Jose Peniara utworzono 24 listopada 2010 utworzono 24 listopada 2010 (edytowane) Witam. Mam ostatnio spory problem z systemem. Często przy włączeniu komputera od razu pojawia się komunikat o próbie wysyłania błędu choć system był zamykany poprawnie. Nie działają też przeglądarki, bez wyjątku. Zauważyłem tez znaczny spowolnienie systemu. Zdarza się także czasem, że procesor "myśli" intensywnie przez parę minut i nic z tym nie można zrobić. Skanowałem system pandą kilkakrotnie. Za pierwszym razem wykryło wirusa Trj/C.IA który nie był aktywny za kolejnymi było już wszystko w porządku. Próbowałem też czyścić rejestr CCleanerem degragmentować i sprawdzać dysk Active SMARTEM co wykryło na moim głównym dysku 2 reallocated bad blocki. Sięgnąłem po HDD Regenarator który wykrył jednego bada i potwierdził jego "uleczenie". Problemy powtarzają się cały czas. Ostatnio doszło do tego samoczynne wyłączanie się komputera zaraz po starcie. Proszę pomóżcie. Konf Typ procesora AMD Athlon 64, 2000 MHz (10 x 200) 3000+ Nazwa płyty głównej Epox EP-8KDA3+ (6 PCI, 1 AGP, 3 DDR DIMM, Audio, Gigabit LAN) Zasilacz Feel 300W Pamięć fizyczna 1536 MB (PC3200 DDR SDRAM) Dysk fizyczny SAMSUNG SP1213C (120 GB, 7200 RPM, SATA) Dysk fizyczny WDC WD800JB-00FSA0 (74 GB, IDE) [log]OTL logfile created on: 2010-11-24 12:48:50 - Run 3 OTL by OldTimer - Version 3.1.24.0 Folder = D:\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free 2,00 Gb Paging File | 1,00 Gb Available in Paging File | 70,00% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 14,65 Gb Total Space | 4,17 Gb Free Space | 28,48% Space Free | Partition Type: NTFS Drive D: | 97,16 Gb Total Space | 10,76 Gb Free Space | 11,08% Space Free | Partition Type: NTFS E: Drive not present or media not loaded Drive F: | 4,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF G: Drive not present or media not loaded Drive H: | 74,53 Gb Total Space | 0,08 Gb Free Space | 0,11% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: DAMIAN Current User Name: Damiano Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color="#e56717"]========== Processes (SafeList) ==========[/color] PRC - [2010-11-01 22:36:03 | 00,974,904 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe PRC - [2010-09-30 07:54:11 | 00,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe PRC - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe PRC - [2010-08-26 12:52:15 | 00,988,480 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe PRC - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\psksvc.exe PRC - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe PRC - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe PRC - [2010-05-28 13:42:32 | 00,225,600 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE PRC - [2010-05-14 10:44:46 | 00,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-22 18:29:12 | 00,107,776 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\WebProxy.exe PRC - [2010-02-23 12:09:34 | 00,111,872 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe PRC - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe PRC - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) -- c:\Program Files\Panda Security\Panda Global Protection 2011\FIREWALL\PSHost.exe PRC - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2009-08-25 22:57:18 | 00,332,048 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) -- C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe PRC - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe PRC - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrlS.exe PRC - [2008-06-27 13:23:00 | 00,091,392 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\SrvLoad.exe PRC - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe PRC - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Common Files\Panda Security\PavShld\PavPrSrv.exe PRC - [2007-10-17 15:02:50 | 01,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe PRC - [2007-03-11 21:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2007-03-11 21:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2007-03-11 21:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2005-01-12 03:01:32 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe PRC - [2004-08-03 23:44:20 | 00,975,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color="#e56717"]========== Modules (SafeList) ==========[/color] MOD - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe MOD - [2009-08-10 13:45:54 | 00,095,488 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavOEpl.dll MOD - [2009-03-30 18:22:58 | 00,518,400 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\PavSHook.dll MOD - [2007-02-08 10:53:40 | 00,107,568 | ---- | M] (Panda Software) -- C:\WINDOWS\system32\SYSTOOLS.DLL MOD - [2004-01-11 23:00:00 | 00,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll MOD - [2003-03-19 05:14:52 | 00,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCP71.DLL [color="#e56717"]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-10-16 19:35:00 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe -- (TPSrv) SRV - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe -- (PAVFNSVR) SRV - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe -- (PskSvcRetail) SRV - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA) SRV - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe -- (PAVSRV) SRV - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) [Auto | Running] -- c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE -- (PSHost) SRV - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) SRV - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) [Auto | Running] -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe -- (ActiveSMART Service) SRV - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe -- (Panda Software Controller) SRV - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe -- (PSIMSVC) SRV - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe -- (PavPrSrv) SRV - [2007-03-11 22:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc) SRV - [2007-03-11 21:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08) SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12) SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) [color="#e56717"]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Running] -- -- (PavTPK.sys) DRV - File not found [Kernel | On_Demand | Running] -- -- (PavSRK.sys) DRV - File not found [File_System | On_Demand | Running] -- -- (AvFlt) DRV - [2010-06-22 18:13:00 | 00,026,696 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\Drivers\pavboot.sys -- (pavboot) DRV - [2010-05-21 13:50:26 | 00,059,080 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\amm8651.sys -- (AmFSM) DRV - [2010-02-18 19:31:20 | 00,199,688 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\neti1642.sys -- (NETIMFLT01060042) DRV - [2010-02-18 19:31:18 | 00,076,296 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\APPFLT.SYS -- (APPFLT) DRV - [2010-01-18 19:13:01 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-12-30 00:16:38 | 00,021,419 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x) DRV - [2009-11-12 12:48:56 | 00,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009-10-27 12:07:42 | 00,037,896 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv) DRV - [2009-09-25 14:54:08 | 00,046,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\wnmflt.sys -- (WNMFLT) DRV - [2009-09-25 14:54:06 | 00,159,112 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NETFLTDI.SYS -- (NETFLTDI) DRV - [2009-09-25 14:54:04 | 00,193,800 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idsflt.sys -- (IDSFLT) DRV - [2009-09-25 14:54:04 | 00,022,024 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fnetmon.sys -- (FNETMON) DRV - [2009-09-25 14:54:02 | 00,053,256 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dsaflt.sys -- (DSAFLT) DRV - [2009-09-14 16:18:22 | 00,163,336 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc) DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH) DRV - [2008-08-14 06:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs) DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2008-04-14 22:30:58 | 00,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-10-01 12:06:40 | 00,451,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73) DRV - [2007-03-08 05:20:50 | 00,021,568 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZius12.sys -- (HPZius12) DRV - [2007-03-08 05:20:49 | 00,016,496 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZipr12.sys -- (HPZipr12) DRV - [2007-03-08 05:20:48 | 00,049,920 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZid412.sys -- (HPZid412) DRV - [2005-12-10 03:06:00 | 03,536,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2005-01-20 08:45:30 | 00,088,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2004-07-01 14:49:00 | 00,626,977 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004-02-24 11:08:00 | 00,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS) DRV - [2004-02-09 15:27:00 | 00,097,857 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SI3114R.sys -- (SI3114r) DRV - [2003-10-15 10:28:00 | 00,010,240 | R--- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter) [color="#e56717"]========== Standard Registry (SafeList) ==========[/color] [color="#e56717"]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.Google.com"]http://www.Google.com[/url] IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color="#e56717"]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.defaulturl: "http://www3.iamwired.net/websearch.php?src=tops&search=" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.google.pl/" FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185 FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736 FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: smartbookmarksbar@remy.juteau:1.4.3 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-11-07 11:00:04 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-11-17 11:20:30 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-12-31 10:27:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Extensions [2010-11-22 15:15:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions [2010-04-09 12:27:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com [2010-08-06 09:25:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\eafo3fflauncher@ea.com [2010-10-12 15:25:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\smartbookmarksbar@remy.juteau [2010-08-09 14:15:37 | 00,002,556 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml [2010-01-18 19:13:20 | 00,002,055 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml [2010-04-09 21:31:18 | 00,000,261 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml [2010-11-22 15:15:59 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-01-06 23:19:50 | 00,000,000 | ---D | M] (BrowserZinc) -- C:\Program Files\Mozilla Firefox\extensions\{52ED9673-0722-4A1D-B859-959FD56143DC} [2010-08-09 17:22:24 | 00,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-08-09 23:01:49 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-10-26 15:00:48 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010-01-12 22:40:55 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2010-09-15 03:50:38 | 00,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-10-22 10:06:19 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-06 23:19:51 | 00,002,401 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\browserzinc115.xml [2010-10-22 10:06:19 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-10-22 10:06:19 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-10-22 10:06:19 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-10-22 10:06:19 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-10-22 10:06:19 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found. O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE (Panda Security, S.L.) O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation) O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.) O4 - HKLM..\Run: [SCANINICIO] C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe (Panda Security, S.L.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [AdobeBridge] File not found O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Google Update] C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.) O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Skrybot] File not found O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://active.macromedia.com/flash2/cabs/swflash.cab"]http://active.macrom...abs/swflash.cab[/url] (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.30.129.149 192.168.0.1 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\WINDOWS\System32\avldr.dll (On-Access Anti-Malware Scanner Sync) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-12-29 22:06:12 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell - "" = AutoRun O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color="#e56717"]========== Files/Folders - Created Within 30 Days ==========[/color] [2010-11-18 13:16:06 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Damiano\Recent [2010-11-17 22:50:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-11-17 22:50:03 | 00,000,000 | ---D | C] -- C:\Program Files\HDD Regenerator [2010-11-17 21:22:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Mozilla [2010-11-17 21:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-11-17 21:21:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-17 21:21:31 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART [2010-11-17 21:21:31 | 00,000,000 | ---D | C] -- C:\Program Files\ActiveSMART 2.8 [2010-11-07 11:18:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Panda Security [2010-11-07 11:15:18 | 00,193,800 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\idsflt.sys [2010-11-07 11:15:18 | 00,053,256 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\dsaflt.sys [2010-11-07 11:15:18 | 00,046,856 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\wnmflt.sys [2010-11-07 11:15:12 | 00,159,112 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\NETFLTDI.SYS [2010-11-07 11:15:12 | 00,076,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\APPFLT.SYS [2010-11-07 11:15:12 | 00,022,024 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\fnetmon.sys [2010-11-07 11:15:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup [2010-11-07 11:15:08 | 00,026,696 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys [2010-11-07 11:14:59 | 00,054,832 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\pavcpl.cpl [2010-11-07 11:14:54 | 00,446,464 | ---- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\HHActiveX.dll [2010-11-07 11:14:48 | 00,193,792 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\TpUtil.dll [2010-11-07 11:14:48 | 00,107,568 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\SYSTOOLS.DLL [2010-11-07 11:14:48 | 00,087,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavLspHook.dll [2010-11-07 11:14:48 | 00,055,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\pavipc.dll [2010-11-07 11:14:47 | 00,518,400 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavSHook.dll [2010-11-07 11:14:44 | 00,199,688 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\neti1642.sys [2010-11-07 11:14:42 | 00,059,080 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\amm8651.sys [2010-11-07 11:14:42 | 00,055,552 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\WINDOWS\System32\avldr.dll [2010-11-07 11:14:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PAV [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2010-11-07 11:12:49 | 00,163,336 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\PavProc.sys [2010-11-07 11:12:49 | 00,037,896 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\ShlDrv51.sys [2010-11-07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Panda Security [2010-11-04 01:15:04 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll64X.dll [2010-11-04 00:40:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\HP [2010-11-04 00:40:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Moje zeskanowane obrazy [2010-11-04 00:33:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HP [2010-11-04 00:29:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG [2010-11-04 00:28:11 | 00,049,920 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZid412.sys [2010-11-04 00:28:11 | 00,016,496 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZipr12.sys [2010-11-04 00:28:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard [2010-11-04 00:27:55 | 00,271,704 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll [2010-11-04 00:27:53 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll5ha.dll [2010-11-04 00:27:46 | 00,021,568 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZius12.sys [2010-11-04 00:27:34 | 00,675,840 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax3.dll [2010-11-04 00:27:34 | 00,569,344 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl3.dll [2010-11-04 00:27:34 | 00,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll [2010-11-04 00:27:34 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2010-11-04 00:27:34 | 00,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst10.dll [2010-11-04 00:26:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY [2010-11-04 00:25:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData [2010-11-04 00:25:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant [2010-11-04 00:25:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP [2010-11-04 00:24:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-11-04 00:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-04 00:24:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-11-04 00:23:35 | 00,000,000 | ---D | C] -- C:\Program Files\HP [2010-11-04 00:23:17 | 00,000,000 | -H-D | C] -- C:\Config.Msi [2010-10-26 15:00:48 | 00,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-04-29 10:41:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2009-12-29 22:07:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [color="#e56717"]========== Files - Modified Within 30 Days ==========[/color] [2010-11-24 11:57:16 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls.bck [2010-11-24 11:57:16 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls [2010-11-24 11:57:16 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck [2010-11-24 11:57:16 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG [2010-11-24 11:57:16 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg.bck [2010-11-24 11:57:16 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg [2010-11-24 11:57:16 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt.bck [2010-11-24 11:57:16 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt [2010-11-24 11:57:16 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg.bck [2010-11-24 11:57:16 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg [2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg.bck [2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg [2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg.bck [2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg [2010-11-24 11:54:41 | 00,177,995 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-24 11:54:29 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt.bck [2010-11-24 11:54:29 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt [2010-11-24 11:54:01 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg.bck [2010-11-24 11:54:01 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg [2010-11-24 11:53:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-24 11:53:44 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-24 11:53:40 | 16,101,29408 | -HS- | M] () -- C:\hiberfil.sys [2010-11-24 11:53:00 | 00,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job [2010-11-24 11:44:58 | 00,251,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck [2010-11-24 11:44:58 | 00,251,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT [2010-11-23 22:40:46 | 04,456,448 | ---- | M] () -- C:\Documents and Settings\Damiano\ntuser.dat [2010-11-23 22:40:46 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Damiano\ntuser.ini [2010-11-23 22:15:28 | 00,062,976 | ---- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-23 17:22:46 | 00,008,627 | ---- | M] () -- C:\WINDOWS\System32\PAV_FOG.OPC [2010-11-22 22:53:00 | 00,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job [2010-11-19 10:54:40 | 02,430,226 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg [2010-11-19 10:35:36 | 02,111,570 | -H-- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-18 22:23:39 | 05,963,776 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3 [2010-11-18 13:29:53 | 00,000,636 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk [2010-11-17 22:50:06 | 00,001,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk [2010-11-17 21:21:32 | 00,000,748 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk [2010-11-17 11:20:30 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-11-15 19:51:43 | 00,138,968 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe [2010-11-14 19:56:49 | 00,001,113 | ---- | M] () -- C:\WINDOWS\win.ini [2010-11-12 19:06:35 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-07 13:55:23 | 00,002,318 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Google Chrome.lnk [2010-11-07 13:35:07 | 00,008,627 | ---- | M] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC [2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt.bck [2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt [2010-11-07 11:16:28 | 00,451,352 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-07 11:16:28 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-07 11:16:28 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-07 11:16:28 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-07 11:16:26 | 00,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-07 11:15:23 | 00,000,262 | ---- | M] () -- C:\WINDOWS\System32\PavCPL.dat [2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job [2010-11-07 11:07:36 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-06 19:38:27 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat [2010-11-04 00:28:47 | 00,153,522 | ---- | M] () -- C:\WINDOWS\hpoins14.dat [2010-11-04 00:26:27 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk [2010-11-04 00:26:03 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk [2010-11-04 00:25:31 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-04 00:25:15 | 00,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-10-30 17:36:28 | 00,000,809 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk [2010-10-25 21:55:37 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx [color="#e56717"]========== Files Created - No Company Name ==========[/color] [2010-11-19 10:54:40 | 02,430,226 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg [2010-11-18 22:04:57 | 05,963,776 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3 [2010-11-18 13:29:53 | 00,000,636 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk [2010-11-17 22:50:06 | 00,001,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk [2010-11-17 21:21:32 | 00,000,748 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk [2010-11-07 13:04:54 | 00,008,627 | ---- | C] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC [2010-11-07 11:31:11 | 00,008,627 | ---- | C] () -- C:\WINDOWS\System32\PAV_FOG.OPC [2010-11-07 11:15:23 | 00,000,262 | ---- | C] () -- C:\WINDOWS\System32\PavCPL.dat [2010-11-07 11:15:20 | 00,251,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck [2010-11-07 11:15:20 | 00,251,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT [2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck [2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG [2010-11-07 11:15:11 | 00,000,498 | ---- | C] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job [2010-11-06 20:08:19 | 00,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm [2010-11-06 20:08:19 | 00,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm [2010-11-06 20:08:19 | 00,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm [2010-11-06 20:08:19 | 00,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm [2010-11-06 20:08:18 | 00,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm [2010-11-06 20:08:18 | 00,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm [2010-11-06 20:08:18 | 00,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm [2010-11-06 20:08:18 | 00,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm [2010-11-06 20:08:18 | 00,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm [2010-11-06 20:08:18 | 00,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm [2010-11-06 20:08:18 | 00,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm [2010-11-06 20:08:18 | 00,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm [2010-11-06 20:08:18 | 00,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm [2010-11-06 20:08:18 | 00,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm [2010-11-06 20:08:18 | 00,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm [2010-11-06 20:08:18 | 00,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm [2010-11-06 20:08:18 | 00,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm [2010-11-06 20:08:18 | 00,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm [2010-11-06 20:08:18 | 00,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm [2010-11-06 20:08:18 | 00,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm [2010-11-06 20:08:18 | 00,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm [2010-11-06 20:08:18 | 00,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm [2010-11-06 20:08:18 | 00,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm [2010-11-06 20:08:18 | 00,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm [2010-11-06 20:08:17 | 00,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm [2010-11-06 20:08:17 | 00,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm [2010-11-06 20:08:17 | 00,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm [2010-11-06 20:08:17 | 00,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm [2010-11-06 20:08:17 | 00,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm [2010-11-06 20:08:17 | 00,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm [2010-11-06 20:08:17 | 00,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm [2010-11-06 20:08:17 | 00,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm [2010-11-06 20:08:17 | 00,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm [2010-11-06 20:08:17 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm [2010-11-06 20:08:17 | 00,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm [2010-11-06 20:08:17 | 00,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm [2010-11-06 20:08:17 | 00,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm [2010-11-06 20:08:17 | 00,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm [2010-11-06 20:08:17 | 00,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm [2010-11-06 20:08:17 | 00,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm [2010-11-06 20:08:17 | 00,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm [2010-11-06 20:08:17 | 00,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm [2010-11-06 20:08:17 | 00,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm [2010-11-06 20:08:17 | 00,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm [2010-11-06 20:08:17 | 00,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm [2010-11-06 20:08:17 | 00,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm [2010-11-06 20:08:17 | 00,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm [2010-11-06 20:08:17 | 00,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm [2010-11-06 20:08:16 | 00,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm [2010-11-06 20:08:16 | 00,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm [2010-11-06 20:08:16 | 00,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm [2010-11-06 20:08:16 | 00,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm [2010-11-06 20:08:16 | 00,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm [2010-11-06 20:08:16 | 00,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm [2010-11-06 20:08:16 | 00,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm [2010-11-06 20:08:16 | 00,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm [2010-11-06 20:08:16 | 00,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm [2010-11-06 20:08:16 | 00,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm [2010-11-06 20:08:16 | 00,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm [2010-11-06 20:08:16 | 00,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm [2010-11-06 20:08:16 | 00,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm [2010-11-06 20:08:16 | 00,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm [2010-11-06 20:08:16 | 00,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm [2010-11-06 20:08:16 | 00,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm [2010-11-06 20:08:16 | 00,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm [2010-11-06 20:08:16 | 00,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm [2010-11-06 20:08:16 | 00,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm [2010-11-06 20:08:16 | 00,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm [2010-11-06 20:08:16 | 00,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm [2010-11-06 20:08:16 | 00,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm [2010-11-06 20:08:16 | 00,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm [2010-11-06 20:08:16 | 00,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm [2010-11-06 20:08:16 | 00,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm [2010-11-06 20:08:16 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm [2010-11-06 20:08:16 | 00,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm [2010-11-06 20:08:15 | 00,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm [2010-11-06 20:08:15 | 00,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm [2010-11-06 20:08:15 | 00,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm [2010-11-06 20:08:15 | 00,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm [2010-11-06 20:08:15 | 00,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm [2010-11-06 20:08:15 | 00,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm [2010-11-06 20:08:15 | 00,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm [2010-11-06 20:08:15 | 00,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm [2010-11-06 20:08:15 | 00,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm [2010-11-06 20:08:15 | 00,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm [2010-11-06 20:08:15 | 00,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm [2010-11-06 20:08:15 | 00,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm [2010-11-06 20:08:15 | 00,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm [2010-11-06 20:08:15 | 00,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm [2010-11-06 20:08:15 | 00,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm [2010-11-06 20:08:15 | 00,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm [2010-11-06 20:08:15 | 00,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm [2010-11-06 20:08:15 | 00,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm [2010-11-06 20:08:14 | 00,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm [2010-11-06 20:08:14 | 00,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm [2010-11-06 20:08:14 | 00,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm [2010-11-06 20:08:14 | 00,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm [2010-11-06 20:08:14 | 00,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm [2010-11-06 20:08:14 | 00,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm [2010-11-06 20:08:14 | 00,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm [2010-11-06 20:08:14 | 00,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm [2010-11-06 20:08:14 | 00,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm [2010-11-06 20:08:14 | 00,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm [2010-11-06 20:08:14 | 00,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm [2010-11-06 20:08:14 | 00,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm [2010-11-06 20:08:14 | 00,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm [2010-11-06 20:08:14 | 00,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm [2010-11-06 20:08:14 | 00,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm [2010-11-06 20:08:14 | 00,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm [2010-11-06 20:08:14 | 00,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm [2010-11-06 20:08:14 | 00,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm [2010-11-06 20:08:14 | 00,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm [2010-11-06 20:08:14 | 00,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm [2010-11-06 20:08:14 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm [2010-11-06 20:08:14 | 00,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm [2010-11-06 20:08:14 | 00,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm [2010-11-06 19:38:27 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2010-11-04 00:26:27 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk [2010-11-04 00:26:03 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk [2010-11-04 00:25:31 | 00,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-04 00:25:15 | 00,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-04 00:21:52 | 00,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-11-04 00:21:49 | 00,153,522 | ---- | C] () -- C:\WINDOWS\hpoins14.dat [2010-11-04 00:21:49 | 00,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat [2010-10-30 17:36:28 | 00,000,809 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk [2010-10-25 21:55:37 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx [2010-08-07 14:33:37 | 00,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini [2010-08-06 09:27:39 | 00,139,152 | ---- | C] () -- C:\Documents and Settings\Damiano\Dane aplikacji\PnkBstrK.sys [2010-08-06 09:27:39 | 00,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010-05-22 12:51:08 | 00,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2010-01-18 19:13:01 | 00,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-01-16 10:30:32 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-01-16 10:30:27 | 00,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll [2010-01-16 10:29:53 | 00,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2010-01-16 10:29:52 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [2010-01-06 22:48:26 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys [2010-01-06 21:28:47 | 00,000,172 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2010-01-06 21:20:58 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010-01-06 21:20:58 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2010-01-01 19:44:58 | 00,062,976 | ---- | C] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2005-12-10 03:06:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2005-12-10 03:06:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2005-12-10 03:06:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2005-12-10 03:06:00 | 00,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2005-12-10 03:06:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2005-12-10 03:06:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2005-12-10 03:06:00 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [color="#e56717"]========== LOP Check ==========[/color] [2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton [2010-11-24 11:38:14 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART [2010-09-28 22:11:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-07 11:15:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup [2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2010-01-18 19:12:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-03-14 19:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-05-08 00:21:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-02-18 00:51:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-01-18 19:10:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-11-07 11:15:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2010-10-10 18:07:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe [2010-06-05 20:28:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2010-11-23 13:24:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton [2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Canneverbe Limited [2010-01-18 19:15:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\DAEMON Tools Lite [2010-09-27 15:55:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Gadu-Gadu 10 [2010-10-09 10:15:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\ipla [2010-01-23 23:58:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Leadertech [2010-01-18 19:10:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\OpenFM [2010-11-07 11:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security [2010-06-05 20:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Sports Interactive [2010-09-04 20:56:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Tlen.pl [2010-11-24 12:44:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent [2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\Tasks\Podstawowe porządkowanie.job [color="#e56717"]========== Purity Check ==========[/color] [color="#e56717"]========== Alternate Data Streams ==========[/color] @Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68 < End of report > [/log] [color="#ff0000"] //przenoszę do Bezpieczeństwa //dan[/color]
Tomek01 komentarz 24 listopada 2010 komentarz 24 listopada 2010 Objawy wg mnie nie wskazują infekcji. Jednakże, Odinstaluj Deamon Tools Toolbar, Ask Toolbar. W OTL, w oknie Custom scan/fixes wklej: [code]:Processes Explorer.exe :OTL FF - prefs.js..browser.search.defaultengine: "Ask.com" FF - prefs.js..browser.search.defaultenginename: "Ask.com" FF - prefs.js..browser.search.order.1: "Ask.com" FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185 [2010-04-09 12:27:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com [2010-08-09 14:15:37 | 00,002,556 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml [2010-01-18 19:13:20 | 00,002,055 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml [2010-04-09 21:31:18 | 00,000,261 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found. O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll () @Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68 :Commands [emptytemp] [start explorer] [Reboot][/code] Klikasz run fix, komputer uruchamia się ponownie. Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.
Jose Peniara komentarz 25 listopada 2010 Autor komentarz 25 listopada 2010 Odinstalowałem daemon toolbar ale miałem problem z odnalezieniem ask bo nie było go ani w dodaj/usuń, ani program files. Oto log z usuwania: [log]All processes killed ========== PROCESSES ========== Process Explorer.exe killed successfully! ========== OTL ========== Prefs.js: "Ask.com" removed from browser.search.defaultengine Prefs.js: "Ask.com" removed from browser.search.defaultenginename Prefs.js: "Ask.com" removed from browser.search.order.1 Prefs.js: DTToolbar@toolbarnet.com:1.1.2.0185 removed from extensions.enabledItems Folder C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com\ not found. C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml moved successfully. C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml moved successfully. C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml moved successfully. Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}\ deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}\ not found. Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found. Registry value HKEY_USERS\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully. Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found. File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found. ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68 deleted successfully. ========== COMMANDS ========== [EMPTYTEMP] User: All Users User: Damiano ->Temp folder emptied: 11278105 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->Java cache emptied: 0 bytes ->FireFox cache emptied: 95339168 bytes ->Google Chrome cache emptied: 230955097 bytes User: Default User ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 0 bytes User: LocalService ->Temp folder emptied: 65984 bytes ->Temporary Internet Files folder emptied: 33170 bytes ->FireFox cache emptied: 3524056 bytes User: NetworkService ->Temp folder emptied: 0 bytes ->Temporary Internet Files folder emptied: 33170 bytes %systemdrive% .tmp files removed: 0 bytes %systemroot% .tmp files removed: 0 bytes %systemroot%\System32 .tmp files removed: 0 bytes %systemroot%\System32\dllcache .tmp files removed: 0 bytes %systemroot%\System32\drivers .tmp files removed: 0 bytes Windows Temp folder emptied: 42072266 bytes RecycleBin emptied: 0 bytes Total Files Cleaned = 366,00 mb OTL by OldTimer - Version 3.1.24.0 log created on 11252010_111337 Files\Folders moved on Reboot... C:\WINDOWS\temp\abf58d82dd5c41b2492c2ab2e9ff78c6PSK_PLUGINS_0 moved successfully. Registry entries deleted on Reboot... [/log] Log z OTL: [log]OTL logfile created on: 2010-11-25 11:40:16 - Run 4 OTL by OldTimer - Version 3.1.24.0 Folder = D:\Pobieranie Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 64,00% Memory free 2,00 Gb Paging File | 2,00 Gb Available in Paging File | 73,00% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 14,65 Gb Total Space | 4,39 Gb Free Space | 29,99% Space Free | Partition Type: NTFS Drive D: | 97,16 Gb Total Space | 1,61 Gb Free Space | 1,66% Space Free | Partition Type: NTFS Drive E: | 4,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF Drive F: | 3,53 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF G: Drive not present or media not loaded Drive H: | 74,53 Gb Total Space | 0,08 Gb Free Space | 0,11% Space Free | Partition Type: NTFS I: Drive not present or media not loaded Computer Name: DAMIAN Current User Name: Damiano Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 60 Days Output = Standard [color=#E56717]========== Processes (All) ==========[/color] PRC - [2010-10-29 00:10:49 | 00,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2010-09-30 07:54:11 | 00,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe PRC - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe PRC - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe PRC - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe PRC - [2010-08-26 12:52:15 | 00,988,480 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe PRC - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\psksvc.exe PRC - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe PRC - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe PRC - [2010-05-28 13:42:32 | 00,225,600 