs 6.0 DIAMOND 2010-02-11 17:45 . 2010-02-11 17:45 676912 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\BHDrvx64.sys 2010-02-11 17:45 . 2010-02-11 17:45 611216 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\bbRGen.dll 2010-02-11 17:45 . 2010-02-11 17:45 536112 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\BHDrvx86.sys 2010-02-11 17:45 . 2010-02-11 17:45 201616 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\BHRules.dll 2010-02-11 17:45 . 2010-02-11 17:45 1406352 ----a-w- m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\BHEngine.dll 2010-02-10 13:25 . 2009-12-11 11:43 302080 ----a-w- m:\windows\system32\drivers\srv.sys 2010-02-10 13:25 . 2009-12-11 11:43 98816 ----a-w- m:\windows\system32\drivers\srvnet.sys 2010-02-10 13:25 . 2009-12-08 20:01 3600456 ----a-w- m:\windows\system32\ntkrnlpa.exe 2010-02-10 13:25 . 2009-12-08 20:01 3548216 ----a-w- m:\windows\system32\ntoskrnl.exe 2010-02-10 13:25 . 2009-12-08 20:01 904776 ----a-w- m:\windows\system32\drivers\tcpip.sys 2010-02-10 13:25 . 2009-12-08 17:26 30720 ----a-w- m:\windows\system32\drivers\tcpipreg.sys 2010-02-10 13:25 . 2009-12-04 18:30 12288 ----a-w- m:\windows\system32\tsbyuv.dll 2010-02-10 13:25 . 2009-12-04 18:29 1314816 ----a-w- m:\windows\system32\quartz.dll 2010-02-10 13:25 . 2009-12-04 18:28 22528 ----a-w- m:\windows\system32\msyuv.dll 2010-02-10 13:25 . 2009-12-04 18:28 31744 ----a-w- m:\windows\system32\msvidc32.dll 2010-02-10 13:24 . 2009-12-04 18:28 123904 ----a-w- m:\windows\system32\msvfw32.dll 2010-02-10 13:24 . 2009-12-04 18:28 13312 ----a-w- m:\windows\system32\msrle32.dll 2010-02-10 13:24 . 2009-12-04 18:28 82944 ----a-w- m:\windows\system32\mciavi32.dll 2010-02-10 13:24 . 2009-12-04 18:28 50176 ----a-w- m:\windows\system32\iyuv_32.dll 2010-02-10 13:24 . 2009-12-04 18:27 91136 ----a-w- m:\windows\system32\avifil32.dll 2010-02-10 13:24 . 2009-12-04 15:56 212992 ----a-w- m:\windows\system32\drivers\mrxsmb10.sys 2010-02-10 13:24 . 2009-12-04 15:56 105984 ----a-w- m:\windows\system32\drivers\mrxsmb.sys 2010-02-03 22:56 . 2010-02-03 22:56 -------- d-----w- m:\users\Damian\WapSter 2010-02-03 22:56 . 2010-02-03 22:56 -------- d-----w- m:\program files\WapSter 2010-01-29 21:02 . 2010-01-29 21:02 -------- d-----w- m:\program files\Common Files\Common Share 2010-01-29 21:02 . 2008-12-18 12:38 1700352 ----a-w- m:\windows\system32\gdiplus.dll 2010-01-29 21:02 . 2010-01-29 21:02 -------- d-----w- m:\program files\OJOsoft 2010-01-25 09:49 . 2010-01-25 09:49 -------- d-----w- m:\windows\Options 2010-01-25 09:49 . 2009-08-14 09:10 1334784 ----a-w- m:\windows\system32\athur.sys 2010-01-23 21:30 . 2010-01-23 21:30 -------- d-----w- m:\program files\Common Files\Java . (((((((((((((((((((((((((((((((((((((((( Sekcja Find3M )))))))))))))))))))))))))))))))))))))))))))))))))))) . 2010-02-21 15:46 . 2010-01-24 11:51 216330 ----a-w- m:\programdata\nvModes.dat 2010-02-21 15:38 . 2009-09-14 16:15 12 ----a-w- m:\windows\bthservsdp.dat 2010-02-20 19:40 . 2009-07-18 07:27 -------- d-----w- m:\users\Damian\AppData\Roaming\Skype 2010-02-20 19:11 . 