x-kom hosting

Samo wyłączające się przeglądarki internetowe

Jose Peniara
utworzono
utworzono (edytowane)

Witam.
Mam ostatnio spory problem z systemem. Często przy włączeniu komputera od razu pojawia się komunikat o próbie wysyłania błędu choć system był zamykany poprawnie. Nie działają też przeglądarki, bez wyjątku. Zauważyłem tez znaczny spowolnienie systemu. Zdarza się także czasem, że procesor "myśli" intensywnie przez parę minut i nic z tym nie można zrobić. Skanowałem system pandą kilkakrotnie. Za pierwszym razem wykryło wirusa Trj/C.IA który nie był aktywny za kolejnymi było już wszystko w porządku. Próbowałem też czyścić rejestr CCleanerem degragmentować i sprawdzać dysk Active SMARTEM co wykryło na moim głównym dysku 2 reallocated bad blocki. Sięgnąłem po HDD Regenarator który wykrył jednego bada i potwierdził jego "uleczenie". Problemy powtarzają się cały czas. Ostatnio doszło do tego samoczynne wyłączanie się komputera zaraz po starcie. Proszę pomóżcie.

Konf

Typ procesora AMD Athlon 64, 2000 MHz (10 x 200) 3000+
Nazwa płyty głównej Epox EP-8KDA3+ (6 PCI, 1 AGP, 3 DDR DIMM, Audio, Gigabit LAN)
Zasilacz Feel 300W
Pamięć fizyczna 1536 MB (PC3200 DDR SDRAM)
Dysk fizyczny SAMSUNG SP1213C (120 GB, 7200 RPM, SATA)
Dysk fizyczny WDC WD800JB-00FSA0 (74 GB, IDE)

[log]OTL logfile created on: 2010-11-24 12:48:50 - Run 3
OTL by OldTimer - Version 3.1.24.0 Folder = D:\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 65,00% Memory free
2,00 Gb Paging File | 1,00 Gb Available in Paging File | 70,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 14,65 Gb Total Space | 4,17 Gb Free Space | 28,48% Space Free | Partition Type: NTFS
Drive D: | 97,16 Gb Total Space | 10,76 Gb Free Space | 11,08% Space Free | Partition Type: NTFS
E: Drive not present or media not loaded
Drive F: | 4,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
G: Drive not present or media not loaded
Drive H: | 74,53 Gb Total Space | 0,08 Gb Free Space | 0,11% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded

Computer Name: DAMIAN
Current User Name: Damiano
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard

[color="#e56717"]========== Processes (SafeList) ==========[/color]

PRC - [2010-11-01 22:36:03 | 00,974,904 | ---- | M] (Google Inc.) -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Chrome\Application\chrome.exe
PRC - [2010-09-30 07:54:11 | 00,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe
PRC - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe
PRC - [2010-08-26 12:52:15 | 00,988,480 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe
PRC - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\psksvc.exe
PRC - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe
PRC - [2010-05-28 13:42:32 | 00,225,600 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE
PRC - [2010-05-14 10:44:46 | 00,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-04-22 18:29:12 | 00,107,776 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\WebProxy.exe
PRC - [2010-02-23 12:09:34 | 00,111,872 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe
PRC - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe
PRC - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) -- c:\Program Files\Panda Security\Panda Global Protection 2011\FIREWALL\PSHost.exe
PRC - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2009-08-25 22:57:18 | 00,332,048 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) -- C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe
PRC - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe
PRC - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrlS.exe
PRC - [2008-06-27 13:23:00 | 00,091,392 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\SrvLoad.exe
PRC - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe
PRC - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Common Files\Panda Security\PavShld\PavPrSrv.exe
PRC - [2007-10-17 15:02:50 | 01,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
PRC - [2007-03-11 21:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2007-03-11 21:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2007-03-11 21:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2005-01-12 03:01:32 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2004-08-03 23:44:20 | 00,975,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


[color="#e56717"]========== Modules (SafeList) ==========[/color]

MOD - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe
MOD - [2009-08-10 13:45:54 | 00,095,488 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavOEpl.dll
MOD - [2009-03-30 18:22:58 | 00,518,400 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\PavSHook.dll
MOD - [2007-02-08 10:53:40 | 00,107,568 | ---- | M] (Panda Software) -- C:\WINDOWS\system32\SYSTOOLS.DLL
MOD - [2004-01-11 23:00:00 | 00,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll
MOD - [2003-03-19 05:14:52 | 00,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCP71.DLL


[color="#e56717"]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-10-16 19:35:00 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe -- (TPSrv)
SRV - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe -- (PAVFNSVR)
SRV - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe -- (PskSvcRetail)
SRV - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe -- (PAVSRV)
SRV - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) [Auto | Running] -- c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE -- (PSHost)
SRV - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. ([url="http://www.ariolic.com"]http://www.ariolic.com[/url])) [Auto | Running] -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe -- (ActiveSMART Service)
SRV - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe -- (Panda Software Controller)
SRV - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe -- (PSIMSVC)
SRV - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe -- (PavPrSrv)
SRV - [2007-03-11 22:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007-03-11 21:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)


[color="#e56717"]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Running] -- -- (PavTPK.sys)
DRV - File not found [Kernel | On_Demand | Running] -- -- (PavSRK.sys)
DRV - File not found [File_System | On_Demand | Running] -- -- (AvFlt)
DRV - [2010-06-22 18:13:00 | 00,026,696 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\Drivers\pavboot.sys -- (pavboot)
DRV - [2010-05-21 13:50:26 | 00,059,080 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\amm8651.sys -- (AmFSM)
DRV - [2010-02-18 19:31:20 | 00,199,688 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\neti1642.sys -- (NETIMFLT01060042)
DRV - [2010-02-18 19:31:18 | 00,076,296 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\APPFLT.SYS -- (APPFLT)
DRV - [2010-01-18 19:13:01 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-12-30 00:16:38 | 00,021,419 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x)
DRV - [2009-11-12 12:48:56 | 00,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009-10-27 12:07:42 | 00,037,896 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv)
DRV - [2009-09-25 14:54:08 | 00,046,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\wnmflt.sys -- (WNMFLT)
DRV - [2009-09-25 14:54:06 | 00,159,112 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NETFLTDI.SYS -- (NETFLTDI)
DRV - [2009-09-25 14:54:04 | 00,193,800 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idsflt.sys -- (IDSFLT)
DRV - [2009-09-25 14:54:04 | 00,022,024 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fnetmon.sys -- (FNETMON)
DRV - [2009-09-25 14:54:02 | 00,053,256 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dsaflt.sys -- (DSAFLT)
DRV - [2009-09-14 16:18:22 | 00,163,336 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc)
DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH)
DRV - [2008-08-14 06:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs)
DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2008-04-14 22:30:58 | 00,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007-10-01 12:06:40 | 00,451,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2007-03-08 05:20:50 | 00,021,568 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZius12.sys -- (HPZius12)
DRV - [2007-03-08 05:20:49 | 00,016,496 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZipr12.sys -- (HPZipr12)
DRV - [2007-03-08 05:20:48 | 00,049,920 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZid412.sys -- (HPZid412)
DRV - [2005-12-10 03:06:00 | 03,536,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005-01-20 08:45:30 | 00,088,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004-07-01 14:49:00 | 00,626,977 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004-02-24 11:08:00 | 00,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2004-02-09 15:27:00 | 00,097,857 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SI3114R.sys -- (SI3114r)
DRV - [2003-10-15 10:28:00 | 00,010,240 | R--- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter)


[color="#e56717"]========== Standard Registry (SafeList) ==========[/color]


[color="#e56717"]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = [url="http://www.Google.com"]http://www.Google.com[/url]
IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color="#e56717"]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.defaulturl: "http://www3.iamwired.net/websearch.php?src=tops&search="
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.pl/"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: smartbookmarksbar@remy.juteau:1.4.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-11-07 11:00:04 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-11-17 11:20:30 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009-12-31 10:27:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Extensions
[2010-11-22 15:15:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions
[2010-04-09 12:27:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com
[2010-08-06 09:25:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\eafo3fflauncher@ea.com
[2010-10-12 15:25:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\smartbookmarksbar@remy.juteau
[2010-08-09 14:15:37 | 00,002,556 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml
[2010-01-18 19:13:20 | 00,002,055 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml
[2010-04-09 21:31:18 | 00,000,261 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml
[2010-11-22 15:15:59 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-01-06 23:19:50 | 00,000,000 | ---D | M] (BrowserZinc) -- C:\Program Files\Mozilla Firefox\extensions\{52ED9673-0722-4A1D-B859-959FD56143DC}
[2010-08-09 17:22:24 | 00,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010-08-09 23:01:49 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-10-26 15:00:48 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010-01-12 22:40:55 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010-09-15 03:50:38 | 00,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-10-22 10:06:19 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-06 23:19:51 | 00,002,401 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\browserzinc115.xml
[2010-10-22 10:06:19 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-10-22 10:06:19 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-10-22 10:06:19 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-10-22 10:06:19 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-10-22 10:06:19 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE (Panda Security, S.L.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [SCANINICIO] C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Google Update] C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Skrybot] File not found
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} [url="http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab"]http://java.sun.com/...indows-i586.cab[/url] (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} [url="http://active.macromedia.com/flash2/cabs/swflash.cab"]http://active.macrom...abs/swflash.cab[/url] (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.30.129.149 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\WINDOWS\System32\avldr.dll (On-Access Anti-Malware Scanner Sync)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-12-29 22:06:12 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell - "" = AutoRun
O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color="#e56717"]========== Files/Folders - Created Within 30 Days ==========[/color]

[2010-11-18 13:16:06 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Damiano\Recent
[2010-11-17 22:50:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-11-17 22:50:03 | 00,000,000 | ---D | C] -- C:\Program Files\HDD Regenerator
[2010-11-17 21:22:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Mozilla
[2010-11-17 21:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Mozilla
[2010-11-17 21:21:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-17 21:21:31 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART
[2010-11-17 21:21:31 | 00,000,000 | ---D | C] -- C:\Program Files\ActiveSMART 2.8
[2010-11-07 11:18:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Panda Security
[2010-11-07 11:15:18 | 00,193,800 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\idsflt.sys
[2010-11-07 11:15:18 | 00,053,256 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\dsaflt.sys
[2010-11-07 11:15:18 | 00,046,856 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\wnmflt.sys
[2010-11-07 11:15:12 | 00,159,112 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\NETFLTDI.SYS
[2010-11-07 11:15:12 | 00,076,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\APPFLT.SYS
[2010-11-07 11:15:12 | 00,022,024 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\fnetmon.sys
[2010-11-07 11:15:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup
[2010-11-07 11:15:08 | 00,026,696 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2010-11-07 11:14:59 | 00,054,832 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\pavcpl.cpl
[2010-11-07 11:14:54 | 00,446,464 | ---- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\HHActiveX.dll
[2010-11-07 11:14:48 | 00,193,792 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\TpUtil.dll
[2010-11-07 11:14:48 | 00,107,568 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\SYSTOOLS.DLL
[2010-11-07 11:14:48 | 00,087,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavLspHook.dll
[2010-11-07 11:14:48 | 00,055,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\pavipc.dll
[2010-11-07 11:14:47 | 00,518,400 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavSHook.dll
[2010-11-07 11:14:44 | 00,199,688 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\neti1642.sys
[2010-11-07 11:14:42 | 00,059,080 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\amm8651.sys
[2010-11-07 11:14:42 | 00,055,552 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\WINDOWS\System32\avldr.dll
[2010-11-07 11:14:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PAV
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security
[2010-11-07 11:12:49 | 00,163,336 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\PavProc.sys
[2010-11-07 11:12:49 | 00,037,896 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\ShlDrv51.sys
[2010-11-07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Panda Security
[2010-11-04 01:15:04 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll64X.dll
[2010-11-04 00:40:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\HP
[2010-11-04 00:40:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Moje zeskanowane obrazy
[2010-11-04 00:33:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HP
[2010-11-04 00:29:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG
[2010-11-04 00:28:11 | 00,049,920 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZid412.sys
[2010-11-04 00:28:11 | 00,016,496 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZipr12.sys
[2010-11-04 00:28:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard
[2010-11-04 00:27:55 | 00,271,704 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010-11-04 00:27:53 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll5ha.dll
[2010-11-04 00:27:46 | 00,021,568 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZius12.sys
[2010-11-04 00:27:34 | 00,675,840 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax3.dll
[2010-11-04 00:27:34 | 00,569,344 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl3.dll
[2010-11-04 00:27:34 | 00,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010-11-04 00:27:34 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010-11-04 00:27:34 | 00,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst10.dll
[2010-11-04 00:26:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY
[2010-11-04 00:25:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData
[2010-11-04 00:25:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant
[2010-11-04 00:25:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2010-11-04 00:24:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010-11-04 00:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-04 00:24:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010-11-04 00:23:35 | 00,000,000 | ---D | C] -- C:\Program Files\HP
[2010-11-04 00:23:17 | 00,000,000 | -H-D | C] -- C:\Config.Msi
[2010-10-26 15:00:48 | 00,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-04-29 10:41:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2009-12-29 22:07:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[color="#e56717"]========== Files - Modified Within 30 Days ==========[/color]

[2010-11-24 11:57:16 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls.bck
[2010-11-24 11:57:16 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls
[2010-11-24 11:57:16 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck
[2010-11-24 11:57:16 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG
[2010-11-24 11:57:16 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg.bck
[2010-11-24 11:57:16 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg
[2010-11-24 11:57:16 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt.bck
[2010-11-24 11:57:16 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt
[2010-11-24 11:57:16 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg.bck
[2010-11-24 11:57:16 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg
[2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg.bck
[2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg
[2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg.bck
[2010-11-24 11:57:16 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg
[2010-11-24 11:54:41 | 00,177,995 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-24 11:54:29 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt.bck
[2010-11-24 11:54:29 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt
[2010-11-24 11:54:01 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg.bck
[2010-11-24 11:54:01 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg
[2010-11-24 11:53:49 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-24 11:53:44 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-24 11:53:40 | 16,101,29408 | -HS- | M] () -- C:\hiberfil.sys
[2010-11-24 11:53:00 | 00,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job
[2010-11-24 11:44:58 | 00,251,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck
[2010-11-24 11:44:58 | 00,251,488 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT
[2010-11-23 22:40:46 | 04,456,448 | ---- | M] () -- C:\Documents and Settings\Damiano\ntuser.dat
[2010-11-23 22:40:46 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Damiano\ntuser.ini
[2010-11-23 22:15:28 | 00,062,976 | ---- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-23 17:22:46 | 00,008,627 | ---- | M] () -- C:\WINDOWS\System32\PAV_FOG.OPC
[2010-11-22 22:53:00 | 00,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job
[2010-11-19 10:54:40 | 02,430,226 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg
[2010-11-19 10:35:36 | 02,111,570 | -H-- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-18 22:23:39 | 05,963,776 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3
[2010-11-18 13:29:53 | 00,000,636 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk
[2010-11-17 22:50:06 | 00,001,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk
[2010-11-17 21:21:32 | 00,000,748 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk
[2010-11-17 11:20:30 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2010-11-15 19:51:43 | 00,138,968 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010-11-14 19:56:49 | 00,001,113 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-11-12 19:06:35 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-07 13:55:23 | 00,002,318 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Google Chrome.lnk
[2010-11-07 13:35:07 | 00,008,627 | ---- | M] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC
[2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt.bck
[2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt
[2010-11-07 11:16:28 | 00,451,352 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-07 11:16:28 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-07 11:16:28 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-07 11:16:28 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-07 11:16:26 | 00,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-07 11:15:23 | 00,000,262 | ---- | M] () -- C:\WINDOWS\System32\PavCPL.dat
[2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job
[2010-11-07 11:07:36 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-06 19:38:27 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010-11-04 00:28:47 | 00,153,522 | ---- | M] () -- C:\WINDOWS\hpoins14.dat
[2010-11-04 00:26:27 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk
[2010-11-04 00:26:03 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk
[2010-11-04 00:25:31 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-04 00:25:15 | 00,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-10-30 17:36:28 | 00,000,809 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk
[2010-10-25 21:55:37 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx

[color="#e56717"]========== Files Created - No Company Name ==========[/color]

[2010-11-19 10:54:40 | 02,430,226 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg
[2010-11-18 22:04:57 | 05,963,776 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3
[2010-11-18 13:29:53 | 00,000,636 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk
[2010-11-17 22:50:06 | 00,001,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk
[2010-11-17 21:21:32 | 00,000,748 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk
[2010-11-07 13:04:54 | 00,008,627 | ---- | C] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC
[2010-11-07 11:31:11 | 00,008,627 | ---- | C] () -- C:\WINDOWS\System32\PAV_FOG.OPC
[2010-11-07 11:15:23 | 00,000,262 | ---- | C] () -- C:\WINDOWS\System32\PavCPL.dat
[2010-11-07 11:15:20 | 00,251,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck
[2010-11-07 11:15:20 | 00,251,488 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT
[2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck
[2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG
[2010-11-07 11:15:11 | 00,000,498 | ---- | C] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job
[2010-11-06 20:08:19 | 00,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm
[2010-11-06 20:08:19 | 00,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm
[2010-11-06 20:08:19 | 00,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm
[2010-11-06 20:08:19 | 00,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm
[2010-11-06 20:08:18 | 00,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm
[2010-11-06 20:08:18 | 00,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm
[2010-11-06 20:08:18 | 00,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm
[2010-11-06 20:08:18 | 00,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm
[2010-11-06 20:08:18 | 00,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm
[2010-11-06 20:08:18 | 00,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm
[2010-11-06 20:08:18 | 00,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm
[2010-11-06 20:08:18 | 00,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm
[2010-11-06 20:08:18 | 00,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm
[2010-11-06 20:08:18 | 00,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm
[2010-11-06 20:08:18 | 00,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm
[2010-11-06 20:08:18 | 00,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm
[2010-11-06 20:08:18 | 00,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm
[2010-11-06 20:08:18 | 00,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm
[2010-11-06 20:08:18 | 00,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm
[2010-11-06 20:08:18 | 00,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm
[2010-11-06 20:08:18 | 00,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm
[2010-11-06 20:08:18 | 00,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm
[2010-11-06 20:08:18 | 00,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm
[2010-11-06 20:08:18 | 00,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm
[2010-11-06 20:08:17 | 00,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm
[2010-11-06 20:08:17 | 00,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm
[2010-11-06 20:08:17 | 00,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm
[2010-11-06 20:08:17 | 00,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm
[2010-11-06 20:08:17 | 00,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm
[2010-11-06 20:08:17 | 00,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm
[2010-11-06 20:08:17 | 00,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm
[2010-11-06 20:08:17 | 00,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm
[2010-11-06 20:08:17 | 00,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm
[2010-11-06 20:08:17 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm
[2010-11-06 20:08:17 | 00,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm
[2010-11-06 20:08:17 | 00,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm
[2010-11-06 20:08:17 | 00,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm
[2010-11-06 20:08:17 | 00,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm
[2010-11-06 20:08:17 | 00,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm
[2010-11-06 20:08:17 | 00,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm
[2010-11-06 20:08:17 | 00,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm
[2010-11-06 20:08:17 | 00,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm
[2010-11-06 20:08:17 | 00,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm
[2010-11-06 20:08:17 | 00,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm
[2010-11-06 20:08:17 | 00,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm
[2010-11-06 20:08:17 | 00,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm
[2010-11-06 20:08:17 | 00,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm
[2010-11-06 20:08:17 | 00,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm
[2010-11-06 20:08:16 | 00,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm
[2010-11-06 20:08:16 | 00,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm
[2010-11-06 20:08:16 | 00,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm
[2010-11-06 20:08:16 | 00,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm
[2010-11-06 20:08:16 | 00,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm
[2010-11-06 20:08:16 | 00,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm
[2010-11-06 20:08:16 | 00,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm
[2010-11-06 20:08:16 | 00,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm
[2010-11-06 20:08:16 | 00,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm
[2010-11-06 20:08:16 | 00,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm
[2010-11-06 20:08:16 | 00,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm
[2010-11-06 20:08:16 | 00,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm
[2010-11-06 20:08:16 | 00,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm
[2010-11-06 20:08:16 | 00,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm
[2010-11-06 20:08:16 | 00,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm
[2010-11-06 20:08:16 | 00,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm
[2010-11-06 20:08:16 | 00,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm
[2010-11-06 20:08:16 | 00,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm
[2010-11-06 20:08:16 | 00,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm
[2010-11-06 20:08:16 | 00,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm
[2010-11-06 20:08:16 | 00,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm
[2010-11-06 20:08:16 | 00,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm
[2010-11-06 20:08:16 | 00,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm
[2010-11-06 20:08:16 | 00,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm
[2010-11-06 20:08:16 | 00,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm
[2010-11-06 20:08:16 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm
[2010-11-06 20:08:16 | 00,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm
[2010-11-06 20:08:15 | 00,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm
[2010-11-06 20:08:15 | 00,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm
[2010-11-06 20:08:15 | 00,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm
[2010-11-06 20:08:15 | 00,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm
[2010-11-06 20:08:15 | 00,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm
[2010-11-06 20:08:15 | 00,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm
[2010-11-06 20:08:15 | 00,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm
[2010-11-06 20:08:15 | 00,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm
[2010-11-06 20:08:15 | 00,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm
[2010-11-06 20:08:15 | 00,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm
[2010-11-06 20:08:15 | 00,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm
[2010-11-06 20:08:15 | 00,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm
[2010-11-06 20:08:15 | 00,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm
[2010-11-06 20:08:15 | 00,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm
[2010-11-06 20:08:15 | 00,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm
[2010-11-06 20:08:15 | 00,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm
[2010-11-06 20:08:15 | 00,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm
[2010-11-06 20:08:15 | 00,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm
[2010-11-06 20:08:14 | 00,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm
[2010-11-06 20:08:14 | 00,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm
[2010-11-06 20:08:14 | 00,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm
[2010-11-06 20:08:14 | 00,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm
[2010-11-06 20:08:14 | 00,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm
[2010-11-06 20:08:14 | 00,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm
[2010-11-06 20:08:14 | 00,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm
[2010-11-06 20:08:14 | 00,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm
[2010-11-06 20:08:14 | 00,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm
[2010-11-06 20:08:14 | 00,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm
[2010-11-06 20:08:14 | 00,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm
[2010-11-06 20:08:14 | 00,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm
[2010-11-06 20:08:14 | 00,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm
[2010-11-06 20:08:14 | 00,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm
[2010-11-06 20:08:14 | 00,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm
[2010-11-06 20:08:14 | 00,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm
[2010-11-06 20:08:14 | 00,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm
[2010-11-06 20:08:14 | 00,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm
[2010-11-06 20:08:14 | 00,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm
[2010-11-06 20:08:14 | 00,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm
[2010-11-06 20:08:14 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm
[2010-11-06 20:08:14 | 00,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm
[2010-11-06 20:08:14 | 00,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm
[2010-11-06 19:38:27 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010-11-04 00:26:27 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk
[2010-11-04 00:26:03 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk
[2010-11-04 00:25:31 | 00,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-04 00:25:15 | 00,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-04 00:21:52 | 00,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-11-04 00:21:49 | 00,153,522 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2010-11-04 00:21:49 | 00,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2010-10-30 17:36:28 | 00,000,809 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk
[2010-10-25 21:55:37 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx
[2010-08-07 14:33:37 | 00,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-08-06 09:27:39 | 00,139,152 | ---- | C] () -- C:\Documents and Settings\Damiano\Dane aplikacji\PnkBstrK.sys
[2010-08-06 09:27:39 | 00,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-05-22 12:51:08 | 00,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-01-18 19:13:01 | 00,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-01-16 10:30:32 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-01-16 10:30:27 | 00,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll
[2010-01-16 10:29:53 | 00,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2010-01-16 10:29:52 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2010-01-06 22:48:26 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2010-01-06 21:28:47 | 00,000,172 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2010-01-06 21:20:58 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010-01-06 21:20:58 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010-01-01 19:44:58 | 00,062,976 | ---- | C] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005-12-10 03:06:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2005-12-10 03:06:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2005-12-10 03:06:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2005-12-10 03:06:00 | 00,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2005-12-10 03:06:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2005-12-10 03:06:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2005-12-10 03:06:00 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll

[color="#e56717"]========== LOP Check ==========[/color]

[2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton
[2010-11-24 11:38:14 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART
[2010-09-28 22:11:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-07 11:15:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup
[2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited
[2010-01-18 19:12:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-03-14 19:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-08 00:21:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-18 00:51:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-01-18 19:10:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-11-07 11:15:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security
[2010-10-10 18:07:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2010-06-05 20:28:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2010-11-23 13:24:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton
[2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Canneverbe Limited
[2010-01-18 19:15:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\DAEMON Tools Lite
[2010-09-27 15:55:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Gadu-Gadu 10
[2010-10-09 10:15:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\ipla
[2010-01-23 23:58:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Leadertech
[2010-01-18 19:10:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\OpenFM
[2010-11-07 11:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security
[2010-06-05 20:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Sports Interactive
[2010-09-04 20:56:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Tlen.pl
[2010-11-24 12:44:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent
[2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\Tasks\Podstawowe porządkowanie.job

[color="#e56717"]========== Purity Check ==========[/color]



[color="#e56717"]========== Alternate Data Streams ==========[/color]

@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68
< End of report >
[/log]
[color="#ff0000"]
//przenoszę do Bezpieczeństwa
//dan[/color]

Tomek01
komentarz
komentarz

Objawy wg mnie nie wskazują infekcji.

Jednakże,
Odinstaluj Deamon Tools Toolbar, Ask Toolbar.


W OTL, w oknie Custom scan/fixes wklej:
[code]:Processes
Explorer.exe

:OTL
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..extensions.enabledItems: DTToolbar@toolbarnet.com:1.1.2.0185
[2010-04-09 12:27:14 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com
[2010-08-09 14:15:37 | 00,002,556 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml
[2010-01-18 19:13:20 | 00,002,055 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml
[2010-04-09 21:31:18 | 00,000,261 | ---- | M] () -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml
O2 - BHO: (no name) - {F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D} - No CLSID value found.
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
@Alternate Data Stream - 178 bytes -> C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68

:Commands
[emptytemp]
[start explorer]
[Reboot][/code]

Klikasz run fix, komputer uruchamia się ponownie.
Wrzuć log z usuwania oraz nowe logi: OTL i RSIT.

Jose Peniara
komentarz
komentarz

Odinstalowałem daemon toolbar ale miałem problem z odnalezieniem ask bo nie było go ani w dodaj/usuń, ani program files.
Oto log z usuwania:
[log]All processes killed
========== PROCESSES ==========
Process Explorer.exe killed successfully!
========== OTL ==========
Prefs.js: "Ask.com" removed from browser.search.defaultengine
Prefs.js: "Ask.com" removed from browser.search.defaultenginename
Prefs.js: "Ask.com" removed from browser.search.order.1
Prefs.js: DTToolbar@toolbarnet.com:1.1.2.0185 removed from extensions.enabledItems
Folder C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\DTToolbar@toolbarnet.com\ not found.
C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\askcom.xml moved successfully.
C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\daemon-search.xml moved successfully.
C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\searchplugins\Search.xml moved successfully.
Registry key HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{F5CC7F02-6F4E-4462-B5B1-394A57FD3E0D}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Internet Explorer\Toolbar\\{32099AAC-C132-4136-9E9A-4E364A424E17} not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
Registry value HKEY_USERS\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{32099AAC-C132-4136-9E9A-4E364A424E17} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{32099AAC-C132-4136-9E9A-4E364A424E17}\ not found.
File C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll not found.
ADS C:\Documents and Settings\All Users\Dane aplikacji\TEMP:1AAB2E68 deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Damiano
->Temp folder emptied: 11278105 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->Java cache emptied: 0 bytes
->FireFox cache emptied: 95339168 bytes
->Google Chrome cache emptied: 230955097 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: LocalService
->Temp folder emptied: 65984 bytes
->Temporary Internet Files folder emptied: 33170 bytes
->FireFox cache emptied: 3524056 bytes

User: NetworkService
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 33170 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32\dllcache .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 42072266 bytes
RecycleBin emptied: 0 bytes

Total Files Cleaned = 366,00 mb


OTL by OldTimer - Version 3.1.24.0 log created on 11252010_111337

Files\Folders moved on Reboot...
C:\WINDOWS\temp\abf58d82dd5c41b2492c2ab2e9ff78c6PSK_PLUGINS_0 moved successfully.

Registry entries deleted on Reboot...
[/log]

Log z OTL:
[log]OTL logfile created on: 2010-11-25 11:40:16 - Run 4
OTL by OldTimer - Version 3.1.24.0 Folder = D:\Pobieranie
Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

1,00 Gb Total Physical Memory | 1,00 Gb Available Physical Memory | 64,00% Memory free
2,00 Gb Paging File | 2,00 Gb Available in Paging File | 73,00% Paging File free
Paging file location(s): C:\pagefile.sys 768 1536 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 14,65 Gb Total Space | 4,39 Gb Free Space | 29,99% Space Free | Partition Type: NTFS
Drive D: | 97,16 Gb Total Space | 1,61 Gb Free Space | 1,66% Space Free | Partition Type: NTFS
Drive E: | 4,28 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
Drive F: | 3,53 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
G: Drive not present or media not loaded
Drive H: | 74,53 Gb Total Space | 0,08 Gb Free Space | 0,11% Space Free | Partition Type: NTFS
I: Drive not present or media not loaded

Computer Name: DAMIAN
Current User Name: Damiano
Logged in as Administrator.

Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 60 Days
Output = Standard

[color=#E56717]========== Processes (All) ==========[/color]

PRC - [2010-10-29 00:10:49 | 00,912,344 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe
PRC - [2010-09-30 07:54:11 | 00,328,056 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe
PRC - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jqs.exe
PRC - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe
PRC - [2010-08-26 12:52:15 | 00,988,480 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe
PRC - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\psksvc.exe
PRC - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () -- C:\WINDOWS\system32\PnkBstrA.exe
PRC - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe
PRC - [2010-05-28 13:42:32 | 00,225,600 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE
PRC - [2010-05-14 10:44:46 | 00,248,552 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Common Files\Java\Java Update\jusched.exe
PRC - [2010-04-22 18:29:12 | 00,107,776 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\WebProxy.exe
PRC - [2010-04-01 10:16:20 | 00,357,696 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLite.exe
PRC - [2010-02-23 12:09:34 | 00,111,872 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe
PRC - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe
PRC - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) -- c:\Program Files\Panda Security\Panda Global Protection 2011\FIREWALL\PSHost.exe
PRC - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () -- C:\Program Files\CDBurnerXP\NMSAccessU.exe
PRC - [2009-08-25 22:57:18 | 00,332,048 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) -- C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe
PRC - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe
PRC - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrlS.exe
PRC - [2008-06-27 13:23:00 | 00,091,392 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\SrvLoad.exe
PRC - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe
PRC - [2008-04-15 13:00:00 | 00,510,464 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winlogon.exe
PRC - [2008-04-15 13:00:00 | 00,218,112 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\wmiprvse.exe
PRC - [2008-04-15 13:00:00 | 00,109,056 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\services.exe
PRC - [2008-04-15 13:00:00 | 00,057,856 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\spoolsv.exe
PRC - [2008-04-15 13:00:00 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\smss.exe
PRC - [2008-04-15 13:00:00 | 00,044,544 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\alg.exe
PRC - [2008-04-15 13:00:00 | 00,033,280 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rundll32.exe
PRC - [2008-04-15 13:00:00 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ctfmon.exe
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [RPCSS]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETWORKSERVICE]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [NETSVCS]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [LOCALSERVICE]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [IMGSVC]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HTTPFILTER]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPZ12]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [HPDEVMGMT]
PRC - [2008-04-15 13:00:00 | 00,014,336 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\svchost.exe [DCOMLAUNCH]
PRC - [2008-04-15 13:00:00 | 00,013,312 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\lsass.exe
PRC - [2008-04-15 13:00:00 | 00,006,144 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\csrss.exe
PRC - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Common Files\Panda Security\PavShld\PavPrSrv.exe
PRC - [2007-10-17 15:02:50 | 01,114,112 | ---- | M] (Ralink Technology, Corp.) -- C:\Program Files\RALINK\Common\RaUI.exe
PRC - [2007-03-11 21:34:40 | 00,049,152 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\HP Software Update\hpwuSchd2.exe
PRC - [2007-03-11 21:32:42 | 00,151,552 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqste08.exe
PRC - [2007-03-11 21:26:24 | 00,210,520 | ---- | M] (Hewlett-Packard Co.) -- C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
PRC - [2006-10-27 00:47:42 | 00,031,016 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
PRC - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) -- C:\WINDOWS\system32\nvsvc32.exe
PRC - [2005-01-12 03:01:32 | 00,032,768 | ---- | M] (Cyberlink Corp.) -- C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
PRC - [2004-08-03 23:44:26 | 00,156,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\NOTEPAD.EXE
PRC - [2004-08-03 23:44:20 | 00,975,872 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe


[color=#E56717]========== Modules (All) ==========[/color]

MOD - [2010-01-14 18:17:28 | 00,544,256 | ---- | M] (OldTimer Tools) -- D:\Pobieranie\OTL.exe
MOD - [2009-08-10 13:45:54 | 00,095,488 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavOEpl.dll
MOD - [2009-03-30 18:22:58 | 00,518,400 | ---- | M] (Panda Security, S.L.) -- C:\WINDOWS\system32\PavSHook.dll
MOD - [2008-04-15 13:00:00 | 01,287,168 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ole32.dll
MOD - [2008-04-15 13:00:00 | 01,054,208 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\WinSxS\x86_Microsoft.Windows.Common-Controls_6595b64144ccf1df_6.0.2600.5512_x-ww_35d4ce83\comctl32.dll
MOD - [2008-04-15 13:00:00 | 01,018,368 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\kernel32.dll
MOD - [2008-04-15 13:00:00 | 00,997,888 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\setupapi.dll
MOD - [2008-04-15 13:00:00 | 00,732,672 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\userenv.dll
MOD - [2008-04-15 13:00:00 | 00,714,240 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\ntdll.dll
MOD - [2008-04-15 13:00:00 | 00,686,592 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\advapi32.dll
MOD - [2008-04-15 13:00:00 | 00,584,704 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\rpcrt4.dll
MOD - [2008-04-15 13:00:00 | 00,580,096 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\user32.dll
MOD - [2008-04-15 13:00:00 | 00,551,936 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\oleaut32.dll
MOD - [2008-04-15 13:00:00 | 00,343,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcrt.dll
MOD - [2008-04-15 13:00:00 | 00,297,984 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSCTF.dll
MOD - [2008-04-15 13:00:00 | 00,285,184 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\gdi32.dll
MOD - [2008-04-15 13:00:00 | 00,185,344 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\wbem\framedyn.dll
MOD - [2008-04-15 13:00:00 | 00,146,432 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\winspool.drv
MOD - [2008-04-15 13:00:00 | 00,084,992 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\olepro32.dll
MOD - [2008-04-15 13:00:00 | 00,067,584 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\srclient.dll
MOD - [2008-04-15 13:00:00 | 00,056,320 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\secur32.dll
MOD - [2008-04-15 13:00:00 | 00,023,040 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\psapi.dll
MOD - [2008-04-15 13:00:00 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\version.dll
MOD - [2007-07-28 02:15:16 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\uxtheme.dll
MOD - [2007-02-08 10:53:40 | 00,107,568 | ---- | M] (Panda Software) -- C:\WINDOWS\system32\SYSTOOLS.DLL
MOD - [2004-08-03 23:44:12 | 00,498,176 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shlwapi.dll
MOD - [2004-08-03 23:44:10 | 12,826,624 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\shell32.dll
MOD - [2004-01-11 23:00:00 | 00,348,160 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\msvcr71.dll
MOD - [2003-03-19 05:14:52 | 00,499,712 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\system32\MSVCP71.DLL


[color=#E56717]========== Win32 Services (SafeList) ==========[/color]

SRV - [2010-10-16 19:35:00 | 00,655,624 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2010-09-29 10:11:07 | 00,157,504 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe -- (TPSrv)
SRV - [2010-09-15 03:50:54 | 00,153,376 | ---- | M] (Sun Microsystems, Inc.) [Auto | Running] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService)
SRV - [2010-09-13 10:11:00 | 00,202,048 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe -- (PAVFNSVR)
SRV - [2010-08-16 14:54:45 | 00,028,992 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe -- (PskSvcRetail)
SRV - [2010-08-06 09:27:18 | 00,075,064 | ---- | M] () [Auto | Running] -- C:\WINDOWS\system32\PnkBstrA.exe -- (PnkBstrA)
SRV - [2010-06-04 10:37:50 | 00,314,176 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe -- (PAVSRV)
SRV - [2009-11-26 17:03:56 | 00,226,560 | ---- | M] (Panda Security International) [Auto | Running] -- c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE -- (PSHost)
SRV - [2009-11-12 12:48:56 | 00,071,096 | ---- | M] () [Auto | Running] -- C:\Program Files\CDBurnerXP\NMSAccessU.exe -- (NMSAccessU)
SRV - [2009-08-25 22:56:38 | 00,586,008 | ---- | M] (Ariolic Software, Ltd. (http://www.ariolic.com)) [Auto | Running] -- C:\Program Files\ActiveSMART 2.8\ASmartService.exe -- (ActiveSMART Service)
SRV - [2009-08-10 14:46:08 | 00,173,312 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe -- (Panda Software Controller)
SRV - [2008-06-19 12:59:50 | 00,108,288 | ---- | M] (Panda Security S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe -- (PSIMSVC)
SRV - [2008-02-04 17:26:48 | 00,062,768 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe -- (PavPrSrv)
SRV - [2007-03-11 22:02:52 | 00,131,072 | ---- | M] (Hewlett-Packard Co.) [Auto | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqddsvc.dll -- (hpqddsvc)
SRV - [2007-03-11 21:24:50 | 00,217,088 | ---- | M] (Hewlett-Packard Co.) [On_Demand | Running] -- C:\Program Files\HP\Digital Imaging\bin\hpqcxs08.dll -- (hpqcxs08)
SRV - [2006-11-08 16:35:38 | 00,053,248 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZipm12.dll -- (Pml Driver HPZ12)
SRV - [2006-11-08 16:35:36 | 00,043,520 | ---- | M] (Hewlett-Packard) [Auto | Running] -- C:\WINDOWS\system32\HPZinw12.dll -- (Net Driver HPZ12)
SRV - [2006-10-27 00:47:54 | 00,065,824 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service)
SRV - [2006-10-26 19:49:34 | 00,441,136 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE -- (odserv)
SRV - [2006-10-26 13:03:08 | 00,145,184 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE -- (ose)
SRV - [2005-12-10 03:06:00 | 00,131,139 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\WINDOWS\system32\nvsvc32.exe -- (NVSvc)


[color=#E56717]========== Driver Services (SafeList) ==========[/color]

DRV - File not found [Kernel | On_Demand | Running] -- -- (PavTPK.sys)
DRV - File not found [Kernel | On_Demand | Running] -- -- (PavSRK.sys)
DRV - File not found [File_System | On_Demand | Running] -- -- (AvFlt)
DRV - [2010-06-22 18:13:00 | 00,026,696 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\WINDOWS\system32\Drivers\pavboot.sys -- (pavboot)
DRV - [2010-05-21 13:50:26 | 00,059,080 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\amm8651.sys -- (AmFSM)
DRV - [2010-02-18 19:31:20 | 00,199,688 | ---- | M] (Panda Security, S.L.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\neti1642.sys -- (NETIMFLT01060042)
DRV - [2010-02-18 19:31:18 | 00,076,296 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\APPFLT.SYS -- (APPFLT)
DRV - [2010-01-18 19:13:01 | 00,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-12-30 00:16:38 | 00,021,419 | ---- | M] (Meetinghouse Data Communications) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\AegisP.sys -- (AegisP) AEGIS Protocol (IEEE 802.1x)
DRV - [2009-11-12 12:48:56 | 00,007,168 | ---- | M] () [File_System | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\StarOpen.sys -- (StarOpen)
DRV - [2009-10-27 12:07:42 | 00,037,896 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ShlDrv51.sys -- (ShldDrv)
DRV - [2009-09-25 14:54:08 | 00,046,856 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\wnmflt.sys -- (WNMFLT)
DRV - [2009-09-25 14:54:06 | 00,159,112 | ---- | M] (Panda Security, S.L.) [TDI Layer] [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\NETFLTDI.SYS -- (NETFLTDI)
DRV - [2009-09-25 14:54:04 | 00,193,800 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\idsflt.sys -- (IDSFLT)
DRV - [2009-09-25 14:54:04 | 00,022,024 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\fnetmon.sys -- (FNETMON)
DRV - [2009-09-25 14:54:02 | 00,053,256 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dsaflt.sys -- (DSAFLT)
DRV - [2009-09-14 16:18:22 | 00,163,336 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PavProc.sys -- (PavProc)
DRV - [2008-09-17 14:14:00 | 00,027,672 | R--- | M] (EnTech Taiwan) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\Entech.sys -- (ENTECH)
DRV - [2008-08-14 06:57:42 | 00,074,720 | ---- | M] (Adobe Systems, Inc.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\adfs.sys -- (adfs)
DRV - [2008-04-15 13:00:00 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\secdrv.sys -- (Secdrv)
DRV - [2008-04-15 13:00:00 | 00,017,792 | ---- | M] (Parallel Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ptilink.sys -- (Ptilink)
DRV - [2008-04-14 22:30:58 | 00,701,440 | ---- | M] (ATI Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\ati2mtag.sys -- (ati2mtag)
DRV - [2007-10-01 12:06:40 | 00,451,968 | ---- | M] (Ralink Technology, Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\rt73.sys -- (RT73)
DRV - [2007-03-08 05:20:50 | 00,021,568 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZius12.sys -- (HPZius12)
DRV - [2007-03-08 05:20:49 | 00,016,496 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZipr12.sys -- (HPZipr12)
DRV - [2007-03-08 05:20:48 | 00,049,920 | R--- | M] (HP) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\HPZid412.sys -- (HPZid412)
DRV - [2005-12-10 03:06:00 | 03,536,768 | ---- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nv4_mini.sys -- (nv)
DRV - [2005-01-20 08:45:30 | 00,088,960 | ---- | M] (NVIDIA Corporation) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\nvatabus.sys -- (nvatabus)
DRV - [2004-07-01 14:49:00 | 00,626,977 | ---- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXWDM.SYS -- (ALCXWDM) Service for Realtek AC97 Audio (WDM)
DRV - [2004-02-24 11:08:00 | 00,400,384 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ALCXSENS.SYS -- (ALCXSENS)
DRV - [2004-02-09 15:27:00 | 00,097,857 | R--- | M] (Silicon Image, Inc) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SI3114R.sys -- (SI3114r)
DRV - [2003-10-15 10:28:00 | 00,010,240 | R--- | M] (Silicon Image, Inc.) [Kernel | Boot | Running] -- C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys -- (SiFilter)


[color=#E56717]========== Standard Registry (SafeList) ==========[/color]


[color=#E56717]========== Internet Explorer ==========[/color]

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm


IE - HKU\.DEFAULT\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0



IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.Google.com
IE - HKU\S-1-5-21-796845957-1715567821-682003330-1003\S-1-5-21-796845957-1715567821-682003330-1003\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

[color=#E56717]========== FireFox ==========[/color]

FF - prefs.js..browser.search.defaultengine: ""
FF - prefs.js..browser.search.defaultenginename: ""
FF - prefs.js..browser.search.defaulturl: "http://www3.iamwired.net/websearch.php?src=tops&search="
FF - prefs.js..browser.search.order.1: ""
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..browser.startup.homepage: "www.google.pl/"
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.736
FF - prefs.js..extensions.enabledItems: eafo3fflauncher@ea.com:1.1
FF - prefs.js..extensions.enabledItems: {AB2CE124-6272-4b12-94A9-7303C7397BD1}:4.2.0.5198
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}:6.0.21
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: smartbookmarksbar@remy.juteau:1.4.3
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22

FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2010-11-07 11:00:04 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6.12\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2010-11-17 11:20:30 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird

[2009-12-31 10:27:38 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Extensions
[2010-11-25 11:03:24 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions
[2010-08-06 09:25:59 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\eafo3fflauncher@ea.com
[2010-10-12 15:25:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Mozilla\Firefox\Profiles\yzrfo9jy.default\extensions\smartbookmarksbar@remy.juteau
[2010-11-24 19:28:16 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions
[2010-01-06 23:19:50 | 00,000,000 | ---D | M] (BrowserZinc) -- C:\Program Files\Mozilla Firefox\extensions\{52ED9673-0722-4A1D-B859-959FD56143DC}
[2010-08-09 17:22:24 | 00,000,000 | ---D | M] (Skype extension for Firefox) -- C:\Program Files\Mozilla Firefox\extensions\{AB2CE124-6272-4b12-94A9-7303C7397BD1}
[2010-08-09 23:01:49 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0021-ABCDEFFEDCBA}
[2010-10-26 15:00:48 | 00,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2010-01-12 22:40:55 | 00,000,000 | ---D | M] -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010-09-15 03:50:38 | 00,472,808 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Mozilla Firefox\plugins\npdeployJava1.dll
[2010-10-22 10:06:19 | 00,002,767 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\allegro-pl.xml
[2010-01-06 23:19:51 | 00,002,401 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\browserzinc115.xml
[2010-10-22 10:06:19 | 00,001,406 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\fbc-pl.xml
[2010-10-22 10:06:19 | 00,000,917 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\merlin-pl.xml
[2010-10-22 10:06:19 | 00,000,858 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\pwn-pl.xml
[2010-10-22 10:06:19 | 00,001,183 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wikipedia-pl.xml
[2010-10-22 10:06:19 | 00,001,683 | ---- | M] () -- C:\Program Files\Mozilla Firefox\searchplugins\wp-pl.xml

