Komputer Świat Ekspert - Forum: oxoeedfade blad appname: fireWall.exe ModName:kernel32.dll - Komputer Świat Ekspert - Forum

Skocz do zawartości

Strona 1 z 1

oxoeedfade blad appname: fireWall.exe ModName:kernel32.dll

#1 Użytkownik nie jest zalogowany   Plastik 

  • Nowy Uczestnik
  • Grupa: Czytelnicy
  • Postów 4
  • Rejestracja: 14-wrzesień 11

Napisano 14 wrzesień 2011, 11:13

Witam, potrzebuje profesjonalnej pomocy młotkiem wytlmaczonej, nie znam sie na tym dobrze(komputer)

Dziś padł prąd jakies 5 razy, komputer w tym czasie działał(wyłączał sie te 5 razy). po wlaczeniu komputera wyskakuje mi informacja o błędzie FireWall.exe na samym starcie systemu, po załadowaniu pulpitu.
po tym nie ładują mi sie zadne strony ani nic nie może sie połączyć z internetem(pisze z kolegi kompa)
sygnatura błędu jak w tytule fireWall.exe ModName:kernel32.dll

podmieniałem plik kernel32.dll w wierszu polecen używająć płyty windowsa, nic to nie dało, nie mam ochoty robic formatu, szkoda mi czasu, mogli byście mi coś poradzić ?? dla znawcy poszukam reszty informacji o tym w celu wyjaśnienia, i wiekszej wiedzy o tym problemie

dziękuje za pomoc, plastik133
0

#2 Użytkownik nie jest zalogowany   Ferrari 

  • Tajny agent USB
  • Grupa: Moderatorzy
  • Postów 3531
  • Rejestracja: 21-marzec 04

Napisano 14 wrzesień 2011, 13:26

Start -> Uruchom -> chkdsk C: /r

Jeżeli partycją systemową nie jest C: to wstaw inną literę.

Uruchom komputer ponownie. Czy problem dalej występuje?
Przygoda w Biurowej Dzielnicy - TODA :: Przyszłość sieci Webb i informatyzacja Polski
There is a road to freedom. Its milestones are Obedience, Endeavor, Honesty, Order, Cleanliness, Sobriety, Truthfulness, Sacrifice, and love of the Fatherland.
0

#3 Użytkownik nie jest zalogowany   Plastik 

  • Nowy Uczestnik
  • Grupa: Czytelnicy
  • Postów 4
  • Rejestracja: 14-wrzesień 11

Napisano 14 wrzesień 2011, 15:26

Wyświetl postUżytkownik Ferrari dnia 14 wrzesień 2011, 13:26 napisał

Start -> Uruchom -> chkdsk C: /r

Jeżeli partycją systemową nie jest C: to wstaw inną literę.

Uruchom komputer ponownie. Czy problem dalej występuje?

niestety nic nie pomogło, proces sie zakonczyl i błąd dalej wyskakuje, dodam ze mam system win xp home edition
0

#4 Użytkownik nie jest zalogowany   Ferrari 

  • Tajny agent USB
  • Grupa: Moderatorzy
  • Postów 3531
  • Rejestracja: 21-marzec 04

Napisano 14 wrzesień 2011, 15:44

Pobierz program OTL stąd. Ustaw opcje jak na zdjęciu. Kliknij Skanuj (Run Scan). Poczekaj, aż program wygeneruje logi. Skopiuj oba na forum. Spróbuj wyłączyć na chwilę zewnętrzną zaporę ogniową, jeżeli takiej używasz.
Przygoda w Biurowej Dzielnicy - TODA :: Przyszłość sieci Webb i informatyzacja Polski
There is a road to freedom. Its milestones are Obedience, Endeavor, Honesty, Order, Cleanliness, Sobriety, Truthfulness, Sacrifice, and love of the Fatherland.
0

#5 Użytkownik nie jest zalogowany   Plastik 

  • Nowy Uczestnik
  • Grupa: Czytelnicy
  • Postów 4
  • Rejestracja: 14-wrzesień 11

Napisano 14 wrzesień 2011, 16:25

OTL logfile created on: 2011-09-14 17:12:32 - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = c:\
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 2,48 Gb Available Physical Memory | 82,71% Memory free
4,84 Gb Paging File | 4,41 Gb Available in Paging File | 91,12% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 12,99 Gb Free Space | 33,25% Space Free | Partition Type: NTFS
Drive D: | 213,33 Gb Total Space | 128,25 Gb Free Space | 60,12% Space Free | Partition Type: NTFS
Drive E: | 213,36 Gb Total Space | 126,96 Gb Free Space | 59,50% Space Free | Partition Type: NTFS

Computer Name: DOM-F75D163E346 | User Name: Plastik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2011-09-14 17:06:10 | 000,581,632 | ---- | M] (OldTimer Tools) -- c:\OTL.exe
PRC - [2011-08-13 20:46:56 | 003,077,528 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
PRC - [2011-08-03 13:49:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
PRC - [2011-07-21 12:12:16 | 000,269,480 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe
PRC - [2011-05-17 11:02:08 | 000,231,592 | ---- | M] (Panda Security) -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Panda Security URL Filtering\Panda_URL_Filtering.exe
PRC - [2011-04-28 14:01:20 | 000,439,616 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe
PRC - [2011-04-28 13:58:54 | 000,140,608 | ---- | M] (Panda Security, S.L.) -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe
PRC - [2011-04-21 07:54:05 | 000,076,968 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\avshadow.exe
PRC - [2011-04-21 07:53:48 | 000,136,360 | ---- | M] (Avira GmbH) -- C:\Program Files\Avira\AntiVir Desktop\sched.exe
PRC - [2011-04-21 07:53:33 | 000,281,768 | ---- | M] (Avira GmbH) -- c:\Program Files\Avira\AntiVir Desktop\avgnt.exe
PRC - [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation) -- C:\WINDOWS\explorer.exe
PRC - [2006-08-30 10:58:38 | 000,049,152 | ---- | M] (ZSMCSNAP) -- C:\WINDOWS\vmsnap3.exe
PRC - [2006-06-28 17:54:06 | 000,049,152 | ---- | M] (Vimicro) -- C:\WINDOWS\Domino.exe


========== Modules (No Company Name) ==========

MOD - [2011-08-13 20:46:56 | 003,077,528 | ---- | M] () -- C:\Program Files\Pando Networks\Media Booster\PMB.exe
MOD - [2011-07-21 15:12:31 | 000,355,688 | ---- | M] () -- C:\Program Files\Avira\AntiVir Desktop\sqlite3.dll
MOD - [2009-02-27 20:04:20 | 000,311,296 | ---- | M] () -- C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\pdfshell.POL
MOD - [2008-06-02 13:01:14 | 000,393,728 | ---- | M] () -- C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll
MOD - [2008-04-15 14:00:00 | 000,014,336 | ---- | M] () -- C:\WINDOWS\system32\msdmo.dll
MOD - [2007-02-14 13:55:11 | 000,165,424 | ---- | M] () -- C:\Program Files\Panda Security\Panda Cloud Antivirus\MiniCrypto.dll
MOD - [2007-02-14 13:55:10 | 000,099,888 | ---- | M] () -- C:\Program Files\Panda Security\Panda Cloud Antivirus\APIcr.dll


========== Win32 Services (SafeList) ==========

SRV - File not found [On_Demand | Stopped] -- -- (AppMgmt)
SRV - [2011-08-03 13:49:00 | 002,255,464 | ---- | M] (NVIDIA Corporation) [Auto | Running] -- C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe -- (nvUpdatusService)
SRV - [2011-07-21 12:12:16 | 000,269,480 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\avguard.exe -- (AntiVirService)
SRV - [2011-06-03 19:10:05 | 000,403,240 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2011-04-28 13:58:54 | 000,140,608 | ---- | M] (Panda Security, S.L.) [Auto | Running] -- C:\Program Files\Panda Security\Panda Cloud Antivirus\PSANHost.exe -- (NanoServiceMain)
SRV - [2011-04-21 07:53:48 | 000,136,360 | ---- | M] (Avira GmbH) [Auto | Running] -- C:\Program Files\Avira\AntiVir Desktop\sched.exe -- (AntiVirSchedulerService)
SRV - [2010-05-25 21:42:00 | 003,821,936 | ---- | M] (INCA Internet Co., Ltd.) [On_Demand | Stopped] -- C:\WINDOWS\System32\GameMon.des -- (npggsvc)


