OTL logfile created on: 2012-06-04 07:31:14 - Run 2 OTL by OldTimer - Version 3.2.44.0 Folder = D:\Specjalny\Piotr\Moje Dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,49 Gb Total Physical Memory | 0,74 Gb Available Physical Memory | 49,80% Memory free 3,34 Gb Paging File | 2,69 Gb Available in Paging File | 80,37% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWSH | %ProgramFiles% = C:\Program Files Drive C: | 39,27 Gb Total Space | 1,51 Gb Free Space | 3,86% Space Free | Partition Type: NTFS Drive D: | 193,52 Gb Total Space | 4,25 Gb Free Space | 2,20% Space Free | Partition Type: NTFS Computer Name: KC-TECH | User Name: Piotr | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Processes (SafeList) ==========[/color] PRC - [2012-05-30 13:50:04 | 000,913,888 | ---- | M] (Mozilla Corporation) -- C:\Program Files\Mozilla Firefox\firefox.exe PRC - [2012-05-30 09:50:36 | 000,595,968 | ---- | M] (OldTimer Tools) -- D:\Specjalny\Piotr\Moje Dokumenty\Pobieranie\OTL.exe PRC - [2011-04-13 16:11:10 | 000,430,080 | ---- | M] (PaperCut Software International Pty Ltd) -- C:\Program Files\PaperCut Print Logger\pcpl.exe PRC - [2010-09-23 16:46:14 | 001,125,376 | ---- | M] (Luis Cobian, CobianSoft) -- C:\Program Files\Cobian Backup 10\cbService.exe PRC - [2010-08-13 00:08:04 | 006,094,848 | ---- | M] () -- C:\Program Files\Zend\MySQL51\bin\mysqld.exe PRC - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe PRC - [2009-09-23 16:45:50 | 001,287,176 | ---- | M] (Panda Security) -- C:\Program Files\Panda USB Vaccine\USBVaccine.exe PRC - [2009-05-14 15:47:54 | 000,731,840 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe PRC - [2009-05-14 15:47:08 | 002,029,640 | ---- | M] (ESET) -- C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe PRC - [2009-04-04 01:33:36 | 000,038,688 | ---- | M] (International Business Machines Corporation) -- C:\Program Files\IBM\SQLLIB\BIN\db2mgmtsvc.exe PRC - [2008-10-29 12:21:02 | 000,049,152 | ---- | M] () -- C:\Program Files\EMS\DvrTimeSvr.exe PRC - [2008-06-09 04:58:28 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) -- C:\Postgres\bin\pg_ctl.exe PRC - [2008-06-09 04:57:00 | 003,670,016 | ---- | M] (PostgreSQL Global Development Group) -- C:\Postgres\bin\postgres.exe PRC - [2008-04-14 19:21:16 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWSH\explorer.exe PRC - [2007-11-12 12:46:24 | 000,200,704 | ---- | M] () -- C:\WINDOWSH\system32\UMonit.exe PRC - [2004-08-06 17:48:34 | 000,389,120 | ---- | M] (Intel Corporation) -- C:\Program Files\Intel\Wireless\Bin\ZCfgSvc.exe [color=#E56717]========== Modules (No Company Name) ==========[/color] MOD - [2012-05-30 13:50:00 | 002,042,848 | ---- | M] () -- C:\Program Files\Mozilla Firefox\mozjs.dll MOD - [2010-08-13 00:08:04 | 006,094,848 | ---- | M] () -- C:\Program Files\Zend\MySQL51\bin\mysqld.exe MOD - [2009-10-23 21:20:58 | 000,027,456 | ---- | M] () -- C:\WINDOWSH\system32\solidlocalmon.dll MOD - [2008-10-29 12:21:02 | 000,049,152 | ---- | M] () -- C:\Program Files\EMS\DvrTimeSvr.exe MOD - [2008-03-29 17:42:20 | 000,159,744 | ---- | M] () -- C:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mmfinfo.dll MOD - [2008-03-29 17:41:52 | 000,023,552 | ---- | M] () -- C:\Program Files\SubEdit-Player\codec\MatroskaSplitter\mkunicode.dll MOD - [2007-11-12 12:46:24 | 000,200,704 | ---- | M] () -- C:\WINDOWSH\system32\UMonit.exe MOD - [2007-05-09 15:34:22 | 000,176,128 | ---- | M] () -- C:\WINDOWSH\system32\ustor.dll MOD - [2007-03-29 23:51:24 | 000,022,723 | ---- | M] () -- C:\WINDOWSH\system32\ml285pl3.dll MOD - [2004-01-20 17:18:04 | 000,081,920 | ---- | M] () -- C:\Program Files\NetLimiter\nl_lsp.dll MOD - [2003-10-13 09:09:02 | 000,065,536 | ---- | M] () -- C:\WINDOWSH\system32\nl_msgc.dll MOD - [2001-10-28 18:42:30 | 000,116,224 | ---- | M] () -- C:\WINDOWSH\system32\pdfcmnnt.dll [color=#E56717]========== Win32 Services (SafeList) ==========[/color] SRV - File not found [Auto | Stopped] -- C:\Documents and Settings\All Users.WINDOWSH\Application Data\Storm\update\%SESSIONNAME%\msxbu.cc3 -- (RemoteAccess) SRV - File not found [Disabled | Stopped] -- C:\Documents and Settings\All Users.WINDOWSH\Dane aplikacji\DatacardService\HWDeviceService.exe -- (HWDeviceService.exe) SRV - File not found [On_Demand | Stopped] -- %SystemRoot%\System32\appmgmts.dll -- (AppMgmt) SRV - [2012-05-13 13:30:40 | 000,018,432 | ---- | M] (Apache Software Foundation) [On_Demand | Stopped] -- c:\wamp\bin\apache\apache2.2.22\bin\httpd.exe -- (wampapache) SRV - [2012-05-05 13:20:12 | 000,257,696 | ---- | M] (Adobe Systems Incorporated) [Disabled | Stopped] -- C:\WINDOWSH\system32\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc) SRV - [2012-04-19 16:02:32 | 008,177,664 | ---- | M] () [On_Demand | Stopped] -- c:\wamp\bin\mysql\mysql5.5.24\bin\mysqld.exe -- (wampmysqld) SRV - [2012-03-27 05:09:02 | 000,821,608 | ---- | M] (Apple Inc.) [Disabled | Stopped] -- C:\Program Files\iPod\bin\iPodService.exe -- (iPod Service) SRV - [2012-02-27 01:15:42 | 000,055,144 | ---- | M] (Apple Inc.) [Disabled | Stopped] -- C:\Program Files\Common Files\Apple\Mobile Device Support\AppleMobileDeviceService.exe -- (Apple Mobile Device) SRV - [2012-01-04 14:32:36 | 000,718,888 | ---- | M] (Nokia) [Disabled | Stopped] -- C:\Program Files\PC Connectivity Solution\ServiceLayer.exe -- (ServiceLayer) SRV - [2011-10-03 05:06:18 | 000,153,376 | ---- | M] (Sun Microsystems, Inc.) [Disabled | Stopped] -- C:\Program Files\Java\jre6\bin\jqs.exe -- (JavaQuickStarterService) SRV - [2011-08-30 18:18:30 | 002,358,656 | ---- | M] (TeamViewer GmbH) [Disabled | Stopped] -- C:\Program Files\TeamViewer\Version6\TeamViewer_Service.exe -- (TeamViewer6) SRV - [2011-07-19 06:38:52 | 000,083,240 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\CLHNServiceForPowerDVD.exe -- (CLHNServiceForPowerDVD) SRV - [2011-07-06 09:16:02 | 000,312,616 | ---- | M] (CyberLink) [Disabled | Stopped] -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSServer.exe -- (CyberLink PowerDVD 11.0 Service) SRV - [2011-07-06 09:15:58 | 000,070,952 | ---- | M] (CyberLink) [Disabled | Stopped] -- C:\Program Files\CyberLink\PowerDVD11\Common\MediaServer\CLMSMonitorService.exe -- (CyberLink PowerDVD 11.0 Monitor Service) SRV - [2011-04-13 16:11:10 | 000,430,080 | ---- | M] (PaperCut Software International Pty Ltd) [Auto | Running] -- C:\Program Files\PaperCut Print Logger\pcpl.exe -- (PCPrintLogger) SRV - [2011-01-07 15:52:48 | 000,063,304 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\IIS\Microsoft Web Deploy\MsDepSvc.exe -- (MsDepSvc) SRV - [2010-09-23 16:46:14 | 001,125,376 | ---- | M] (Luis Cobian, CobianSoft) [Auto | Running] -- C:\Program Files\Cobian Backup 10\cbService.exe -- (CobianBackup10) SRV - [2010-09-23 09:49:08 | 000,067,584 | ---- | M] (CobianSoft, Luis Cobian) [Disabled | Stopped] -- C:\Program Files\Cobian Backup 10\cbVSCService.exe -- (cbVSCService) SRV - [2010-08-31 11:06:55 | 000,189,760 | ---- | M] (Solid Documents, LLC) [Disabled | Stopped] -- C:\WINDOWSH\Installer\MSI2138.tmp -- (SCPDFReadSpool) SRV - [2010-08-13 00:08:04 | 006,094,848 | ---- | M] () [Auto | Running] -- C:\Program Files\Zend\MySQL51\bin\mysqld.exe -- (MySQL_ZendServer51) SRV - [2010-07-08 15:28:56 | 000,815,704 | ---- | M] (GlavSoft LLC.) [Disabled | Stopped] -- C:\Program Files\TightVNC\tvnserver.exe -- (tvnserver) SRV - [2010-04-12 13:26:06 | 001,565,960 | ---- | M] (Raxco Software, Inc.) [Disabled | Stopped] -- C:\Program Files\Raxco\PerfectDisk\PDAgent.exe -- (PDAgent) SRV - [2010-04-12 13:25:56 | 001,471,752 | ---- | M] (Raxco Software, Inc.) [Disabled | Stopped] -- C:\Program Files\Raxco\PerfectDisk\PDEngine.exe -- (PDEngine) SRV - [2009-12-24 06:40:54 | 001,982,976 | ---- | M] () [Disabled | Stopped] -- C:\Program Files\EMS\ScheduleService.exe -- (EMSService) SRV - [2009-12-23 23:34:20 | 000,370,688 | ---- | M] (StarWind Software) [Auto | Running] -- C:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe -- (StarWindServiceAE) SRV - [2009-05-14 15:54:22 | 000,020,680 | ---- | M] (ESET) [On_Demand | Stopped] -- C:\Program Files\ESET\ESET NOD32 Antivirus\EHttpSrv.exe -- (EhttpSrv) SRV - [2009-05-14 15:47:54 | 000,731,840 | ---- | M] (ESET) [Auto | Running] -- C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe -- (ekrn) SRV - [2009-04-04 01:33:36 | 000,038,688 | ---- | M] (International Business Machines Corporation) [Auto | Running] -- C:\Program Files\IBM\SQLLIB\BIN\db2mgmtsvc.exe -- (DB2MGMTSVC_DB2COPY1) DB2 Management Service (DB2COPY1) SRV - [2009-02-26 18:36:22 | 000,064,856 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Microsoft Office\Office12\GrooveAuditService.exe -- (Microsoft Office Groove Audit Service) SRV - [2008-10-29 12:21:02 | 000,049,152 | ---- | M] () [Auto | Running] -- C:\Program Files\EMS\DvrTimeSvr.exe -- (DvrTimeServer) SRV - [2008-07-29 20:24:50 | 000,881,664 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe -- (idsvc) SRV - [2008-07-29 20:16:38 | 000,132,096 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe -- (NetTcpPortSharing) SRV - [2008-07-25 12:17:02 | 000,069,632 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32) SRV - [2008-06-09 04:58:28 | 000,065,536 | ---- | M] (PostgreSQL Global Development Group) [Auto | Running] -- C:\Postgres\bin\pg_ctl.exe -- (pgsql-8.3) SRV - [2008-04-14 19:21:31 | 000,114,688 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\system32\netdde.exe -- (NetDDEdsdm) SRV - [2008-04-14 19:21:31 | 000,114,688 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\system32\netdde.exe -- (NetDDE) SRV - [2008-04-14 19:21:22 | 000,013,312 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\system32\lsass.exe -- (PolicyAgent) SRV - [2008-04-14 19:20:38 | 000,033,792 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\system32\msgsvc.dll -- (Messenger) SRV - [2008-04-14 19:19:59 | 000,017,408 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\WINDOWSH\system32\alrsvc.dll -- (Alerter) SRV - [2006-12-01 12:46:28 | 000,918,016 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Media Player\wmpnetwk.exe -- (WMPNetworkSvc) SRV - [2006-05-02 15:41:28 | 000,135,168 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Disabled | Stopped] -- C:\Program Files\Hewlett-Packard\Shared\hpqwmiex.exe -- (hpqwmiex) SRV - [2005-11-14 02:06:04 | 000,069,632 | ---- | M] (Macrovision Corporation) [Disabled | Stopped] -- C:\Program Files\Common Files\InstallShield\Driver\1150\Intel 32\IDriverT.exe -- (IDriverT) SRV - [2004-11-17 23:32:56 | 000,098,304 | ---- | M] (Hewlett-Packard Development Company, L.P.) [Disabled | Stopped] -- C:\Program Files\HPQ\Shared\hpqwmi.exe -- (hpqwmi) SRV - [2004-08-06 17:51:54 | 000,098,304 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\Wireless\Bin\OProtSvc.exe -- (OwnershipProtocol) SRV - [2004-08-06 17:45:44 | 000,360,521 | ---- | M] (Intel Corporation ) [Disabled | Stopped] -- C:\Program Files\Intel\Wireless\Bin\S24EvMon.exe -- (S24EventMonitor) SRV - [2004-08-06 17:42:36 | 000,139,264 | ---- | M] (Intel Corporation) [Disabled | Stopped] -- C:\Program Files\Intel\Wireless\Bin\RegSrvc.exe -- (RegSrvc) SRV - [2002-09-20 15:50:10 | 000,045,056 | ---- | M] (Analog Devices, Inc.) [Disabled | Stopped] -- C:\Program Files\Analog Devices\SoundMAX\SMAgent.exe -- (SoundMAX Agent Service (default)) [color=#E56717]========== Driver Services (SafeList) ==========[/color] DRV - File not found [Kernel | On_Demand | Stopped] -- -- (WDICA) DRV - File not found [Kernel | Disabled | Unknown] -- System32\Drivers\sptd.sys -- (sptd) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDRELI) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDFRAME) DRV - File not found [Kernel | On_Demand | Stopped] -- -- (PDCOMP) DRV - File not found [Kernel | System | Stopped] -- -- (PCIDump) DRV - File not found [Kernel | System | Stopped] -- -- (lbrtfdc) DRV - File not found [Kernel | System | Stopped] -- -- (i2omgmt) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ewusbmdm.sys -- (hwdatacard) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_juextctrl.sys -- (huawei_ext_ctrl) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jubusenum.sys -- (huawei_enumerator) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jucdcecm.sys -- (huawei_cdcecm) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_jucdcacm.sys -- (huawei_cdcacm) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_usbenumfilter.sys -- (ew_usbenumfilter) DRV - File not found [Kernel | On_Demand | Stopped] -- system32\DRIVERS\ew_hwusbdev.sys -- (ew_hwusbdev) DRV - File not found [Kernel | System | Stopped] -- -- (Changer) DRV - [2012-01-18 16:55:56 | 000,016,472 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\pwdrvio.sys -- (pwdrvio) DRV - [2012-01-18 16:55:54 | 000,011,104 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\pwdspio.sys -- (pwdspio) DRV - [2012-01-09 18:28:20 | 000,023,168 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\ccdcmbo.sys -- (nmwcdc) DRV - [2012-01-09 18:28:20 | 000,018,176 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\ccdcmb.sys -- (nmwcd) DRV - [2012-01-09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\usbser_lowerfltj.sys -- (UsbserFilt) DRV - [2012-01-09 18:28:20 | 000,008,192 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\usbser_lowerflt.sys -- (upperdev) DRV - [2011-09-21 11:25:34 | 000,021,992 | ---- | M] (CPUID) [Kernel | Auto | Running] -- C:\WINDOWSH\system32\drivers\cpuz135_x32.sys -- (cpuz135) DRV - [2011-07-19 20:34:20 | 000,077,296 | ---- | M] (CyberLink Corp.) [2011/09/27 11:14:16] [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Common\NavFilter\000.fcl -- ({329F96B6-DF1E-4328-BFDA-39EA953C1312}) DRV - [2011-07-19 06:39:12 | 000,071,664 | ---- | M] (Cyberlink Corp.) [Kernel | Auto | Running] -- C:\Program Files\CyberLink\PowerDVD11\Kernel\DMP\ntk_PowerDVD.sys -- (ntk_PowerDVD) DRV - [2011-01-27 20:18:32 | 000,058,496 | ---- | M] (Silicon Laboratories) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\silabser.sys -- (silabser) DRV - [2011-01-27 20:18:32 | 000,047,176 | ---- | M] (Silicon Laboratories) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\silabenm.sys -- (silabenm) DRV - [2010-10-01 09:12:43 | 000,083,360 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\WINDOWSH\System32\LMIRfsClientNP.dll -- (LMIRfsClientNP) DRV - [2010-07-28 09:54:55 | 000,000,169 | ---- | M] () [Kernel | Disabled | Stopped] -- C:\WINDOWSH\ultra.INI -- (ultra) DRV - [2010-04-28 07:44:02 | 000,054,760 | ---- | M] (Microsoft Corporation) [Kernel | Auto | Running] -- C:\WINDOWSH\system32\drivers\fssfltr_tdi.sys -- (fssfltr) DRV - [2010-04-07 06:22:06 | 000,135,184 | ---- | M] (Raxco Software, Inc.) [File_System | Auto | Running] -- C:\WINDOWSH\System32\drivers\DefragFs.sys -- (DefragFS) DRV - [2009-05-14 15:49:32 | 000,094,360 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWSH\system32\drivers\epfwtdir.sys -- (epfwtdir) DRV - [2009-05-14 15:47:14 | 000,107,256 | ---- | M] (ESET) [Kernel | System | Running] -- C:\WINDOWSH\system32\drivers\ehdrv.sys -- (ehdrv) DRV - [2009-05-14 15:41:10 | 000,114,472 | ---- | M] (ESET) [File_System | Auto | Running] -- C:\WINDOWSH\system32\drivers\eamon.sys -- (eamon) DRV - [2009-03-30 01:00:00 | 000,026,224 | ---- | M] () [Kernel | On_Demand | Stopped] -- C:\Program Files\Lavalys\EVEREST Ultimate Edition\kerneld.wnt -- (EverestDriver) DRV - [2009-02-17 14:19:00 | 000,057,672 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\ftdibus.sys -- (FTDIBUS) DRV - [2009-02-17 14:17:00 | 000,072,520 | ---- | M] (FTDI Ltd.) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\ftser2k.sys -- (FTSER2K) DRV - [2008-08-26 10:26:12 | 000,018,816 | ---- | M] (Nokia) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\pccsmcfd.sys -- (pccsmcfd) DRV - [2008-07-24 19:46:10 | 000,047,640 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\WINDOWSH\system32\drivers\LMIRfsDriver.sys -- (LMIRfsDriver) DRV - [2008-04-14 18:22:54 | 000,153,856 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled | Stopped] -- C:\WINDOWSH\system32\drivers\dmio.sys -- (dmio) DRV - [2008-04-14 18:22:40 | 000,800,000 | ---- | M] (Microsoft Corp., Veritas Software) [Kernel | Disabled | Stopped] -- C:\WINDOWSH\system32\drivers\dmboot.sys -- (dmboot) DRV - [2008-04-13 20:53:09 | 000,040,320 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\nmnt.sys -- (nm) DRV - [2008-04-13 20:32:36 | 000,066,048 | ---- | M] (Microsoft Corporation) [File_System | Disabled | Stopped] -- C:\WINDOWSH\System32\drivers\udfs.sys -- (Udfs) DRV - [2008-02-12 04:42:38 | 000,232,472 | ---- | M] (Microsoft Corporation) [Kernel | System | Running] -- C:\WINDOWSH\system32\drivers\VMM.sys -- (vmm) DRV - [2008-02-05 02:50:44 | 000,059,960 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\VMNetSrv.sys -- (VPCNetS2) DRV - [2008-01-07 15:36:16 | 002,216,064 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\w29n51.sys -- (w29n51) Sterownik karty Intel(R) DRV - [2007-06-11 11:27:20 | 000,012,416 | ---- | M] (Genesys Logic) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\fixustor.sys -- (FIXUSTOR) DRV - [2006-10-01 14:37:02 | 000,026,624 | ---- | M] (The OpenVPN Project) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\tap0801.sys -- (tap0801) DRV - [2006-09-21 10:19:04 | 000,347,648 | ---- | M] (D-Link Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\A5AGU.sys -- (A5AGU) DRV - [2006-07-06 14:44:10 | 000,168,448 | ---- | M] (Texas Instruments) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\tifm21.sys -- (tifm21) DRV - [2006-03-02 14:00:00 | 000,013,952 | ---- | M] (Microsoft Corporation) [Kernel | Disabled | Stopped] -- C:\WINDOWSH\System32\drivers\cbidf2k.sys -- (cbidf2k) DRV - [2006-03-02 14:00:00 | 000,005,888 | ---- | M] (Microsoft Corp., Veritas Software.) [Kernel | Disabled | Stopped] -- C:\WINDOWSH\system32\drivers\dmload.sys -- (dmload) DRV - [2005-11-16 15:12:46 | 001,066,278 | ---- | M] (Agere Systems) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\AGRSM.sys -- (AgereSoftModem) DRV - [2005-09-23 23:18:32 | 000,171,520 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\MarvinBus.sys -- (MarvinBus) DRV - [2005-03-01 13:01:40 | 000,392,704 | ---- | M] (Sensaura) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\senfilt.sys -- (senfilt) DRV - [2005-01-31 17:23:08 | 000,109,319 | ---- | M] (Alps Electric Co., Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\Apfiltr.sys -- (ApfiltrService) DRV - [2004-09-14 13:55:44 | 000,088,960 | ---- | M] (Analog Devices, Inc.) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\MidiSyn.sys -- (MidiSyn) DRV - [2004-08-12 09:44:04 | 000,234,496 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\iwca.sys -- (IWCA) DRV - [2004-08-06 17:44:14 | 000,011,354 | ---- | M] (Intel Corporation) [Kernel | Auto | Running] -- C:\WINDOWSH\system32\drivers\s24trans.sys -- (s24trans) DRV - [2004-08-04 00:31:34 | 000,020,992 | ---- | M] (Realtek Semiconductor Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWSH\system32\drivers\RTL8139.sys -- (rtl8139) Sterownik NT karty Realtek RTL8139(A/B/C) DRV - [2002-01-12 16:30:34 | 000,003,567 | ---- | M] (Beyond Logic http://www.beyondlogic.org) [Kernel | On_Demand | Stopped] -- C:\WINDOWSH\system32\drivers\PortTalk.sys -- (PortTalk) [color=#E56717]========== Standard Registry (SafeList) ==========[/color] [color=#E56717]========== Internet Explorer ==========[/color] IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWSH\system32\blank.htm IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://search.live.com/results.aspx?q={searchTerms}&src={referrer:source?} IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\WINDOWSH\system32\blank.htm IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://google.pl/ IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A} IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/search?q={searchTerms}&src=IE-SearchBox&FORM=IE8SRC IE - HKCU\..\SearchScopes\{4F11ACBB-393F-4c86-A214-FF3D0D155CC3}: "URL" = http://search.burn4free-toolbar.com/search?p=Q&ts=ne&w={searchTerms}&csrc=search-field IE - HKCU\..\SearchScopes\{D50D1110-A75F-40F4-8349-00F39562F0DE}: "URL" = http://search.yahoo.com/search?fr=chr-greentree_ie&ei=utf-8&type=971163&p={searchTerms} IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0 IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyOverride" = [color=#E56717]========== FireFox ==========[/color] FF - prefs.js..browser.search.param.yahoo-fr: "chr-greentree_ff&type=971163" FF - prefs.js..browser.startup.homepage: "https://google.pl/" FF - user.js - File not found FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWSH\system32\Macromed\Flash\NPSWF32_11_2_202_235.dll () FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=: File not found FF - HKLM\Software\MozillaPlugins\@Apple.com/iTunes,version=1.0: C:\Program Files\iTunes\Mozilla Plugins\npitunes.dll () FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: C:\Program Files\Google\Picasa3\npPicasa3.dll File not found FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.) FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.1.10329.0\npctrl.dll ( Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/OfficeLive,version=1.3: C:\Program Files\Microsoft\Office Live\npOLW.dll (Microsoft Corp.) FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWSH\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation) FF - HKLM\Software\MozillaPlugins\@microsoft.com/wpi,version=1.3: C:\Program Files\Microsoft\Web Platform Installer\\npwpidetector.dll () FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=1.1.11: C:\Program Files\VideoLAN\VLC\npvlc.dll (the VideoLAN Team) FF - HKCU\Software\MozillaPlugins\@lightspark.github.com/Lightspark;version=1: C:\Program Files\Lightspark 0.5.3-git\nplightsparkplugin.dll File not found FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\ff-bmboc@bytemobile.com: C:\Program Files\T-Mobile\InternetManager_H\OCx32\addon FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2012-05-30 13:50:06 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 13.