O1 HOSTS File: (742 bytes) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (HP Print Enhancer) - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll (Hewlett-Packard Co.)
O2 - BHO: (HP Print Clips) - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll (Hewlett-Packard Co.)
O2 - BHO: (Adobe PDF Link Helper) - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll (Adobe Systems Incorporated)
O2 - BHO: (Groove GFS Browser Helper) - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O2 - BHO: (Skype add-on for Internet Explorer) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O2 - BHO: (JQSIEStartDetectorImpl Class) - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll (Sun Microsystems, Inc.)
O3 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Adobe ARM] C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [Adobe Reader Speed Launcher] C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [AdobeCS4ServiceManager] C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe (Adobe Systems Incorporated)
O4 - HKLM..\Run: [APVXDWIN] C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE (Panda Security, S.L.)
O4 - HKLM..\Run: [GrooveMonitor] C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe (Microsoft Corporation)
O4 - HKLM..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\hpwuSchd2.exe (Hewlett-Packard Co.)
O4 - HKLM..\Run: [KernelFaultCheck] File not found
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\NvMcTray.DLL (NVIDIA Corporation)
O4 - HKLM..\Run: [NVMixerTray] C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe (NVIDIA Corporation)
O4 - HKLM..\Run: [NWEReboot] File not found
O4 - HKLM..\Run: [nwiz] C:\WINDOWS\System32\nwiz.exe ()
O4 - HKLM..\Run: [RemoteControl] C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe (Cyberlink Corp.)
O4 - HKLM..\Run: [SCANINICIO] C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Common Files\Java\Java Update\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [AdobeBridge] File not found
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Google Update] C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe (Google Inc.)
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [Skrybot] File not found
O4 - HKU\S-1-5-21-796845957-1715567821-682003330-1003..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\.DEFAULT..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-18..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-19..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [nltide_3] C:\WINDOWS\System32\advpack.dll (Microsoft Corporation)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe (Hewlett-Packard Co.)
O4 - Startup: C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe (Ralink Technology, Corp.)
O7 - HKU\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O7 - HKU\S-1-5-21-796845957-1715567821-682003330-1003\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - C:\Program Files\Microsoft Office\Office12\EXCEL.EXE (Microsoft Corporation)
O9 - Extra Button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra 'Tools' menuitem : Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\Program Files\Microsoft Office\Office12\ONBttnIE.dll (Microsoft Corporation)
O9 - Extra Button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll (Hewlett-Packard Co.)
O9 - Extra Button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra Button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\Program Files\Microsoft Office\Office12\REFIEBAR.DLL (Microsoft Corporation)
O15 - HKLM\..Trusted Domains: 1 domain(s) and sub-domain(s) not assigned to a zone.
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://active.macromedia.com/flash2/cabs/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.30.129.149 192.168.0.1
O18 - Protocol\Handler\grooveLocalGWS {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\Program Files\Microsoft Office\Office12\GrooveSystemServices.dll (Microsoft Corporation)
O18 - Protocol\Handler\ms-help {314111c7-a502-11d2-bbca-00c04f8ec294} - C:\Program Files\Common Files\Microsoft Shared\Help\hxds.dll (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O18 - Protocol\Filter\text/xml {807563E5-5146-11D5-A672-00B0D022E945} - C:\Program Files\Common Files\Microsoft Shared\OFFICE12\MSOXMLMF.DLL (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avldr: DllName - avldr.dll - C:\WINDOWS\System32\avldr.dll (On-Access Anti-Malware Scanner Sync)
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O28 - HKLM ShellExecuteHooks: {B5A7F190-DDA6-4420-B3BA-52453494E6CD} - C:\Program Files\Microsoft Office\Office12\GrooveShellExtensions.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-12-29 22:06:12 | 00,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell - "" = AutoRun
O33 - MountPoints2\{645dc665-0874-11df-b498-00fd07934851}\Shell\AutoRun\command - "" = H:\autorun.exe -- File not found
O34 - HKLM BootExecute: (autocheck autochk *) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*

[color=#E56717]========== Files/Folders - Created Within 60 Days ==========[/color]

[2010-11-25 11:08:15 | 00,000,000 | ---D | C] -- C:\Program Files\trend micro
[2010-11-25 11:08:14 | 00,000,000 | ---D | C] -- C:\rsit
[2010-11-24 19:57:45 | 00,000,000 | -HSD | C] -- C:\WINDOWS\ftpcache
[2010-11-24 19:57:15 | 00,000,000 | ---D | C] -- C:\WINDOWS\RegisteredPackages
[2010-11-24 19:56:58 | 00,047,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\wstdecod.dll
[2010-11-24 19:56:57 | 01,962,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\quartz.dll
[2010-11-24 19:56:57 | 01,798,144 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qedit.dll
[2010-11-24 19:56:57 | 01,230,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\msvidctl.dll
[2010-11-24 19:56:57 | 00,324,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\mswebdvd.dll
[2010-11-24 19:56:57 | 00,285,696 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kstvtune.ax
[2010-11-24 19:56:57 | 00,226,304 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\kswdmcap.ax
[2010-11-24 19:56:57 | 00,173,056 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qasf.dll
[2010-11-24 19:56:57 | 00,052,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\msdv.sys
[2010-11-24 19:56:57 | 00,039,424 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksxbar.ax
[2010-11-24 19:56:57 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\bdaplgin.ax
[2010-11-24 19:56:57 | 00,015,104 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\mpe.sys
[2010-11-24 19:56:57 | 00,014,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ipsink.ax
[2010-11-24 19:56:57 | 00,012,288 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\ksolay.ax
[2010-11-24 19:56:57 | 00,011,392 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\drivers\bdasup.sys
[2010-11-24 19:56:56 | 00,590,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dramp.dll
[2010-11-24 19:56:56 | 00,470,528 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdvd.dll
[2010-11-24 19:56:56 | 00,436,224 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim.dll
[2010-11-24 19:56:56 | 00,350,208 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3drm.dll
[2010-11-24 19:56:56 | 00,316,928 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qdv.dll
[2010-11-24 19:56:56 | 00,257,024 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\qcap.dll
[2010-11-24 19:56:56 | 00,181,248 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmime.dll
[2010-11-24 19:56:56 | 00,132,608 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\devenum.dll
[2010-11-24 19:56:56 | 00,122,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmusic.dll
[2010-11-24 19:56:56 | 00,100,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmsynth.dll
[2010-11-24 19:56:56 | 00,098,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmstyle.dll
[2010-11-24 19:56:56 | 00,058,368 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmcompos.dll
[2010-11-24 19:56:56 | 00,047,616 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dxof.dll
[2010-11-24 19:56:56 | 00,034,816 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dpmesh.dll
[2010-11-24 19:56:56 | 00,033,280 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmloader.dll
[2010-11-24 19:56:56 | 00,027,136 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmband.dll
[2010-11-24 19:56:56 | 00,018,432 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dswave.dll
[2010-11-24 19:56:56 | 00,010,496 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxapi.sys
[2010-11-24 19:56:55 | 01,201,152 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8.dll
[2010-11-24 19:56:55 | 00,667,648 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput8.dll
[2010-11-24 19:56:55 | 00,076,800 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dmscript.dll
[2010-11-24 19:56:54 | 00,974,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dxdiag.exe
[2010-11-24 19:56:54 | 00,491,520 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmoprp.dll
[2010-11-24 19:56:54 | 00,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvoice.dll
[2010-11-24 19:56:54 | 00,186,880 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsdmo.dll
[2010-11-24 19:56:54 | 00,112,128 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvvox.dll
[2010-11-24 19:56:54 | 00,080,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvsetup.exe
[2010-11-24 19:56:54 | 00,046,592 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dxdllreg.exe
[2010-11-24 19:56:54 | 00,019,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpvacm.dll
[2010-11-24 19:56:53 | 01,294,336 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound3d.dll
[2010-11-24 19:56:53 | 01,189,888 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx8vb.dll
[2010-11-24 19:56:53 | 00,723,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnet.dll
[2010-11-24 19:56:53 | 00,648,704 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dinput.dll
[2010-11-24 19:56:53 | 00,602,624 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dx7vb.dll
[2010-11-24 19:56:53 | 00,467,968 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\diactfrm.dll
[2010-11-24 19:56:53 | 00,381,952 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dsound.dll
[2010-11-24 19:56:53 | 00,292,864 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddraw.dll
[2010-11-24 19:56:53 | 00,230,400 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplayx.dll
[2010-11-24 19:56:53 | 00,223,232 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\gcdef.dll
[2010-11-24 19:56:53 | 00,208,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\joy.cpl
[2010-11-24 19:56:53 | 00,079,360 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpwsockx.dll
[2010-11-24 19:56:53 | 00,077,824 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpmodemx.dll
[2010-11-24 19:56:53 | 00,068,096 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhupnp.dll
[2010-11-24 19:56:53 | 00,044,032 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dimap.dll
[2010-11-24 19:56:53 | 00,032,768 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnhpast.dll
[2010-11-24 19:56:53 | 00,031,744 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\pid.dll
[2010-11-24 19:56:53 | 00,028,160 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dplaysvr.exe
[2010-11-24 19:56:53 | 00,024,064 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\ddrawex.dll
[2010-11-24 19:56:53 | 00,016,896 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnsvr.exe
[2010-11-24 19:56:53 | 00,008,192 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3d8thk.dll
[2010-11-24 19:56:53 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnlobby.dll
[2010-11-24 19:56:53 | 00,003,072 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\dpnaddr.dll
[2010-11-24 19:56:52 | 00,797,184 | ---- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\dllcache\d3dim700.dll
[2010-11-18 13:16:06 | 00,000,000 | RH-D | C] -- C:\Documents and Settings\Damiano\Recent
[2010-11-17 22:50:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-11-17 22:50:03 | 00,000,000 | ---D | C] -- C:\Program Files\HDD Regenerator
[2010-11-17 21:22:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Mozilla
[2010-11-17 21:21:49 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Mozilla
[2010-11-17 21:21:45 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2010-11-17 21:21:31 | 00,000,000 | -H-D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART
[2010-11-17 21:21:31 | 00,000,000 | ---D | C] -- C:\Program Files\ActiveSMART 2.8
[2010-11-07 11:18:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Panda Security
[2010-11-07 11:15:18 | 00,193,800 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\idsflt.sys
[2010-11-07 11:15:18 | 00,053,256 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\dsaflt.sys
[2010-11-07 11:15:18 | 00,046,856 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\wnmflt.sys
[2010-11-07 11:15:12 | 00,159,112 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\NETFLTDI.SYS
[2010-11-07 11:15:12 | 00,076,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\APPFLT.SYS
[2010-11-07 11:15:12 | 00,022,024 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\fnetmon.sys
[2010-11-07 11:15:09 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup
[2010-11-07 11:15:08 | 00,026,696 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\pavboot.sys
[2010-11-07 11:14:59 | 00,054,832 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\pavcpl.cpl
[2010-11-07 11:14:54 | 00,446,464 | ---- | C] (eHelp Corporation.) -- C:\WINDOWS\System32\HHActiveX.dll
[2010-11-07 11:14:48 | 00,193,792 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\TpUtil.dll
[2010-11-07 11:14:48 | 00,107,568 | ---- | C] (Panda Software) -- C:\WINDOWS\System32\SYSTOOLS.DLL
[2010-11-07 11:14:48 | 00,087,296 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavLspHook.dll
[2010-11-07 11:14:48 | 00,055,552 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\pavipc.dll
[2010-11-07 11:14:47 | 00,518,400 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\PavSHook.dll
[2010-11-07 11:14:44 | 00,199,688 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\neti1642.sys
[2010-11-07 11:14:42 | 00,059,080 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\amm8651.sys
[2010-11-07 11:14:42 | 00,055,552 | ---- | C] (On-Access Anti-Malware Scanner Sync) -- C:\WINDOWS\System32\avldr.dll
[2010-11-07 11:14:42 | 00,000,000 | ---D | C] -- C:\WINDOWS\System32\PAV
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Program Files\Panda Security
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security
[2010-11-07 11:14:41 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security
[2010-11-07 11:12:49 | 00,163,336 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\PavProc.sys
[2010-11-07 11:12:49 | 00,037,896 | ---- | C] (Panda Security, S.L.) -- C:\WINDOWS\System32\drivers\ShlDrv51.sys
[2010-11-07 11:10:59 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Panda Security
[2010-11-04 01:15:04 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll64X.dll
[2010-11-04 00:40:40 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\HP
[2010-11-04 00:40:36 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Moje zeskanowane obrazy
[2010-11-04 00:33:59 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HP
[2010-11-04 00:29:26 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG
[2010-11-04 00:28:11 | 00,049,920 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZid412.sys
[2010-11-04 00:28:11 | 00,016,496 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZipr12.sys
[2010-11-04 00:28:04 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard
[2010-11-04 00:27:55 | 00,271,704 | ---- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpzids01.dll
[2010-11-04 00:27:53 | 00,117,760 | ---- | C] (Hewlett-Packard Company) -- C:\WINDOWS\System32\hpzll5ha.dll
[2010-11-04 00:27:46 | 00,021,568 | R--- | C] (HP) -- C:\WINDOWS\System32\drivers\HPZius12.sys
[2010-11-04 00:27:34 | 00,675,840 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hpowiax3.dll
[2010-11-04 00:27:34 | 00,569,344 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpotscl3.dll
[2010-11-04 00:27:34 | 00,364,544 | R--- | C] (Hewlett-Packard) -- C:\WINDOWS\System32\hppldcoi.dll
[2010-11-04 00:27:34 | 00,309,760 | R--- | C] (Microsoft Corporation) -- C:\WINDOWS\System32\difxapi.dll
[2010-11-04 00:27:34 | 00,303,104 | R--- | C] (Hewlett-Packard Co.) -- C:\WINDOWS\System32\hpovst10.dll
[2010-11-04 00:26:03 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY
[2010-11-04 00:25:58 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData
[2010-11-04 00:25:06 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant
[2010-11-04 00:25:05 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\HP
[2010-11-04 00:24:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\HP
[2010-11-04 00:24:43 | 00,000,000 | ---D | C] -- C:\Program Files\Hewlett-Packard
[2010-11-04 00:24:34 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Hewlett-Packard
[2010-11-04 00:23:35 | 00,000,000 | ---D | C] -- C:\Program Files\HP
[2010-11-04 00:23:17 | 00,000,000 | -H-D | C] -- C:\Config.Msi
[2010-10-26 15:00:48 | 00,153,376 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaws.exe
[2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\javaw.exe
[2010-10-26 15:00:48 | 00,145,184 | ---- | C] (Sun Microsystems, Inc.) -- C:\WINDOWS\System32\java.exe
[2010-10-16 19:47:17 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\FLEXnet
[2010-10-16 19:42:13 | 00,000,000 | ---D | C] -- C:\Program Files\Adobe Media Player
[2010-10-16 19:35:00 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Macrovision Shared
[2010-10-16 16:48:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Ableton
[2010-10-16 16:48:16 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton
[2010-10-16 16:48:15 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton
[2010-10-10 17:19:44 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Application Data
[2010-10-10 13:01:46 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2010-10-10 12:56:30 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe AIR
[2010-10-09 17:12:41 | 00,000,000 | ---D | C] -- C:\Program Files\Audio Phonics, Inc
[2010-10-09 17:12:24 | 00,299,520 | ---- | C] (InstallShield Corporation, Inc.) -- C:\WINDOWS\uninst.exe
[2010-10-09 17:12:12 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\WINDOWS
[2010-10-09 17:09:18 | 00,000,000 | ---D | C] -- C:\Program Files\AP Tuner
[2010-10-09 14:43:28 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\Anvsoft
[2010-10-09 14:43:23 | 00,000,000 | ---D | C] -- C:\Program Files\AnvSoft
[2010-10-07 09:54:56 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Adobe
[2010-10-06 22:31:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\My Games
[2010-10-06 22:31:24 | 00,000,000 | ---D | C] -- C:\Documents and Settings\Damiano\Moje dokumenty\My Games
[2010-10-06 22:26:42 | 00,000,000 | ---D | C] -- C:\Program Files\2K Games
[2010-09-28 22:11:23 | 00,000,000 | ---D | C] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-09-26 14:19:45 | 00,000,000 | ---D | C] -- C:\Program Files\Skrybot
[2010-04-29 10:41:30 | 00,000,000 | ---D | M] -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\ESET
[2009-12-29 22:07:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\NetworkService\Ustawienia lokalne\Dane aplikacji\Microsoft
[2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\NetworkService\Dane aplikacji\Microsoft
[2009-12-29 22:06:04 | 00,000,000 | --SD | M] -- C:\Documents and Settings\LocalService\Dane aplikacji\Microsoft