========== Driver Services (SafeList) ==========

DRV - [2011-09-14 17:07:44 | 000,004,096 | ---- | M] () [Kernel | On_Demand | Running] -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Temp\ASFWHide -- (ASFWHide)
DRV - [2011-07-21 12:15:21 | 000,138,192 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\avipbb.sys -- (avipbb)
DRV - [2011-07-21 12:15:19 | 000,066,616 | ---- | M] (Avira GmbH) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\avgntflt.sys -- (avgntflt)
DRV - [2011-07-05 12:12:43 | 000,143,752 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINAflt.sys -- (PSINAflt)
DRV - [2011-06-01 21:01:10 | 000,218,688 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV - [2011-04-28 13:57:57 | 000,112,456 | ---- | M] (Panda Security, S.L.) [Kernel | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProt.sys -- (PSINProt)
DRV - [2011-04-28 13:57:38 | 000,129,992 | ---- | M] (Panda Security, S.L.) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\PSINKNC.sys -- (PSINKNC)
DRV - [2011-04-28 13:57:38 | 000,111,688 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINProc.sys -- (PSINProc)
DRV - [2011-04-28 13:57:38 | 000,097,096 | ---- | M] (Panda Security, S.L.) [File_System | Auto | Running] -- C:\WINDOWS\system32\drivers\PSINFile.sys -- (PSINFile)
DRV - [2010-10-30 10:19:55 | 000,691,696 | ---- | M] () [Kernel | Boot | Running] -- C:\WINDOWS\System32\Drivers\sptd.sys -- (sptd)
DRV - [2010-06-17 15:27:22 | 000,028,520 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\ssmdrv.sys -- (ssmdrv)
DRV - [2010-06-17 15:27:12 | 000,011,608 | ---- | M] (Avira GmbH) [Kernel | System | Running] -- C:\Program Files\Avira\AntiVir Desktop\avgio.sys -- (avgio)
DRV - [2008-08-05 22:29:28 | 000,039,456 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvhda32.sys -- (NVHDA)
DRV - [2008-08-01 21:36:26 | 000,022,016 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\nvnetbus.sys -- (nvnetbus)
DRV - [2008-08-01 21:36:20 | 000,054,784 | R--- | M] (NVIDIA Corporation) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\NVENETFD.sys -- (NVENETFD)
DRV - [2008-07-26 14:09:24 | 000,845,184 | R--- | M] (VIA Technologies, Inc.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\viahduaa.sys -- (VIAHdAudAddService)
DRV - [2008-02-15 08:12:00 | 001,389,056 | R--- | M] (Creative Technology Ltd.) [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\monfilt.sys -- (monfilt)
DRV - [2007-12-17 19:14:00 | 000,012,400 | R--- | M] () [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AsIO.sys -- (AsIO)
DRV - [2007-04-16 16:46:34 | 000,033,792 | ---- | M] (Advanced Micro Devices) [Kernel | System | Running] -- C:\WINDOWS\system32\drivers\AmdPPM.sys -- (AmdPPM)
DRV - [2006-12-01 14:23:58 | 000,392,122 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\usbVM303.sys -- (ZSMC303)
DRV - [2006-04-25 10:57:42 | 000,428,160 | ---- | M] (Vimicro Corporation) [Kernel | On_Demand | Stopped] -- C:\WINDOWS\system32\drivers\vmfilter303.sys -- (vmfilter303)
DRV - [2004-08-14 20:56:20 | 000,005,810 | R--- | M] () [Kernel | On_Demand | Running] -- C:\WINDOWS\system32\drivers\ASACPI.sys -- (MTsensor)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = %SystemRoot%\system32\blank.htm

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.pl/
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..browser.search.selectedEngine: "Yahoo"
FF - prefs.js..browser.startup.homepage: "http://www.google.pl/"
FF - prefs.js..extensions.enabledItems: linkfilter@kaspersky.ru:9.0.0.463
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}:6.0.20
FF - prefs.js..extensions.enabledItems: jqs@sun.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}:6.0.22
FF - prefs.js..extensions.enabledItems: widgetruntime@surfsecret.com:1.0
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}:6.0.23
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}:6.0.24
FF - prefs.js..extensions.enabledItems: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}:6.0.26
FF - prefs.js..keyword.URL: "http://search.yahoo.com/search?fr=panda&type=PCAFSI1190&p="

FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll ()
FF - HKLM\Software\MozillaPlugins\@google.com/npPicasa3,version=3.0.0: D:\Program Files\Google\Picasa3\npPicasa3.dll (Google, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\4.0.60531.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WPF,version=3.5: C:\WINDOWS\Microsoft.NET\Framework\v3.5\Windows Presentation Foundation\NPWPF.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)
FF - HKLM\Software\MozillaPlugins\@real.com/nppl3260;version=6.0.12.732: E:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nppl3260.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nprpjplug;version=6.0.12.732: E:\Program Files\K-Lite Codec Pack\Real\browser\plugins\nprpjplug.dll (RealNetworks, Inc.)
FF - HKLM\Software\MozillaPlugins\@real.com/nsJSRealPlayerPlugin;version=: File not found
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\pandonetworks.com/PandoWebPlugin: C:\Program Files\Pando Networks\Media Booster\npPandoWebPlugin.dll (Pando Networks)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\widgetruntime@surfsecret. com: C:\Program Files\Panda Security\Panda ID Protect\Firefox [2011-01-02 16:23:37 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Components: C:\Program Files\Mozilla Firefox\components [2011-09-14 13:33:01 | 000,000,000 | ---D | M]
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 6.0\extensions\\Plugins: C:\Program Files\Mozilla Firefox\plugins [2011-08-18 10:32:13 | 000,000,000 | ---D | M]

[2010-06-03 12:10:21 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Plastik\Dane aplikacji\Mozilla\Extensions
[2011-08-17 18:41:12 | 000,000,000 | ---D | M] (No name found) -- C:\Documents and Settings\Plastik\Dane aplikacji\Mozilla\Firefox\Profiles\qj0oxjho.default\extensions
[2011-03-31 10:31:14 | 000,000,000 | ---D | M] (Microsoft .NET Framework Assistant) -- C:\Documents and Settings\Plastik\Dane aplikacji\Mozilla\Firefox\Profiles\qj0oxjho.default\extensions\{20a82645- c095-46ed-80e3-08825760534b}
[2011-01-02 16:23:23 | 000,000,000 | ---D | M] (Panda Security Toolbar) -- C:\Documents and Settings\Plastik\Dane aplikacji\Mozilla\Firefox\Profiles\qj0oxjho.default\extensions\{B821BF60- 5C2D-41EB-92DC-3E4CCD3A22E4}
[2010-09-01 14:32:22 | 000,000,523 | ---- | M] () -- C:\Documents and Settings\Plastik\Dane aplikacji\Mozilla\Firefox\Profiles\qj0oxjho.default\searchplugins\daemon- search.xml
[2011-08-17 18:40:33 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files\Mozilla Firefox\extensions
[2010-05-13 16:38:31 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0020-ABCDEFFEDCBA}
[2010-10-13 14:23:12 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA}
[2011-01-27 23:24:44 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0023-ABCDEFFEDCBA}
[2011-04-08 13:32:32 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0024-ABCDEFFEDCBA}
[2011-06-25 12:41:00 | 000,000,000 | ---D | M] (Java Console) -- C:\Program Files\Mozilla Firefox\extensions\{CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA}
[2009-09-07 20:33:54 | 000,000,000 | ---D | M] (Kaspersky URL Advisor) -- C:\Program Files\Mozilla Firefox\extensions\linkfilter@kaspersky.ru
[2010-08-24 09:22:06 | 000,000,000 | ---D | M] (Java Quick Starter) -- C:\PROGRAM FILES\JAVA\JRE6\LIB\DEPLOY\JQS\FF
[2011-08-12 08:32:21 | 000,134,104 | ---- | M] (Mozilla Foundation) -- C:\Program Files\mozilla firefox\components\browsercomps.dll
[2011-05-04 04:52:23 | 000,476,904 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\mozilla firefox\plugins\npdeployJava1.dll
[2011-09-01 20:44:19 | 000,002,767 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\allegro-pl.xml
[2011-09-01 20:44:19 | 000,001,406 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\fbc-pl.xml
[2011-09-01 20:44:19 | 000,000,917 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\merlin-pl.xml
[2011-09-01 20:44:19 | 000,000,858 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\pwn-pl.xml
[2011-09-01 20:44:19 | 000,001,183 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wikipedia-pl.xml
[2011-09-01 20:44:19 | 000,001,683 | ---- | M] () -- C:\Program Files\mozilla firefox\searchplugins\wp-pl.xml