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2012-05-30 09:33:32 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.9\extensions\\Components: C:\Program Files\Mozilla Sunbird\components [2012-03-21 10:25:49 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Sunbird 0.9\extensions\\Plugins: C:\Program Files\Mozilla Sunbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Components: C:\Program Files\Mozilla Thunderbird\components [2012-02-02 09:09:47 | 000,000,000 | ---D | M] FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Thunderbird 12.0.1\extensions\\Plugins: C:\Program Files\Mozilla Thunderbird\plugins FF - HKEY_LOCAL_MACHINE\software\mozilla\Thunderbird\Extensions\\eplgTb@eset.com: C:\Program Files\ESET\ESET NOD32 Antivirus\Mozilla Thunderbird [2012-05-17 12:52:25 | 000,000,000 | ---D | M] [2010-02-16 10:21:42 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions [2010-02-15 17:08:23 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Extensions\{3550f703-e582-4d05-9a08-453d09bdfdc6} [2012-05-31 11:07:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions [2012-05-21 11:07:14 | 000,000,000 | ---D | M] (Google Reverse Image Search) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\{95322c08-05ff-4f3c-85fd-8ceb821988dd} [2012-04-10 10:18:24 | 000,000,000 | ---D | M] (DownloadHelper) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\{b9db16a4-6edc-47ec-a1f4-b86292ed211d} [2012-05-17 13:11:05 | 000,000,000 | ---D | M] (HTTPS-Everywhere) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\https-everywhere@eff.org [2012-05-07 08:04:44 | 000,000,000 | ---D | M] (IE Tab Plus) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\ietab@ip.cn [2010-03-23 09:04:39 | 000,000,000 | ---D | M] (LogMeIn, Inc. Remote Access Plugin) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\LogMeInClient@logmein.com [2011-02-17 15:53:21 | 000,000,000 | ---D | M] (TinEye Reverse Image Search) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\tineye@ideeinc.com [2012-03-29 15:22:07 | 000,000,000 | ---D | M] (Wappalyzer) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Firefox\Profiles\fdihxwkg.default\extensions\wappalyzer@crunchlabz.com [2010-03-02 12:32:53 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Piotr\Dane aplikacji\Mozilla\Sunbird\Profiles\7axx1j2m.default\extensions [2011-12-12 08:58:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions [2012-05-30 13:50:06 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\distribution\extensions [2012-01-12 10:24:17 | 000,634,964 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\PIOTR\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\FDIHXWKG.DEFAULT\EXTENSIONS\{D10D0BF8-F5B5-C8B4-A8B2-2B9879E08C5D}.XPI [2011-10-31 09:12:12 | 000,021,992 | ---- | M] () (No name found) -- C:\DOCUMENTS AND SETTINGS\PIOTR\DANE APLIKACJI\MOZILLA\FIREFOX\PROFILES\FDIHXWKG.DEFAULT\EXTENSIONS\CACHE@STATUS.ORG.XPI [2012-05-30 13:50:05 | 000,085,472 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll [2008-01-23 08:20:30 | 000,491,520 | ---- | M] (BitComet) -- C:\Program Files\mozilla firefox\plugins\npBitCometAgent.dll [2011-10-03 05:06:04 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll [2008-09-24 13:01:00 | 002,650,112 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\npRACtrl.dll [2007-08-06 13:07:00 | 000,008,784 | ---- | M] () -- C:\Program Files\mozilla firefox\plugins\ractrlkeyhook.dll [2007-07-18 15:54:00 | 000,245,408 | ---- | M] (Microsoft Corporation) -- C:\Program Files\mozilla firefox\plugins\unicows.dll [2011-09-22 08:10:22 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml [2011-09-22 08:10:22 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml [2011-09-22 08:10:22 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml [2011-09-22 08:10:22 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml [2011-09-22 08:10:22 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml [2011-09-22 08:10:22 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml [color=#E56717]========== Chrome ==========[/color] CHR - default_search_provider: Google (Enabled) CHR - default_search_provider: search_url = {google:baseURL}search?{google:RLZ}{google:acceptedSuggestion}{google:originalQueryForSuggestion}{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}sourceid=chrome&ie={inputEncoding}&q={searchTerms} CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}{google:instantFieldTrialGroupParameter}client=chrome&hl={language}&q={searchTerms} CHR - Extension: YouTube = C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2_0\ O1 HOSTS File: ([2012-06-01 14:57:35 | 000,000,054 | ---- | M]) - C:\WINDOWSH\system32\drivers\etc\hosts O1 - Hosts: 127.0.0.1 localhost O1 - Hosts: 127.0.0.1 localhost O2 - BHO: (Adobe PDF Reader Link Helper) - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll (Adobe Systems Incorporated) O2 - BHO: (Spybot-S&D IE Protection) - {53707962-6F74-2D53-2644-206D7942484F} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O2 - BHO: (Aptana Debugger) - {B8ADD4EA-ADE3-4DEB-A957-9BBD17D6D0C8} - D:\Specjalny\Piotr\My Documents\Aptana Studio Workspace\.metadata\.plugins\com.aptana.ide.debug.core\.dll\AptanaDebugger.dll (Aptana, Inc.) O3 - HKLM\..\Toolbar: (Aptana Debugger) - {F348E1B0-CBFE-47C3-81B4-9F44B3B5A618} - D:\Specjalny\Piotr\My Documents\Aptana Studio Workspace\.metadata\.plugins\com.aptana.ide.debug.core\.dll\AptanaDebugger.dll (Aptana, Inc.) O4 - HKLM..\Run: [Bonus.SSR.FR11] C:\Program Files\ABBYY FineReader 11\Bonus.ScreenshotReader.exe (ABBYY.) O4 - HKLM..\Run: [egui] C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe (ESET) O4 - HKLM..