[color=#E56717]========== Files - Modified Within 60 Days ==========[/color]

[2010-11-25 11:35:13 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls.bck
[2010-11-25 11:35:13 | 00,418,468 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.rls
[2010-11-25 11:35:13 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck
[2010-11-25 11:35:13 | 00,001,132 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG
[2010-11-25 11:35:13 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg.bck
[2010-11-25 11:35:13 | 00,000,252 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\IdsFlt.cfg
[2010-11-25 11:35:13 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt.bck
[2010-11-25 11:35:13 | 00,000,080 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetLoc.wlt
[2010-11-25 11:35:13 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg.bck
[2010-11-25 11:35:13 | 00,000,068 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetFlt.cfg
[2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg.bck
[2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\WnmFlt.cfg
[2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg.bck
[2010-11-25 11:35:13 | 00,000,056 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\DsaFlt.cfg
[2010-11-25 11:32:33 | 00,177,995 | ---- | M] () -- C:\WINDOWS\System32\nvapps.xml
[2010-11-25 11:32:03 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt.bck
[2010-11-25 11:32:03 | 00,000,064 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAR.wlt
[2010-11-25 11:31:30 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg.bck
[2010-11-25 11:31:30 | 00,000,088 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\NetAdapt.cfg
[2010-11-25 11:31:18 | 00,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2010-11-25 11:31:13 | 00,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2010-11-25 11:31:09 | 16,101,29408 | -HS- | M] () -- C:\hiberfil.sys
[2010-11-25 11:08:16 | 00,255,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck
[2010-11-25 11:08:16 | 00,255,832 | ---- | M] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT
[2010-11-25 11:04:49 | 04,718,592 | ---- | M] () -- C:\Documents and Settings\Damiano\ntuser.dat
[2010-11-25 10:53:00 | 00,001,140 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job
[2010-11-24 22:37:05 | 00,000,188 | -HS- | M] () -- C:\Documents and Settings\Damiano\ntuser.ini
[2010-11-24 21:28:36 | 00,062,976 | ---- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-11-24 19:59:46 | 00,000,496 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Skrót do CoD2SP_s.lnk
[2010-11-24 19:56:25 | 00,000,256 | ---- | M] () -- C:\WINDOWS\game.ini
[2010-11-24 18:23:54 | 00,008,627 | ---- | M] () -- C:\WINDOWS\System32\PAV_FOG.OPC
[2010-11-22 22:53:00 | 00,001,088 | ---- | M] () -- C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job
[2010-11-19 10:54:40 | 02,430,226 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg
[2010-11-19 10:35:36 | 02,111,570 | -H-- | M] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-11-18 22:23:39 | 05,963,776 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3
[2010-11-18 13:29:53 | 00,000,636 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk
[2010-11-17 22:50:06 | 00,001,778 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk
[2010-11-17 21:21:32 | 00,000,748 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk
[2010-11-17 11:20:30 | 00,001,729 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2010-11-15 19:51:43 | 00,138,968 | ---- | M] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.xtr
[2010-11-15 19:51:34 | 00,214,592 | ---- | M] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2010-11-14 19:56:49 | 00,001,113 | ---- | M] () -- C:\WINDOWS\win.ini
[2010-11-12 19:06:35 | 00,002,206 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2010-11-07 13:55:23 | 00,002,318 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Google Chrome.lnk
[2010-11-07 13:35:07 | 00,008,627 | ---- | M] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC
[2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt.bck
[2010-11-07 13:23:06 | 00,000,208 | ---- | M] () -- C:\WINDOWS\System32\drivers\etc\wnmth.wlt
[2010-11-07 11:16:28 | 00,451,352 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2010-11-07 11:16:28 | 00,395,200 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2010-11-07 11:16:28 | 00,075,486 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2010-11-07 11:16:28 | 00,059,440 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2010-11-07 11:16:26 | 00,993,526 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-11-07 11:15:23 | 00,000,262 | ---- | M] () -- C:\WINDOWS\System32\PavCPL.dat
[2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job
[2010-11-07 11:07:36 | 00,002,596 | ---- | M] () -- C:\WINDOWS\System32\CONFIG.NT
[2010-11-06 19:38:27 | 00,000,552 | ---- | M] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010-11-04 00:28:47 | 00,153,522 | ---- | M] () -- C:\WINDOWS\hpoins14.dat
[2010-11-04 00:26:27 | 00,001,858 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk
[2010-11-04 00:26:03 | 00,001,746 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk
[2010-11-04 00:25:31 | 00,001,808 | ---- | M] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-04 00:25:15 | 00,000,862 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-10-30 17:36:28 | 00,000,809 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk
[2010-10-25 21:55:37 | 00,000,162 | -H-- | M] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx
[2010-10-16 20:38:07 | 00,000,647 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Adobe Flash CS4 Professional.lnk
[2010-10-13 21:08:11 | 00,002,234 | ---- | M] () -- C:\Documents and Settings\Damiano\Moje dokumenty\PDVD_MediaDisc.PlayList
[2010-10-09 17:15:52 | 00,002,267 | ---- | M] () -- C:\Documents and Settings\All Users\Pulpit\Skype.lnk
[2010-10-06 22:35:42 | 00,000,692 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Colonization.lnk
[2010-10-04 20:12:27 | 00,029,113 | ---- | M] () -- C:\Documents and Settings\Damiano\Moje dokumenty\Kontakty_10703490.xml
[2010-09-29 10:06:39 | 01,582,904 | ---- | M] () -- C:\WINDOWS\WANEUninstaller.exe
[2010-09-29 10:06:37 | 00,000,696 | ---- | M] () -- C:\Documents and Settings\Damiano\Pulpit\Worms Armageddon.lnk

[color=#E56717]========== Files Created - No Company Name ==========[/color]

