Logfile of random's system information tool 1.09 (written by random/random)
Run by Dom at 2012-01-21 14:34:39
Microsoft Windows XP Professional Dodatek Service Pack 3
System drive C: has 19 GB (31%) free of 60 GB
Total RAM: 3263 MB (72% free)

Logfile of Trend Micro HijackThis v2.0.4
Scan saved at 14:34:43, on 2012-01-21
Platform: Windows XP Dodatek SP3 (WinNT 5.01.2600)
MSIE: Internet Explorer v8.00 (8.00.6001.18702)
Boot mode: Normal

Running processes:
C:\WINDOWS\System32\smss.exe
C:\WINDOWS\system32\winlogon.exe
C:\WINDOWS\system32\services.exe
C:\WINDOWS\system32\lsass.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\System32\svchost.exe
C:\Program files\Kingsoft\PCDoctor\KSafeSvc.exe
C:\WINDOWS\system32\spoolsv.exe
C:\Documents and Settings\All Users\Dane aplikacji\EPSON\EPW!3 SSRP\E_S40RP7.EXE
C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
C:\Program Files\Nero\Update\NASvc.exe
C:\WINDOWS\system32\NLSSRV32.EXE
C:\WINDOWS\system32\nvsvc32.exe
C:\WINDOWS\Explorer.EXE
C:\WINDOWS\system32\PnkBstrA.exe
C:\WINDOWS\system32\PnkBstrB.exe
C:\WINDOWS\system32\svchost.exe
C:\WINDOWS\RTHDCPL.EXE
C:\WINDOWS\system32\RunDLL32.exe
C:\WINDOWS\system32\rundll32.exe
C:\Program files\Kingsoft\PCDoctor\KSafeTray.exe
C:\WINDOWS\system32\ctfmon.exe
C:\Program Files\Mozilla Firefox\firefox.exe
C:\Program Files\Mozilla Firefox\plugin-container.exe
C:\WINDOWS\system32\wscntfy.exe
C:\WINDOWS\System32\svchost.exe
C:\Riot Games\League of Legends\RADS\system\rads_user_kernel.exe
C:\Riot Games\League of Legends\RADS\projects\lol_launcher\releases\0.0.0.45\deploy\LoLLauncher.exe
C:\Riot Games\League of Legends\RADS\projects\lol_air_client\releases\0.0.0.121\deploy\LolClient.exe
C:\Program files\Kingsoft\PCDoctor\KSafe.exe
C:\Documents and Settings\Dom\Moje dokumenty\Pobieranie\RSIT.exe
C:\Program Files\trend micro\Dom.exe