2009-07-18 07:30 -------- d-----w- m:\users\Damian\AppData\Roaming\skypePM 2010-02-20 14:11 . 2009-07-18 20:50 -------- d-----w- m:\programdata\NVIDIA 2010-02-20 13:28 . 2009-11-29 16:11 215104 ----a-w- m:\windows\system32\PnkBstrB.exe 2010-02-20 11:55 . 2009-11-29 16:11 138576 ----a-w- m:\windows\system32\drivers\PnkBstrK.sys 2010-02-20 11:14 . 2010-02-20 11:14 805 ----a-w- m:\windows\system32\drivers\SYMEVENT.INF 2010-02-20 11:14 . 2010-02-20 11:14 7443 ----a-w- m:\windows\system32\drivers\SYMEVENT.CAT 2010-02-20 11:13 . 2009-09-19 11:44 -------- d-----w- m:\programdata\Norton 2010-02-20 11:13 . 2009-09-19 11:44 -------- d-----w- m:\programdata\NortonInstaller 2010-02-17 15:36 . 2009-08-01 08:48 -------- d-----w- m:\programdata\OpenFM 2010-02-12 17:57 . 2009-08-09 07:16 -------- d-----w- m:\users\Damian\AppData\Roaming\Kamerzysta 2010-02-11 22:44 . 2006-11-02 11:18 -------- d-----w- m:\program files\Windows Mail 2010-02-11 12:22 . 2009-08-01 19:00 -------- d-----w- m:\programdata\Microsoft Help 2010-01-31 14:59 . 2010-01-13 19:15 -------- d-----w- m:\program files\Winamp 2010-01-25 09:49 . 2009-07-18 00:22 -------- d--h--w- m:\program files\InstallShield Installation Information 2010-01-24 12:01 . 2009-11-15 16:33 -------- d-----w- m:\program files\Activision 2010-01-23 21:30 . 2009-07-18 23:42 -------- d-----w- m:\program files\Java 2010-01-23 18:48 . 2010-01-21 21:26 -------- d-----w- m:\program files\Counter-Strike 2010-01-20 20:41 . 2009-07-17 19:15 -------- d-----w- m:\users\Damian\AppData\Roaming\Nowe Gadu-Gadu 2010-01-19 14:12 . 2010-01-13 19:15 -------- d-----w- m:\users\Damian\AppData\Roaming\Winamp 2010-01-17 14:19 . 2010-01-17 14:19 -------- d-----w- m:\program files\Common Files\INCA Shared 2010-01-15 16:20 . 2010-01-15 16:20 -------- d-----w- m:\program files\Icecast2 Win32 2010-01-14 18:42 . 2009-07-20 05:26 -------- d-----w- m:\program files\K-Lite Codec Pack 2010-01-14 18:35 . 2009-11-21 13:33 439816 ----a-w- m:\users\Damian\AppData\Roaming\Real\Update\setup3.09\setup.exe 2010-01-14 10:12 . 2009-10-02 16:16 181120 ------w- m:\windows\system32\MpSigStub.exe 2010-01-13 19:50 . 2010-01-13 19:50 1924744 ----a-w- m:\users\Damian\AppData\Roaming\Macromedia\Flash Player\www.macromedia.com\bin\fpupdatepl\fpupdatepl.exe 2010-01-13 19:15 . 2009-08-02 20:47 -------- d-----w- m:\program files\Common Files\PX Storage Engine 2010-01-11 21:18 . 2010-01-11 21:18 962664 ----a-w- m:\windows\system32\nvsvc.dll 2010-01-11 21:18 . 2010-01-11 21:18 13679720 ----a-w- m:\windows\system32\nvcpl.dll 2010-01-11 21:18 . 2010-01-11 21:18 129640 ----a-w- m:\windows\system32\nvvsvc.exe 2010-01-11 21:18 . 2010-01-11 21:18 110696 ----a-w- m:\windows\system32\nvmctray.dll 2010-01-05 18:00 . 2010-01-14 18:39 85504 ----a-w- m:\windows\system32\ff_vfw.dll 2009-12-30 04:31 . 2009-07-20 20:59 -------- d-----w- m:\users\Damian\AppData\Roaming\Azureus 2009-12-18 13:01 . 2010-01-22 06:41 78336 ----a-w- m:\windows\system32\ieencode.dll 2009-12-17 16:14 . 2009-07-18 23:42 411368 ----a-w- m:\windows\system32\deploytk.dll 2009-12-16 11:44 . 2010-01-22 06:41 834048 ----a-w- m:\windows\system32\wininet.dll 2009-12-12 14:15 . 