[2010-11-24 19:59:46 | 00,000,496 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Skrót do CoD2SP_s.lnk
[2010-11-24 19:56:58 | 00,354,816 | ---- | C] () -- C:\WINDOWS\System32\psisdecd.dll
[2010-11-24 19:56:58 | 00,030,208 | ---- | C] () -- C:\WINDOWS\System32\psisrndr.ax
[2010-11-24 19:56:57 | 00,733,184 | ---- | C] () -- C:\WINDOWS\System32\dllcache\qedwipes.dll
[2010-11-24 19:56:57 | 00,052,224 | ---- | C] () -- C:\WINDOWS\System32\msdvbnp.ax
[2010-11-24 19:56:57 | 00,013,312 | ---- | C] () -- C:\WINDOWS\System32\dllcache\msdmo.dll
[2010-11-24 19:56:56 | 00,136,192 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mpg2splt.ax
[2010-11-24 19:56:56 | 00,064,512 | ---- | C] () -- C:\WINDOWS\System32\dllcache\amstream.dll
[2010-11-24 19:56:56 | 00,034,304 | ---- | C] () -- C:\WINDOWS\System32\dllcache\mciqtz32.dll
[2010-11-24 19:56:25 | 00,000,256 | ---- | C] () -- C:\WINDOWS\game.ini
[2010-11-19 10:54:40 | 02,430,226 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\wallpaper-824761.jpg
[2010-11-18 22:04:57 | 05,963,776 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\We Be Burnin.mp3
[2010-11-18 13:29:53 | 00,000,636 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Defraggler.lnk
[2010-11-17 22:50:06 | 00,001,778 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HDD Regenerator.lnk
[2010-11-17 21:21:32 | 00,000,748 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\ActiveSMART.lnk
[2010-11-07 13:04:54 | 00,008,627 | ---- | C] () -- C:\Documents and Settings\Damiano\PAV_FOG.OPC
[2010-11-07 11:31:11 | 00,008,627 | ---- | C] () -- C:\WINDOWS\System32\PAV_FOG.OPC
[2010-11-07 11:15:23 | 00,000,262 | ---- | C] () -- C:\WINDOWS\System32\PavCPL.dat
[2010-11-07 11:15:20 | 00,255,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT.bck
[2010-11-07 11:15:20 | 00,255,832 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFCONT.DAT
[2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG.bck
[2010-11-07 11:15:20 | 00,001,132 | ---- | C] () -- C:\WINDOWS\System32\drivers\APPFLTR.CFG
[2010-11-07 11:15:11 | 00,000,498 | ---- | C] () -- C:\WINDOWS\tasks\Podstawowe porządkowanie.job
[2010-11-06 20:08:19 | 00,213,493 | ---- | C] () -- C:\WINDOWS\System32\nvdspcht.chm
[2010-11-06 20:08:19 | 00,139,792 | ---- | C] () -- C:\WINDOWS\System32\nv3dcht.chm
[2010-11-06 20:08:19 | 00,124,817 | ---- | C] () -- C:\WINDOWS\System32\nvcplcht.chm
[2010-11-06 20:08:19 | 00,059,261 | ---- | C] () -- C:\WINDOWS\System32\nvmobcht.chm
[2010-11-06 20:08:18 | 00,220,312 | ---- | C] () -- C:\WINDOWS\System32\nvdsptha.chm
[2010-11-06 20:08:18 | 00,219,669 | ---- | C] () -- C:\WINDOWS\System32\nvdspchs.chm
[2010-11-06 20:08:18 | 00,210,720 | ---- | C] () -- C:\WINDOWS\System32\nvdsptrk.chm
[2010-11-06 20:08:18 | 00,206,105 | ---- | C] () -- C:\WINDOWS\System32\nvdspslv.chm
[2010-11-06 20:08:18 | 00,195,910 | ---- | C] () -- C:\WINDOWS\System32\nvdspsve.chm
[2010-11-06 20:08:18 | 00,137,045 | ---- | C] () -- C:\WINDOWS\System32\nv3dtha.chm
[2010-11-06 20:08:18 | 00,134,133 | ---- | C] () -- C:\WINDOWS\System32\nv3dchs.chm
[2010-11-06 20:08:18 | 00,133,761 | ---- | C] () -- C:\WINDOWS\System32\nv3dtrk.chm
[2010-11-06 20:08:18 | 00,128,913 | ---- | C] () -- C:\WINDOWS\System32\nv3dslv.chm
[2010-11-06 20:08:18 | 00,128,148 | ---- | C] () -- C:\WINDOWS\System32\nvcpltha.chm
[2010-11-06 20:08:18 | 00,126,892 | ---- | C] () -- C:\WINDOWS\System32\nvcpltrk.chm
[2010-11-06 20:08:18 | 00,124,964 | ---- | C] () -- C:\WINDOWS\System32\nvcplslv.chm
[2010-11-06 20:08:18 | 00,124,229 | ---- | C] () -- C:\WINDOWS\System32\nvcplchs.chm
[2010-11-06 20:08:18 | 00,122,675 | ---- | C] () -- C:\WINDOWS\System32\nvcplsve.chm
[2010-11-06 20:08:18 | 00,118,734 | ---- | C] () -- C:\WINDOWS\System32\nv3dsve.chm
[2010-11-06 20:08:18 | 00,059,225 | ---- | C] () -- C:\WINDOWS\System32\nvmobtha.chm
[2010-11-06 20:08:18 | 00,058,607 | ---- | C] () -- C:\WINDOWS\System32\nvmobchs.chm
[2010-11-06 20:08:18 | 00,057,450 | ---- | C] () -- C:\WINDOWS\System32\nvmobtrk.chm
[2010-11-06 20:08:18 | 00,057,380 | ---- | C] () -- C:\WINDOWS\System32\nvmobslv.chm
[2010-11-06 20:08:18 | 00,055,693 | ---- | C] () -- C:\WINDOWS\System32\nvmobsve.chm
[2010-11-06 20:08:17 | 00,217,076 | ---- | C] () -- C:\WINDOWS\System32\nvdspsky.chm
[2010-11-06 20:08:17 | 00,214,210 | ---- | C] () -- C:\WINDOWS\System32\nvdsprus.chm
[2010-11-06 20:08:17 | 00,205,816 | ---- | C] () -- C:\WINDOWS\System32\nvdspplk.chm
[2010-11-06 20:08:17 | 00,194,380 | ---- | C] () -- C:\WINDOWS\System32\nvdspptg.chm
[2010-11-06 20:08:17 | 00,189,104 | ---- | C] () -- C:\WINDOWS\System32\nvdspptb.chm
[2010-11-06 20:08:17 | 00,189,041 | ---- | C] () -- C:\WINDOWS\System32\nvdspnor.chm
[2010-11-06 20:08:17 | 00,130,245 | ---- | C] () -- C:\WINDOWS\System32\nv3dplk.chm
[2010-11-06 20:08:17 | 00,129,550 | ---- | C] () -- C:\WINDOWS\System32\nv3dptg.chm
[2010-11-06 20:08:17 | 00,129,499 | ---- | C] () -- C:\WINDOWS\System32\nv3dsky.chm
[2010-11-06 20:08:17 | 00,126,976 | ---- | C] () -- C:\WINDOWS\System32\nv3drus.chm
[2010-11-06 20:08:17 | 00,126,105 | ---- | C] () -- C:\WINDOWS\System32\nvcplsky.chm
[2010-11-06 20:08:17 | 00,125,181 | ---- | C] () -- C:\WINDOWS\System32\nvcplrus.chm
[2010-11-06 20:08:17 | 00,124,078 | ---- | C] () -- C:\WINDOWS\System32\nvcplptb.chm
[2010-11-06 20:08:17 | 00,124,044 | ---- | C] () -- C:\WINDOWS\System32\nvcplptg.chm
[2010-11-06 20:08:17 | 00,124,019 | ---- | C] () -- C:\WINDOWS\System32\nvcplplk.chm
[2010-11-06 20:08:17 | 00,120,026 | ---- | C] () -- C:\WINDOWS\System32\nvcplnor.chm
[2010-11-06 20:08:17 | 00,119,706 | ---- | C] () -- C:\WINDOWS\System32\nv3dnor.chm
[2010-11-06 20:08:17 | 00,118,410 | ---- | C] () -- C:\WINDOWS\System32\nv3dptb.chm
[2010-11-06 20:08:17 | 00,057,545 | ---- | C] () -- C:\WINDOWS\System32\nvmobsky.chm
[2010-11-06 20:08:17 | 00,057,376 | ---- | C] () -- C:\WINDOWS\System32\nvmobplk.chm
[2010-11-06 20:08:17 | 00,057,339 | ---- | C] () -- C:\WINDOWS\System32\nvmobrus.chm
[2010-11-06 20:08:17 | 00,055,946 | ---- | C] () -- C:\WINDOWS\System32\nvmobptb.chm
[2010-11-06 20:08:17 | 00,055,845 | ---- | C] () -- C:\WINDOWS\System32\nvmobptg.chm
[2010-11-06 20:08:17 | 00,055,525 | ---- | C] () -- C:\WINDOWS\System32\nvmobnor.chm
[2010-11-06 20:08:16 | 00,251,599 | ---- | C] () -- C:\WINDOWS\System32\nvdspjpn.chm
[2010-11-06 20:08:16 | 00,224,281 | ---- | C] () -- C:\WINDOWS\System32\nvdspkor.chm
[2010-11-06 20:08:16 | 00,207,116 | ---- | C] () -- C:\WINDOWS\System32\nvdspheb.chm
[2010-11-06 20:08:16 | 00,203,902 | ---- | C] () -- C:\WINDOWS\System32\nvdsphun.chm
[2010-11-06 20:08:16 | 00,201,378 | ---- | C] () -- C:\WINDOWS\System32\nvdspita.chm
[2010-11-06 20:08:16 | 00,189,364 | ---- | C] () -- C:\WINDOWS\System32\nvdspnld.chm
[2010-11-06 20:08:16 | 00,189,184 | ---- | C] () -- C:\WINDOWS\System32\nvdspfra.chm
[2010-11-06 20:08:16 | 00,144,421 | ---- | C] () -- C:\WINDOWS\System32\nv3djpn.chm
[2010-11-06 20:08:16 | 00,132,251 | ---- | C] () -- C:\WINDOWS\System32\nv3dkor.chm
[2010-11-06 20:08:16 | 00,132,088 | ---- | C] () -- C:\WINDOWS\System32\nv3dheb.chm
[2010-11-06 20:08:16 | 00,131,070 | ---- | C] () -- C:\WINDOWS\System32\nv3dhun.chm
[2010-11-06 20:08:16 | 00,129,704 | ---- | C] () -- C:\WINDOWS\System32\nvcpljpn.chm
[2010-11-06 20:08:16 | 00,126,196 | ---- | C] () -- C:\WINDOWS\System32\nvcplheb.chm
[2010-11-06 20:08:16 | 00,125,552 | ---- | C] () -- C:\WINDOWS\System32\nvcplhun.chm
[2010-11-06 20:08:16 | 00,124,741 | ---- | C] () -- C:\WINDOWS\System32\nvcplkor.chm
[2010-11-06 20:08:16 | 00,124,148 | ---- | C] () -- C:\WINDOWS\System32\nvcplita.chm
[2010-11-06 20:08:16 | 00,122,809 | ---- | C] () -- C:\WINDOWS\System32\nvcplnld.chm
[2010-11-06 20:08:16 | 00,121,053 | ---- | C] () -- C:\WINDOWS\System32\nv3dita.chm
[2010-11-06 20:08:16 | 00,119,315 | ---- | C] () -- C:\WINDOWS\System32\nv3dfra.chm
[2010-11-06 20:08:16 | 00,118,401 | ---- | C] () -- C:\WINDOWS\System32\nv3dnld.chm
[2010-11-06 20:08:16 | 00,060,357 | ---- | C] () -- C:\WINDOWS\System32\nvmobjpn.chm
[2010-11-06 20:08:16 | 00,059,061 | ---- | C] () -- C:\WINDOWS\System32\nvmobkor.chm
[2010-11-06 20:08:16 | 00,058,340 | ---- | C] () -- C:\WINDOWS\System32\nvmobheb.chm
[2010-11-06 20:08:16 | 00,057,512 | ---- | C] () -- C:\WINDOWS\System32\nvmobhun.chm
[2010-11-06 20:08:16 | 00,056,175 | ---- | C] () -- C:\WINDOWS\System32\nvmobita.chm
[2010-11-06 20:08:16 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobfra.chm
[2010-11-06 20:08:16 | 00,055,475 | ---- | C] () -- C:\WINDOWS\System32\nvmobnld.chm
[2010-11-06 20:08:15 | 00,197,555 | ---- | C] () -- C:\WINDOWS\System32\nvdspesm.chm
[2010-11-06 20:08:15 | 00,196,421 | ---- | C] () -- C:\WINDOWS\System32\nvdspesn.chm
[2010-11-06 20:08:15 | 00,195,677 | ---- | C] () -- C:\WINDOWS\System32\nvdspfin.chm
[2010-11-06 20:08:15 | 00,182,024 | ---- | C] () -- C:\WINDOWS\System32\nvdspeng.chm
[2010-11-06 20:08:15 | 00,124,544 | ---- | C] () -- C:\WINDOWS\System32\nvcplfin.chm
[2010-11-06 20:08:15 | 00,124,278 | ---- | C] () -- C:\WINDOWS\System32\nv3dfin.chm
[2010-11-06 20:08:15 | 00,124,138 | ---- | C] () -- C:\WINDOWS\System32\nvcplesm.chm
[2010-11-06 20:08:15 | 00,124,084 | ---- | C] () -- C:\WINDOWS\System32\nvcplesn.chm
[2010-11-06 20:08:15 | 00,122,227 | ---- | C] () -- C:\WINDOWS\System32\nvcplfra.chm
[2010-11-06 20:08:15 | 00,121,758 | ---- | C] () -- C:\WINDOWS\System32\nvcpleng.chm
[2010-11-06 20:08:15 | 00,118,608 | ---- | C] () -- C:\WINDOWS\System32\nv3desm.chm
[2010-11-06 20:08:15 | 00,117,909 | ---- | C] () -- C:\WINDOWS\System32\nv3desn.chm
[2010-11-06 20:08:15 | 00,117,083 | ---- | C] () -- C:\WINDOWS\System32\nv3deng.chm
[2010-11-06 20:08:15 | 00,059,100 | ---- | C] () -- C:\WINDOWS\System32\nvmobell.chm
[2010-11-06 20:08:15 | 00,056,934 | ---- | C] () -- C:\WINDOWS\System32\nvmobfin.chm
[2010-11-06 20:08:15 | 00,055,992 | ---- | C] () -- C:\WINDOWS\System32\nvmobesm.chm
[2010-11-06 20:08:15 | 00,055,669 | ---- | C] () -- C:\WINDOWS\System32\nvmobesn.chm
[2010-11-06 20:08:15 | 00,055,103 | ---- | C] () -- C:\WINDOWS\System32\nvmobeng.chm
[2010-11-06 20:08:14 | 00,220,768 | ---- | C] () -- C:\WINDOWS\System32\nvdspell.chm
[2010-11-06 20:08:14 | 00,219,156 | ---- | C] () -- C:\WINDOWS\System32\nvdspcsy.chm
[2010-11-06 20:08:14 | 00,200,405 | ---- | C] () -- C:\WINDOWS\System32\nvdspara.chm
[2010-11-06 20:08:14 | 00,197,544 | ---- | C] () -- C:\WINDOWS\System32\nvdspdeu.chm
[2010-11-06 20:08:14 | 00,188,707 | ---- | C] () -- C:\WINDOWS\System32\nvdspdan.chm
[2010-11-06 20:08:14 | 00,181,895 | ---- | C] () -- C:\WINDOWS\System32\nvdsp.chm
[2010-11-06 20:08:14 | 00,131,422 | ---- | C] () -- C:\WINDOWS\System32\nv3dell.chm
[2010-11-06 20:08:14 | 00,128,958 | ---- | C] () -- C:\WINDOWS\System32\nv3dcsy.chm
[2010-11-06 20:08:14 | 00,128,544 | ---- | C] () -- C:\WINDOWS\System32\nv3dara.chm
[2010-11-06 20:08:14 | 00,126,670 | ---- | C] () -- C:\WINDOWS\System32\nvcplell.chm
[2010-11-06 20:08:14 | 00,125,735 | ---- | C] () -- C:\WINDOWS\System32\nvcplara.chm
[2010-11-06 20:08:14 | 00,124,590 | ---- | C] () -- C:\WINDOWS\System32\nvcpldeu.chm
[2010-11-06 20:08:14 | 00,124,067 | ---- | C] () -- C:\WINDOWS\System32\nvcplcsy.chm
[2010-11-06 20:08:14 | 00,123,526 | ---- | C] () -- C:\WINDOWS\System32\nv3ddeu.chm
[2010-11-06 20:08:14 | 00,121,529 | ---- | C] () -- C:\WINDOWS\System32\nvcpl.chm
[2010-11-06 20:08:14 | 00,120,933 | ---- | C] () -- C:\WINDOWS\System32\nvcpldan.chm
[2010-11-06 20:08:14 | 00,118,926 | ---- | C] () -- C:\WINDOWS\System32\nv3ddan.chm
[2010-11-06 20:08:14 | 00,116,384 | ---- | C] () -- C:\WINDOWS\System32\nv3d.chm
[2010-11-06 20:08:14 | 00,057,387 | ---- | C] () -- C:\WINDOWS\System32\nvmobcsy.chm
[2010-11-06 20:08:14 | 00,057,328 | ---- | C] () -- C:\WINDOWS\System32\nvmobara.chm
[2010-11-06 20:08:14 | 00,056,087 | ---- | C] () -- C:\WINDOWS\System32\nvmobdeu.chm
[2010-11-06 20:08:14 | 00,055,622 | ---- | C] () -- C:\WINDOWS\System32\nvmobdan.chm
[2010-11-06 20:08:14 | 00,054,988 | ---- | C] () -- C:\WINDOWS\System32\nvmob.chm
[2010-11-06 19:38:27 | 00,000,552 | ---- | C] () -- C:\WINDOWS\System32\d3d8caps.dat
[2010-11-04 00:26:27 | 00,001,858 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\HP Photosmart Essential 2.01.lnk
[2010-11-04 00:26:03 | 00,001,746 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Zakup materiałów eksploatacyjnych HP.lnk
[2010-11-04 00:25:31 | 00,001,808 | ---- | C] () -- C:\Documents and Settings\All Users\Menu Start\Programy\Autostart\HP Digital Imaging Monitor.lnk
[2010-11-04 00:25:15 | 00,000,862 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Centrum obsługi HP.lnk
[2010-11-04 00:21:52 | 00,000,741 | ---- | C] () -- C:\Documents and Settings\All Users\Dane aplikacji\hpzinstall.log
[2010-11-04 00:21:49 | 00,153,522 | ---- | C] () -- C:\WINDOWS\hpoins14.dat
[2010-11-04 00:21:49 | 00,002,000 | ---- | C] () -- C:\WINDOWS\hpomdl14.dat
[2010-10-30 17:36:28 | 00,000,809 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Stroik.lnk
[2010-10-25 21:55:37 | 00,000,162 | -H-- | C] () -- C:\Documents and Settings\Damiano\Pulpit\~$ewna ballada.docx
[2010-10-17 20:01:40 | 04,718,592 | ---- | C] () -- C:\Documents and Settings\Damiano\ntuser.dat
[2010-10-16 20:38:07 | 00,000,647 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Adobe Flash CS4 Professional.lnk
[2010-10-13 21:08:11 | 00,002,234 | ---- | C] () -- C:\Documents and Settings\Damiano\Moje dokumenty\PDVD_MediaDisc.PlayList
[2010-10-07 09:55:09 | 00,001,729 | ---- | C] () -- C:\Documents and Settings\All Users\Pulpit\Adobe Reader 9.lnk
[2010-10-06 22:35:42 | 00,000,692 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Colonization.lnk
[2010-10-04 20:12:27 | 00,029,113 | ---- | C] () -- C:\Documents and Settings\Damiano\Moje dokumenty\Kontakty_10703490.xml
[2010-09-29 10:06:37 | 01,582,904 | ---- | C] () -- C:\WINDOWS\WANEUninstaller.exe
[2010-09-29 10:06:37 | 00,000,696 | ---- | C] () -- C:\Documents and Settings\Damiano\Pulpit\Worms Armageddon.lnk
[2010-08-07 14:33:37 | 00,000,062 | ---- | C] () -- C:\WINDOWS\wininit.ini
[2010-08-06 09:27:39 | 00,139,152 | ---- | C] () -- C:\Documents and Settings\Damiano\Dane aplikacji\PnkBstrK.sys
[2010-08-06 09:27:39 | 00,138,968 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2010-05-22 12:51:08 | 00,007,168 | ---- | C] () -- C:\WINDOWS\System32\drivers\StarOpen.sys
[2010-01-18 19:13:01 | 00,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-01-16 10:30:32 | 00,130,048 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-01-16 10:30:27 | 00,207,360 | ---- | C] () -- C:\WINDOWS\System32\evrprop.dll
[2010-01-16 10:29:53 | 00,079,360 | ---- | C] () -- C:\WINDOWS\System32\mkzlib.dll
[2010-01-16 10:29:52 | 00,023,552 | ---- | C] () -- C:\WINDOWS\System32\mkunicode.dll
[2010-01-06 22:48:26 | 00,003,972 | ---- | C] () -- C:\WINDOWS\System32\drivers\PciBus.sys
[2010-01-06 21:28:47 | 00,000,172 | ---- | C] () -- C:\WINDOWS\RtlRack.ini
[2010-01-06 21:20:58 | 00,155,648 | ---- | C] () -- C:\WINDOWS\System32\RTLCPAPI.dll
[2010-01-06 21:20:58 | 00,000,164 | ---- | C] () -- C:\WINDOWS\avrack.ini
[2010-01-01 19:44:58 | 00,062,976 | ---- | C] () -- C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2005-12-10 03:06:00 | 01,703,936 | ---- | C] () -- C:\WINDOWS\System32\nvwdmcpl.dll
[2005-12-10 03:06:00 | 01,486,848 | ---- | C] () -- C:\WINDOWS\System32\nview.dll
[2005-12-10 03:06:00 | 01,019,904 | ---- | C] () -- C:\WINDOWS\System32\nvwimg.dll
[2005-12-10 03:06:00 | 00,573,440 | ---- | C] () -- C:\WINDOWS\System32\nvhwvid.dll
[2005-12-10 03:06:00 | 00,466,944 | ---- | C] () -- C:\WINDOWS\System32\nvshell.dll
[2005-12-10 03:06:00 | 00,286,720 | ---- | C] () -- C:\WINDOWS\System32\nvnt4cpl.dll
[2005-12-10 03:06:00 | 00,110,592 | ---- | C] () -- C:\WINDOWS\System32\nvapi.dll

[color=#E56717]========== LOP Check ==========[/color]

[2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Ableton
[2010-11-25 09:23:34 | 00,000,000 | -H-D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART
[2010-09-28 22:11:23 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Alwil Software
[2010-11-07 11:15:09 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Backup
[2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Canneverbe Limited
[2010-01-18 19:12:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\DAEMON Tools Lite
[2010-03-14 19:20:34 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ESET
[2010-05-08 00:21:13 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Gadu-Gadu 10
[2010-02-18 00:51:28 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\ipla
[2010-01-18 19:10:56 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\OpenFM
[2010-11-07 11:15:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security
[2010-10-10 18:07:25 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\regid.1986-12.com.adobe
[2010-06-05 20:28:00 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\Sports Interactive
[2010-11-23 13:24:52 | 00,000,000 | ---D | M] -- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
[2010-10-16 16:48:16 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Ableton
[2010-05-22 12:51:29 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Canneverbe Limited
[2010-01-18 19:15:54 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\DAEMON Tools Lite
[2010-09-27 15:55:46 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Gadu-Gadu 10
[2010-10-09 10:15:44 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\ipla
[2010-01-23 23:58:06 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Leadertech
[2010-01-18 19:10:17 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\OpenFM
[2010-11-07 11:14:41 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security
[2010-06-05 20:19:11 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Sports Interactive
[2010-09-04 20:56:05 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\Tlen.pl
[2010-11-25 11:42:07 | 00,000,000 | ---D | M] -- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent
[2010-11-07 11:15:11 | 00,000,498 | ---- | M] () -- C:\WINDOWS\Tasks\Podstawowe porządkowanie.job