R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKLM\Software\Microsoft\Internet Explorer\Main,Start Page = about:blank
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: AcroIEHelperStub - {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE C:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [NvMediaCenter] RunDLL32.exe NvMCTray.dll,NvTaskbarInit -login
O4 - HKLM\..\Run: [nwiz] C:\Program Files\NVIDIA Corporation\nView\nwiz.exe /installquiet
O4 - HKLM\..\Run: [KSafeTray] "C:\Program files\Kingsoft\PCDoctor\KSafeTray.exe" -autorun
O4 - HKCU\..\Run: [ctfmon.exe] C:\WINDOWS\system32\ctfmon.exe
O4 - HKUS\S-1-5-21-1123561945-1409082233-839522115-1006\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'UpdatusUser')
O4 - HKUS\S-1-5-18\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'SYSTEM')
O4 - HKUS\.DEFAULT\..\Run: [CTFMON.EXE] C:\WINDOWS\system32\CTFMON.EXE (User 'Default user')
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://C:\PROGRA~1\MICROS~3\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - C:\PROGRA~1\MICROS~3\OFFICE11\REFIEBAR.DLL
O9 - Extra button: (no name) - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra 'Tools' menuitem: @xpsp3res.dll,-20001 - {e2e2dd38-d088-4134-82b7-f2ba38496583} - C:\WINDOWS\Network Diagnostic\xpnetdiag.exe
O9 - Extra button: Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O9 - Extra 'Tools' menuitem: Windows Messenger - {FB5F1910-F110-11d2-BB9E-00C04F795683} - C:\Program Files\Messenger\msmsgs.exe
O22 - SharedTaskScheduler: Moduł wstępnego ładowania interfejsu Browseui - {438755C2-A8BA-11D1-B96B-00A0C90312E1} - C:\WINDOWS\system32\browseui.dll
O22 - SharedTaskScheduler: Demon buforu kategorii składników - {8C7461EF-2B13-11d2-BE35-3078302C2030} - C:\WINDOWS\system32\browseui.dll
O23 - Service: EPSON V3 Service4(01) (EPSON_PM_RPCV4_01) - SEIKO EPSON CORPORATION - C:\Documents and Settings\All Users\Dane aplikacji\EPSON\EPW!3 SSRP\E_S40RP7.EXE
O23 - Service: KSafe service (KSafeSvc) - Kingsoft Corporation - C:\Program files\Kingsoft\PCDoctor\KSafeSvc.exe
O23 - Service: @C:\Program Files\Nero\Update\NASvc.exe,-200 (NAUpdate) - Nero AG - C:\Program Files\Nero\Update\NASvc.exe
O23 - Service: NBService - Nero AG - C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe
O23 - Service: NLS Service (nlsX86cc) - Nalpeiron Ltd. - C:\WINDOWS\system32\NLSSRV32.EXE
O23 - Service: NMIndexingService - Nero AG - C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe
O23 - Service: nProtect GameGuard Service (npggsvc) - Unknown owner - C:\WINDOWS\system32\GameMon.des.exe (file missing)
O23 - Service: NVIDIA Driver Helper Service (NVSvc) - NVIDIA Corporation - C:\WINDOWS\system32\nvsvc32.exe
O23 - Service: NVIDIA Update Service Daemon (nvUpdatusService) - NVIDIA Corporation - C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe
O23 - Service: PnkBstrA - Unknown owner - C:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - C:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: Windows Presentation Foundation Font Cache 4.0.0.0 (WPFFontCache_v0400) - Unknown owner - C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe (file missing)

--
End of file - 5609 bytes

=========Mozilla firefox=========

ProfilePath - C:\Documents and Settings\Dom\Dane aplikacji\Mozilla\Firefox\Profiles\k4rhocpw.default

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\@adobe.com/FlashPlayer]
"Description"=Adobe® Flash® Player 10.1 Plugin
"Path"=C:\WINDOWS\system32\Macromed\Flash\NPSWF32.dll

[HKEY_LOCAL_MACHINE\SOFTWARE\MozillaPlugins\Adobe Reader]
"Description"=Handles PDFs in-place in Firefox
"Path"=C:\Program Files\Adobe\Reader 9.0\Reader\AIR\nppdf32.dll

C:\Program Files\Mozilla Firefox\extensions\
{972ce4c6-7e08-4474-a285-3208198ce6fd}

C:\Program Files\Mozilla Firefox\components\
binary.manifest
browsercomps.dll

C:\Program Files\Mozilla Firefox\searchplugins\
allegro-pl.xml
fbc-pl.xml
google.xml
merlin-pl.xml
pwn-pl.xml
wikipedia-pl.xml
wp-pl.xml

======Registry dump======

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Browser Helper Objects\{18DF081C-E8AD-4283-A596-FA578C2EBDC3}]
Adobe PDF Link Helper - C:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll [2012-01-03 75200]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run]
"RTHDCPL"=C:\WINDOWS\RTHDCPL.EXE [2007-09-19 16844800]
"NvCplDaemon"=C:\WINDOWS\system32\NvCpl.dll [2011-08-03 13892200]
"NvMediaCenter"=NvMCTray.dll,NvTaskbarInit -login []
"nwiz"=C:\Program Files\NVIDIA Corporation\nView\nwiz.exe [2011-07-05 1632360]
"KSafeTray"=C:\Program files\Kingsoft\PCDoctor\KSafeTray.exe [2011-12-28 1303968]