O1 HOSTS File: ([2008-04-15 14:00:00 | 000,000,742 | ---- | M]) - C:\WINDOWS\system32\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (AVG Safe Search) - {3CA2F312-6F6E-4B53-A66E-4E65E497C8C0} - C:\Program Files\AVG\AVG9\avgssie.dll File not found
O2 - BHO: (Skype Browser Helper) - {AE805869-2E5C-4ED4-8F7B-F1F7851A4497} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O2 - BHO: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3 - HKLM\..\Toolbar: (Panda Security Toolbar) - {B821BF60-5C2D-41EB-92DC-3E4CCD3A22E4} - C:\Program Files\Panda Security\Panda Security Toolbar\PandaSecurityDx.dll ()
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {32099AAC-C132-4136-9E9A-4E364A424E17} - No CLSID value found.
O3: - HKCU\..\Toolbar\WebBrowser - No CLSID value found.
O3 - HKCU\..\Toolbar\WebBrowser: (no name) - {D4027C7F-154A-4066-A1AD-4243D8127440} - No CLSID value found.
O4 - HKLM..\Run: [Ashampoo FireWall] C:\Program Files\Ashampoo\Ashampoo FireWall FREE\FireWall.exe ()
O4 - HKLM..\Run: [avgnt] C:\Program Files\Avira\AntiVir Desktop\avgnt.exe (Avira GmbH)
O4 - HKLM..\Run: [BigDog303] C:\WINDOWS\VM303_STI.EXE VIMICRO USB PC Camera (ZC0301PLH) File not found
O4 - HKLM..\Run: [Domino] C:\WINDOWS\Domino.exe (Vimicro)
O4 - HKLM..\Run: [NBKeyScan] C:\Program Files\Nero\Nero8\Nero BackItUp\NBKeyScan.exe (Nero AG)
O4 - HKLM..\Run: [NeroFilterCheck] C:\Program Files\Common Files\Nero\Lib\NeroCheck.exe (Nero AG)
O4 - HKLM..\Run: [NvCplDaemon] C:\WINDOWS\System32\NvCpl.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [NvMediaCenter] C:\WINDOWS\System32\nvmctray.dll (NVIDIA Corporation)
O4 - HKLM..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe ()
O4 - HKLM..\Run: [Panda Security URL Filtering] C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Panda Security URL Filtering\Panda_URL_Filtering.exe (Panda Security)
O4 - HKLM..\Run: [PSUNMain] C:\Program Files\Panda Security\Panda Cloud Antivirus\PSUNMain.exe (Panda Security, S.L.)
O4 - HKLM..\Run: [VMSnap3] C:\WINDOWS\vmsnap3.exe (ZSMCSNAP)
O4 - HKCU..\Run: [Pando Media Booster] C:\Program Files\Pando Networks\Media Booster\PMB.exe ()
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: HonorAutoRunSetting = 1
O7 - HKCU\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDriveTypeAutoRun = 145
O8 - Extra context menu item: Add to Google Photos Screensa&ver - C:\WINDOWS\System32\GPhotos.scr (Google Inc.)
O9 - Extra Button: Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O9 - Extra 'Tools' menuitem : Skype Plug-In - {898EA8C8-E7FF-479B-8935-AEC46303B9E5} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O10 - Protocol_Catalog9\Catalog_Entries\000000000014 - C:\Program Files\Ashampoo\Ashampoo FireWall FREE\spi.dll ()
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-0016-0000-0026-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_26)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload.ma...ash/swflash.cab (Shockwave Flash Object)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.168.1.100
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{723E1F97-1D92- 4D16-A608-834F2A1EFE09}: DhcpNameServer = 192.168.1.100
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18 - Protocol\Handler\skype-ie-addon-data {91774881-D725-4E58-B298-07617B9B86A8} - C:\Program Files\Skype\Toolbars\Internet Explorer\skypeieplugin.dll (Skype Technologies S.A.)
O20 - HKLM Winlogon: Shell - (Explorer.exe) -C:\WINDOWS\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (c:\windows\system32\userinit.exe) -C:\WINDOWS\system32\userinit.exe (Microsoft Corporation)
O20 - Winlogon\Notify\avldr: DllName - (avldr.dll) - File not found
O24 - Desktop Components:0 (Moja bieżąca strona główna) - About:Home
O24 - Desktop WallPaper: C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O24 - Desktop BackupWallPaper: C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\Microsoft\Wallpaper1.bmp
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-19 10:13:43 | 000,000,000 | ---- | M] () - C:\AUTOEXEC.BAT -- [ NTFS ]
O33 - MountPoints2\{5080a46f-b06c-11df-9384-00248cc226c0}\Shell - "" = AutoRun
O33 - MountPoints2\{5080a46f-b06c-11df-9384-00248cc226c0}\Shell\AutoRun\command - "" = G:\Autorun.exe
O33 - MountPoints2\{573118fe-03a5-11e0-94c8-00248cc226c0}\Shell\AutoRun\command - "" = G:\VARAS///oduvek.exe
O33 - MountPoints2\{573118fe-03a5-11e0-94c8-00248cc226c0}\Shell\explore\command - "" = G:\VARAS//oduvek.exe
O33 - MountPoints2\{573118fe-03a5-11e0-94c8-00248cc226c0}\Shell\open\command - "" = G:\VARAS//oduvek.exe
O33 - MountPoints2\{961022de-7e0d-11df-92b0-00248cc226c0}\Shell\AutoRun\command - "" = C:\WINDOWS\explorer.exe -- [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{961022de-7e0d-11df-92b0-00248cc226c0}\Shell\explore\Command - "" = C:\WINDOWS\explorer.exe -- [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{961022de-7e0d-11df-92b0-00248cc226c0}\Shell\open\Command - "" = C:\WINDOWS\explorer.exe -- [2008-04-15 14:00:00 | 001,035,264 | ---- | M] (Microsoft Corporation)
O33 - MountPoints2\{c460b4cc-851b-11df-92cd-00248cc226c0}\Shell - "" = AutoRun
O33 - MountPoints2\{c460b4cc-851b-11df-92cd-00248cc226c0}\Shell\AutoRun\command - "" = C:\WINDOWS\system32\RunDLL32.EXE Shell32.DLL,ShellExec_RunDLL explore.exe
O33 - MountPoints2\{d961b104-9745-11df-9317-00248cc226c0}\Shell\AutoRun\command - "" = G:\i8ikdjwt.exe
O33 - MountPoints2\{d961b104-9745-11df-9317-00248cc226c0}\Shell\open\Command - "" = G:\i8ikdjwt.exe
O33 - MountPoints2\{d9b511c8-e3fe-11df-946d-00248cc226c0}\Shell - "" = AutoRun
O33 - MountPoints2\{d9b511c8-e3fe-11df-946d-00248cc226c0}\Shell\AutoRun\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{d9b511c8-e3fe-11df-946d-00248cc226c0}\Shell\configure\command - "" = G:\SETUP.EXE
O33 - MountPoints2\{d9b511c8-e3fe-11df-946d-00248cc226c0}\Shell\install\command - "" = G:\SETUP.EXE
O34 - HKLM BootExecute: (autocheck autochk *)
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*

========== Files/Folders - Created Within 30 Days ==========

[2011-09-14 17:10:39 | 000,581,632 | ---- | C] (OldTimer Tools) -- C:\OTL.exe
[2011-09-14 13:53:31 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Avira
[2011-09-14 13:53:22 | 000,028,520 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\ssmdrv.sys
[2011-09-14 13:53:18 | 000,138,192 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avipbb.sys
[2011-09-14 13:53:18 | 000,066,616 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntflt.sys
[2011-09-14 13:53:18 | 000,045,416 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntdd.sys
[2011-09-14 13:53:18 | 000,022,360 | ---- | C] (Avira GmbH) -- C:\WINDOWS\System32\drivers\avgntmgr.sys
[2011-09-14 13:53:16 | 000,000,000 | ---D | C] -- C:\Program Files\Avira
[2011-09-14 13:53:16 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Avira
[2011-09-14 13:31:34 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Picasa 3
[2011-08-30 12:46:30 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\2K Games
[2011-08-23 00:20:25 | 000,000,000 | -H-D | C] -- C:\Documents and Settings\Plastik\Pulpit\.picasaoriginals
[2011-08-18 01:41:44 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\TeamSpeak 3 Client
[2011-08-18 01:41:39 | 000,000,000 | ---D | C] -- C:\Program Files\TeamSpeak 3 Client
[2011-08-17 18:48:14 | 000,000,000 | ---D | C] -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\AskToolbar
[2011-08-17 13:50:51 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NVIDIA
[2011-08-17 13:50:46 | 000,000,000 | ---D | C] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NVIDIA Corporation
[2011-08-17 13:50:38 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrstr.dll
[2011-08-17 13:50:38 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsth.dll
[2011-08-17 13:50:38 | 000,229,376 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszhc.dll
[2011-08-17 13:50:38 | 000,126,976 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrszht.dll
[2011-08-17 13:50:37 | 000,335,872 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsar.dll
[2011-08-17 13:50:37 | 000,331,776 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshe.dll
[2011-08-17 13:50:37 | 000,286,720 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfr.dll
[2011-08-17 13:50:37 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsit.dll
[2011-08-17 13:50:37 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrses.dll
[2011-08-17 13:50:37 | 000,282,624 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsel.dll
[2011-08-17 13:50:37 | 000,278,528 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsde.dll
[2011-08-17 13:50:37 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspt.dll
[2011-08-17 13:50:37 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsnl.dll
[2011-08-17 13:50:37 | 000,274,432 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsesm.dll
[2011-08-17 13:50:37 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsru.dll
[2011-08-17 13:50:37 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsptb.dll
[2011-08-17 13:50:37 | 000,270,336 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsja.dll
[2011-08-17 13:50:37 | 000,266,240 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsko.dll
[2011-08-17 13:50:37 | 000,262,144 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrshu.dll
[2011-08-17 13:50:37 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssl.dll
[2011-08-17 13:50:37 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssk.dll
[2011-08-17 13:50:37 | 000,258,048 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrspl.dll
[2011-08-17 13:50:37 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrssv.dll
[2011-08-17 13:50:37 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsno.dll
[2011-08-17 13:50:37 | 000,253,952 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsda.dll
[2011-08-17 13:50:37 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrsfi.dll
[2011-08-17 13:50:37 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrseng.dll
[2011-08-17 13:50:37 | 000,249,856 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvrscs.dll
[2011-08-17 13:50:36 | 000,145,000 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcolor.exe
[2011-08-17 13:50:35 | 013,892,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcpl.dll
[2011-08-17 13:50:35 | 000,111,208 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvmctray.dll
[2011-08-17 13:50:32 | 000,600,680 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\easyupdatusapiu.dll
[2011-08-17 13:50:32 | 000,054,272 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvwddi.dll
[2011-08-17 13:50:13 | 016,191,488 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvoglnt.dll
[2011-08-17 13:50:13 | 000,061,440 | ---- | C] (Khronos Group) -- C:\WINDOWS\System32\OpenCL.dll
[2011-08-17 13:50:12 | 017,186,816 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcompiler.dll
[2011-08-17 13:50:12 | 005,427,200 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuda.dll
[2011-08-17 13:50:12 | 002,404,864 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvapi.dll
[2011-08-17 13:50:12 | 002,090,088 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvcuvenc.dll
[2011-08-17 13:50:12 | 000,914,024 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvdispco32.dll
[2011-08-17 13:50:12 | 000,875,112 | ---- | C] (NVIDIA Corporation) -- C:\WINDOWS\System32\nvgenco32.dll
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2011-09-14 17:12:18 | 000,003,630 | ---- | M] () -- C:\WINDOWS\WINCMD.INI
[2011-09-14 17:11:57 | 001,266,484 | ---- | M] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2011-09-14 17:11:57 | 000,559,362 | ---- | M] () -- C:\WINDOWS\System32\perfh015.dat
[2011-09-14 17:11:57 | 000,496,854 | ---- | M] () -- C:\WINDOWS\System32\perfh009.dat
[2011-09-14 17:11:57 | 000,106,426 | ---- | M] () -- C:\WINDOWS\System32\perfc015.dat
[2011-09-14 17:11:57 | 000,085,338 | ---- | M] () -- C:\WINDOWS\System32\perfc009.dat
[2011-09-14 17:07:40 | 000,000,006 | -H-- | M] () -- C:\WINDOWS\tasks\SA.DAT
[2011-09-14 17:07:36 | 000,002,048 | --S- | M] () -- C:\WINDOWS\bootstat.dat
[2011-09-14 17:06:10 | 000,581,632 | ---- | M] (OldTimer Tools) -- C:\OTL.exe
[2011-09-14 16:30:14 | 003,809,280 | ---- | M] () -- C:\Documents and Settings\Plastik\ntuser.dat
[2011-09-14 16:30:14 | 000,000,188 | -HS- | M] () -- C:\Documents and Settings\Plastik\ntuser.ini
[2011-09-14 13:53:31 | 000,001,707 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Avira AntiVir Control Center.lnk
[2011-09-14 13:50:35 | 000,001,729 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Adobe Reader 9.lnk
[2011-09-14 13:38:14 | 000,013,646 | ---- | M] () -- C:\WINDOWS\System32\wpa.dbl
[2011-09-14 11:51:22 | 067,889,832 | ---- | M] () -- C:\avira_antivir_personal_en.exe
[2011-09-14 10:41:33 | 000,000,664 | ---- | M] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-08-29 23:31:00 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\drivers\PSINAflt(2).sys
[2011-08-25 02:13:22 | 000,000,069 | ---- | M] () -- C:\WINDOWS\NeroDigital.ini
[2011-08-25 02:13:21 | 000,065,536 | ---- | M] () -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011-08-24 22:38:58 | 000,002,267 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Skype.lnk
[2011-08-24 13:06:27 | 000,001,374 | ---- | M] () -- C:\WINDOWS\imsins.BAK
[2011-08-23 00:22:07 | 000,260,453 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\IMAG0351(2).jpg
[2011-08-23 00:20:25 | 001,255,705 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\IMAG0351.jpg
[2011-08-23 00:15:20 | 000,000,643 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Picasa 3.lnk
[2011-08-20 15:12:22 | 000,000,903 | ---- | M] () -- C:\WINDOWS\win.ini
[2011-08-18 10:32:18 | 000,000,724 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Mozilla Firefox.lnk
[2011-08-18 02:26:37 | 000,048,183 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\connect3.JPG
[2011-08-18 02:21:42 | 000,017,991 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\connect.JPG
[2011-08-18 02:20:52 | 000,030,057 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\connect2.JPG
[2011-08-18 01:41:44 | 000,000,837 | ---- | M] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\TeamSpeak 3 Client.lnk
[2011-08-18 00:48:40 | 000,170,223 | ---- | M] () -- C:\Documents and Settings\Plastik\Pulpit\bez tytułu.JPG
[2011-08-17 20:27:47 | 004,288,080 | -H-- | M] () -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2011-08-17 13:54:58 | 000,000,025 | ---- | M] () -- C:\WINDOWS\popcinfot.dat
[2011-08-17 13:50:30 | 000,280,276 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-08-17 13:50:30 | 000,000,001 | ---- | M] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-08-17 13:50:28 | 000,280,276 | ---- | M] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-08-17 13:50:28 | 000,000,000 | ---- | M] () -- C:\WINDOWS\System32\nvdrswr.lk
[6 C:\WINDOWS\*.tmp files -> C:\WINDOWS\*.tmp -> ]
[1 C:\WINDOWS\System32\*.tmp files -> C:\WINDOWS\System32\*.tmp -> ]