[color=#E56717]========== Purity Check ==========[/color]


< End of report >
[/log]

Log RSIT:
[log]Logfile of random's system information tool 1.08 (written by random/random)
Run by Damiano at 2010-11-25 11:44:33
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 4 GB (30%) free of 15 GB
Total RAM: 1535 MB (64% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 11:44:48, on 2010-11-25
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP3 (6.00.2900.5512)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe
C:\PROGRAM FILES\PANDA SECURITY\PANDA GLOBAL PROTECTION 2011\WebProxy.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Program Files\ActiveSMART 2.8\ASmartService.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Java\jre6\bin\jqs.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\CDBurnerXP\NMSAccessU.exe
C:\WINDOWS\system32\nvsvc32.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe
C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
C:\WINDOWS\System32\svchost.exe
C:\WINDOWS\system32\PnkBstrA.exe
c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE
C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe
C:\WINDOWS\system32\svchost.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\AVENGINE.EXE
C:\Program Files\ActiveSMART 2.8\ActiveSMART.exe
C:\WINDOWS\Explorer.EXE
C:\Program Files\Panda Security\Panda Global Protection 2011\ApVxdWin.exe
C:\WINDOWS\notepad.exe
C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe
C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe
C:\Program Files\Common Files\Java\Java Update\jusched.exe
C:\WINDOWS\System32\svchost.exe
C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
C:\WINDOWS\system32\RUNDLL32.EXE
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\uTorrent\uTorrent.exe
C:\Program Files\DAEMON Tools Lite\DTLite.exe
C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
C:\Program Files\RALINK\Common\RaUI.exe
C:\Program Files\HP\Digital Imaging\bin\hpqSTE08.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\SRVLOAD.EXE
C:\Program Files\Panda Security\Panda Global Protection 2011\PavBckPT.exe
C:\WINDOWS\notepad.exe
D:\Pobieranie\RSIT.exe
C:\Program Files\trend micro\Damiano.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\avciman.exe
C:\Program Files\Panda Security\Panda Global Protection 2011\psimreal.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: HP Print Enhancer - {0347C33E-8762-4905-BF09-768834316C61} - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll
O2 - BHO: HP Print Clips - {053F9267-DC04-4294-A72C-58F732D338C0} - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O2 - BHO: Groove GFS Browser Helper - {72853161-30C5-4D22-B7F9-0BBC1D38A37E} - C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL
O2 - BHO: SkypeIEPluginBHO - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O2 - BHO: Java(tm) Plug-In 2 SSV Helper - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
O2 - BHO: JQSIEStartDetectorImpl - {E7E6F031-17CE-4C07-BC86-EABFE594F69C} - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll
O4 - HKLM\..\Run: [GrooveMonitor] "C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe"
O4 - HKLM\..\Run: [NVMixerTray] "C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe"
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [RemoteControl] "C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe"
O4 - HKLM\..\Run: [SunJavaUpdateSched] "C:\Program Files\Common Files\Java\Java Update\jusched.exe"
O4 - HKLM\..\Run: [Adobe Reader Speed Launcher] "C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe"
O4 - HKLM\..\Run: [Adobe ARM] "C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe"
O4 - HKLM\..\Run: [AdobeCS4ServiceManager] "C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe" -launchedbylogin
O4 - HKLM\..\Run: [HP Software Update] C:\Program Files\HP\HP Software Update\HPWuSchd2.exe
O4 - HKLM\..\Run: [NvMediaCenter] RUNDLL32.EXE C:\WINDOWS\system32\NvMcTray.dll,NvTaskbarInit
O4 - HKLM\..\Run: [APVXDWIN] "C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE" /s
O4 - HKLM\..\Run: [SCANINICIO] "C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe"
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [KernelFaultCheck] %systemroot%\system32\dumprep 0 -k
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [uTorrent] "C:\Program Files\uTorrent\uTorrent.exe"
O4 - HKCU\..\Run: [Google Update] "C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - HKCU\..\Run: [DAEMON Tools Lite] "C:\Program Files\DAEMON Tools Lite\DTLite.exe" -autorun
O4 - HKUS\S-1-5-19\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-19\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA LOKALNA')
O4 - HKUS\S-1-5-20\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-20\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'USŁUGA SIECIOWA')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\S-1-5-18\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O4 - HKUS\.DEFAULT\..\RunOnce: [nltide_3] rundll32 advpack.dll,LaunchINFSectionEx nLite.inf,C,,4,N (User 'Default user')
O4 - Global Startup: HP Digital Imaging Monitor.lnk = C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
O4 - Global Startup: Ralink Wireless Utility.lnk = C:\Program Files\RALINK\Common\RaUI.exe
O8 - Extra context menu item: E&ksportuj do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~1\Office12\EXCEL.EXE/3000
O9 - Extra button: Wyślij do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra 'Tools' menuitem: Wyślij &do programu OneNote - {2670000A-7350-4f3c-8081-5663EE0C6C49} - C:\PROGRA~1\MICROS~1\Office12\ONBttnIE.dll
O9 - Extra button: Kolekcja wycinków HP - {58ECB495-38F0-49cb-A538-10282ABF65E7} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Zaznaczanie HP Smart - {700259D7-1666-479a-93B1-3250410481E8} - C:\Program Files\HP\Smart Web Printing\hpswp_extensions.dll
O9 - Extra button: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra 'Tools' menuitem: Skype add-on for Internet Explorer - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O9 - Extra button: Research - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~1\Office12\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O18 - Protocol: grooveLocalGWS - {88FED34C-F0CA-4636-A375-3CB6248B04CD} - C:\PROGRA~1\MICROS~1\Office12\GR99D3~1.DLL
O18 - Protocol: skype-ie-addon-data - {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: ActiveSMART Service - Ariolic Software, Ltd. (http://www.ariolic.com) - C:\Program Files\ActiveSMART 2.8\ASmartService.exe
O23 - Service: FLEXnet Licensing Service - Acresso Software Inc. - C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: Java Quick Starter (JavaQuickStarterService) - Sun Microsystems, Inc. - C:\Program Files\Java\jre6\bin\jqs.exe
O23 - Service: NMSAccessU - Unknown owner - C:\Program Files\CDBurnerXP\NMSAccessU.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: Panda Software Controller - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe
O23 - Service: Panda Function Service (PAVFNSVR) - Unknown owner - C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe
O23 - Service: Panda Process Protection Service (PavPrSrv) - Unknown owner - C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe
O23 - Service: Panda On-Access Anti-Malware Service (PAVSRV) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: Panda Host Service (PSHost) - Unknown owner - c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE
O23 - Service: Panda IManager Service (PSIMSVC) - Panda Security S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe
O23 - Service: Panda PSK service (PskSvcRetail) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe
O23 - Service: Panda TPSrv (TPSrv) - Panda Security, S.L. - C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe

--
End of file - 10655 bytes

======Scheduled tasks folder======

C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003Core.job
C:\WINDOWS\tasks\GoogleUpdateTaskUserS-1-5-21-796845957-1715567821-682003330-1003UA.job
C:\WINDOWS\tasks\Podstawowe porządkowanie.job

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{0347C33E-8762-4905-BF09-768834316C61}]
HP Print Enhancer - C:\Program Files\HP\Smart Web Printing\hpswp_printenhancer.dll [2007-03-02 1298024]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{053F9267-DC04-4294-A72C-58F732D338C0}]
HP Print Clips - C:\Program Files\HP\Smart Web Printing\hpswp_framework.dll [2007-03-02 177768]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2010-09-22 75200]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{72853161-30C5-4D22-B7F9-0BBC1D38A37E}]
Groove GFS Browser Helper - C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{AE805869-2E5C-4ED4-8F7B-F1F7851A4497}]
Skype add-on for Internet Explorer - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll [2010-02-08 804136]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{DBC80044-A445-435b-BC74-9C25C1C588A9}]
Java(tm) Plug-In 2 SSV Helper - C:\Program Files\Java\jre6\bin\jp2ssv.dll [2010-09-15 41760]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{E7E6F031-17CE-4C07-BC86-EABFE594F69C}]
JQSIEStartDetectorImpl Class - C:\Program Files\Java\jre6\lib\deploy\jqs\ie\jqs_plugin.dll [2010-09-15 79648]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"GrooveMonitor"=C:\Program Files\Microsoft Office\Office12\GrooveMonitor.exe [2006-10-27 31016]
"NVMixerTray"=C:\Program Files\NVIDIA Corporation\NvMixer\NVMixerTray.exe [2004-12-20 131072]
"nwiz"=nwiz.exe /install []
"RemoteControl"=C:\Program Files\CyberLink\PowerDVD\PDVDServ.exe [2005-01-12 32768]
"SunJavaUpdateSched"=C:\Program Files\Common Files\Java\Java Update\jusched.exe [2010-05-14 248552]
"Adobe Reader Speed Launcher"=C:\Program Files\Adobe\Reader 9.0\Reader\Reader_sl.exe [2010-09-23 35760]
"Adobe ARM"=C:\Program Files\Common Files\Adobe\ARM\1.0\AdobeARM.exe [2010-09-20 932288]
"AdobeCS4ServiceManager"=C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe [2008-08-14 611712]
"HP Software Update"=C:\Program Files\HP\HP Software Update\HPWuSchd2.exe [2007-03-11 49152]
"NvMediaCenter"=C:\WINDOWS\system32\NvMcTray.dll [2005-12-10 86016]
"APVXDWIN"=C:\Program Files\Panda Security\Panda Global Protection 2011\APVXDWIN.EXE [2010-08-26 988480]
"SCANINICIO"=C:\Program Files\Panda Security\Panda Global Protection 2011\Inicio.exe [2010-06-11 68928]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2005-12-10 7311360]
"KernelFaultCheck"=C:\WINDOWS\system32\dumprep 0 -k []
"NWEReboot"= []

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-15 15360]
"uTorrent"=C:\Program Files\uTorrent\uTorrent.exe [2010-09-30 328056]
"Google Update"=C:\Documents and Settings\Damiano\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2010-07-27 136176]
"Skrybot"= []
"AdobeBridge"= []
"DAEMON Tools Lite"=C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2010-04-01 357696]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu 10]
C:\Program Files\Gadu-Gadu 10\gg.exe [2010-10-07 12661344]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvCplDaemon]
C:\WINDOWS\system32\NvCpl.dll [2005-12-10 7311360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Skype]
C:\Program Files\Skype\Phone\Skype.exe [2010-05-13 26192168]

C:\Documents and Settings\All Users\Menu Start\Programy\Autostart
HP Digital Imaging Monitor.lnk - C:\Program Files\HP\Digital Imaging\bin\hpqtra08.exe
Ralink Wireless Utility.lnk - C:\Program Files\RALINK\Common\RaUI.exe

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon\Notify\avldr]
C:\WINDOWS\system32\avldr.dll [2010-03-24 55552]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\ShellExecuteHooks]
"{B5A7F190-DDA6-4420-B3BA-52453494E6CD}"=C:\PROGRA~1\MICROS~1\Office12\GRA8E1~1.DLL [2006-10-27 2210608]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PskSvcRetail]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=145

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"D:\GryNWN2\nwn2main.exe"="D:\GryNWN2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"D:\GryNWN2\nwn2main_amdxp.exe"="D:\GryNWN2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"D:\GryNWN2\nwupdate.exe"="D:\GryNWN2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"D:\GryNWN2\nwn2server.exe"="D:\GryNWN2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"
"D:\Gry\NeverwinterNights2\nwn2main.exe"="D:\Gry\NeverwinterNights2\nwn2main.exe:*:Enabled:Neverwinter Nights 2 Main"
"D:\Gry\NeverwinterNights2\nwn2main_amdxp.exe"="D:\Gry\NeverwinterNights2\nwn2main_amdxp.exe:*:Enabled:Neverwinter Nights 2 AMD"
"D:\Gry\NeverwinterNights2\nwupdate.exe"="D:\Gry\NeverwinterNights2\nwupdate.exe:*:Enabled:Neverwinter Nights 2 Updater"
"D:\Gry\NeverwinterNights2\nwn2server.exe"="D:\Gry\NeverwinterNights2\nwn2server.exe:*:Enabled:Neverwinter Nights 2 Server"
"D:\Gry\Sports Interactive\Football Manager 2010\fm.exe"="D:\Gry\Sports Interactive\Football Manager 2010\fm.exe:*:Enabled:Football Manager 2010"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\Skype\Plugin Manager\skypePM.exe"="C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager"
"D:\Gry\Sid Meier's Civilization IV Colonization\Colonization.exe"="D:\Gry\Sid Meier's Civilization IV Colonization\Colonization.exe:*:Enabled:Sid Meier's Civilization IV Colonization"
"C:\Program Files\Skype\Phone\Skype.exe"="C:\Program Files\Skype\Phone\Skype.exe:*:Enabled:Skype"
"C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe"="C:\Program Files\Common Files\Adobe\CS4ServiceManager\CS4ServiceManager.exe:*:Enabled:Adobe CSI CS4"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"

======File associations======

.js - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %*
.vbs - open - C:\PROGRA~1\PANDAS~1\PANDAG~1\PAVSCRIP.EXE "%1" %*