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run]
"ctfmon.exe"=C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\CTFMON.EXE]
C:\WINDOWS\system32\ctfmon.exe [2008-04-14 15360]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DAEMON Tools Lite]
C:\Program Files\DAEMON Tools Lite\DTLite.exe [2011-08-02 4910912]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\DrukarkaDom]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [2007-03-01 180736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EdHTML]
C:\Program Files\Binboy\EdHTMLv5.0\EdHTML.exe [2003-03-24 1443328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\egui]
C:\Program Files\ESET\ESET NOD32 Antivirus\egui.exe [2011-09-22 3080264]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\EPSON Stylus DX4400 Series]
C:\WINDOWS\System32\spool\DRIVERS\W32X86\3\E_FATICAE.EXE [2007-03-01 180736]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Firewall]
C:\Program Files\DrWeb\frwl_notify.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Google Update]
C:\Documents and Settings\Dom\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2011-12-09 136176]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\InCD]
C:\Program Files\Nero\Nero 7\InCD\InCD.exe [2007-05-15 1057328]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\LogMeIn Hamachi Ui]
C:\Program Files\LogMeIn Hamachi\hamachi-2-ui.exe --auto-start []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
C:\Program Files\Common Files\Ahead\Lib\NeroCheck.exe [2007-03-01 153136]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SecurDisc]
C:\Program Files\Nero\Nero 7\InCD\NBHGui.exe [2007-05-15 1628208]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpeedTouch USB Diagnostics]
C:\Program Files\Thomson\SpeedTouch USB\Dragdiag.exe [2004-03-23 888832]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\SpIDerAgent]
C:\Program Files\DrWeb\spideragent.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Dom^Menu Start^Programy^Autostart^Ashampoo Anti-Malware  .lnk]
C:\Program Files\Ashampoo\Ashampoo Anti-Malware\AAMW_Main.exe  []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Dom^Menu Start^Programy^Autostart^w300.exe]
C:\Documents and Settings\Dom\Menu Start\Programy\Autostart\w300.exe []

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupfolder\C:^Documents and Settings^Dom^Menu Start^Programy^Autostart^µTorrent.lnk]
C:\PROGRA~1\uTorrent\uTorrent.exe [2011-09-13 640888]

[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\services]
"ekrn"=2
"NitroDriverReadSpool2"=2
"InCDsrv"=2
"idsvc"=3

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\PEVSystemStart]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\procexp90.Sys]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\network\Wdf01000.sys]

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System]
"dontdisplaylastusername"=0
"legalnoticecaption"=
"legalnoticetext"=
"shutdownwithoutlogon"=1
"undockwithoutlogon"=1

[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=335
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\explorer]
"NoDriveTypeAutoRun"=323
"NoDriveAutoRun"=67108863
"NoDrives"=0

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\standardprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"
"C:\Program Files\uTorrent\uTorrent.exe"="C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent"
"C:\WINDOWS\system32\PnkBstrA.exe"="C:\WINDOWS\system32\PnkBstrA.exe:*:Enabled:PnkBstrA"
"C:\WINDOWS\system32\PnkBstrB.exe"="C:\WINDOWS\system32\PnkBstrB.exe:*:Enabled:PnkBstrB"
"C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe"="C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe:*:Enabled:Daemonu.exe"
"C:\Program Files\Ventrilo\Ventrilo.exe"="C:\Program Files\Ventrilo\Ventrilo.exe:*:Enabled:Ventrilo.exe"
"C:\WINDOWS\system32\spool\drivers\w32x86\3\E_DUPA20.EXE"="C:\WINDOWS\system32\spool\drivers\w32x86\3\E_DUPA20.EXE:*:Enabled:EPSON Driver Update"
"D:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe"="D:\Program Files\Ubisoft\Far Cry 2\bin\FarCry2.exe:*:Enabled:Far Cry 2"
"D:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe"="D:\Program Files\Ubisoft\Far Cry 2\bin\FC2Launcher.exe:*:Enabled:Far Cry 2 Updater"
"D:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe"="D:\Program Files\Ubisoft\Far Cry 2\bin\FC2Editor.exe:*:Enabled:Editor"
"D:\Program Files\Ubisoft\Far Cry 2\bin\FC2ServerLauncher.exe"="D:\Program Files\Ubisoft\Far Cry 2\bin\FC2ServerLauncher.exe:*:Enabled:Far Cry® 2 Server Launcher"
"C:\Program Files\NCSoft\Lineage II\System\L2.bin"="C:\Program Files\NCSoft\Lineage II\System\L2.bin:*:Enabled:L2"
"C:\Program Files\Counter-Strike 1.6\hl.exe"="C:\Program Files\Counter-Strike 1.6\hl.exe:*:Enabled:Half-Life Launcher"