2010-01-09 20:17 178176 ----a-w- m:\windows\system32\unrar.dll 2009-11-30 17:02 . 2009-11-30 17:02 171144 ----a-w- m:\windows\system32\xliveinstall.dll 2009-11-30 17:02 . 2009-11-30 17:02 72840 ----a-w- m:\windows\system32\xliveinstallhost.exe 2009-11-29 21:40 . 2009-11-29 16:11 75064 ----a-w- m:\windows\system32\PnkBstrA.exe 2009-11-29 16:11 . 2009-11-29 16:11 22328 ----a-w- m:\users\Damian\AppData\Roaming\PnkBstrK.sys 2009-11-29 16:11 . 2009-11-29 16:11 22328 ----a-w- m:\users\Damian\AppData\Roaming\PnkBstrK.sys . ((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru )))))))))))))))))))))))))))))))))))))))))))))))))) . . *Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane REGEDIT4 [HKEY_LOCAL_MACHINE\~\Browser Helper Objects\{201f27d4-3704-41d6-89c1-aa35e39143ed}] 2009-04-02 19:47 333192 ----a-w- m:\program files\AskBarDis\bar\bin\askBar.dll [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Internet Explorer\Toolbar] "{3041d03e-fd4b-44e0-b742-2d9b88305f98}"= "m:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CURRENT_USER\Software\Microsoft\Internet Explorer\Toolbar\Webbrowser] "{3041D03E-FD4B-44E0-B742-2D9B88305F98}"= "m:\program files\AskBarDis\bar\bin\askBar.dll" [2009-04-02 333192] [HKEY_CLASSES_ROOT\clsid\{3041d03e-fd4b-44e0-b742-2d9b88305f98}] [HKEY_CLASSES_ROOT\TypeLib\{4b1c1e16-6b34-430e-b074-5928eca4c150}] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Sidebar"="m:\program files\Windows Sidebar\sidebar.exe" [2009-04-11 1233920] "Nowe Gadu-Gadu"="m:\program files\Nowe Gadu-Gadu\gg.exe" [2009-08-31 11391592] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run] "Windows Defender"="m:\program files\Windows Defender\MSASCui.exe" [2008-01-21 1008184] "RtHDVCpl"="RtHDVCpl.exe" [2008-02-13 4915200] "Skytel"="Skytel.exe" [2007-11-20 1826816] "GrooveMonitor"="m:\program files\Microsoft Office\Office12\GrooveMonitor.exe" [2008-10-25 31072] "V0330Cfg.exe"="V0330Cfg.exe" [2006-08-21 20480] "SunJavaUpdateSched"="m:\program files\Common Files\Java\Java Update\jusched.exe" [2010-01-11 246504] [HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system] "EnableUIADesktopToggle"= 0 (0x0) [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32] "mixer1"=wdmaud.drv [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\WinDefend] @="Service" [HKLM\~\startupfolder\M:^ProgramData^Microsoft^Windows^Start Menu^Programs^Startup^hpoddt01.exe.lnk] path=m:\programdata\Microsoft\Windows\Start Menu\Programs\Startup\hpoddt01.exe.lnk backup=m:\windows\pss\hpoddt01.exe.lnk.CommonStartup backupExtension=.CommonStartup [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe ARM] 2009-09-04 11:08 935288 ----a-r- m:\program files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher] 2009-10-03 03:08 35696 ----a-w- m:\program files\Adobe\Reader 9.0\Reader\reader_sl.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTCheck] 2007-11-06 09:08 397312 ------w- m:\program files\Creative\ZEN Media Explorer\CTCheck.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTSyncU.exe] 2007-07-17 09:03 868352 ------w- m:\program files\Creative\Sync Manager Unicode\CTSyncU.