======List of files/folders created in the last 1 months======

2010-11-25 11:08:15 ----D---- C:\Program Files\trend micro
2010-11-25 11:08:14 ----D---- C:\rsit
2010-11-24 19:57:45 ----SHD---- C:\WINDOWS\ftpcache
2010-11-24 19:57:15 ----D---- C:\WINDOWS\RegisteredPackages
2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\psisdecd.dll
2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\wstcodec.sys
2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\streamip.sys
2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\slip.sys
2010-11-24 19:56:58 ----A---- C:\WINDOWS\system32\drivers\ndisip.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\nabtsfec.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\mstee.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\msdv.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\mpe.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\ccdecode.sys
2010-11-24 19:56:57 ----A---- C:\WINDOWS\system32\drivers\bdasup.sys
2010-11-24 19:56:54 ----A---- C:\WINDOWS\system32\dxdllreg.exe
2010-11-24 19:56:25 ----A---- C:\WINDOWS\game.ini
2010-11-17 22:50:23 ----AD---- C:\Documents and Settings\All Users\Dane aplikacji\TEMP
2010-11-17 22:50:03 ----D---- C:\Program Files\HDD Regenerator
2010-11-17 21:21:31 ----HD---- C:\Documents and Settings\All Users\Dane aplikacji\ActiveSMART
2010-11-17 21:21:31 ----D---- C:\Program Files\ActiveSMART 2.8
2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\wnmflt.sys
2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\idsflt.sys
2010-11-07 11:15:18 ----A---- C:\WINDOWS\system32\drivers\dsaflt.sys
2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\NETFLTDI.SYS
2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\fnetmon.sys
2010-11-07 11:15:12 ----A---- C:\WINDOWS\system32\drivers\APPFLT.SYS
2010-11-07 11:15:09 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Backup
2010-11-07 11:15:08 ----A---- C:\WINDOWS\system32\drivers\pavboot.sys
2010-11-07 11:14:54 ----A---- C:\WINDOWS\system32\HHActiveX.dll
2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\TpUtil.dll
2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\SYSTOOLS.DLL
2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\PavLspHook.dll
2010-11-07 11:14:48 ----A---- C:\WINDOWS\system32\pavipc.dll
2010-11-07 11:14:47 ----A---- C:\WINDOWS\system32\PavSHook.dll
2010-11-07 11:14:44 ----A---- C:\WINDOWS\system32\drivers\neti1642.sys
2010-11-07 11:14:42 ----D---- C:\WINDOWS\system32\PAV
2010-11-07 11:14:42 ----A---- C:\WINDOWS\system32\drivers\amm8651.sys
2010-11-07 11:14:42 ----A---- C:\WINDOWS\system32\avldr.dll
2010-11-07 11:14:41 ----D---- C:\Program Files\Panda Security
2010-11-07 11:14:41 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\Panda Security
2010-11-07 11:14:41 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Panda Security
2010-11-07 11:12:49 ----A---- C:\WINDOWS\system32\drivers\ShlDrv51.sys
2010-11-07 11:12:49 ----A---- C:\WINDOWS\system32\drivers\PavProc.sys
2010-11-07 11:10:59 ----D---- C:\Program Files\Common Files\Panda Security
2010-11-04 01:15:04 ----A---- C:\WINDOWS\system32\hpzll64X.dll
2010-11-04 00:33:59 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\HP
2010-11-04 00:29:26 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\WEBREG
2010-11-04 00:28:11 ----RA---- C:\WINDOWS\system32\drivers\HPZipr12.sys
2010-11-04 00:28:11 ----RA---- C:\WINDOWS\system32\drivers\HPZid412.sys
2010-11-04 00:28:04 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Hewlett-Packard
2010-11-04 00:27:55 ----A---- C:\WINDOWS\system32\hpzids01.dll
2010-11-04 00:27:53 ----A---- C:\WINDOWS\system32\hpzll5ha.dll
2010-11-04 00:27:46 ----RA---- C:\WINDOWS\system32\drivers\HPZius12.sys
2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hppldcoi.dll
2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpowiax3.dll
2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpovst10.dll
2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\hpotscl3.dll
2010-11-04 00:27:34 ----RA---- C:\WINDOWS\system32\difxapi.dll
2010-11-04 00:27:33 ----A---- C:\WINDOWS\system32\drivers\usbscan.sys
2010-11-04 00:26:03 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HPSSUPPLY
2010-11-04 00:25:58 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\HPAppData
2010-11-04 00:25:06 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HP Product Assistant
2010-11-04 00:25:05 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\HP
2010-11-04 00:24:56 ----D---- C:\Program Files\Common Files\HP
2010-11-04 00:24:43 ----D---- C:\Program Files\Hewlett-Packard
2010-11-04 00:24:34 ----D---- C:\Program Files\Common Files\Hewlett-Packard
2010-11-04 00:23:35 ----D---- C:\Program Files\HP
2010-11-04 00:23:32 ----A---- C:\WINDOWS\system32\drivers\usbprint.sys
2010-11-04 00:23:17 ----HD---- C:\Config.Msi
2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\javaws.exe
2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\javaw.exe
2010-10-26 15:00:48 ----A---- C:\WINDOWS\system32\java.exe

======List of files/folders modified in the last 1 months======

2010-11-25 11:44:46 ----D---- C:\WINDOWS\Temp
2010-11-25 11:44:45 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\uTorrent
2010-11-25 11:44:18 ----D---- C:\WINDOWS\system32\CatRoot2
2010-11-25 11:35:13 ----D---- C:\WINDOWS\system32\drivers\etc
2010-11-25 11:35:13 ----D---- C:\WINDOWS\system32\drivers
2010-11-25 11:33:33 ----D---- C:\WINDOWS\Prefetch
2010-11-25 11:31:38 ----D---- C:\WINDOWS\system32
2010-11-25 11:08:15 ----D---- C:\Program Files
2010-11-25 11:07:12 ----D---- C:\Program Files\Common Files
2010-11-25 09:35:34 ----HD---- C:\WINDOWS\inf
2010-11-25 09:34:39 ----D---- C:\WINDOWS
2010-11-24 22:37:08 ----A---- C:\WINDOWS\SchedLgU.Txt
2010-11-24 19:57:34 ----HD---- C:\Program Files\InstallShield Installation Information
2010-11-24 19:57:14 ----D---- C:\WINDOWS\system32\dllcache
2010-11-24 19:56:46 ----D---- C:\WINDOWS\system32\DirectX
2010-11-24 19:56:25 ----SHD---- C:\WINDOWS\Installer
2010-11-24 19:17:06 ----D---- C:\Program Files\Common Files\InstallShield
2010-11-18 13:18:35 ----SD---- C:\WINDOWS\Tasks
2010-11-18 13:16:06 ----D---- C:\WINDOWS\Minidump
2010-11-15 19:51:34 ----A---- C:\WINDOWS\system32\PnkBstrB.exe
2010-11-14 19:56:49 ----A---- C:\WINDOWS\win.ini
2010-11-14 08:59:20 ----D---- C:\Program Files\Microsoft Silverlight
2010-11-13 20:36:04 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
2010-11-07 23:00:57 ----D---- C:\Documents and Settings\Damiano\Dane aplikacji\Adobe
2010-11-07 11:16:26 ----A---- C:\WINDOWS\system32\PerfStringBackup.INI
2010-11-06 22:32:18 ----RD---- C:\WINDOWS\Web
2010-11-06 21:20:01 ----D---- C:\Program Files\PowerStrip
2010-11-06 21:18:29 ----D---- C:\Program Files\Skrybot
2010-11-06 20:17:02 ----D---- C:\WINDOWS\Help
2010-11-06 20:09:20 ----D---- C:\WINDOWS\nview
2010-11-06 20:08:26 ----D---- C:\WINDOWS\nvidia icons
2010-11-06 20:07:58 ----D---- C:\WINDOWS\system32\ReinstallBackups
2010-11-04 01:14:54 ----DC---- C:\WINDOWS\system32\DRVSTORE
2010-11-04 00:25:36 ----D---- C:\WINDOWS\WinSxS
2010-11-04 00:24:47 ----D---- C:\WINDOWS\twain_32
2010-11-02 10:49:10 ----D---- C:\Program Files\Mozilla Firefox
2010-10-30 17:35:58 ----D---- C:\Program Files\AP Tuner
2010-10-29 12:22:59 ----D---- C:\Program Files\CDBurnerXP
2010-10-26 20:02:52 ----D---- C:\Program Files\Gadu-Gadu 10
2010-10-26 15:00:43 ----D---- C:\Program Files\Java

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 nvatabus;nvatabus; C:\WINDOWS\system32\DRIVERS\nvatabus.sys [2005-01-20 88960]
R0 pavboot;Panda boot driver; C:\WINDOWS\system32\Drivers\pavboot.sys [2010-06-22 26696]
R0 SI3114r;SiI-3114 SATARaid Controller; C:\WINDOWS\system32\DRIVERS\SI3114R.sys [2004-02-09 97857]
R0 SiFilter;SATALink driver accelerator; C:\WINDOWS\system32\DRIVERS\SiWinAcc.sys [2003-10-15 10240]
R0 sptd;sptd; C:\WINDOWS\System32\Drivers\sptd.sys [2010-01-18 691696]
R1 APPFLT;App Filter Plugin; \??\C:\WINDOWS\system32\Drivers\APPFLT.SYS []
R1 DSAFLT;DSA Filter Plugin; \??\C:\WINDOWS\system32\Drivers\DSAFLT.SYS []
R1 FNETMON;NetMon Filter Plugin; \??\C:\WINDOWS\system32\Drivers\fnetmon.SYS []
R1 IDSFLT;Ids Filter Plugin; \??\C:\WINDOWS\system32\Drivers\IDSFLT.SYS []
R1 NETFLTDI;Panda Net Driver [TDI Layer]; \??\C:\WINDOWS\system32\Drivers\NETFLTDI.SYS []
R1 ShldDrv;Panda File Shield Driver; C:\WINDOWS\system32\Drivers\ShlDrv51.sys [2009-10-27 37896]
R1 WNMFLT;Wifi Monitor Filter Plugin; \??\C:\WINDOWS\system32\Drivers\WNMFLT.SYS []
R2 adfs;adfs; C:\WINDOWS\system32\drivers\adfs.sys [2008-08-14 74720]
R2 AegisP;AEGIS Protocol (IEEE 802.1x) v3.5.3.0; C:\WINDOWS\system32\DRIVERS\AegisP.sys [2009-12-30 21419]
R2 AmFSM;AmFSM; C:\WINDOWS\system32\DRIVERS\amm8651.sys [2010-05-21 59080]
R2 PavProc;Panda Process Protection Driver; \??\C:\WINDOWS\system32\DRIVERS\PavProc.sys []
R3 ALCXSENS;Service for WDM 3D Audio Driver; C:\WINDOWS\system32\drivers\ALCXSENS.SYS [2004-02-24 400384]
R3 ALCXWDM;Service for Realtek AC97 Audio (WDM); C:\WINDOWS\system32\drivers\ALCXWDM.SYS [2004-07-01 626977]
R3 AvFlt;Antivirus Filter Driver; C:\WINDOWS\system32\drivers\av5flt.sys []
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-15 10368]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2008-04-15 12160]
R3 NETIMFLT01060042;PANDA NDIS IM Filter Miniport v1.6.0.42; C:\WINDOWS\system32\DRIVERS\neti1642.sys [2010-02-18 199688]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2005-12-10 3536768]
R3 PavSRK.sys;PavSRK.sys; \??\C:\WINDOWS\system32\PavSRK.sys []
R3 PavTPK.sys;PavTPK.sys; \??\C:\WINDOWS\system32\PavTPK.sys []
R3 RT73;RT73 USB Wireless LAN Card Driver; C:\WINDOWS\system32\DRIVERS\rt73.sys [2007-10-01 451968]
S3 a8nwzsq5;a8nwzsq5; C:\WINDOWS\system32\drivers\a8nwzsq5.sys []
S3 ati2mtag;ati2mtag; C:\WINDOWS\system32\DRIVERS\ati2mtag.sys [2008-04-14 701440]
S3 cpuz130;cpuz130; \??\C:\DOCUME~1\Damiano\USTAWI~1\Temp\cpuz130\cpuz_x32.sys []
S3 ENTECH;ENTECH; \??\C:\WINDOWS\system32\DRIVERS\ENTECH.sys []
S3 HPZid412;IEEE-1284.4 Driver HPZid412; C:\WINDOWS\system32\DRIVERS\HPZid412.sys [2007-03-08 49920]
S3 HPZipr12;Print Class Driver for IEEE-1284.4 HPZipr12; C:\WINDOWS\system32\DRIVERS\HPZipr12.sys [2007-03-08 16496]
S3 HPZius12;USB to IEEE-1284.4 Translation Driver HPZius12; C:\WINDOWS\system32\DRIVERS\HPZius12.sys [2007-03-08 21568]
S3 mcdbus;Driver for MagicISO SCSI Host Controller; C:\WINDOWS\system32\DRIVERS\mcdbus.sys []
S3 StarOpen;StarOpen; C:\WINDOWS\system32\drivers\StarOpen.sys [2009-11-12 7168]
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2008-04-14 26368]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 ActiveSMART Service;ActiveSMART Service; C:\Program Files\ActiveSMART 2.8\ASmartService.exe [2009-08-25 586008]
R2 hpqddsvc;Usługa HP CUE DeviceDiscovery; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
R2 JavaQuickStarterService;Java Quick Starter; C:\Program Files\Java\jre6\bin\jqs.exe [2010-09-15 153376]
R2 Net Driver HPZ12;Net Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336]
R2 NMSAccessU;NMSAccessU; C:\Program Files\CDBurnerXP\NMSAccessU.exe [2009-11-12 71096]
R2 NVSvc;NVIDIA Display Driver Service; C:\WINDOWS\system32\nvsvc32.exe [2005-12-10 131139]
R2 Panda Software Controller;Panda Software Controller; C:\Program Files\Panda Security\Panda Global Protection 2011\PsCtrls.exe [2009-08-10 173312]
R2 PAVFNSVR;Panda Function Service; C:\Program Files\Panda Security\Panda Global Protection 2011\PavFnSvr.exe [2010-09-13 202048]
R2 PavPrSrv;Panda Process Protection Service; C:\Program Files\Common Files\Panda Security\PavShld\pavprsrv.exe [2008-02-04 62768]
R2 PAVSRV;Panda On-Access Anti-Malware Service; C:\Program Files\Panda Security\Panda Global Protection 2011\pavsrvx86.exe [2010-06-04 314176]
R2 Pml Driver HPZ12;Pml Driver HPZ12; C:\WINDOWS\System32\svchost.exe [2008-04-15 14336]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2010-08-06 75064]
R2 PSHost;Panda Host Service; c:\program files\panda security\panda global protection 2011\firewall\PSHOST.EXE [2009-11-26 226560]
R2 PSIMSVC;Panda IManager Service; C:\Program Files\Panda Security\Panda Global Protection 2011\PsImSvc.exe [2008-06-19 108288]
R2 PskSvcRetail;Panda PSK service; C:\Program Files\Panda Security\Panda Global Protection 2011\PskSvc.exe [2010-08-16 28992]
R2 TPSrv;Panda TPSrv; C:\Program Files\Panda Security\Panda Global Protection 2011\TPSrv.exe [2010-09-29 157504]
R3 hpqcxs08;hpqcxs08; C:\WINDOWS\system32\svchost.exe [2008-04-15 14336]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2005-09-23 29896]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2005-09-23 66240]
S3 FLEXnet Licensing Service;FLEXnet Licensing Service; C:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe [2010-10-16 655624]
S3 Microsoft Office Groove Audit Service;Microsoft Office Groove Audit Service; C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe [2006-10-27 65824]
S3 odserv;Microsoft Office Diagnostics Service; C:\Program Files\Common Files\Microsoft Shared\OFFICE12\ODSERV.EXE [2006-10-26 441136]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2006-10-26 145184]

-----------------EOF-----------------
[/log]

Tomek01
komentarz
komentarz

Wykonaj pełny skan [url=http://www.instalki.pl/programy/download_c/14/155.html][color=#0000CD][b]DrWebCureIt[/b][/color][/url] oraz [url=http://www.instalki.pl/programy/download_c/13/96.html][color=#0000CD][b]Malwarebytes Anti-Malware[/b][/color][/url] dla pewności.




Z mojej strony to wszystko. Czy przenieść Cię do działu Awarie ?

Jose Peniara
komentarz
komentarz

Tak, oczywiście. Dziękuję za pomoc.

[color="#0000FF"]//Przenoszę do Komunikacja i łączność.
//Wirusów brak
//Tom01[/color]

Wciąż szukasz rozwiązania problemu? Napisz teraz na forum!

Możesz zadać pytanie bez konieczności rejestracji - wystarczy, że wypełnisz formularz.

×
×
  • Dodaj nową pozycję...

Powiadomienie o plikach cookie

Strona wykorzystuje pliki cookies w celu prawidłowego świadczenia usług i wygody użytkowników. Warunki przechowywania i dostępu do plików cookies możesz zmienić w ustawieniach przeglądarki.