========== Files Created - No Company Name ==========

[2011-09-14 13:53:31 | 000,001,707 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Avira AntiVir Control Center.lnk
[2011-09-14 13:50:35 | 000,001,729 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Adobe Reader 9.lnk
[2011-09-14 13:50:11 | 067,889,832 | ---- | C] () -- C:\avira_antivir_personal_en.exe
[2011-08-25 14:13:38 | 003,809,280 | ---- | C] () -- C:\Documents and Settings\Plastik\ntuser.dat
[2011-08-23 00:22:07 | 000,260,453 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\IMAG0351(2).jpg
[2011-08-23 00:20:25 | 001,255,705 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\IMAG0351.jpg
[2011-08-23 00:15:20 | 000,000,643 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Picasa 3.lnk
[2011-08-18 10:32:18 | 000,000,730 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Menu Start\Programy\Mozilla Firefox.lnk
[2011-08-18 10:32:18 | 000,000,724 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\Mozilla Firefox.lnk
[2011-08-18 02:26:37 | 000,048,183 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\connect3.JPG
[2011-08-18 02:16:35 | 000,030,057 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\connect2.JPG
[2011-08-18 02:11:09 | 000,017,991 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\connect.JPG
[2011-08-18 01:41:44 | 000,000,837 | ---- | C] () -- C:\Documents and Settings\All Users.WINDOWS\Pulpit\TeamSpeak 3 Client.lnk
[2011-08-18 00:48:40 | 000,170,223 | ---- | C] () -- C:\Documents and Settings\Plastik\Pulpit\bez tytułu.JPG
[2011-08-17 13:50:28 | 000,280,276 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb1.bin
[2011-08-17 13:50:28 | 000,280,276 | ---- | C] () -- C:\WINDOWS\System32\nvdrsdb0.bin
[2011-08-17 13:50:28 | 000,000,001 | ---- | C] () -- C:\WINDOWS\System32\nvdrssel.bin
[2011-08-17 13:50:28 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\nvdrswr.lk
[2011-08-17 13:50:13 | 000,003,249 | ---- | C] () -- C:\WINDOWS\System32\nvinfo.pb
[2011-08-17 13:50:12 | 002,128,778 | ---- | C] () -- C:\WINDOWS\System32\nvdata.data
[2011-08-17 13:49:07 | 000,000,664 | ---- | C] () -- C:\WINDOWS\System32\d3d9caps.dat
[2011-08-15 13:39:31 | 000,072,760 | -H-- | C] () -- C:\WINDOWS\System32\mlfcache.dat
[2011-07-05 12:12:43 | 000,000,000 | ---- | C] () -- C:\WINDOWS\System32\drivers\PSINAflt(2).sys
[2011-03-31 11:33:06 | 000,141,200 | ---- | C] () -- C:\WINDOWS\System32\drivers\PnkBstrK.sys
[2011-03-31 11:33:06 | 000,138,056 | ---- | C] () -- C:\Documents and Settings\Plastik\Dane aplikacji\PnkBstrK.sys
[2011-03-31 11:32:48 | 000,281,656 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrB.exe
[2011-03-31 11:32:47 | 000,075,136 | ---- | C] () -- C:\WINDOWS\System32\PnkBstrA.exe
[2011-01-02 16:06:31 | 000,000,264 | ---- | C] () -- C:\WINDOWS\System32\PSUNCpl.dat
[2010-12-20 20:08:53 | 000,000,025 | ---- | C] () -- C:\WINDOWS\popcinfot.dat
[2010-09-30 20:32:48 | 000,031,012 | ---- | C] () -- C:\WINDOWS\scunin.dat
[2010-08-29 12:29:19 | 000,000,135 | ---- | C] () -- C:\WINDOWS\wcx_ftp.ini
[2010-08-25 19:12:44 | 000,691,696 | ---- | C] () -- C:\WINDOWS\System32\drivers\sptd.sys
[2010-08-12 17:01:46 | 000,000,069 | ---- | C] () -- C:\WINDOWS\NeroDigital.ini
[2010-07-08 21:47:36 | 000,079,608 | ---- | C] () -- C:\WINDOWS\hpfins05.dat
[2010-07-08 21:47:36 | 000,001,395 | ---- | C] () -- C:\WINDOWS\hpfmdl05.dat
[2010-06-24 10:09:44 | 000,000,038 | ---- | C] () -- C:\WINDOWS\avisplitter.ini
[2010-06-24 10:09:43 | 000,881,664 | ---- | C] () -- C:\WINDOWS\System32\xvidcore.dll
[2010-06-24 10:09:43 | 000,205,824 | ---- | C] () -- C:\WINDOWS\System32\xvidvfw.dll
[2010-06-24 10:09:42 | 000,108,032 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll
[2010-06-24 10:09:42 | 000,000,547 | ---- | C] () -- C:\WINDOWS\System32\ff_vfw.dll.manifest
[2010-06-21 19:06:50 | 000,065,536 | ---- | C] () -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2010-06-12 19:54:53 | 000,040,960 | ---- | C] () -- C:\WINDOWS\System32\setupfilter.exe
[2010-06-07 17:01:02 | 000,165,376 | ---- | C] () -- C:\WINDOWS\System32\unrar.dll
[2010-06-04 11:48:06 | 000,095,920 | ---- | C] () -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\GDIPFONTCACHEV1.DAT
[2010-06-03 21:05:57 | 000,000,056 | -H-- | C] () -- C:\WINDOWS\System32\ezsidmv.dat
[2010-06-03 12:49:11 | 001,266,484 | ---- | C] () -- C:\WINDOWS\System32\PerfStringBackup.INI
[2010-06-03 12:49:10 | 000,004,293 | ---- | C] () -- C:\WINDOWS\ODBCINST.INI
[2010-06-03 12:48:14 | 000,382,424 | ---- | C] () -- C:\WINDOWS\System32\FNTCACHE.DAT
[2010-06-03 12:10:02 | 000,000,000 | ---- | C] () -- C:\WINDOWS\nsreg.dat
[2010-06-03 12:04:10 | 000,004,984 | R--- | C] () -- C:\WINDOWS\System32\drivers\nvphy.bin
[2010-06-03 11:34:02 | 000,024,576 | R--- | C] () -- C:\WINDOWS\System32\AsIO.dll
[2010-06-03 11:34:02 | 000,012,400 | R--- | C] () -- C:\WINDOWS\System32\drivers\AsIO.sys
[2010-06-03 11:22:18 | 000,003,630 | ---- | C] () -- C:\WINDOWS\WINCMD.INI
[2010-06-03 11:19:56 | 000,027,136 | ---- | C] () -- C:\WINDOWS\Ascd_log.ini
[2010-06-03 11:10:21 | 004,288,080 | -H-- | C] () -- C:\Documents and Settings\Plastik\Ustawienia lokalne\Dane aplikacji\IconCache.db
[2010-06-03 11:07:49 | 000,005,810 | R--- | C] () -- C:\WINDOWS\System32\drivers\ASACPI.sys
[2010-06-03 11:07:32 | 000,026,505 | ---- | C] () -- C:\WINDOWS\Ascd_tmp.ini
[2010-06-03 11:07:32 | 000,010,296 | ---- | C] () -- C:\WINDOWS\System32\drivers\ASUSHWIO.SYS
[2010-06-03 11:03:35 | 000,002,048 | --S- | C] () -- C:\WINDOWS\bootstat.dat
[2010-06-03 11:02:08 | 000,000,000 | ---- | C] () -- C:\WINDOWS\control.ini
[2010-06-03 11:01:14 | 000,000,488 | RH-- | C] () -- C:\WINDOWS\System32\logonui.exe.manifest
[2010-06-03 11:01:09 | 000,000,749 | RH-- | C] () -- C:\WINDOWS\System32\cdplayer.exe.manifest
[2010-06-03 11:00:13 | 000,021,856 | ---- | C] () -- C:\WINDOWS\System32\emptyregdb.dat
[2010-06-03 11:00:03 | 000,000,037 | ---- | C] () -- C:\WINDOWS\vbaddin.ini
[2010-06-03 11:00:03 | 000,000,036 | ---- | C] () -- C:\WINDOWS\vb.ini
[2010-06-03 10:59:19 | 000,026,717 | ---- | C] () -- C:\WINDOWS\System32\tslabels.ini
[2010-06-03 10:59:18 | 000,003,813 | ---- | C] () -- C:\WINDOWS\System32\msdtcprf.ini
[2009-08-16 11:48:53 | 000,331,272 | ---- | C] () -- C:\Documents and Settings\LocalService\Ustawienia lokalne\Dane aplikacji\FontCache3.0.0.0.dat
[2009-03-17 13:09:34 | 000,007,237 | ---- | C] () -- C:\WINDOWS\cadx2.ini