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update] 2009-07-19 00:08 133104 ----atw- m:\users\Damian\AppData\Local\Google\Update\GoogleUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Onet.pl AutoUpdate] 2005-07-27 09:59 260096 ----a-w- m:\program files\Common Files\Onet.pl\NewAutoUpdate.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] 2009-10-09 11:11 25623336 ----a-r- m:\program files\Skype\Phone\Skype.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Sony Ericsson PC Suite] 2009-06-23 14:50 434176 ----a-w- m:\program files\Sony Ericsson\Sony Ericsson PC Suite\SEPCSuite.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\TkBellExe] 2009-08-01 08:57 198160 ----a-w- m:\program files\Common Files\Real\Update_OB\realsched.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\WinampAgent] 2009-12-18 00:30 39424 ----a-w- m:\program files\Winamp\winampa.exe [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Windows Mobile Device Center] 2007-05-31 07:21 648072 ----a-w- m:\windows\WindowsMobile\wmdc.exe R0 SymDS;Symantec Data Store;m:\windows\System32\drivers\NAV\1105000.07F\symds.sys [2010-02-20 328752] R0 SymEFA;Symantec Extended File Attributes;m:\windows\System32\drivers\NAV\1105000.07F\symefa.sys [2010-02-20 172592] R1 BHDrvx86;BHDrvx86;m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\BASHDefs\20100211.001\BHDrvx86.sys [2010-02-11 536112] R1 ccHP;Symantec Hash Provider;m:\windows\System32\drivers\NAV\1105000.07F\cchpx86.sys [2010-02-20 501888] R1 IDSVix86;IDSVix86;m:\programdata\Norton\{0C55C096-0F1D-4F28-AAA2-85EF591126E7}\NAV_17.0.0.136\Definitions\IPSDefs\20100218.001\IDSvix86.sys [2010-02-20 343088] R1 SymIRON;Symantec Iron Driver;m:\windows\System32\drivers\NAV\1105000.07F\ironx86.sys [2010-02-20 116272] R1 SYMTDIv;Symantec Vista Network Dispatch Driver;m:\windows\System32\drivers\NAV\1105000.07F\symtdiv.sys [2010-02-20 340016] R2 ASKService;ASKService;m:\program files\AskBarDis\bar\bin\AskService.exe [2009-07-20 464264] R2 ASKUpgrade;ASKUpgrade;m:\program files\AskBarDis\bar\bin\ASKUpgrade.exe [2009-07-20 234888] R2 NAV;Norton AntiVirus;m:\program files\Norton AntiVirus\Engine\17.5.0.127\ccsvchst.exe [2010-02-20 126392] R3 3xHybrid;SAA713x TV Card Service;m:\windows\System32\drivers\3xHybrid.sys [2007-07-07 906368] R3 EraserUtilRebootDrv;EraserUtilRebootDrv;m:\program files\Common Files\Symantec Shared\EENGINE\EraserUtilRebootDrv.sys [2010-02-20 102448] R3 seehcri;Sony Ericsson seehcri Device Driver;m:\windows\System32\drivers\seehcri.sys [2009-09-18 27632] S0 sptd;sptd;m:\windows\System32\drivers\sptd.sys [2009-07-26 721904] S2 Icecast-trunk;Icecast-trunk Streaming Media Server;m:\program files\Icecast2 Win32\icecastService.exe [2010-01-15 417792] S2 OMSI download service;Sony Ericsson OMSI download service;m:\program files\Sony Ericsson\Sony Ericsson PC Suite\SupServ.exe [2009-09-18 90112] S3 athrusb;TP-LINK Wireless LAN USB device driver;m:\windows\System32\drivers\athrusb.sys [2009-12-22 891392] S3 libusb0;LibUsb-Win32 - Kernel Driver 11/20/2005, 20051120;m:\windows\System32\drivers\libusb0.sys [2009-08-11 29184] S3 