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE PRC - [2010-05-14 10:44:46 | 00,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe PRC - [2010-04-22 18:29:12 | 00,107,776 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\WebProxy.exe PRC - [2010-04-01 10:16:20 | 00,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe PRC - [2010-02-23 12:09:34 | 00,111,872 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe PRC - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe PRC - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) -- c:\Program Files\Panda Security\Panda Global Protection 2011\FIREWALL\PSHost.exe PRC - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe PRC - [2009-08-25 22:57:18 | 00,332,048 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) -- C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe PRC - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe PRC - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrlS.exe PRC - [2008-06-27 13:23:00 | 00,091,392 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\SrvLoad.exe PRC - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe PRC - [2008-04-15 13:00:00 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe PRC - [2008-04-15 13:00:00 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe PRC - [2008-04-15 13:00:00 | 00,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe PRC - [2008-04-15 13:00:00 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe PRC - [2008-04-15 13:00:00 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe PRC - [2008-04-15 13:00:00 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe PRC - [2008-04-15 13:00:00 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe PRC - [2008-04-15 13:00:00 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPDEVMGMT] PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH] PRC - [2008-04-15 13:00:00 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe PRC - [2008-04-15 13:00:00 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe PRC - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Common Files\Panda Security\PavShld\PavPrSrv.exe PRC - [2007-10-17 15:02:50 | 01,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe PRC - [2007-03-11 21:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe PRC - [2007-03-11 21:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe PRC - [2007-03-11 21:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe PRC - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe PRC - [2005-01-12 03:01:32 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe PRC - [2004-08-03 23:44:26 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE PRC - [2004-08-03 23:44:20 | 00,975,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe [color=#E56717]========== Modules (All) ==========[/color] MOD - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe MOD - [2009-08-10 13:45:54 | 00,095,488 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavOEpl.dll MOD - [2009-03-30 18:22:58 | 00,518,400 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\PavSHook.dll MOD - [2008-04-15 13:00:00 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll MOD - [2008-04-15 13:00:00 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll MOD - [2008-04-15 13:00:00 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll MOD - [2008-04-15 13:00:00 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll MOD - [2008-04-15 13:00:00 | 00,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll MOD - [2008-04-15 13:00:00 | 00,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll MOD - [2008-04-15 13:00:00 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll MOD - [2008-04-15 13:00:00 | 00,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll MOD - [2008-04-15 13:00:00 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll MOD - [2008-04-15 13:00:00 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll MOD - [2008-04-15 13:00:00 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll MOD - [2008-04-15 13:00:00 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll MOD - [2008-04-15 13:00:00 | 00,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll MOD - [2008-04-15 13:00:00 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll MOD - [2008-04-15 13:00:00 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv MOD - [2008-04-15 13:00:00 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll MOD - [2008-04-15 13:00:00 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll MOD - [2008-04-15 13:00:00 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll MOD - [2008-04-15 13:00:00 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll MOD - [2008-04-15 13:00:00 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll MOD - [2007-07-28 02:15:16 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll MOD - [2007-02-08 10:53:40 | 00,107,568 | ---- | M] (Panda Software) -- C:\WINDOWS\system32\SYSTOOLS.DLL MOD - [2004-08-03 23:44:12 | 00,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll MOD - [2004-08-03 23:44:10 | 12,826,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll MOD - [2004-01-11 23:00:00 | 00,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll MOD - [2003-03-19 05:14:52 | 00,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCP71.DLL [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - [2010-10-16 19:35:00 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service) SRV - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe -- (TPSrv) SRV - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe -- (PAVFNSVR) SRV - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe -- (PskSvcRetail) SRV - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA) SRV - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe -- (PAVSRV) SRV - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) [Auto | Running] -- c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE -- (PSHost) SRV - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU) SRV - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) [Auto | Running] -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe -- (ActiveSMART Service) SRV - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe -- (Panda Software Controller) SRV - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe -- (PSIMSVC) SRV - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe -- (PavPrSrv) SRV - [2007-03-11 22:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc) SRV - [2007-03-11 21:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08) SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12) SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12) SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv) SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose) SRV - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Running] -- -- (PavTPK.sys) DRV - File not found [Kernel | On_Demand | Running] -- -- (PavSRK.sys) DRV - File not found [File_System | On_Demand | Running] -- -- (AvFlt) DRV - [2010-06-22 18:13:00 | 00,026,696 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\Drivers\pavboot.sys -- (pavboot) DRV - [2010-05-21 13:50:26 | 00,059,080 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\amm8651.sys -- (AmFSM) DRV - [2010-02-18 19:31:20 | 00,199,688 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\neti1642.sys -- (NETIMFLT01060042) DRV - [2010-02-18 19:31:18 | 00,076,296 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\APPFLT.SYS -- (APPFLT) DRV - [2010-01-18 19:13:01 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd) DRV - [2009-12-30 00:16:38 | 00,021,419 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x) DRV - [2009-11-12 12:48:56 | 00,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen) DRV - [2009-10-27 12:07:42 | 00,037,896 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv) DRV - [2009-09-25 14:54:08 | 00,046,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\wnmflt.sys -- (WNMFLT) DRV - [2009-09-25 14:54:06 | 00,159,112 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NETFLTDI.SYS -- (NETFLTDI) DRV - [2009-09-25 14:54:04 | 00,193,800 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idsflt.sys -- (IDSFLT) DRV - [2009-09-25 14:54:04 | 00,022,024 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fnetmon.sys -- (FNETMON) DRV - [2009-09-25 14:54:02 | 00,053,256 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dsaflt.sys -- (DSAFLT) DRV - [2009-09-14 16:18:22 | 00,163,336 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc) DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH) DRV - [2008-08-14 06:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs) DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv) DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink) DRV - [2008-04-14 22:30:58 | 00,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag) DRV - [2007-10-01 12:06:40 | 00,451,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73) DRV - [2007-03-08 05:20:50 | 00,021,568 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZius12.sys -- (HPZius12) DRV - [2007-03-08 05:20:49 | 00,016,496 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZipr12.sys -- (HPZipr12) DRV - [2007-03-08 05:20:48 | 00,049,920 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZid412.sys -- (HPZid412) DRV - [2005-12-10 03:06:00 | 03,536,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv) DRV - [2005-01-20 08:45:30 | 00,088,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus) DRV - [2004-07-01 14:49:00 | 00,626,977 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM) DRV - [2004-02-24 11:08:00 | 00,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS) DRV - [2004-02-09 15:27:00 | 00,097,857 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SI3114R.sys -- (SI3114r) DRV - [2003-10-15 10:28:00 | 00,010,240 | R--- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.Google.com IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.defaultengine: "" FF - prefs.js..browser.search.defaultenginename: "" FF - prefs.js..browser.search.defaulturl: "http://www3.iamwired.net/websearch.php?src=tops&search=" FF - prefs.js..browser.search.order.1: "" FF - prefs.js..browser.search.selectedEngine: "Google" FF - prefs.js..browser.search.useDBForOrder: true FF - prefs.js..browser.startup.homepage: "www.google.pl/" FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736 FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1 FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21 FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0 FF - prefs.js..extensions.enabledItems: smartbookmarksbar@remy.juteau:1.4.3 FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22 FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-11-07 11:00:04 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-11-17 11:20:30 | 00,000,000 | ---D | M] FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2009-12-31 10:27:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Extensions [2010-11-25 11:03:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions [2010-08-06 09:25:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\eafo3fflauncher@ea.com [2010-10-12 15:25:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\smartbookmarksbar@remy.juteau [2010-11-24 19:28:16 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions [2010-01-06 23:19:50 | 00,000,000 | ---D | M] (BrowserZinc) -- C:\Program Files\Mozilla Firefox\extensions\{52ED9673-0722-4A1D-B859-959FD56143DC} [2010-08-09 17:22:24 | 00,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1} [2010-08-09 23:01:49 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA} [2010-10-26 15:00:48 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [2010-01-12 22:40:55 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru [2010-09-15 03:50:38 | 00,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll [2010-10-22 10:06:19 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml [2010-01-06 23:19:51 | 00,002,401 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\browserzinc115.xml [2010-10-22 10:06:19 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml [2010-10-22 10:06:19 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml [2010-10-22 10:06:19 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml [2010-10-22 10:06:19 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml [2010-10-22 10:06:19 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.) O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.) O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated) O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.) O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.) O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found. O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated) O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE (Panda Security, S.L.) O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation) O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.) O4 - HKLM..\Run: [KernelFaultCheck] File not found O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation) O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation) O4 - HKLM..\Run: [NWEReboot] File not found O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe () O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.) O4 - HKLM..\Run: [SCANINICIO] C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe (Panda Security, S.L.) O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.) O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [AdobeBridge] File not found O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd) O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Google Update] C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.) O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Skrybot] File not found O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.) O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - HKU\S-1-5-20..