[2008-10-28 17:40:48 | 000,173,552 | ---- | C] () -- C:\WINDOWS\System32\xlive.dll.cat
[2008-04-15 14:00:00 | 013,107,200 | ---- | C] () -- C:\WINDOWS\System32\oembios.bin
[2008-04-15 14:00:00 | 001,015,477 | ---- | C] () -- C:\WINDOWS\System32\esentprf.ini
[2008-04-15 14:00:00 | 000,733,696 | ---- | C] () -- C:\WINDOWS\System32\qedwipes.dll
[2008-04-15 14:00:00 | 000,673,088 | ---- | C] () -- C:\WINDOWS\System32\mlang.dat
[2008-04-15 14:00:00 | 000,559,362 | ---- | C] () -- C:\WINDOWS\System32\perfh015.dat
[2008-04-15 14:00:00 | 000,496,854 | ---- | C] () -- C:\WINDOWS\System32\perfh009.dat
[2008-04-15 14:00:00 | 000,355,112 | ---- | C] () -- C:\WINDOWS\System32\msjetoledb40.dll
[2008-04-15 14:00:00 | 000,313,828 | ---- | C] () -- C:\WINDOWS\System32\perfi015.dat
[2008-04-15 14:00:00 | 000,272,128 | ---- | C] () -- C:\WINDOWS\System32\perfi009.dat
[2008-04-15 14:00:00 | 000,270,848 | ---- | C] () -- C:\WINDOWS\System32\sbe.dll
[2008-04-15 14:00:00 | 000,253,440 | ---- | C] () -- C:\WINDOWS\System32\compatUI.dll
[2008-04-15 14:00:00 | 000,218,003 | ---- | C] () -- C:\WINDOWS\System32\dssec.dat
[2008-04-15 14:00:00 | 000,199,168 | ---- | C] () -- C:\WINDOWS\System32\ir32_32.dll
[2008-04-15 14:00:00 | 000,186,880 | ---- | C] () -- C:\WINDOWS\System32\encdec.dll
[2008-04-15 14:00:00 | 000,106,426 | ---- | C] () -- C:\WINDOWS\System32\perfc015.dat
[2008-04-15 14:00:00 | 000,094,282 | ---- | C] () -- C:\WINDOWS\System32\msencode.dll
[2008-04-15 14:00:00 | 000,085,338 | ---- | C] () -- C:\WINDOWS\System32\perfc009.dat
[2008-04-15 14:00:00 | 000,070,656 | ---- | C] () -- C:\WINDOWS\System32\amstream.dll
[2008-04-15 14:00:00 | 000,070,622 | ---- | C] () -- C:\WINDOWS\System32\edit.com
[2008-04-15 14:00:00 | 000,053,920 | ---- | C] () -- C:\WINDOWS\System32\dosx.exe
[2008-04-15 14:00:00 | 000,053,478 | ---- | C] () -- C:\WINDOWS\System32\tcpmon.ini
[2008-04-15 14:00:00 | 000,051,823 | ---- | C] () -- C:\WINDOWS\System32\command.com
[2008-04-15 14:00:00 | 000,046,258 | ---- | C] () -- C:\WINDOWS\System32\mib.bin
[2008-04-15 14:00:00 | 000,042,809 | ---- | C] () -- C:\WINDOWS\System32\key01.sys
[2008-04-15 14:00:00 | 000,042,537 | ---- | C] () -- C:\WINDOWS\System32\keyboard.sys
[2008-04-15 14:00:00 | 000,039,434 | ---- | C] () -- C:\WINDOWS\System32\mem.exe
[2008-04-15 14:00:00 | 000,035,648 | ---- | C] () -- C:\WINDOWS\System32\ntio411.sys
[2008-04-15 14:00:00 | 000,035,424 | ---- | C] () -- C:\WINDOWS\System32\ntio412.sys
[2008-04-15 14:00:00 | 000,034,990 | ---- | C] () -- C:\WINDOWS\System32\perfd015.dat
[2008-04-15 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio804.sys
[2008-04-15 14:00:00 | 000,034,560 | ---- | C] () -- C:\WINDOWS\System32\ntio404.sys
[2008-04-15 14:00:00 | 000,033,936 | ---- | C] () -- C:\WINDOWS\System32\ntio.sys
[2008-04-15 14:00:00 | 000,029,370 | ---- | C] () -- C:\WINDOWS\System32\ntdos411.sys
[2008-04-15 14:00:00 | 000,029,274 | ---- | C] () -- C:\WINDOWS\System32\ntdos412.sys
[2008-04-15 14:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos804.sys
[2008-04-15 14:00:00 | 000,029,146 | ---- | C] () -- C:\WINDOWS\System32\ntdos404.sys
[2008-04-15 14:00:00 | 000,028,626 | ---- | C] () -- C:\WINDOWS\System32\perfd009.dat
[2008-04-15 14:00:00 | 000,027,898 | ---- | C] () -- C:\WINDOWS\System32\ntdos.sys
[2008-04-15 14:00:00 | 000,027,097 | ---- | C] () -- C:\WINDOWS\System32\country.sys
[2008-04-15 14:00:00 | 000,020,986 | ---- | C] () -- C:\WINDOWS\System32\debug.exe
[2008-04-15 14:00:00 | 000,019,806 | ---- | C] () -- C:\WINDOWS\System32\graphics.com
[2008-04-15 14:00:00 | 000,016,024 | ---- | C] () -- C:\WINDOWS\System32\rsvp.ini
[2008-04-15 14:00:00 | 000,015,360 | ---- | C] () -- C:\WINDOWS\System32\tsd32.dll
[2008-04-15 14:00:00 | 000,014,913 | ---- | C] () -- C:\WINDOWS\System32\kb16.com
[2008-04-15 14:00:00 | 000,014,336 | ---- | C] () -- C:\WINDOWS\System32\msdmo.dll
[2008-04-15 14:00:00 | 000,013,819 | ---- | C] () -- C:\WINDOWS\System32\pschdprf.ini
[2008-04-15 14:00:00 | 000,013,312 | ---- | C] () -- C:\WINDOWS\System32\win87em.dll
[2008-04-15 14:00:00 | 000,012,866 | ---- | C] () -- C:\WINDOWS\System32\edlin.exe
[2008-04-15 14:00:00 | 000,012,594 | ---- | C] () -- C:\WINDOWS\System32\append.exe
[2008-04-15 14:00:00 | 000,011,859 | ---- | C] () -- C:\WINDOWS\System32\setver.exe
[2008-04-15 14:00:00 | 000,009,043 | ---- | C] () -- C:\WINDOWS\System32\ansi.sys
[2008-04-15 14:00:00 | 000,008,520 | ---- | C] () -- C:\WINDOWS\System32\exe2bin.exe
[2008-04-15 14:00:00 | 000,007,116 | ---- | C] () -- C:\WINDOWS\System32\nlsfunc.exe
[2008-04-15 14:00:00 | 000,006,074 | ---- | C] () -- C:\WINDOWS\System32\rasctrs.ini
[2008-04-15 14:00:00 | 000,004,976 | ---- | C] () -- C:\WINDOWS\System32\himem.sys
[2008-04-15 14:00:00 | 000,004,569 | ---- | C] () -- C:\WINDOWS\System32\secupd.dat
[2008-04-15 14:00:00 | 000,004,461 | ---- | C] () -- C:\WINDOWS\System32\oembios.dat
[2008-04-15 14:00:00 | 000,003,346 | ---- | C] () -- C:\WINDOWS\System32\redir.exe
[2008-04-15 14:00:00 | 000,002,992 | ---- | C] () -- C:\WINDOWS\System32\perfci.ini
[2008-04-15 14:00:00 | 000,002,890 | ---- | C] () -- C:\WINDOWS\System32\perfwci.ini
[2008-04-15 14:00:00 | 000,001,804 | ---- | C] () -- C:\WINDOWS\System32\Dcache.bin
[2008-04-15 14:00:00 | 000,001,405 | ---- | C] () -- C:\WINDOWS\msdfmap.ini
[2008-04-15 14:00:00 | 000,001,295 | ---- | C] () -- C:\WINDOWS\System32\perffilt.ini
[2008-04-15 14:00:00 | 000,001,168 | ---- | C] () -- C:\WINDOWS\System32\loadfix.com
[2008-04-15 14:00:00 | 000,000,903 | ---- | C] () -- C:\WINDOWS\win.ini
[2008-04-15 14:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\share.exe
[2008-04-15 14:00:00 | 000,000,882 | ---- | C] () -- C:\WINDOWS\System32\fastopen.exe
[2008-04-15 14:00:00 | 000,000,817 | ---- | C] () -- C:\WINDOWS\System32\mscdexnt.exe
[2008-04-15 14:00:00 | 000,000,741 | ---- | C] () -- C:\WINDOWS\System32\noise.dat
[2008-04-15 14:00:00 | 000,000,359 | ---- | C] () -- C:\WINDOWS\System32\prodspec.ini
[2008-04-15 14:00:00 | 000,000,231 | ---- | C] () -- C:\WINDOWS\system.ini
[2005-04-28 03:38:00 | 000,372,736 | ---- | C] () -- C:\WINDOWS\System32\hpzidi01.dll
[2005-04-28 03:37:49 | 000,077,824 | ---- | C] () -- C:\WINDOWS\System32\hpzids01.dll
[2001-10-26 19:29:54 | 000,057,856 | ---- | C] () -- C:\WINDOWS\System32\dvdplay.exe
[2001-10-26 19:29:42 | 000,157,696 | ---- | C] () -- C:\WINDOWS\System32\paqsp.dll