npggsvc;nProtect GameGuard Service;m:\windows\system32\GameMon.des -service --> m:\windows\system32\GameMon.des -service [?] S3 s0016bus;Sony Ericsson Device 0016 driver (WDM);m:\windows\System32\drivers\s0016bus.sys [2009-09-18 89256] S3 s0016mdfl;Sony Ericsson Device 0016 USB WMC Modem Filter;m:\windows\System32\drivers\s0016mdfl.sys [2009-09-18 15016] S3 s0016mdm;Sony Ericsson Device 0016 USB WMC Modem Driver;m:\windows\System32\drivers\s0016mdm.sys [2009-09-18 120744] S3 s0016mgmt;Sony Ericsson Device 0016 USB WMC Device Management Drivers (WDM);m:\windows\System32\drivers\s0016mgmt.sys [2009-09-18 114216] S3 s0016nd5;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (NDIS);m:\windows\System32\drivers\s0016nd5.sys [2009-09-18 25512] S3 s0016obex;Sony Ericsson Device 0016 USB WMC OBEX Interface;m:\windows\System32\drivers\s0016obex.sys [2009-09-18 110632] S3 s0016unic;Sony Ericsson Device 0016 USB Ethernet Emulation SEMC0016 (WDM);m:\windows\System32\drivers\s0016unic.sys [2009-09-18 115752] S3 V0330VID;WebCam Vista;m:\windows\System32\drivers\V0330Vid.sys [2009-07-30 178913] [HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\svchost] LocalServiceNoNetwork REG_MULTI_SZ PLA DPS BFE mpssvc bthsvcs REG_MULTI_SZ BthServ WindowsMobile REG_MULTI_SZ wcescomm rapimgr LocalServiceRestricted REG_MULTI_SZ WcesComm RapiMgr LocalServiceAndNoImpersonation REG_MULTI_SZ FontCache . Zawartość folderu 'Zaplanowane zadania' 2010-02-21 m:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1545905530-1466848831-748298963-1000Core.job - m:\users\Damian\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-19 00:08] 2010-02-21 m:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1545905530-1466848831-748298963-1000UA.job - m:\users\Damian\AppData\Local\Google\Update\GoogleUpdate.exe [2009-07-19 00:08] 2010-02-21 m:\windows\Tasks\User_Feed_Synchronization-{79F88CD3-FC99-483E-9919-10515FCD06C0}.job - m:\windows\system32\msfeedssync.exe [2008-01-21 02:34] . . ------- Skan uzupełniający ------- . uStart Page = hxxp://www.onet.pl uDefault_Search_URL = hxxp://www.google.com/ie uInternet Settings,ProxyOverride = *.local uSearchAssistant = hxxp://www.google.com/ie uSearchURL,(Default) = hxxp://www.google.com/search?q=%s IE: Add to Google Photos Screensa&ver - m:\windows\system32\GPhotos.scr/200 IE: E&ksportuj do programu Microsoft Excel - m:\progra~1\MICROS~3\Office12\EXCEL.EXE/3000 FF - ProfilePath - m:\users\Damian\AppData\Roaming\Mozilla\Firefox\Profiles\8uks2mrp.default\ FF - prefs.js: network.proxy.type - 2 FF - component: m:\program files\Real\RealPlayer\browserrecord\components\nprpbrowserrecordplugin.dll FF - plugin: m:\program files\Google\Picasa3\npPicasa3.dll FF - plugin: m:\program files\Mozilla Firefox\plugins\np-mswmp.dll FF - HiddenExtension: Microsoft .NET Framework Assistant: {20a82645-c095-46ed-80e3-08825760534b} - m:\windows\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\DotNetAssistantExtension\ . - - - - USUNIĘTO PUSTE WPISY - - - - HKCU-Run-RGSC - m:\program files\Rockstar Games\Rockstar Games Social Club\RGSCLauncher.exe