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.) O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.) O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O7 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145 O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation) O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation) O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.) O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation) O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone. O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object) O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.30.129.149 192.168.0.1 O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation) O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation) O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies) O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.) O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation) O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation) O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\WINDOWS\System32\avldr.dll (On-Access Anti-Malware Scanner Sync) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O24 - Desktop WallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O24 - Desktop BackupWallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2009-12-29 22:06:12 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell - "" = AutoRun O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found O34 - HKLM BootExecute: (autocheck autochk *) - File not found O35 - comfile [open] -- "%1" %* O35 - exefile [open] -- "%1" %* [color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color] [2010-11-25 11:08:15 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro [2010-11-25 11:08:14 | 00,000,000 | ---D | C] -- C:\rsit [2010-11-24 19:57:45 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache [2010-11-24 19:57:15 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages [2010-11-24 19:56:58 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstdecod.dll [2010-11-24 19:56:57 | 01,962,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quartz.dll [2010-11-24 19:56:57 | 01,798,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qedit.dll [2010-11-24 19:56:57 | 01,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvidctl.dll [2010-11-24 19:56:57 | 00,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll [2010-11-24 19:56:57 | 00,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax [2010-11-24 19:56:57 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax [2010-11-24 19:56:57 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qasf.dll [2010-11-24 19:56:57 | 00,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msdv.sys [2010-11-24 19:56:57 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax [2010-11-24 19:56:57 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax [2010-11-24 19:56:57 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys [2010-11-24 19:56:57 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax [2010-11-24 19:56:57 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksolay.ax [2010-11-24 19:56:57 | 00,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys [2010-11-24 19:56:56 | 00,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dramp.dll [2010-11-24 19:56:56 | 00,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdvd.dll [2010-11-24 19:56:56 | 00,436,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim.dll [2010-11-24 19:56:56 | 00,350,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3drm.dll [2010-11-24 19:56:56 | 00,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdv.dll [2010-11-24 19:56:56 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qcap.dll [2010-11-24 19:56:56 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmime.dll [2010-11-24 19:56:56 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\devenum.dll [2010-11-24 19:56:56 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.dll [2010-11-24 19:56:56 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmsynth.dll [2010-11-24 19:56:56 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmstyle.dll [2010-11-24 19:56:56 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmcompos.dll [2010-11-24 19:56:56 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dxof.dll [2010-11-24 19:56:56 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dpmesh.dll [2010-11-24 19:56:56 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmloader.dll [2010-11-24 19:56:56 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmband.dll [2010-11-24 19:56:56 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dswave.dll [2010-11-24 19:56:56 | 00,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxapi.sys [2010-11-24 19:56:55 | 01,201,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8.dll [2010-11-24 19:56:55 | 00,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput8.dll [2010-11-24 19:56:55 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmscript.dll [2010-11-24 19:56:54 | 00,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe [2010-11-24 19:56:54 | 00,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmoprp.dll [2010-11-24 19:56:54 | 00,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvoice.dll [2010-11-24 19:56:54 | 00,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmo.dll [2010-11-24 19:56:54 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvvox.dll [2010-11-24 19:56:54 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe [2010-11-24 19:56:54 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdllreg.exe [2010-11-24 19:56:54 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvacm.dll [2010-11-24 19:56:53 | 01,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound3d.dll [2010-11-24 19:56:53 | 01,189,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx8vb.dll [2010-11-24 19:56:53 | 00,723,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnet.dll [2010-11-24 19:56:53 | 00,648,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput.dll [2010-11-24 19:56:53 | 00,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx7vb.dll [2010-11-24 19:56:53 | 00,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diactfrm.dll [2010-11-24 19:56:53 | 00,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound.dll [2010-11-24 19:56:53 | 00,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddraw.dll [2010-11-24 19:56:53 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplayx.dll [2010-11-24 19:56:53 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gcdef.dll [2010-11-24 19:56:53 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\joy.cpl [2010-11-24 19:56:53 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpwsockx.dll [2010-11-24 19:56:53 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpmodemx.dll [2010-11-24 19:56:53 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhupnp.dll [2010-11-24 19:56:53 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dimap.dll [2010-11-24 19:56:53 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhpast.dll [2010-11-24 19:56:53 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pid.dll [2010-11-24 19:56:53 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe [2010-11-24 19:56:53 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddrawex.dll [2010-11-24 19:56:53 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe [2010-11-24 19:56:53 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8thk.dll [2010-11-24 19:56:53 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnlobby.dll [2010-11-24 19:56:53 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnaddr.dll [2010-11-24 19:56:52 | 00,797,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim700.dll [2010-11-18 13:16:06 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Damiano\Recent [2010-11-17 22:50:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-11-17 22:50:03 | 00,000,000 | ---D | C] -- C:\Program Files\HDD Regenerator [2010-11-17 21:22:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Mozilla [2010-11-17 21:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Mozilla [2010-11-17 21:21:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft [2010-11-17 21:21:31 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART [2010-11-17 21:21:31 | 00,000,000 | ---D | C] -- C:\Program Files\ActiveSMART 2.8 [2010-11-07 11:18:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Panda Security [2010-11-07 11:15:18 | 00,193,800 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\idsflt.sys [2010-11-07 11:15:18 | 00,053,256 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\dsaflt.sys [2010-11-07 11:15:18 | 00,046,856 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\wnmflt.sys [2010-11-07 11:15:12 | 00,159,112 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\NETFLTDI.SYS [2010-11-07 11:15:12 | 00,076,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\APPFLT.SYS [2010-11-07 11:15:12 | 00,022,024 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\fnetmon.sys [2010-11-07 11:15:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup [2010-11-07 11:15:08 | 00,026,696 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys [2010-11-07 11:14:59 | 00,054,832 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\pavcpl.cpl [2010-11-07 11:14:54 | 00,446,464 | ---- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\HHActiveX.dll [2010-11-07 11:14:48 | 00,193,792 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\TpUtil.dll [2010-11-07 11:14:48 | 00,107,568 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\SYSTOOLS.DLL [2010-11-07 11:14:48 | 00,087,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavLspHook.dll [2010-11-07 11:14:48 | 00,055,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\pavipc.dll [2010-11-07 11:14:47 | 00,518,400 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavSHook.dll [2010-11-07 11:14:44 | 00,199,688 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\neti1642.sys [2010-11-07 11:14:42 | 00,059,080 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\amm8651.sys [2010-11-07 11:14:42 | 00,055,552 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\WINDOWS\System32\avldr.dll [2010-11-07 11:14:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PAV [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security [2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2010-11-07 11:12:49 | 00,163,336 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\PavProc.sys [2010-11-07 11:12:49 | 00,037,896 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\ShlDrv51.sys [2010-11-07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Panda Security [2010-11-04 01:15:04 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll64X.dll [2010-11-04 00:40:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\HP [2010-11-04 00:40:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Moje zeskanowane obrazy [2010-11-04 00:33:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HP [2010-11-04 00:29:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG [2010-11-04 00:28:11 | 00,049,920 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZid412.sys [2010-11-04 00:28:11 | 00,016,496 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZipr12.sys [2010-11-04 00:28:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard [2010-11-04 00:27:55 | 00,271,704 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll [2010-11-04 00:27:53 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll5ha.dll [2010-11-04 00:27:46 | 00,021,568 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZius12.sys [2010-11-04 00:27:34 | 00,675,840 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax3.dll [2010-11-04 00:27:34 | 00,569,344 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl3.dll [2010-11-04 00:27:34 | 00,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll [2010-11-04 00:27:34 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll [2010-11-04 00:27:34 | 00,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst10.dll [2010-11-04 00:26:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY [2010-11-04 00:25:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData [2010-11-04 00:25:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant [2010-11-04 00:25:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP [2010-11-04 00:24:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\HP [2010-11-04 00:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard [2010-11-04 00:24:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard [2010-11-04 00:23:35 | 00,000,000 | ---D | C] -- C:\Program Files\HP [2010-11-04 00:23:17 | 00,000,000 | -H-D | C] -- C:\Config.Msi [2010-10-26 15:00:48 | 00,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe [2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe [2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe [2010-10-16 19:47:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\FLEXnet [2010-10-16 19:42:13 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player [2010-10-16 19:35:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared [2010-10-16 16:48:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Ableton [2010-10-16 16:48:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton [2010-10-16 16:48:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton [2010-10-10 17:19:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Application Data [2010-10-10 13:01:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe [2010-10-10 12:56:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR [2010-10-09 17:12:41 | 00,000,000 | ---D | C] -- C:\Program Files\Audio Phonics, Inc [2010-10-09 17:12:24 | 00,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe [2010-10-09 17:12:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\WINDOWS [2010-10-09 17:09:18 | 00,000,000 | ---D | C] -- C:\Program Files\AP Tuner [2010-10-09 14:43:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Anvsoft [2010-10-09 14:43:23 | 00,000,000 | ---D | C] -- C:\Program Files\AnvSoft [2010-10-07 09:54:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe [2010-10-06 22:31:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\My Games [2010-10-06 22:31:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\My Games [2010-10-06 22:26:42 | 00,000,000 | ---D | C] -- C:\Program Files\2K Games [2010-09-28 22:11:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-09-26 14:19:45 | 00,000,000 | ---D | C] -- C:\Program Files\Skrybot [2010-04-29 10:41:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET [2009-12-29 22:07:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft [2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft [2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft [color=#E56717]========== Files - Modified Within 