========== LOP Check ==========

[2010-09-27 17:32:57 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\clonehdd
[2010-09-27 17:31:45 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\createpart
[2010-10-30 10:19:22 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\DAEMON Tools Lite
[2010-09-27 17:28:17 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\deletepart
[2010-12-21 15:06:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\EA Core
[2010-12-21 15:06:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Electronic Arts
[2010-09-27 16:39:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\explauncher
[2011-01-07 00:12:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Gadu-Gadu 10
[2010-11-24 22:07:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\ipla
[2010-09-27 16:39:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\launcher
[2010-09-27 16:39:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\mergeparts
[2010-11-16 22:22:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\NCH Swift Sound
[2010-09-27 17:33:16 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\p2vadjust
[2010-09-27 17:33:06 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\p2vcopy
[2011-01-02 16:06:04 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Panda Security
[2011-09-13 12:28:05 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Panda Security URL Filtering
[2011-09-14 08:48:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\PMB Files
[2010-12-20 17:16:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\PopCap Games
[2010-09-27 16:43:12 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\redistpart
[2010-08-07 23:27:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP
[2011-08-20 22:49:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TrackMania
[2010-12-27 18:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Ubisoft
[2010-06-03 12:01:56 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\Ulead Systems
[2010-08-29 12:27:54 | 000,000,000 | ---D | M] -- C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\WinZip
[2011-01-07 00:49:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\.wtw
[2011-04-01 12:54:07 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\BESTplayer
[2011-02-13 12:47:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\ChomikBox
[2010-08-25 19:12:41 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\DAEMON Tools
[2010-10-30 10:26:03 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\DAEMON Tools Lite
[2010-06-03 12:15:40 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\Gadu-Gadu
[2011-01-07 00:12:59 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\Gadu-Gadu 10
[2011-04-04 15:21:00 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\gamigo
[2010-08-24 08:57:42 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\Gena01
[2010-11-24 22:08:02 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\ipla
[2010-08-24 08:49:26 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\JGsoft
[2011-04-04 15:06:35 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\launcher
[2011-08-13 22:23:50 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\LolClient
[2010-08-24 09:24:28 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\OpenOffice.org
[2011-01-02 16:23:46 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\Panda Security
[2011-04-04 15:02:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\pandasecuritytb
[2010-11-24 22:07:14 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\RDRM
[2011-01-02 16:23:33 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\SurfSecret Privacy Suite
[2011-08-18 01:56:09 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\TS3Client
[2010-12-27 18:33:30 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\Ubisoft
[2011-09-14 13:35:58 | 000,000,000 | ---D | M] -- C:\Documents and Settings\Plastik\Dane aplikacji\uTorrent

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 304 bytes -> C:\Documents and Settings\All Users.WINDOWS\Dane aplikacji\TEMP:6BE50C2B

< End of report >

OTL Extras logfile created on: 2011-09-14 17:12:32 - Run 1
OTL by OldTimer - Version 3.2.28.0 Folder = c:\
Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
Internet Explorer (Version = 6.0.2900.5512)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd

3,00 Gb Total Physical Memory | 2,48 Gb Available Physical Memory | 82,71% Memory free
4,84 Gb Paging File | 4,41 Gb Available in Paging File | 91,12% Paging File free
Paging file location(s): C:\pagefile.sys 2046 4092 [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
Drive C: | 39,06 Gb Total Space | 12,99 Gb Free Space | 33,25% Space Free | Partition Type: NTFS
Drive D: | 213,33 Gb Total Space | 128,25 Gb Free Space | 60,12% Space Free | Partition Type: NTFS
Drive E: | 213,36 Gb Total Space | 126,96 Gb Free Space | 59,50% Space Free | Partition Type: NTFS

Computer Name: DOM-F75D163E346 | User Name: Plastik | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
.url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)

========== Shell Spawning ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
exefile [open] -- "%1" %*
InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [Winamp.Bookmark] -- "c:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft)
Directory [Winamp.Enqueue] -- "c:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft)
Directory [Winamp.Play] -- "c:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft)
Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirstRunDisabled" = 1
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
"AntiVirusOverride" = 1
"FirewallOverride" = 0
"FirewallDisableNotify" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
"DisableMonitoring" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
"DisableMonitoring" = 0

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
"DisableMonitoring" = 1

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
"Start" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
"Start" = 2

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\DomainProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\DomainProfile\GloballyOpenPorts\List]
"57508:TCP" = 57508:TCP:*:Enabled:Pando Media Booster
"57508:UDP" = 57508:UDP:*:Enabled:Pando Media Booster
"58609:TCP" = 58609:TCP:*:Enabled:Pando Media Booster
"58609:UDP" = 58609:UDP:*:Enabled:Pando Media Booster

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\StandardProfile]
"EnableFirewall" = 0

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
"57508:TCP" = 57508:TCP:*:Enabled:Pando Media Booster
"57508:UDP" = 57508:UDP:*:Enabled:Pando Media Booster
"58609:TCP" = 58609:TCP:*:Enabled:Pando Media Booster
"58609:UDP" = 58609:UDP:*:Enabled:Pando Media Booster