SharedTaskScheduler-{73526E5A-FD53-4BE7-B5E2-D3C89D7413DC} - (no file) MSConfigStartUp-Odkurzacz-MCD - m:\program files\Odkurzacz\odk_mcd.exe MSConfigStartUp-SunJavaUpdateSched - m:\program files\Java\jre6\bin\jusched.exe ************************************************************************** catchme 0.3.1398 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net Rootkit scan 2010-02-21 16:54 Windows 6.0.6002 Service Pack 2 NTFS skanowanie ukrytych procesów ... skanowanie ukrytych wpisów autostartu ... skanowanie ukrytych plików ... skanowanie pomyślnie ukończone ukryte pliki: 0 ************************************************************************** [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\NAV] "ImagePath"="\"m:\program files\Norton AntiVirus\Engine\17.5.0.127\ccSvcHst.exe\" /s \"NAV\" /m \"m:\program files\Norton AntiVirus\Engine\17.5.0.127\diMaster.dll\" /prefetch:1" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\ASFWHide] "ImagePath"="\??\m:\users\Damian\AppData\Local\Temp\ASFWHide" [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Services\npggsvc] "ImagePath"="m:\windows\system32\GameMon.des -service" . --------------------- ZABLOKOWANE KLUCZE REJESTRU --------------------- [HKEY_USERS\S-1-5-21-1545905530-1466848831-748298963-1000\Software\SecuROM\License information*] "datasecu"=hex:15,50,61,c8,52,5b,38,a6,78,fa,34,f8,25,02,93,47,be,3e,80,91,a4, 04,3b,8d,e8,9b,d8,01,80,40,5b,e1,fc,63,d5,02,f4,77,73,0e,3c,89,e3,cb,dc,05,\ "rkeysecu"=hex:29,23,be,84,e1,6c,d6,ae,52,90,49,f1,f1,bb,e9,eb [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0000\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0001\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0002\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0003\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0004\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\ControlSet003\Control\Class\{4D36E96D-E325-11CE-BFC1-08002BE10318}\0005\AllUserSettings] @Denied: (A) (Users) @Denied: (A) (Everyone) @Allowed: (B 1 2 3 4 5) (S-1-5-20) "BlindDial"=dword:00000000 . Czas ukończenia: 2010-02-21 16:58:08 ComboFix-quarantined-files.txt 2010-02-21 15:58 Przed: 53 311 029 248 bajtów wolnych Po: 59 927 429 120 bajtów wolnych - - End Of File - - C8B4153EEAED99E1C8ADF67FD1032030 [/log]
Mateusz J. komentarz 21 lutego 2010 komentarz 21 lutego 2010 Start => uruchom =>regedit Przejdź do klucza: HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon W tym kluczu sprawdź wartość shell , ma być ona ustawiona na explorer.exe
Damianoo159 komentarz 21 lutego 2010 Autor komentarz 21 lutego 2010 OK dzieki system normalnie sie laduje, tlyko mam jeszcze jedno pytanie. Jeszcze cos moze byc nie tak ? Bo przed tym komp normalnie szybko chodzil teraz troche muli. Wczesniej np ten boczny pasek odrazu sie ladowal teraz musze czekac z 20s az sie zaladuje.
Mateusz J. komentarz 21 lutego 2010 komentarz 21 lutego 2010 Wykonaj jeszcze: http://www.forumpc.pl/index.php?showtopic=107753&st=0&p=752434&#entry752434 (raport na forum). oraz http://www.forumpc.pl/index.php?showtopic=17478
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.