[HKEY_LOCAL_MACHINE\system\currentcontrolset\services\sharedaccess\parameters\firewallpolicy\domainprofile\authorizedapplications\list]
"%windir%\system32\sessmgr.exe"="%windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019"
"%windir%\Network Diagnostic\xpnetdiag.exe"="%windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000"

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Drivers32]
"midimapper"=midimap.dll
"msacm.imaadpcm"=imaadp32.acm
"msacm.msadpcm"=msadp32.acm
"msacm.msg711"=msg711.acm
"msacm.msgsm610"=msgsm32.acm
"msacm.trspch"=tssoft32.acm
"vidc.cvid"=iccvid.dll
"vidc.I420"=msh263.drv
"vidc.iv31"=ir32_32.dll
"vidc.iv32"=ir32_32.dll
"vidc.iv41"=ir41_32.ax
"vidc.iyuv"=iyuv_32.dll
"vidc.mrle"=msrle32.dll
"vidc.msvc"=msvidc32.dll
"vidc.uyvy"=msyuv.dll
"vidc.yuy2"=msyuv.dll
"vidc.yvu9"=tsbyuv.dll
"vidc.yvyu"=msyuv.dll
"wavemapper"=msacm32.drv
"msacm.msg723"=msg723.acm
"vidc.M263"=msh263.drv
"vidc.M261"=msh261.drv
"msacm.msaudio1"=msaud32.acm
"msacm.sl_anet"=sl_anet.acm
"msacm.iac2"=C:\WINDOWS\system32\iac25_32.ax
"vidc.iv50"=ir50_32.dll
"msacm.l3acm"=C:\WINDOWS\system32\l3codeca.acm
"wave"=wdmaud.drv
"midi"=wdmaud.drv
"mixer"=wdmaud.drv
"aux"=wdmaud.drv
"msacm.divxa32"=msaud32_divx.acm

======File associations======

.js - edit - 
.js - open - "C:\Program Files\Binboy\EdHTMLv5.0\EdHTML.exe" "%1"

======List of files/folders created in the last 1 month======

2012-01-21 14:33:08 ----D---- C:\Program Files\trend micro
2012-01-21 14:33:04 ----D---- C:\rsit
2012-01-21 14:27:33 ----HD---- C:\SafeRecycle
2012-01-20 21:03:44 ----SHD---- C:\KRSHistory
2012-01-20 20:52:02 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\kingsoft
2012-01-20 20:30:37 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\KSafe
2012-01-20 20:25:38 ----SHD---- C:\Documents and Settings\All Users\Dane aplikacji\KRSHistory
2012-01-20 20:25:36 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Safe
2012-01-20 20:24:34 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\kingsoft
2012-01-20 20:23:50 ----D---- C:\Program Files\Kingsoft
2012-01-20 20:12:25 ----SD---- C:\ComboFix
2012-01-20 20:10:14 ----SHD---- C:\RECYCLER
2012-01-20 20:08:17 ----D---- C:\WINDOWS\temp
2012-01-20 20:08:15 ----A---- C:\ComboFix.txt
2012-01-20 19:55:58 ----A---- C:\Boot.bak
2012-01-20 19:55:46 ----RASHD---- C:\cmdcons
2012-01-20 19:54:10 ----A---- C:\WINDOWS\NIRCMD.exe
2012-01-20 19:54:10 ----A---- C:\WINDOWS\MBR.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\zip.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\SWXCACLS.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\SWSC.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\SWREG.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\sed.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\PEV.exe
2012-01-20 19:54:09 ----A---- C:\WINDOWS\grep.exe
2012-01-20 19:53:56 ----D---- C:\WINDOWS\ERDNT
2012-01-20 19:52:25 ----D---- C:\Qoobox
2012-01-20 19:06:22 ----D---- C:\Program Files\Common Files\Doctor Web
2012-01-20 19:05:33 ----D---- C:\Program Files\DrWeb
2012-01-20 19:05:33 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Doctor Web
2012-01-20 18:55:20 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\URSoft
2012-01-20 18:55:14 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Babylon
2012-01-20 18:55:13 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Babylon
2012-01-20 18:23:08 ----D---- C:\Program Files\Sophos
2012-01-20 18:16:09 ----D---- C:\Program Files\AxBx
2012-01-20 17:26:48 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Systenance
2012-01-20 17:18:09 ----D---- C:\Program Files\ESET
2012-01-20 17:18:08 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\ESET
2012-01-20 16:29:55 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\ESET
2012-01-19 16:49:25 ----D---- C:\WINDOWS\WBEM
2012-01-19 16:47:27 ----HDC---- C:\WINDOWS\ie8
2012-01-18 16:23:04 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Malwarebytes
2012-01-17 20:23:06 ----HD---- C:\WINDOWS\system32\GroupPolicy
2012-01-07 16:08:23 ----A---- C:\WINDOWS\unvise32.exe
2012-01-07 16:06:58 ----D---- C:\Program Files\Binboy
2012-01-07 12:19:01 ----D---- C:\Program Files\Counter-Strike 1.6
2012-01-02 19:42:06 ----A---- C:\WINDOWS\PROTOCOL.INI
2012-01-02 19:41:44 ----A---- C:\WINDOWS\uninst.exe
2011-12-24 23:19:03 ----A---- C:\WINDOWS\system32\npptNT2.sys
2011-12-24 23:17:59 ----D---- C:\Program Files\Common Files\INCA Shared