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\DomainProfile\AuthorizedApplications\List]
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\ FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.)
"C:\Program Files\Gadu-Gadu\gg.exe" = C:\Program Files\Gadu-Gadu\gg.exe:*:Enabled:Gadu-Gadu - program główny
"C:\Program Files\Google\Google Earth\client\googleearth.exe" = C:\Program Files\Google\Google Earth\client\googleearth.exe:*:Enabled:Google Earth
"D:\Gry\CABAL Online (Europe)\launcher\update\ESTdnheadless.exe" = D:\Gry\CABAL Online (Europe)\launcher\update\ESTdnheadless.exe:*:Enabled:EST! download engine
"D:\Gry\Need for Speed™ Hot Pursuit\Launcher.exe" = D:\Gry\Need for Speed™ Hot Pursuit\Launcher.exe:*:Enabled:Need for Speed™ Hot Pursuit
"C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe" = C:\Program Files\Ubisoft\Ubisoft Game Launcher\UbisoftGameLauncher.exe:*:Enabled:Ubisoft Game Launcher -- (Ubisoft)
"D:\Programy\K2T\WTW\wtw.exe" = D:\Programy\K2T\WTW\wtw.exe:*:Enabled:WTW Instant Messenger
"D:\Gry\Steam\Steam.exe" = D:\Gry\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation)
"D:\Gry\Steam\steamapps\plastik344\opposing force\hl.exe" = D:\Gry\Steam\steamapps\plastik344\opposing force\hl.exe:*:Enabled:Half-Life: Opposing Force -- (Valve)
"D:\Gry\Steam\steamapps\plastik344\day of defeat\hl.exe" = D:\Gry\Steam\steamapps\plastik344\day of defeat\hl.exe:*:Enabled:Day of Defeat -- (Valve)
"D:\Gry\Steam\steamapps\plastik344\team fortress classic\hl.exe" = D:\Gry\Steam\steamapps\plastik344\team fortress classic\hl.exe:*:Enabled:Team Fortress Classic -- (Valve)
"D:\Gry\metin\Elcardia\metin2client.bin" = D:\Gry\metin\Elcardia\metin2client.bin:*:Enabled:metin2client
"E:\Gry\GamersFirst\APB Reloaded\Binaries\APB.exe" = E:\Gry\GamersFirst\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe
"E:\Gry\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe" = E:\Gry\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe
"D:\Gry\Steam\steamapps\plastik344\counter-strike\hl.exe" = D:\Gry\Steam\steamapps\plastik344\counter-strike\hl.exe:*:Enabled:Counter- Strike -- (Valve)
"E:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe" = E:\Program Files\GamersFirst\APB Reloaded\Binaries\APB.exe:*:Enabled:APB: APB.exe
"E:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe" = E:\Program Files\GamersFirst\APB Reloaded\Binaries\VivoxVoiceService.exe:*:Enabled:APB: VivoxVoiceService.exe
"C:\Program Files\Pando Networks\Media Booster\PMB.exe" = C:\Program Files\Pando Networks\Media Booster\PMB.exe:*:Enabled:Pando Media Booster -- ()
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe" = C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe -- (NVIDIA Corporation)
"D:\Gry\TmNationsForever\TmForever.exe" = D:\Gry\TmNationsForever\TmForever.exe:*:Enabled:TmForever -- ()


========== HKEY_LOCAL_MACHINE Uninstall List ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{09984AEC-6B9F-4ca7-B78D-CB44D4771DA3}" = Destinations
"{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended
"{15EE79F4-4ED1-4267-9B0F-351009325D7D}" = HP Software Update
"{1ADE1AA0-7F82-4BB1-B1BD-727DE438057B}" = Cool & Quiet
"{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
"{26A24AE4-039D-4CA4-87B4-2F83216020FF}" = Java™ 6 Update 26
"{299C0434-4F4E-341F-A916-4E07AEB35E79}" = Microsoft Visual Studio Tools for Applications 2.0 Runtime
"{30C19FF2-7FBA-4d09-B9DE-1659977F64F6}" = TrayApp
"{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
"{3819891A-030B-4a4e-98ED-B28A649E48AB}" = HP Deskjet 3900 series
"{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile
"{42F6BED9-41DD-40F1-85A8-8E0350493626}" = HPDeskjet3900Series
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4AA3D64E-9EC3-4B0F-AB91-5885AC55641F}" = Microsoft Games for Windows - LIVE
"{5335DADB-34BA-4AE8-A519-648D78498846}" = Skype™ 5.3
"{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml
"{56F8AFC3-FA98-4ff1-9673-8A026CBF85BE}" = WebReg
"{587178E7-B1DF-494E-9838-FA4DD36E873C}" = ASUSUpdate
"{590B11BB-7FF9-4D4F-A9E8-E8165BF88381}" = Panda Antivirus Pro 2010
"{5AF71003-1797-4D93-9F37-4F2125CBF539}" = Microsoft .NET Framework 2.0 Language Pack - PLK
"{5C19E2DC-4CCF-3114-B40A-6E565987025F}" = Microsoft .NET Framework 4 Extended PLK Language Pack
"{5D309203-37B7-498A-B2CA-838E9FFD562B}" = Ventrilo Mix
"{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053
"{5F26311C-B135-4F7F-B11E-8E650F83651E}" = DeviceFunctionQFolder
"{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12
"{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007
"{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007
"{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007
"{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007
"{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007
"{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007
"{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007
"{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007
"{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007
"{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007
"{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007
"{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007
"{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007
"{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007
"{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007
"{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends
"{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9B700657-676B-4A98-8B25-40A1BAC81045}" = Nero 8 Essentials
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2
"{AA4A4B2C-0465-3CF8-BA76-27A027D8ACAB}" = Microsoft Visual Studio Tools for Applications 2.0 - ENU
"{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder
"{AC76BA86-7AD7-1045-7B44-A94000000001}" = Adobe Reader 9.4.6 - Polish
"{AC8B571C-9C6E-47C1-A508-3BF1BCBED443}" = Deep Exploration 6 CE
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 280.26
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NView" = NVIDIA nView 135.94
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.4.28
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application
"{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components
"{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Toolbars
"{B996AE66-10DB-4ac5-B151-E8B4BFBC42FC}" = BufferChm
"{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX
"{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
"{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver
"{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1
"{CE3B8E96-B0AF-4871-9178-1519B58E3A93}" = A4 TECH PC Camera H
"{E3F90083-80D4-4b5a-87C7-E97E12F5516D}" = HPProductAssistant
"{EA103B64-C0E4-4C0E-A506-751590E1653D}" = SolutionCenter
"{F4C2E5F5-2970-45f4-ABD3-C180C4D961C4}" = Status
"{FD052FB9-FE90-4438-B355-15EDC89D8FB1}" = Microsoft Games for Windows - LIVE Redistributable
"{FE64AE29-0883-4C70-8388-DC026019C900}" = HP Image Zone Express
"{FEB2D0CA-9912-4AA1-8FBE-CFD852F9F1FC}" = Panda Cloud Antivirus
"7-Zip" = 7-Zip 4.65
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"Ashampoo FireWall_is1" = Ashampoo FireWall FREE 1.20
"Avira AntiVir Desktop" = Avira AntiVir Personal - Free Antivirus
"CamStudio" = CamStudio
"CWK" = CWK (Czasowy Wyłącznik Komputera)
"DAEMON Tools Lite" = DAEMON Tools Lite
"ENTERPRISE" = Microsoft Office Enterprise 2007
"HP Imaging Device Functions" = HP Imaging Device Functions 5.0
"HP Solution Center & Imaging Support Tools" = HP Solution Center & Imaging Support Tools 5.0
"InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń
"KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.0.4
"Microsoft .NET Framework 2.0 Language Pack - PLK" = Microsoft .NET Framework 2.0 — pakiet języka polskiego
"Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended
"Mozilla Firefox 6.0 (x86 pl)" = Mozilla Firefox 6.0 (x86 pl)
"NVIDIA Drivers" = NVIDIA Drivers
"NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager
"Panda Cloud Antivirus" = Panda Cloud Antivirus
"Panda Identity Protect" = Panda Identity Protect 3.0.44
"Panda Security URL Filtering" = Panda Security URL Filtering
"pandasecuritytb" = Panda Security Toolbar
"Picasa 3" = Picasa 3
"PunkBusterSvc" = PunkBuster Services
"Starcraft" = Starcraft
"Steam App 10" = Counter-Strike
"Steam App 130" = Half-Life: Blue Shift
"Steam App 20" = Team Fortress Classic
"Steam App 30" = Day of Defeat
"Steam App 40" = Deathmatch Classic
"Steam App 50" = Half-Life: Opposing Force
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"TmNationsForever_is1" = TmNationsForever
"uTorrent" = µTorrent
"Windows Media Format Runtime" = Windows Media Format 11 runtime
"WinRAR archiver" = Archiwizator WinRAR
"WMFDist11" = Windows Media Format 11 runtime
"Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0
"XpsEPSC" = XML Paper Specification Shared Components Pack 1.0
"XPSEPSCLP" = XML Paper Specification Shared Components Language Pack 1.0

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Insanity Flyff" = Insanity Flyff

========== Last 10 Event Log Errors ==========

[ Application Events ]
Error - 2011-09-14 10:01:35 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 10:02:15 | Computer Name = DOM-F75D163E346 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd firewall.exe, wersja 0.0.0.0, moduł powodujący
błąd kernel32.dll, wersja 5.1.2600.2180, adres błędu 0x0001eb33.

Error - 2011-09-14 10:02:28 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 10:20:42 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 10:21:37 | Computer Name = DOM-F75D163E346 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd firewall.exe, wersja 0.0.0.0, moduł powodujący
błąd kernel32.dll, wersja 5.1.2600.2180, adres błędu 0x0001eb33.

Error - 2011-09-14 11:07:41 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 11:08:21 | Computer Name = DOM-F75D163E346 | Source = Application Error | ID = 1000
Description = Aplikacja powodująca błąd firewall.exe, wersja 0.0.0.0, moduł powodujący
błąd kernel32.dll, wersja 5.1.2600.2180, adres błędu 0x0001eb33.

Error - 2011-09-14 11:10:04 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 11:13:28 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: Ustanowienie połączenia z serwerem nie było możliwe

Error - 2011-09-14 11:13:28 | Computer Name = DOM-F75D163E346 | Source = crypt32 | ID = 131080
Description = Nie można automatycznie pobrać aktualizacji numeru sekwencji głównej
listy innych firm z: <http://www.download.windowsupdate.com/msdownload/update/v3/static/trustedr/en/authrootseq.txt> ,
wystąpił błąd: To połączenie sieciowe nie istnieje.