60 Days ==========[/color] [2010-11-25 11:35:13 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls.bck [2010-11-25 11:35:13 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls [2010-11-25 11:35:13 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck [2010-11-25 11:35:13 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG [2010-11-25 11:35:13 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg.bck [2010-11-25 11:35:13 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg [2010-11-25 11:35:13 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt.bck [2010-11-25 11:35:13 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt [2010-11-25 11:35:13 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg.bck [2010-11-25 11:35:13 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg [2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg.bck [2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg [2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg.bck [2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg [2010-11-25 11:32:33 | 00,177,995 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml [2010-11-25 11:32:03 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt.bck [2010-11-25 11:32:03 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt [2010-11-25 11:31:30 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg.bck [2010-11-25 11:31:30 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg [2010-11-25 11:31:18 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT [2010-11-25 11:31:13 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat [2010-11-25 11:31:09 | 16,101,29408 | -HS- | M] () -- C:\hiberfil.sys [2010-11-25 11:08:16 | 00,255,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck [2010-11-25 11:08:16 | 00,255,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT [2010-11-25 11:04:49 | 04,718,592 | ---- | M] () -- C:\Documents and Settings\Damiano\ntuser.dat [2010-11-25 10:53:00 | 00,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job [2010-11-24 22:37:05 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Damiano\ntuser.ini [2010-11-24 21:28:36 | 00,062,976 | ---- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2010-11-24 19:59:46 | 00,000,496 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Skrót do CoD2SP_s.lnk [2010-11-24 19:56:25 | 00,000,256 | ---- | M] () -- C:\WINDOWS\game.ini [2010-11-24 18:23:54 | 00,008,627 | ---- | M] () -- C:\WINDOWS\System32\PAV_FOG.OPC [2010-11-22 22:53:00 | 00,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job [2010-11-19 10:54:40 | 02,430,226 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg [2010-11-19 10:35:36 | 02,111,570 | -H-- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\IconCache.db [2010-11-18 22:23:39 | 05,963,776 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3 [2010-11-18 13:29:53 | 00,000,636 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk [2010-11-17 22:50:06 | 00,001,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk [2010-11-17 21:21:32 | 00,000,748 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk [2010-11-17 11:20:30 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-11-15 19:51:43 | 00,138,968 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr [2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe [2010-11-14 19:56:49 | 00,001,113 | ---- | M] () -- C:\WINDOWS\win.ini [2010-11-12 19:06:35 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl [2010-11-07 13:55:23 | 00,002,318 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Google Chrome.lnk [2010-11-07 13:35:07 | 00,008,627 | ---- | M] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC [2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt.bck [2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt [2010-11-07 11:16:28 | 00,451,352 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat [2010-11-07 11:16:28 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat [2010-11-07 11:16:28 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat [2010-11-07 11:16:28 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat [2010-11-07 11:16:26 | 00,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI [2010-11-07 11:15:23 | 00,000,262 | ---- | M] () -- C:\WINDOWS\System32\PavCPL.dat [2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job [2010-11-07 11:07:36 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT [2010-11-06 19:38:27 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat [2010-11-04 00:28:47 | 00,153,522 | ---- | M] () -- C:\WINDOWS\hpoins14.dat [2010-11-04 00:26:27 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk [2010-11-04 00:26:03 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk [2010-11-04 00:25:31 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-04 00:25:15 | 00,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-10-30 17:36:28 | 00,000,809 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk [2010-10-25 21:55:37 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx [2010-10-16 20:38:07 | 00,000,647 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Adobe Flash CS4 Professional.lnk [2010-10-13 21:08:11 | 00,002,234 | ---- | M] () -- C:\Documents and Settings\Damiano\Moje dokumenty\PDVD_MediaDisc.PlayList [2010-10-09 17:15:52 | 00,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk [2010-10-06 22:35:42 | 00,000,692 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Colonization.lnk [2010-10-04 20:12:27 | 00,029,113 | ---- | M] () -- C:\Documents and Settings\Damiano\Moje dokumenty\Kontakty_10703490.xml [2010-09-29 10:06:39 | 01,582,904 | ---- | M] () -- C:\WINDOWS\WANEUninstaller.exe [2010-09-29 10:06:37 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Worms Armageddon.lnk [color=#E56717]========== Files Created - No Company Name ==========[/color] [2010-11-24 19:59:46 | 00,000,496 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Skrót do CoD2SP_s.lnk [2010-11-24 19:56:58 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll [2010-11-24 19:56:58 | 00,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax [2010-11-24 19:56:57 | 00,733,184 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll [2010-11-24 19:56:57 | 00,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax [2010-11-24 19:56:57 | 00,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll [2010-11-24 19:56:56 | 00,136,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax [2010-11-24 19:56:56 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll [2010-11-24 19:56:56 | 00,034,304 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mciqtz32.dll [2010-11-24 19:56:25 | 00,000,256 | ---- | C] () -- C:\WINDOWS\game.ini [2010-11-19 10:54:40 | 02,430,226 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg [2010-11-18 22:04:57 | 05,963,776 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3 [2010-11-18 13:29:53 | 00,000,636 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk [2010-11-17 22:50:06 | 00,001,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk [2010-11-17 21:21:32 | 00,000,748 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk [2010-11-07 13:04:54 | 00,008,627 | ---- | C] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC [2010-11-07 11:31:11 | 00,008,627 | ---- | C] () -- C:\WINDOWS\System32\PAV_FOG.OPC [2010-11-07 11:15:23 | 00,000,262 | ---- | C] () -- C:\WINDOWS\System32\PavCPL.dat [2010-11-07 11:15:20 | 00,255,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck [2010-11-07 11:15:20 | 00,255,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT [2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck [2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG [2010-11-07 11:15:11 | 00,000,498 | ---- | C] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job [2010-11-06 20:08:19 | 00,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm [2010-11-06 20:08:19 | 00,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm [2010-11-06 20:08:19 | 00,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm [2010-11-06 20:08:19 | 00,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm [2010-11-06 20:08:18 | 00,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm [2010-11-06 20:08:18 | 00,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm [2010-11-06 20:08:18 | 00,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm [2010-11-06 20:08:18 | 00,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm [2010-11-06 20:08:18 | 00,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm [2010-11-06 20:08:18 | 00,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm [2010-11-06 20:08:18 | 00,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm [2010-11-06 20:08:18 | 00,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm [2010-11-06 20:08:18 | 00,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm [2010-11-06 20:08:18 | 00,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm [2010-11-06 20:08:18 | 00,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm [2010-11-06 20:08:18 | 00,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm [2010-11-06 20:08:18 | 00,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm [2010-11-06 20:08:18 | 00,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm [2010-11-06 20:08:18 | 00,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm [2010-11-06 20:08:18 | 00,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm [2010-11-06 20:08:18 | 00,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm [2010-11-06 20:08:18 | 00,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm [2010-11-06 20:08:18 | 00,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm [2010-11-06 20:08:18 | 00,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm [2010-11-06 20:08:17 | 00,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm [2010-11-06 20:08:17 | 00,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm [2010-11-06 20:08:17 | 00,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm [2010-11-06 20:08:17 | 00,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm [2010-11-06 20:08:17 | 00,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm [2010-11-06 20:08:17 | 00,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm [2010-11-06 20:08:17 | 00,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm [2010-11-06 20:08:17 | 00,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm [2010-11-06 20:08:17 | 00,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm [2010-11-06 20:08:17 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm [2010-11-06 20:08:17 | 00,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm [2010-11-06 20:08:17 | 00,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm [2010-11-06 20:08:17 | 00,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm [2010-11-06 20:08:17 | 00,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm [2010-11-06 20:08:17 | 00,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm [2010-11-06 20:08:17 | 00,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm [2010-11-06 20:08:17 | 00,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm [2010-11-06 20:08:17 | 00,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm [2010-11-06 20:08:17 | 00,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm [2010-11-06 20:08:17 | 00,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm [2010-11-06 20:08:17 | 00,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm [2010-11-06 20:08:17 | 00,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm [2010-11-06 20:08:17 | 00,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm [2010-11-06 20:08:17 | 00,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm [2010-11-06 20:08:16 | 00,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm [2010-11-06 20:08:16 | 00,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm [2010-11-06 20:08:16 | 00,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm [2010-11-06 20:08:16 | 00,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm [2010-11-06 20:08:16 | 00,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm [2010-11-06 20:08:16 | 00,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm [2010-11-06 20:08:16 | 00,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm [2010-11-06 20:08:16 | 00,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm [2010-11-06 20:08:16 | 00,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm [2010-11-06 20:08:16 | 00,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm [2010-11-06 20:08:16 | 00,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm [2010-11-06 20:08:16 | 00,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm [2010-11-06 20:08:16 | 00,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm [2010-11-06 20:08:16 | 00,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm [2010-11-06 20:08:16 | 00,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm [2010-11-06 20:08:16 | 00,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm [2010-11-06 20:08:16 | 00,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm [2010-11-06 20:08:16 | 00,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm [2010-11-06 20:08:16 | 00,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm [2010-11-06 20:08:16 | 00,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm [2010-11-06 20:08:16 | 00,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm [2010-11-06 20:08:16 | 00,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm [2010-11-06 20:08:16 | 00,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm [2010-11-06 20:08:16 | 00,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm [2010-11-06 20:08:16 | 00,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm [2010-11-06 20:08:16 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm [2010-11-06 20:08:16 | 00,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm [2010-11-06 20:08:15 | 00,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm [2010-11-06 20:08:15 | 00,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm [2010-11-06 20:08:15 | 00,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm [2010-11-06 20:08:15 | 00,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm [2010-11-06 20:08:15 | 00,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm [2010-11-06 20:08:15 | 00,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm [2010-11-06 20:08:15 | 00,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm [2010-11-06 20:08:15 | 