\Run: [Jester2K Speed Fix] c:\fix.reg () O4 - HKLM..\Run: [shell] c:\windows\system32\cmd.exe (Microsoft Corporation) O4 - HKLM..\Run: [UMonit] C:\WINDOWSH\system32\UMonit.exe () O4 - Startup: C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart\PandaUSBVaccine.lnk = C:\Program Files\Panda USB Vaccine\USBVaccine.exe (Panda Security) O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1 () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: shutdownwithoutlogon = 1 () O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: undockwithoutlogon = 1 () O7 - HKCU\Software\Policies\Microsoft\Internet Explorer\Control Panel present O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 323 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveAutoRun = 67108863 O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0 O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWSH\System32\GPhotos.scr (Google Inc.) O9 - Extra 'Tools' menuitem : Spybot - Search && Destroy Configuration - {DFB852A3-47F8-48C4-A200-58CAB36FD2A2} - C:\Program Files\Spybot - Search & Destroy\SDHelper.dll (Safer Networking Limited) O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\NetLimiter\nl_lsp.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\NetLimiter\nl_lsp.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\NetLimiter\nl_lsp.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\NetLimiter\nl_lsp.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\NetLimiter\nl_lsp.dll () O10 - Protocol_Catalog9\Catalog_Entries\000000000011 - C:\Program Files\NetLimiter\nl_lsp.dll () O16 - DPF: {108D3206-846A-4A93-BACB-F0572D043ED7} http://192.168.1.108/webrec.cab (SurveillanceCtrl Control) O16 - DPF: {8970206C-9776-44A3-AF8D-82DD7D46A2E6} http://10.0.7.46/XViewer.cab (XViewer Control) O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {C1D592D2-D4F6-4E9C-968D-797449DC0ADC} http://www.dvrstation.com/webServer.cab (WebViewerX Control) O16 - DPF: {CAFEEFAC-0016-0000-0029-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_29-windows-i586.cab (Java Plug-in 1.6.0_29) O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object) O16 - DPF: {F0C46420-B50B-4BA1-ADBE-C1ECF47E0916} http://192.168.1.2/XViewer.cab (XViewer Control) O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{C4643C14-3AB0-43F8-B764-B5D4E835A35C}: NameServer = 194.204.152.34,194.204.159.1 O20 - HKLM Winlogon: Shell - (Explorer.exe) - C:\WINDOWSH\explorer.exe (Microsoft Corporation) O20 - HKLM Winlogon: UserInit - (C:\WINDOWSH\system32\userinit.exe) - C:\WINDOWSH\system32\userinit.exe (Microsoft Corporation) O20 - Winlogon\Notify\igfxcui: DllName - (igfxsrvc.dll) - C:\WINDOWSH\System32\igfxsrvc.dll (Intel Corporation) O20 - Winlogon\Notify\IntelWireless: DllName - (C:\Program Files\Intel\Wireless\Bin\LgNotify.dll) - C:\Program Files\Intel\Wireless\Bin\LgNotify.dll (Intel Corporation) O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home O28 - HKLM ShellExecuteHooks: {56F9679E-7826-4C84-81F3-532071A8BCC5} - C:\Program Files\Windows Desktop Search\MsnlNamespaceMgr.dll (Microsoft Corporation) O32 - HKLM CDRom: AutoRun - 1 O32 - AutoRun File - [2008-02-27 17:02:58 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ] O32 - AutoRun File - [2010-02-11 16:06:38 | 000,000,000 | R--D | M] - C:\autorun.inf -- [ NTFS ] O32 - AutoRun File - [2010-02-11 16:06:59 | 000,000,000 | R--D | M] - D:\autorun.inf -- [ NTFS ] O34 - HKLM BootExecute: (PDBoot.exe) O34 - HKLM BootExecute: (autocheck autochk *) O35 - HKLM\..comfile [open] -- "%1" %* O35 - HKLM\..exefile [open] -- "%1" %* O37 - HKLM\...com [@ = ComFile] -- "%1" %* O37 - HKLM\...exe [@ = exefile] -- "%1" %* O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3) O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2) [color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color] [2012-06-01 14:58:06 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\WampServer [2012-06-01 14:53:49 | 000,000,000 | ---D | C] -- C:\wamp [2012-05-31 09:32:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Windows Search [2012-05-31 09:06:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Oracle [2012-05-31 09:03:04 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Zend Server [2012-05-30 14:35:01 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Microsoft SQL Server 2008 [2012-05-30 12:50:57 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Dane aplikacji\Panda Security [2012-05-30 12:50:55 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Panda Security [2012-05-30 12:50:54 | 000,000,000 | ---D | C] -- C:\Program Files\Panda USB Vaccine [2012-05-30 11:23:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Microsoft Office Live Add-in [2012-05-30 11:23:40 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Windows Live [2012-05-30 11:23:37 | 000,054,760 | ---- | C] (Microsoft Corporation) -- C:\WINDOWSH\System32\drivers\fssfltr_tdi.sys [2012-05-30 11:23:10 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live [2012-05-30 11:23:02 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Dokumenty\microsoft [2012-05-30 11:22:46 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Live SkyDrive [2012-05-30 11:19:58 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\Windows Live [2012-05-30 11:16:42 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Microsoft Network Monitor 3.4 [2012-05-30 11:16:41 | 000,000,000 | ---D | C] -- C:\Program Files\Microsoft Network Monitor 3 [2012-05-30 11:13:59 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Dane aplikacji\Windows