======List of files/folders modified in the last 1 month======

2012-01-21 14:34:37 ----D---- C:\WINDOWS\system32\CatRoot2
2012-01-21 14:33:08 ----RD---- C:\Program Files
2012-01-20 21:38:09 ----A---- C:\WINDOWS\SchedLgU.Txt
2012-01-20 21:34:14 ----SHD---- C:\WINDOWS\Installer
2012-01-20 21:33:45 ----D---- C:\WINDOWS\system32\drivers
2012-01-20 21:33:39 ----SD---- C:\WINDOWS\Tasks
2012-01-20 20:21:10 ----RASH---- C:\boot.ini
2012-01-20 20:21:10 ----A---- C:\WINDOWS\win.ini
2012-01-20 20:21:10 ----A---- C:\WINDOWS\system.ini
2012-01-20 20:08:17 ----AD---- C:\WINDOWS
2012-01-20 20:06:14 ----D---- C:\WINDOWS\system32\drivers\etc
2012-01-20 20:00:50 ----D---- C:\WINDOWS\system32
2012-01-20 19:59:41 ----D---- C:\WINDOWS\AppPatch
2012-01-20 19:59:35 ----D---- C:\Program Files\Common Files
2012-01-20 19:29:22 ----HD---- C:\WINDOWS\inf
2012-01-20 19:06:35 ----D---- C:\WINDOWS\system32\config
2012-01-20 19:02:35 ----D---- C:\Program Files\Mozilla Firefox
2012-01-20 18:59:39 ----HD---- C:\Program Files\InstallShield Installation Information
2012-01-20 18:58:37 ----D---- C:\WINDOWS\Minidump
2012-01-20 18:58:37 ----D---- C:\WINDOWS\Debug
2012-01-20 18:09:12 ----D---- C:\WINDOWS\pss
2012-01-20 16:30:55 ----SD---- C:\Documents and Settings\Dom\Dane aplikacji\Microsoft
2012-01-19 19:14:17 ----SHD---- C:\System Volume Information
2012-01-19 16:57:25 ----D---- C:\WINDOWS\system32\pl-pl
2012-01-19 16:57:24 ----RSHDC---- C:\WINDOWS\system32\dllcache
2012-01-19 16:57:24 ----D---- C:\WINDOWS\Help
2012-01-19 16:57:24 ----D---- C:\Program Files\Internet Explorer
2012-01-19 16:49:00 ----D---- C:\WINDOWS\Media
2012-01-18 21:28:03 ----SD---- C:\Documents and Settings\All Users\Dane aplikacji\Microsoft
2012-01-18 19:51:10 ----D---- C:\WINDOWS\mui
2012-01-18 18:15:03 ----D---- C:\Program Files\SpeedFan
2012-01-18 18:06:30 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Media Player Classic
2012-01-18 18:06:30 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\DAEMON Tools Lite
2012-01-18 18:06:20 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Ventrilo
2012-01-18 18:06:20 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\uTorrent
2012-01-18 18:06:08 ----D---- C:\WINDOWS\Logs
2012-01-18 17:08:04 ----D---- C:\Program Files\Common Files\Adobe
2012-01-18 17:08:03 ----D---- C:\Documents and Settings\All Users\Dane aplikacji\Adobe
2012-01-17 20:23:10 ----D---- C:\WINDOWS\Prefetch
2012-01-16 12:48:08 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\NVIDIA
2012-01-11 18:17:54 ----A---- C:\WINDOWS\NeroDigital.ini
2012-01-08 03:59:59 ----A---- C:\WINDOWS\AWS.ini
2012-01-02 19:42:06 ----A---- C:\AUTOEXEC.BAT
2012-01-02 19:34:22 ----D---- C:\Documents and Settings\Dom\Dane aplikacji\Nitro PDF
2011-12-23 14:53:55 ----D---- C:\Program Files\NCSoft