00,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm [2010-11-06 20:08:15 | 00,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm [2010-11-06 20:08:15 | 00,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm [2010-11-06 20:08:15 | 00,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm [2010-11-06 20:08:15 | 00,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm [2010-11-06 20:08:15 | 00,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm [2010-11-06 20:08:15 | 00,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm [2010-11-06 20:08:15 | 00,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm [2010-11-06 20:08:15 | 00,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm [2010-11-06 20:08:15 | 00,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm [2010-11-06 20:08:15 | 00,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm [2010-11-06 20:08:14 | 00,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm [2010-11-06 20:08:14 | 00,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm [2010-11-06 20:08:14 | 00,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm [2010-11-06 20:08:14 | 00,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm [2010-11-06 20:08:14 | 00,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm [2010-11-06 20:08:14 | 00,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm [2010-11-06 20:08:14 | 00,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm [2010-11-06 20:08:14 | 00,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm [2010-11-06 20:08:14 | 00,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm [2010-11-06 20:08:14 | 00,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm [2010-11-06 20:08:14 | 00,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm [2010-11-06 20:08:14 | 00,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm [2010-11-06 20:08:14 | 00,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm [2010-11-06 20:08:14 | 00,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm [2010-11-06 20:08:14 | 00,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm [2010-11-06 20:08:14 | 00,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm [2010-11-06 20:08:14 | 00,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm [2010-11-06 20:08:14 | 00,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm [2010-11-06 20:08:14 | 00,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm [2010-11-06 20:08:14 | 00,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm [2010-11-06 20:08:14 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm [2010-11-06 20:08:14 | 00,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm [2010-11-06 20:08:14 | 00,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm [2010-11-06 19:38:27 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat [2010-11-04 00:26:27 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk [2010-11-04 00:26:03 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk [2010-11-04 00:25:31 | 00,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk [2010-11-04 00:25:15 | 00,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk [2010-11-04 00:21:52 | 00,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log [2010-11-04 00:21:49 | 00,153,522 | ---- | C] () -- C:\WINDOWS\hpoins14.dat [2010-11-04 00:21:49 | 00,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat [2010-10-30 17:36:28 | 00,000,809 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk [2010-10-25 21:55:37 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx [2010-10-17 20:01:40 | 04,718,592 | ---- | C] () -- C:\Documents and Settings\Damiano\ntuser.dat [2010-10-16 20:38:07 | 00,000,647 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Adobe Flash CS4 Professional.lnk [2010-10-13 21:08:11 | 00,002,234 | ---- | C] () -- C:\Documents and Settings\Damiano\Moje dokumenty\PDVD_MediaDisc.PlayList [2010-10-07 09:55:09 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk [2010-10-06 22:35:42 | 00,000,692 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Colonization.lnk [2010-10-04 20:12:27 | 00,029,113 | ---- | C] () -- C:\Documents and Settings\Damiano\Moje dokumenty\Kontakty_10703490.xml [2010-09-29 10:06:37 | 01,582,904 | ---- | C] () -- C:\WINDOWS\WANEUninstaller.exe [2010-09-29 10:06:37 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Worms Armageddon.lnk [2010-08-07 14:33:37 | 00,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini [2010-08-06 09:27:39 | 00,139,152 | ---- | C] () -- C:\Documents and Settings\Damiano\Dane aplikacji\PnkBstrK.sys [2010-08-06 09:27:39 | 00,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys [2010-05-22 12:51:08 | 00,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys [2010-01-18 19:13:01 | 00,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys [2010-01-16 10:30:32 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll [2010-01-16 10:30:27 | 00,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll [2010-01-16 10:29:53 | 00,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll [2010-01-16 10:29:52 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll [2010-01-06 22:48:26 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys [2010-01-06 21:28:47 | 00,000,172 | ---- | C] () -- C:\WINDOWS\RtlRack.ini [2010-01-06 21:20:58 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll [2010-01-06 21:20:58 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini [2010-01-01 19:44:58 | 00,062,976 | ---- | C] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2005-12-10 03:06:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll [2005-12-10 03:06:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll [2005-12-10 03:06:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll [2005-12-10 03:06:00 | 00,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll [2005-12-10 03:06:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll [2005-12-10 03:06:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll [2005-12-10 03:06:00 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll [color=#E56717]========== LOP Check ==========[/color] [2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton [2010-11-25 09:23:34 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART [2010-09-28 22:11:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software [2010-11-07 11:15:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup [2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited [2010-01-18 19:12:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite [2010-03-14 19:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET [2010-05-08 00:21:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10 [2010-02-18 00:51:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla [2010-01-18 19:10:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM [2010-11-07 11:15:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security [2010-10-10 18:07:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe [2010-06-05 20:28:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive [2010-11-23 13:24:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP [2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton [2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Canneverbe Limited [2010-01-18 19:15:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\DAEMON Tools Lite [2010-09-27 15:55:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Gadu-Gadu 10 [2010-10-09 10:15:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\ipla [2010-01-23 23:58:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Leadertech [2010-01-18 19:10:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\OpenFM [2010-11-07 11:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security [2010-06-05 20:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Sports Interactive [2010-09-04 20:56:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Tlen.pl [2010-11-25 11:42:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent [2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\Tasks\Podstawowe porządkowanie.job [color=#E56717]========== Purity Check ==========[/color] < End of report > [/log] Log RSIT: [log]Logfile of random's system information tool 1.08 (written by random/random) Run by Damiano at 2010-11-25 11:44:33 Microsoft Windows XP Professional Dodatek Service Pack 3 System drive C: has 4 GB (30%) free of 15 GB Total RAM: 1535 MB (64% free) Logfile of Trend Micro HijackThis v2.0.4 Scan saved at 11:44:48, on 2010-11-25 Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600) MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512) Boot mode: Normal Running processes: C:\WINDOWS\System32\smss.exe C:\WINDOWS\system32\winlogon.exe C:\WINDOWS\system32\services.exe C:\WINDOWS\system32\lsass.exe C:\WINDOWS\system32\svchost.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2011\WebProxy.exe C:\WINDOWS\system32\spoolsv.exe C:\Program Files\ActiveSMART 2.8\ASmartService.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Java\jre6\bin\jqs.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\CDBurnerXP\NMSAccessU.exe C:\WINDOWS\system32\nvsvc32.exe C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe C:\WINDOWS\System32\svchost.exe C:\WINDOWS\system32\PnkBstrA.exe c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe C:\WINDOWS\system32\svchost.exe C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe C:\WINDOWS\Explorer.EXE C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe C:\WINDOWS\notepad.exe C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe C:\Program Files\Common Files\Java\Java Update\jusched.exe C:\WINDOWS\System32\svchost.exe C:\Program Files\HP\HP Software Update\HPWuSchd2.exe C:\WINDOWS\system32\RUNDLL32.EXE C:\WINDOWS\system32\ctfmon.exe C:\Program Files\uTorrent\uTorrent.exe C:\Program Files\DAEMON Tools Lite\DTLite.exe C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe C:\Program Files\RALINK\Common\RaUI.exe C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe C:\Program Files\Mozilla Firefox\firefox.exe C:\Program Files\Panda Security\Panda Global Protection 2011\SRVLOAD.EXE C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe C:\WINDOWS\notepad.exe D:\Pobieranie\RSIT.exe C:\Program Files\trend micro\Damiano.exe C:\Program Files\Panda Security\Panda Global Protection 2011\avciman.exe C:\Program Files\Panda Security\Panda Global Protection 2011\psimreal.exe R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe" O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe" O4 - HKLM\..\Run: [nwiz] nwiz.exe /install O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe" O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe" O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe" O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe" O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE" /s O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe" O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe" O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA LOKALNA') O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA') O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM') O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM') O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user') O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user') O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000 O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll O9 - Extra button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~1\Office12\GR99D3~1.DLL O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll O23 - Service: ActiveSMART Service - Ariolic Software, Ltd. (http://www.ariolic.com) - C:\Program Files\ActiveSMART 2.8\ASmartService.exe O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe -- End of file - 10655 bytes ======Scheduled tasks folder====== C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job C:\WINDOWS\tasks\Podstawowe porządkowanie.job ======Registry dump====== [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}] HP Print Enhancer - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll [2007-03-02 1298024] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}] HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}] Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}] Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}] Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}] Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-15 41760] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}] JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-09-15 79648] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run] "GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016] "NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072] "nwiz"=nwiz.exe /install [] "RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-01-12 32768] "SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552] "Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760] "Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288] "AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712] "HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152] "NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-12-10 86016] "APVXDWIN"=C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE [2010-08-26 988480] "SCANINICIO"=C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe [2010-06-11 68928] "NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-12-10 7311360] "KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k [] "NWEReboot"= [] [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run] "ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360] "uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-30 328056] "Google Update"=C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-07-27 136176] "Skrybot"= [] "AdobeBridge"= [] "DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10] C:\Program Files\Gadu-Gadu 10\gg.exe [2010-10-07 12661344] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon] C:\WINDOWS\system32\NvCpl.dll [2005-12-10 7311360] [HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype] C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168] C:\Documents and Settings\All Users\Menu Start\Programy\Autostart HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr] C:\WINDOWS\system32\avldr.dll [2010-03-24 