Desktop Search [2012-05-30 11:13:03 | 000,000,000 | ---D | C] -- C:\Program Files\Windows Desktop Search [2012-05-29 15:37:07 | 023,798,848 | ---- | C] (Microsoft Corporation) -- C:\WINDOWSH\iusuihjcuh [2012-05-29 15:35:32 | 000,000,000 | ---D | C] -- C:\WINDOWSH\XXXXXX1363296C [2012-05-29 09:08:13 | 000,000,000 | -HSD | C] -- C:\RECYCLER [2012-05-28 14:49:04 | 000,000,000 | ---D | C] -- C:\WINDOWSH\temp [2012-05-25 14:17:05 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\ABBYY FineReader 11 [2012-05-25 13:04:33 | 000,000,000 | ---D | C] -- C:\Program Files\Common Files\ABBYY [2012-05-23 12:01:33 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Dane aplikacji\Sophos [2012-05-23 12:01:23 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Menu Start\Programy\Sophos [2012-05-23 12:01:16 | 000,000,000 | ---D | C] -- C:\Program Files\Sophos [2012-05-23 11:03:10 | 000,000,000 | --SD | C] -- D:\Specjalny\Piotr\Pulpit\dla ilony [2012-05-17 12:52:24 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\ESET [2012-05-16 14:34:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Attractel [2012-05-16 14:34:33 | 000,000,000 | ---D | C] -- C:\Program Files\Attractel [2012-05-16 12:17:31 | 000,000,000 | ---D | C] -- C:\Program Files\ABBYY FineReader 11 [2012-05-14 13:41:35 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\Akamai [1 C:\WINDOWSH\System32\*.tmp files -> C:\WINDOWSH\System32\*.tmp -> ] [color=#E56717]========== Files - Modified Within 30 Days ==========[/color] [2012-06-04 07:36:00 | 000,000,464 | -H-- | M] () -- C:\WINDOWSH\tasks\User_Feed_Synchronization-{06D02C2D-1A72-4AFB-B2A4-4B08DBA54773}.job [2012-06-04 07:32:00 | 000,000,480 | -H-- | M] () -- C:\WINDOWSH\tasks\User_Feed_Synchronization-{D05F4871-52D4-40F8-903B-09DD3C27888C}.job [2012-06-04 07:32:00 | 000,000,466 | -H-- | M] () -- C:\WINDOWSH\tasks\User_Feed_Synchronization-{EEDAF504-BD94-466C-A3E9-F6B8EE1E94A0}.job [2012-06-04 07:24:15 | 000,013,698 | ---- | M] () -- C:\WINDOWSH\System32\wpa.dbl [2012-06-04 07:24:15 | 000,000,446 | ---- | M] () -- C:\WINDOWSH\tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job [2012-06-04 07:20:00 | 000,000,932 | ---- | M] () -- C:\WINDOWSH\tasks\Adobe Flash Player Updater.job [2012-06-01 15:50:38 | 000,002,048 | --S- | M] () -- C:\WINDOWSH\bootstat.dat [2012-06-01 15:41:23 | 000,352,617 | -H-- | M] () -- C:\treeinfo.wc [2012-06-01 14:58:06 | 000,000,445 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\WampServer.lnk [2012-06-01 14:57:35 | 000,000,054 | ---- | M] () -- C:\WINDOWSH\System32\drivers\etc\hosts [2012-06-01 08:58:36 | 000,053,248 | ---- | M] () -- C:\grupazdrowie.sql [2012-05-31 19:15:00 | 000,000,284 | ---- | M] () -- C:\WINDOWSH\tasks\AppleSoftwareUpdate.job [2012-05-31 09:52:11 | 000,004,727 | ---- | M] () -- C:\WINDOWSH\ODBCINST.INI [2012-05-30 15:27:39 | 000,460,432 | ---- | M] () -- C:\WINDOWSH\System32\FNTCACHE.DAT [2012-05-30 14:07:22 | 000,663,502 | ---- | M] () -- C:\WINDOWSH\System32\perfh015.dat [2012-05-30 14:07:22 | 000,575,118 | ---- | M] () -- C:\WINDOWSH\System32\perfh009.dat [2012-05-30 14:07:22 | 000,145,642 | ---- | M] () -- C:\WINDOWSH\System32\perfc015.dat [2012-05-30 14:07:22 | 000,114,052 | ---- | M] () -- C:\WINDOWSH\System32\perfc009.dat [2012-05-30 14:00:06 | 000,134,228 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\kwarantanna.JPG [2012-05-30 13:44:27 | 000,001,374 | ---- | M] () -- C:\WINDOWSH\imsins.BAK [2012-05-30 12:50:55 | 000,000,903 | ---- | M] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart\PandaUSBVaccine.lnk [2012-05-30 11:16:42 | 000,000,805 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWSH\Pulpit\Microsoft Network Monitor 3.4.lnk [2012-05-30 11:13:19 | 000,001,783 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Autostart\Windows Search.lnk [2012-05-30 09:17:52 | 000,000,796 | ---- | M] () -- C:\WINDOWSH\Q-Dir.ini [2012-05-30 08:49:10 | 000,002,004 | ---- | M] () -- C:\WINDOWSH\System32\1363296C.key [2012-05-29 15:37:09 | 023,798,848 | ---- | M] (Microsoft Corporation) -- C:\WINDOWSH\iusuihjcuh [2012-05-29 15:35:33 | 000,000,007 | ---- | M] () -- C:\WINDOWSH\System32\1363296C [2012-05-29 15:34:14 | 000,000,066 | ---- | M] () -- C:\WINDOWSH\System32\onf360QA.dat [2012-05-29 13:58:01 | 000,000,000 | ---- | M] () -- C:\WINDOWSH\System32\c.exe [2012-05-29 08:27:31 | 001,474,832 | ---- | M] () -- C:\WINDOWSH\System32\drivers\sfi.dat [2012-05-28 09:27:18 | 001,202,405 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\SPIN%20650N-1000N.pdf [2012-05-25 15:31:17 | 000,000,069 | ---- | M] () -- C:\WINDOWSH\NeroDigital.ini [2012-05-25 15:31:15 | 000,054,272 | ---- | M] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini [2012-05-23 12:01:23 | 000,002,070 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\Sophos Virus Removal Tool.lnk [2012-05-23 11:08:02 | 000,000,809 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\Spybot - Search & Destroy.lnk [2012-05-23 09:51:07 | 000,442,913 | ---- | M] () -- D:\Specjalny\Piotr\Pulpit\rakotw.pdf [2012-05-21 11:30:11 | 000,000,072 | ---- | M] () -- C:\WINDOWSH\PdvrServer.INI [2012-05-16 13:26:44 | 000,000,382 | -HS- | M] () -- C:\boot.ini [2012-05-05 13:20:12 | 000,419,488 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWSH\System32\FlashPlayerApp.exe [2012-05-05 13:20:12 | 000,070,304 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWSH\System32\FlashPlayerCPLApp.cpl [2012-05-05 13:20:04 | 004,140,192 | ---- | M] (Adobe Systems Incorporated) -- C:\WINDOWSH\System32\FlashPlayerInstaller.exe [1 C:\WINDOWSH\System32\*.tmp