======List of drivers (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R0 giveio;giveio; C:\WINDOWS\system32\giveio.sys [1996-04-03 5248]
R0 speedfan;speedfan; C:\WINDOWS\system32\speedfan.sys [2006-09-24 5248]
R1 dtsoftbus01;DAEMON Tools Virtual Bus Driver; C:\WINDOWS\system32\DRIVERS\dtsoftbus01.sys [2011-11-23 232512]
R1 InCDPass;InCDPass; C:\WINDOWS\system32\drivers\InCDPass.sys [2007-05-15 37040]
R1 incdrm;InCD Reader; C:\WINDOWS\system32\drivers\InCDRm.sys [2007-05-15 38576]
R1 intelppm;Sterownik procesora Intel; C:\WINDOWS\system32\DRIVERS\intelppm.sys [2008-04-14 40448]
R1 WS2IFSL;Windows Socket 2.0 Non-IFS Service Provider Support Environment; C:\WINDOWS\System32\drivers\ws2ifsl.sys [2001-08-17 12032]
R3 HDAudBus;Sterownik magistrali Microsoft UAA dla High Definition Audio; C:\WINDOWS\system32\DRIVERS\HDAudBus.sys [2008-04-13 144384]
R3 hidusb;Sterownik Microsoft klasy HID; C:\WINDOWS\system32\DRIVERS\hidusb.sys [2008-04-13 10368]
R3 IntcAzAudAddService;Service for Realtek HD Audio (WDM); C:\WINDOWS\system32\drivers\RtkHDAud.sys [2007-09-19 4617728]
R3 mouhid;Sterownik myszy HID; C:\WINDOWS\system32\DRIVERS\mouhid.sys [2001-10-26 12160]
R3 nv;nv; C:\WINDOWS\system32\DRIVERS\nv4_mini.sys [2011-08-03 12542592]
R3 RTLE8023xp;Realtek 10/100/1000 PCI-E NIC Family NDIS XP Driver; C:\WINDOWS\system32\DRIVERS\Rtenicxp.sys [2008-01-03 105856]
R3 usbuhci;Sterownik Miniport uniwersalnego kontrolera hosta USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbuhci.sys [2008-04-13 20608]
R4 InCDfs;InCD File System; C:\WINDOWS\system32\drivers\InCDFs.sys [2007-05-15 118576]
S0 SpiderG3;DrWeb file system scanner; C:\WINDOWS\system32\drivers\spiderg3.sys []
S1 ehdrv;ehdrv; C:\WINDOWS\system32\DRIVERS\ehdrv.sys []
S3 alcan5wn;SpeedTouch USB ADSL PPP Networking Driver (NDISWAN); C:\WINDOWS\system32\DRIVERS\alcan5wn.sys [2003-12-08 53600]
S3 alcaudsl;SpeedTouch ADSL Modem ATM Transport; C:\WINDOWS\system32\DRIVERS\alcaudsl.sys [2005-08-25 70688]
S3 catchme;catchme; \??\C:\ComboFix\catchme.sys []
S3 hamachi;Hamachi Network Interface; C:\WINDOWS\system32\DRIVERS\hamachi.sys [2009-03-18 26176]
S3 MEMSWEEP2;MEMSWEEP2; \??\C:\WINDOWS\system32\1.tmp []
S3 npkcrypt;npkcrypt; \??\C:\Lineage II interlude\system\npkcrypt.sys []
S3 usbccgp;Rodzajowy sterownik nadrzędny USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbccgp.sys [2008-04-13 32128]
S3 usbprint;Klasa PRINTER USB Microsoft; C:\WINDOWS\system32\DRIVERS\usbprint.sys [2008-04-14 25856]
S3 usbscan;Sterownik skanera USB; C:\WINDOWS\system32\DRIVERS\usbscan.sys [2008-04-14 15104]
S3 USBSTOR;Sterownik magazynu masowego USB; C:\WINDOWS\system32\DRIVERS\USBSTOR.SYS [2004-08-03 26496]
S3 Wdf01000;Kernel Mode Driver Frameworks service; C:\WINDOWS\System32\Drivers\wdf01000.sys [2009-07-14 444136]