55552] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks] "{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail] [HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System] "dontdisplaylastusername"=0 "legalnoticecaption"= "legalnoticetext"= "shutdownwithoutlogon"=1 "undockwithoutlogon"=1 [HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer] "NoDriveTypeAutoRun"=145 [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" "C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent" "D:\GryNWN2\nwn2main.exe"="D:\GryNWN2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main" "D:\GryNWN2\nwn2main_amdxp.exe"="D:\GryNWN2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD" "D:\GryNWN2\nwupdate.exe"="D:\GryNWN2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater" "D:\GryNWN2\nwn2server.exe"="D:\GryNWN2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server" "D:\Gry\NeverwinterNights2\nwn2main.exe"="D:\Gry\NeverwinterNights2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main" "D:\Gry\NeverwinterNights2\nwn2main_amdxp.exe"="D:\Gry\NeverwinterNights2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD" "D:\Gry\NeverwinterNights2\nwupdate.exe"="D:\Gry\NeverwinterNights2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater" "D:\Gry\NeverwinterNights2\nwn2server.exe"="D:\Gry\NeverwinterNights2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server" "D:\Gry\Sports Interactive\Football Manager 2010\fm.exe"="D:\Gry\Sports Interactive\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010" "C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA" "C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB" "C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager" "D:\Gry\Sid Meier's Civilization IV Colonization\Colonization.exe"="D:\Gry\Sid Meier's Civilization IV Colonization\Colonization.exe:*:Enabled:Sid Meier's Civilization IV Colonization" "C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype" "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4" [HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list] "%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000" "%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019" ======File associations====== .js - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %* .vbs - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %* ======List of files/folders created in the last 1 months====== 2010-11-25 11:08:15 ----D---- C:\Program Files\trend micro 2010-11-25 11:08:14 ----D---- C:\rsit 2010-11-24 19:57:45 ----SHD---- C:\WINDOWS\ftpcache 2010-11-24 19:57:15 ----D---- C:\WINDOWS\RegisteredPackages 2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\psisdecd.dll 2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys 2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\streamip.sys 2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\slip.sys 2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\mstee.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\msdv.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\mpe.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys 2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys 2010-11-24 19:56:54 ----A---- C:\WINDOWS\system32\dxdllreg.exe 2010-11-24 19:56:25 ----A---- C:\WINDOWS\game.ini 2010-11-17 22:50:23 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP 2010-11-17 22:50:03 ----D---- C:\Program Files\HDD Regenerator 2010-11-17 21:21:31 ----HD---- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART 2010-11-17 21:21:31 ----D---- C:\Program Files\ActiveSMART 2.8 2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\wnmflt.sys 2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\idsflt.sys 2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\dsaflt.sys 2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\NETFLTDI.SYS 2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\fnetmon.sys 2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\APPFLT.SYS 2010-11-07 11:15:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Backup 2010-11-07 11:15:08 ----A---- C:\WINDOWS\system32\drivers\pavboot.sys 2010-11-07 11:14:54 ----A---- C:\WINDOWS\system32\HHActiveX.dll 2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\TpUtil.dll 2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL 2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\PavLspHook.dll 2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\pavipc.dll 2010-11-07 11:14:47 ----A---- C:\WINDOWS\system32\PavSHook.dll 2010-11-07 11:14:44 ----A---- C:\WINDOWS\system32\drivers\neti1642.sys 2010-11-07 11:14:42 ----D---- C:\WINDOWS\system32\PAV 2010-11-07 11:14:42 ----A---- C:\WINDOWS\system32\drivers\amm8651.sys 2010-11-07 11:14:42 ----A---- C:\WINDOWS\system32\avldr.dll 2010-11-07 11:14:41 ----D---- C:\Program Files\Panda Security 2010-11-07 11:14:41 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security 2010-11-07 11:14:41 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security 2010-11-07 11:12:49 ----A---- C:\WINDOWS\system32\drivers\ShlDrv51.sys 2010-11-07 11:12:49 ----A---- C:\WINDOWS\system32\drivers\PavProc.sys 2010-11-07 11:10:59 ----D---- C:\Program Files\Common Files\Panda Security 2010-11-04 01:15:04 ----A---- C:\WINDOWS\system32\hpzll64X.dll 2010-11-04 00:33:59 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\HP 2010-11-04 00:29:26 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG 2010-11-04 00:28:11 ----RA---- C:\WINDOWS\system32\drivers\HPZipr12.sys 2010-11-04 00:28:11 ----RA---- C:\WINDOWS\system32\drivers\HPZid412.sys 2010-11-04 00:28:04 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard 2010-11-04 00:27:55 ----A---- C:\WINDOWS\system32\hpzids01.dll 2010-11-04 00:27:53 ----A---- C:\WINDOWS\system32\hpzll5ha.dll 2010-11-04 00:27:46 ----RA---- C:\WINDOWS\system32\drivers\HPZius12.sys 2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hppldcoi.dll 2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpowiax3.dll 2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpovst10.dll 2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpotscl3.dll 2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\difxapi.dll 2010-11-04 00:27:33 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys 2010-11-04 00:26:03 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY 2010-11-04 00:25:58 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData 2010-11-04 00:25:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant 2010-11-04 00:25:05 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HP 2010-11-04 00:24:56 ----D---- C:\Program Files\Common Files\HP 2010-11-04 00:24:43 ----D---- C:\Program Files\Hewlett-Packard 2010-11-04 00:24:34 ----D---- C:\Program Files\Common Files\Hewlett-Packard 2010-11-04 00:23:35 ----D---- C:\Program Files\HP 2010-11-04 00:23:32 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys 2010-11-04 00:23:17 ----HD---- C:\Config.Msi 2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\javaws.exe 2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\javaw.exe 2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\java.exe ======List of files/folders modified in the last 1 months====== 2010-11-25 11:44:46 ----D---- C:\WINDOWS\Temp 2010-11-25 11:44:45 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent 2010-11-25 11:44:18 ----D---- C:\WINDOWS\system32\CatRoot2 2010-11-25 11:35:13 ----D---- C:\WINDOWS\system32\drivers\etc 2010-11-25 11:35:13 ----D---- C:\WINDOWS\system32\drivers 2010-11-25 11:33:33 ----D---- C:\WINDOWS\Prefetch 2010-11-25 11:31:38 ----D---- C:\WINDOWS\system32 2010-11-25 11:08:15 ----D---- C:\Program Files 2010-11-25 11:07:12 ----D---- C:\Program Files\Common Files 2010-11-25 09:35:34 ----HD---- C:\WINDOWS\inf 2010-11-25 09:34:39 ----D---- C:\WINDOWS 2010-11-24 22:37:08 ----A---- C:\WINDOWS\SchedLgU.Txt 2010-11-24 19:57:34 ----HD---- C:\Program Files\InstallShield Installation Information 2010-11-24 19:57:14 ----D---- C:\WINDOWS\system32\dllcache 2010-11-24 19:56:46 ----D---- C:\WINDOWS\system32\DirectX 2010-11-24 19:56:25 ----SHD---- C:\WINDOWS\Installer 2010-11-24 19:17:06 ----D---- C:\Program Files\Common Files\InstallShield 2010-11-18 13:18:35 ----SD---- C:\WINDOWS\Tasks 2010-11-18 13:16:06 ----D---- C:\WINDOWS\Minidump 2010-11-15 19:51:34 ----A---- C:\WINDOWS\system32\PnkBstrB.exe 2010-11-14 19:56:49 ----A---- C:\WINDOWS\win.ini 2010-11-14 08:59:20 ----D---- C:\Program Files\Microsoft Silverlight 2010-11-13 20:36:04 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft 2010-11-07 23:00:57 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\Adobe 2010-11-07 11:16:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI 2010-11-06 22:32:18 ----RD---- C:\WINDOWS\Web 2010-11-06 21:20:01 ----D---- C:\Program Files\PowerStrip 2010-11-06 21:18:29 ----D---- C:\Program Files\Skrybot 2010-11-06 20:17:02 ----D---- C:\WINDOWS\Help 2010-11-06 20:09:20 ----D---- C:\WINDOWS\nview 2010-11-06 20:08:26 ----D---- C:\WINDOWS\nvidia icons 2010-11-06 20:07:58 ----D---- C:\WINDOWS\system32\ReinstallBackups 2010-11-04 01:14:54 ----DC---- C:\WINDOWS\system32\DRVSTORE 2010-11-04 00:25:36 ----D---- C:\WINDOWS\WinSxS 2010-11-04 00:24:47 ----D---- C:\WINDOWS\twain_32 2010-11-02 10:49:10 ----D---- C:\Program Files\Mozilla Firefox 2010-10-30 17:35:58 ----D---- C:\Program Files\AP Tuner 2010-10-29 12:22:59 ----D---- C:\Program Files\CDBurnerXP 2010-10-26 20:02:52 ----D---- C:\Program Files\Gadu-Gadu 10 2010-10-26 15:00:43 ----D---- C:\Program Files\Java ======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2005-01-20 88960] R0 pavboot;Panda boot driver; C:\WINDOWS\system32\Drivers\pavboot.sys [2010-06-22 26696] R0 SI3114r;SiI-3114 SATARaid Controller; C:\WINDOWS\system32\DRIVERS\SI3114R.sys [2004-02-09 97857] R0 SiFilter;SATALink driver accelerator; C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys [2003-10-15 10240] R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-01-18 691696] R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS [] R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS [] R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS [] R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS [] R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS [] R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\system32\Drivers\ShlDrv51.sys [2009-10-27 37896] R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS [] R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720] R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-12-30 21419] R2 AmFSM;AmFSM; C:\WINDOWS\system32\DRIVERS\amm8651.sys [2010-05-21 59080] R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys [] R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384] R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-07-01 626977] R3 AvFlt;Antivirus Filter Driver; C:\WINDOWS\system32\drivers\av5flt.sys [] R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368] R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-15 12160] R3 NETIMFLT01060042;PANDA NDIS IM Filter Miniport v1.6.0.42; C:\WINDOWS\system32\DRIVERS\neti1642.sys [2010-02-18 199688] R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-12-10 3536768] R3 PavSRK.sys;PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys [] R3 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys [] R3 RT73;RT73 USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2007-10-01 451968] S3 a8nwzsq5;a8nwzsq5; C:\WINDOWS\system32\drivers\a8nwzsq5.sys [] S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-04-14 701440] S3 cpuz130;cpuz130; \??\C:\DOCUME~1\Damiano\USTAWI~1\Temp\cpuz130\cpuz_x32.sys [] S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys [] S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920] S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496] S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568] S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys [] S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-11-12 7168] S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128] S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856] S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104] S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368] ======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)====== R2 ActiveSMART Service;ActiveSMART Service; C:\Program Files\ActiveSMART 2.8\ASmartService.exe [2009-08-25 586008] R2 hpqddsvc;Usługa HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-09-15 153376] R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336] R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2009-11-12 71096] R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139] R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe [2009-08-10 173312] R2 PAVFNSVR;Panda Function Service; C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe [2010-09-13 202048] R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768] R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe [2010-06-04 314176] R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336] R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-08-06 75064] R2 PSHost;Panda Host Service; c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE [2009-11-26 226560] R2 PSIMSVC;Panda IManager Service; C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe [2008-06-19 108288] R2 PskSvcRetail;Panda PSK service; C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe [2010-08-16 28992] R2 TPSrv;Panda TPSrv; C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe [2010-09-29 157504] R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336] S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896] S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240] S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-10-16 655624] S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824] S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136] S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184] -----------------EOF----------------- [/log]
Tomek01 komentarz 25 listopada 2010 komentarz 25 listopada 2010 Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] dla pewności. Z mojej strony to wszystko. Czy przenieść Cię do działu Awarie ?
Jose Peniara komentarz 25 listopada 2010 Autor komentarz 25 listopada 2010 Tak, oczywiście. Dziękuję za pomoc. [color="#0000FF"]//Przenoszę do Komunikacja i łączność. //Wirusów brak //Tom01[/color]
Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!
Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.