[ System Events ]
Error - 2011-09-14 04:40:54 | Computer Name = DOM-F75D163E346 | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi
StiSvc z argumentami „” w celu uruchomienia serwera: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 2011-09-14 04:41:31 | Computer Name = DOM-F75D163E346 | Source = Service Control Manager | ID = 7001
Description = Usługa Klient DHCP zależy od usługi NetBios przez TCP/IP, której nie
można uruchomić z powodu następującego błędu: %%31

Error - 2011-09-14 04:41:31 | Computer Name = DOM-F75D163E346 | Source = Service Control Manager | ID = 7001
Description = Usługa Klient DNS zależy od usługi Sterownik protokołu TCP/IP, której
nie można uruchomić z powodu następującego błędu: %%31

Error - 2011-09-14 04:41:31 | Computer Name = DOM-F75D163E346 | Source = Service Control Manager | ID = 7001
Description = Usługa Pomoc TCP/IP NetBIOS zależy od usługi AFD, której nie można
uruchomić z powodu następującego błędu: %%31

Error - 2011-09-14 04:41:31 | Computer Name = DOM-F75D163E346 | Source = Service Control Manager | ID = 7001
Description = Usługa Usługi IPSEC zależy od usługi Sterownik IPSEC, której nie można
uruchomić z powodu następującego błędu: %%31

Error - 2011-09-14 04:41:31 | Computer Name = DOM-F75D163E346 | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego
lub systemowego: AFD AmdPPM AsIO Fips IPSec MRxSmb NetBIOS NetBT PSINKNC RasAcd Rdbss sptd Tcpip
WS2IFSL

Error - 2011-09-14 04:41:58 | Computer Name = DOM-F75D163E346 | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi
StiSvc z argumentami „” w celu uruchomienia serwera: {A1F4E726-8CF1-11D1-BF92-0060081ED811}

Error - 2011-09-14 04:42:40 | Computer Name = DOM-F75D163E346 | Source = DCOM | ID = 10005
Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi
EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF}

Error - 2011-09-14 07:27:41 | Computer Name = DOM-F75D163E346 | Source = System Error | ID = 1003
Description = Kod błędu 100000ce, parametr 1 b86cb49d, parametr 2 00000008, parametr
3 b86cb49d, parametr 4 00000000.

Error - 2011-09-14 07:40:11 | Computer Name = DOM-F75D163E346 | Source = System Error | ID = 1003
Description = Kod błędu 100000ce, parametr 1 b86cb49d, parametr 2 00000008, parametr
3 b86cb49d, parametr 4 00000000.


< End of report >

mogłem wkleic pliki z tekstem, przepraszam, nie spojrzałem ile tego jest !
0

#6 Użytkownik nie jest zalogowany   Ferrari 

  • Tajny agent USB
  • Grupa: Moderatorzy
  • Postów 3531
  • Rejestracja: 21-marzec 04

Napisano 14 wrzesień 2011, 19:25

Miałeś skonfigurować program tak, jak na obrazku. Nie włączyłeś opcji Wszyscy użytkownicy. Nie generuj już nowych logów. Masz śmieci na pamięciach USB. Zabezpiecz je przed wirusami. Niektóre programy antywirusowe mają taką funkcję. Jeżeli twój nie ma, utwórz folder autorun.inf, a wewnątrz pusty plik autorun.inf. Większość wirusów nie umie ominąć triku i to częściowo zabezpiecza przed uruchomieniem wirusa po włożeniu pamięci.

Odinstaluj program Ashampoo FireWall FREE. Uruchom komputer ponownie. Pomogło?

To jeszcze nie koniec. Będziemy czyścić komputer, ale to w następnym poście.

1. Czy twój program antywirusowy ma zaporę ogniową (osłonę sieciową)?
2. Czy miałeś wcześniej infekcje?
3. Czy masz zewnętrzny IP i potrzebujesz dodatkowego firewalla?
Przygoda w Biurowej Dzielnicy - TODA :: Przyszłość sieci Webb i informatyzacja Polski
There is a road to freedom. Its milestones are Obedience, Endeavor, Honesty, Order, Cleanliness, Sobriety, Truthfulness, Sacrifice, and love of the Fatherland.
0

#7 Użytkownik nie jest zalogowany   Plastik 

  • Nowy Uczestnik
  • Grupa: Czytelnicy
  • Postów 4
  • Rejestracja: 14-wrzesień 11

Napisano 15 wrzesień 2011, 14:11

Wyświetl postUżytkownik Ferrari dnia 14 wrzesień 2011, 19:25 napisał

Miałeś skonfigurować program tak, jak na obrazku. Nie włączyłeś opcji Wszyscy użytkownicy. Nie generuj już nowych logów. Masz śmieci na pamięciach USB. Zabezpiecz je przed wirusami. Niektóre programy antywirusowe mają taką funkcję. Jeżeli twój nie ma, utwórz folder autorun.inf, a wewnątrz pusty plik autorun.inf. Większość wirusów nie umie ominąć triku i to częściowo zabezpiecza przed uruchomieniem wirusa po włożeniu pamięci.

Odinstaluj program Ashampoo FireWall FREE. Uruchom komputer ponownie. Pomogło?

To jeszcze nie koniec. Będziemy czyścić komputer, ale to w następnym poście.

1. Czy twój program antywirusowy ma zaporę ogniową (osłonę sieciową)?
2. Czy miałeś wcześniej infekcje?
3. Czy masz zewnętrzny IP i potrzebujesz dodatkowego firewalla?



Wiec tak, mam tylko jednego użytkownika co juz pewnie wiesz :),a wczoraj zanim odpisałeś wywaliłem już ashampoo, to pomogło, wywaliłem też pande(na wszelki wypadek). pisze już ze swojego komputera. Pobrałem Avira AntiVir -Free Antivirus. znalazłem w internecie ze Avira ma dobrą wykrywalność wirusów.
I najważniejsze nie rozumiem tego z usb. zazwyczaj podłączałem smartfona(htc) i pena z paroma utworami muzycznymi, nie wiem gdzie i jak utworzyć ten plik autorun :/

1. ashampo był moją zaporą, mam jeszcze systemową, a ta Avira to nie wiem czy ma zaporę
2. Były ale drobiazgi typu Cooki
3. nie rozumiem co to zewnętrzny :), używam modemu cerebus pentagram (usługodawca to neostrada)

oto mój dzisiejszy skan, coś tam jednak było... skan z Avira jak juz wspomniałem
LINK tutaj

Użytkownik Plastik edytował ten post 15 wrzesień 2011, 11:50

0
Strona 1 z 1

Szybka odpowiedź

  

Użytkownicy przeglądający ten temat: 1
0 użytkowników, 1 gości, 0 anonimowych


Zmień widoczność shoutboxa Shoutbox

emikyou  : (16 kwiecień 2012 - 13:26) @Ferrari: Na PŁ korzystają z "OpenGL SuperBible: Comprehensive Tutorial and Reference" i "OpenGL Programming Guide: The Official Guide to Learning OpenGL, Versions 3.0 and 3.1"
wtomczak  : (10 kwiecień 2012 - 09:27) masz problem z komputerem napisz na facebooku na stronie WT654, na pewno pomoże
Maciej :)  : (08 kwiecień 2012 - 09:36) A co do reklam, to mi na operze adBlock coś nie służy, szczególnie z postami bota redakcji :( od kiedy go dali, to zaczęło się walić..
Maciej :)  : (08 kwiecień 2012 - 09:35) Hej witam :) no, jak przestałem kupować Eksperta to wzięli i wstrzymali ;| także nie mam tylko numeru pierwszego i ostatniego :p trochę szkoda, parę lat się było...
neo5628  : (05 kwiecień 2012 - 21:57) Help http://forum.ks-ekspert.pl/topic/140746-problem-z-dzwiekiem/ Proszę
PiKey  : (21 marzec 2012 - 18:24) ludzie, pomóżcie :) http://forum.ks-ekspert.pl/topic/140418-jak-dziala-sprawdzanie-wykonania-zadania-na-stronach-typu-doladujse/
PiKey  : (21 marzec 2012 - 18:24) ds
A:-)Brunuś  : (17 marzec 2012 - 19:17) jest tu ktoś? http://forum.ks-ekspert.pl/topic/140400-firewire-obudowa-do-dysku-25-—-200-zlo/
Ferrari  : (16 marzec 2012 - 11:12) Polećcie dobrą książkę do OpenGL albo kurs w sieci :)
lisz55  : (15 marzec 2012 - 21:44) przez ktore reklamy? nie widze zeby jakies nowe byly
Pretender  : (15 marzec 2012 - 18:22) :/
Pretender  : (15 marzec 2012 - 18:22) az sie nie chce czytac tego forum przez te parszywe reklamy...ale dzidostwo zrobili...
yojo2  : (12 marzec 2012 - 13:26) wchodz na forum przez lynxa :P
Ferrari  : (10 marzec 2012 - 21:21) Jak tu nie korzystać z AdBlocka, kiedy Forum Eksperta wywala reklamę na całą stronę?
lisz55  : (09 marzec 2012 - 21:41) siedze i czytam calkiem niezle ale mogl by ktos wytlumaczyc o co chodzi z dark knightem nie widzialem tego filmu
lisz55  : (09 marzec 2012 - 21:40) to moze rozruszam troche czat http://moviesascode.net/
Pretender  : (06 marzec 2012 - 16:43) rozmowy tak jak Enty prowadziły w powieści Tolkiena :P
dawido90  : (05 marzec 2012 - 15:03) to już poprostu przyzwyczajenie
yojo2  : (04 marzec 2012 - 22:25) mailem przestac tu wchodzic, ale stwierdzilem ze skoro i tak zwykle tu tylko wchodze i wychodze, to wszystko jedno :P
Ferrari  : (04 marzec 2012 - 21:16) Już myślałem, że ruch na forum spada zera, a jednak pochodna zmieniła znak :)
Rozszerz pole shoutboxa