files -> C:\WINDOWSH\System32\*.tmp -> ] [color=#E56717]========== Files Created - No Company Name ==========[/color] [2012-06-01 15:37:48 | 000,053,248 | ---- | C] () -- C:\grupazdrowie.sql [2012-06-01 14:58:06 | 000,000,445 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\WampServer.lnk [2012-05-30 14:00:06 | 000,134,228 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\kwarantanna.JPG [2012-05-30 12:50:55 | 000,000,903 | ---- | C] () -- C:\Documents and Settings\Piotr\Menu Start\Programy\Autostart\PandaUSBVaccine.lnk [2012-05-30 11:16:42 | 000,000,805 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWSH\Pulpit\Microsoft Network Monitor 3.4.lnk [2012-05-30 11:13:19 | 000,001,783 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Autostart\Windows Search.lnk [2012-05-30 11:13:18 | 000,001,799 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWSH\Menu Start\Programy\Windows Search.lnk [2012-05-30 11:05:08 | 000,225,262 | ---- | C] () -- C:\WINDOWSH\System32\dllcache\msimain.sdb [2012-05-29 15:36:12 | 000,002,004 | ---- | C] () -- C:\WINDOWSH\System32\1363296C.key [2012-05-29 15:35:33 | 000,000,007 | ---- | C] () -- C:\WINDOWSH\System32\1363296C [2012-05-29 15:34:14 | 000,000,066 | ---- | C] () -- C:\WINDOWSH\System32\onf360QA.dat [2012-05-29 09:46:27 | 000,000,000 | ---- | C] () -- C:\WINDOWSH\System32\c.exe [2012-05-29 08:31:48 | 000,000,446 | ---- | C] () -- C:\WINDOWSH\tasks\CIS_{81EFDD93-DBBE-415B-BE6E-49B9664E3E82}.job [2012-05-28 13:56:29 | 000,000,480 | -H-- | C] () -- C:\WINDOWSH\tasks\User_Feed_Synchronization-{D05F4871-52D4-40F8-903B-09DD3C27888C}.job [2012-05-28 09:27:18 | 001,202,405 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\SPIN%20650N-1000N.pdf [2012-05-23 12:01:23 | 000,002,070 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\Sophos Virus Removal Tool.lnk [2012-05-23 11:08:02 | 000,000,809 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\Spybot - Search & Destroy.lnk [2012-05-16 11:25:01 | 000,442,913 | ---- | C] () -- D:\Specjalny\Piotr\Pulpit\rakotw.pdf [2012-05-16 08:04:48 | 000,000,466 | -H-- | C] () -- C:\WINDOWSH\tasks\User_Feed_Synchronization-{EEDAF504-BD94-466C-A3E9-F6B8EE1E94A0}.job [2012-03-01 16:41:23 | 000,922,184 | ---- | C] () -- C:\WINDOWSH\System32\pwNative.exe [2012-03-01 16:41:20 | 000,016,472 | ---- | C] () -- C:\WINDOWSH\System32\pwdrvio.sys [2012-03-01 16:41:19 | 000,011,104 | ---- | C] () -- C:\WINDOWSH\System32\pwdspio.sys [2012-02-27 12:42:25 | 000,000,239 | ---- | C] () -- C:\WINDOWSH\NPGUI.INI [2012-02-17 17:26:23 | 000,000,204 | ---- | C] () -- C:\WINDOWSH\System32\secustat.dat [2012-02-17 13:57:59 | 000,002,356 | ---- | C] () -- C:\WINDOWSH\System32\secushr.dat [2012-02-17 13:45:17 | 000,000,025 | ---- | C] () -- C:\WINDOWSH\libem.INI [2012-02-16 06:20:07 | 000,003,072 | ---- | C] () -- C:\WINDOWSH\System32\iacenc.dll [2012-02-10 13:46:16 | 000,040,960 | ---- | C] () -- C:\WINDOWSH\System32\VPN.dll [2011-12-14 12:38:45 | 000,085,945 | ---- | C] () -- C:\WINDOWSH\System32\arping.exe [2011-12-09 10:26:25 | 000,388,823 | ---- | C] () -- C:\WINDOWSH\System32\hping.exe [2011-12-09 09:03:25 | 000,000,056 | ---- | C] () -- C:\WINDOWSH\GWRUN.INI [2011-11-14 15:10:34 | 000,200,704 | ---- | C] () -- C:\WINDOWSH\System32\UMonit.exe [2011-11-14 15:10:33 | 000,176,128 | ---- | C] () -- C:\WINDOWSH\System32\ustor.dll [2011-10-04 12:41:51 | 000,000,069 | ---- | C] () -- C:\WINDOWSH\NeroDigital.ini [2011-09-27 12:26:15 | 085,529,482 | ---- | C] () -- C:\Program Files\EuroSoft - Przychodnia.rar [2011-08-26 14:51:07 | 000,175,616 | ---- | C] () -- C:\WINDOWSH\System32\unrar.dll [2011-08-26 14:51:04 | 000,000,038 | ---- | C] () -- C:\WINDOWSH\avisplitter.ini [2011-08-26 14:51:02 | 000,650,752 | ---- | C] () -- C:\WINDOWSH\System32\xvidcore.dll [2011-08-26 14:51:02 | 000,243,200 | ---- | C] () -- C:\WINDOWSH\System32\xvidvfw.dll [2011-08-26 14:51:00 | 000,074,752 | ---- | C] () -- C:\WINDOWSH\System32\ff_vfw.dll [2011-06-22 09:50:19 | 000,000,086 | ---- | C] () -- C:\WINDOWSH\Bench32.INI [2011-05-25 08:42:23 | 000,484,656 | ---- | C] () -- C:\WINDOWSH\ssndii.exe [2011-05-25 08:41:27 | 000,022,723 | ---- | C] () -- C:\WINDOWSH\System32\ml285pl3.dll [2011-05-17 11:03:25 | 000,000,192 | ---- | C] () -- C:\WINDOWSH\aspack.INI [2011-05-16 08:09:20 | 000,001,708 | ---- | C] () -- C:\WINDOWSH\System32\.ini [2011-02-02 09:37:52 | 001,474,832 | ---- | C] () -- C:\WINDOWSH\System32\drivers\sfi.dat [2010-12-07 16:24:24 | 000,000,126 | -HS- | C] () -- C:\Documents and Settings\All Users.WINDOWSH\Dane aplikacji\.zreglib [2010-09-01 09:40:55 | 000,237,568 | ---- | C] () -- C:\WINDOWSH\System32\qtmlClient.dll [2010-09-01 09:40:55 | 000,002,161 | ---- | C] () -- C:\WINDOWSH\Graffiti5.2Pin.ini [2010-08-31 11:11:41 | 000,000,116 | ---- | C] () -- C:\WINDOWSH\ConverterCore.INI [2010-08-31 11:06:58 | 000,027,456 | ---- | C] () -- C:\WINDOWSH\System32\solidlocalmon.dll [2010-08-31 11:06:58 | 000,018,752 | ---- | C] () -- C:\WINDOWSH\System32\solidlocalui.dll [2010-08-17 15:11:24 | 000,000,796 | ---- | C] () -- C:\WINDOWSH\Q-Dir.ini [2010-08-10 08:59:23 | 000,000,600 | ---- | C] () -- C:\Documents and Settings\Piotr\Ustawienia lokalne\Dane aplikacji\PUTTY.RND [2010-08-04 09:24:24 | 001,269,760 | ---- | C] () -- C:\WINDOWSH\System32\AVC_AP_H264.dll [2010-07-28 09:54:55 | 000,000,169 | ---- | C] () -- C:\WINDOWSH\ultra.INI [2010-07-14 11:22:22 | 000,000,062 | ---- | C] () -- C:\WINDOWSH\Product Key Explorer.INI [2010-07-12 08:39:07 | 000,000,116 | ---- | C] () -- C:\WINDOWSH\wininit.ini < End of report >