======List of services (R=Running, S=Stopped, 0=Boot, 1=System, 2=Auto, 3=Demand, 4=Disabled)======

R2 EPSON_PM_RPCV4_01;EPSON V3 Service4(01); C:\Documents and Settings\All Users\Dane aplikacji\EPSON\EPW!3 SSRP\E_S40RP7.EXE [2007-01-11 113664]
R2 KSafeSvc;KSafe service; C:\Program files\Kingsoft\PCDoctor\KSafeSvc.exe [2011-12-06 452000]
R2 MDM;Machine Debug Manager; C:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE [2003-06-19 322120]
R2 NAUpdate;@C:\Program Files\Nero\Update\NASvc.exe,-200; C:\Program Files\Nero\Update\NASvc.exe [2011-03-04 584488]
R2 nlsX86cc;NLS Service; C:\WINDOWS\system32\NLSSRV32.EXE [2011-11-02 68896]
R2 NVSvc;NVIDIA Driver Helper Service; C:\WINDOWS\system32\nvsvc32.exe [2011-08-03 146024]
R2 nvUpdatusService;NVIDIA Update Service Daemon; C:\Program Files\NVIDIA Corporation\NVIDIA Updatus\daemonu.exe [2011-08-03 2255464]
R2 PnkBstrA;PnkBstrA; C:\WINDOWS\system32\PnkBstrA.exe [2011-12-20 66872]
R2 PnkBstrB;PnkBstrB; C:\WINDOWS\system32\PnkBstrB.exe [2011-12-20 107832]
S3 aspnet_state;ASP.NET State Service; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\aspnet_state.exe [2007-10-24 33800]
S3 clr_optimization_v2.0.50727_32;.NET Runtime Optimization Service v2.0.50727_X86; C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe [2007-10-24 70144]
S3 FontCache3.0.0.0;Windows Presentation Foundation Font Cache 3.0.0.0; C:\WINDOWS\Microsoft.Net\Framework\v3.0\WPF\PresentationFontCache.exe [2007-10-09 36864]
S3 NBService;NBService; C:\Program Files\Nero\Nero 7\Nero BackItUp\NBService.exe [2007-04-13 792112]
S3 NMIndexingService;NMIndexingService; C:\Program Files\Common Files\Ahead\Lib\NMIndexingService.exe [2007-05-08 271920]
S3 npggsvc;nProtect GameGuard Service; C:\WINDOWS\system32\GameMon.des [2011-03-28 4323256]
S3 ose;Office Source Engine; C:\Program Files\Common Files\Microsoft Shared\Source Engine\OSE.EXE [2003-07-28 89136]
S3 UMWdf;Windows User Mode Driver Framework; C:\WINDOWS\system32\wdfmgr.exe [2004-08-11 38912]
S3 WPFFontCache_v0400;Windows Presentation Foundation Font Cache 4.0.0.0; C:\WINDOWS\Microsoft.NET\Framework\v4.0.30319\WPF\WPFFontCache_v0400.exe []
S4 ekrn;ESET Service; C:\Program Files\ESET\ESET NOD32 Antivirus\ekrn.exe [2011-09-22 974944]
S4 idsvc;Windows CardSpace; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\infocard.exe [2007-10-11 864256]
S4 InCDsrv;InCD Helper; C:\Program Files\Nero\Nero 7\InCD\InCDsrv.exe [2007-05-15 1550896]
S4 NetTcpPortSharing;Net.Tcp Port Sharing Service; C:\WINDOWS\Microsoft.NET\Framework\v3.0\Windows Communication Foundation\SMSvcHost.exe [2007-10-11 122880]
S4 NitroDriverReadSpool2;NitroPDFDriverCreatorReadSpool2; C:\Program Files\Nitro PDF\Professional 7\NitroPDFDriverService2.exe [2011-11-02 196896]

-----------------EOF-----------------