- Kod: Zaznacz wszystko
ComboFix 09-02-21.01 - User 2009-02-23 21:22:56.17 - NTFSx86
Microsoft Windows XP Professional 5.1.2600.2.1250.1.1045.18.2047.1476 [GMT 1:00]
Uruchomiony z: z:\moje dokumenty\ComboFix.exe
AV: System antywirusowy NOD32 2.70 *On-access scanning enabled* (Updated)
* Utworzono nowy punkt przywracania
* Resident AV is active
UWAGA - TEN KOMPUTER NIE MA ZAINSTALOWANEJ KONSOLI ODZYSKIWANIA !!
.
((((((((((((((((((((((((((((((((((((((( Usunięto )))))))))))))))))))))))))))))))))))))))))))))))))
.
f:\windows\IE4 Error Log.txt
f:\windows\system32\lsprst7.dll
f:\windows\system32\ssprs.dll
f:\windows\system32\tmpPrst.dll
.
((((((((((((((((((((((((( Pliki utworzone od 2009-01-23 do 2009-02-23 )))))))))))))))))))))))))))))))
.
2009-02-16 15:43 . 2009-02-16 15:46 <DIR> d-------- f:\windows\system32\Adobe
2009-02-15 20:55 . 2009-02-19 10:47 54,156 --ah----- f:\windows\QTFont.qfn
2009-02-15 20:55 . 2009-02-15 20:55 1,409 --a------ f:\windows\QTFont.for
2009-01-29 12:11 . 2009-01-29 12:11 <DIR> d-------- f:\program files\Neat Image
2009-01-29 12:11 . 2009-01-29 12:11 <DIR> d-------- f:\documents and settings\User\Dane aplikacji\NeatImage SL
.
(((((((((((((((((((((((((((((((((((((((( Sekcja Find3M ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2009-02-23 18:06 --------- d-----w f:\documents and settings\User\Dane aplikacji\Tlen.pl
2009-02-23 16:12 --------- d-----w f:\documents and settings\User\Dane aplikacji\WTablet
2009-02-23 14:22 --------- d-----w f:\documents and settings\User\Dane aplikacji\uTorrent
2009-02-22 16:03 --------- d-----w f:\program files\MD4DC++
2009-02-19 19:04 --------- d-----w f:\program files\RocketDock
2009-02-13 22:48 --------- d-----w f:\documents and settings\User\Dane aplikacji\Winamp
2009-02-12 16:50 --------- d-----w f:\program files\DkZ Studio
2009-01-22 21:50 --------- d--h--w f:\program files\InstallShield Installation Information
2009-01-22 21:50 --------- d-----w f:\program files\Broderbund
2009-01-20 22:56 --------- d-----w f:\program files\VirtualDJ
2009-01-19 13:05 --------- d-----w f:\documents and settings\User\Dane aplikacji\foobar2000
2009-01-15 20:40 --------- d-----w f:\program files\Tlen.pl
2009-01-15 20:40 --------- d-----w f:\documents and settings\All Users\Dane aplikacji\Tlen.pl
2009-01-15 20:29 --------- d-----w f:\documents and settings\User\Dane aplikacji\IrfanView
2009-01-04 16:59 --------- d-----w f:\program files\SopCast
2009-01-04 15:58 --------- d-----w f:\documents and settings\All Users\Dane aplikacji\2DBoy
2009-01-03 21:53 --------- d-----w f:\program files\WYSIWYG Web Builder 5
2009-01-03 21:53 --------- d-----w f:\program files\TVUPlayer
2009-01-03 21:53 --------- d-----w f:\program files\Photomatix
2009-01-03 21:53 --------- d-----w f:\program files\NVidia
2009-01-03 21:53 --------- d-----w f:\program files\AoA MP4 Converter
2008-12-26 11:26 163,644 ----a-w f:\windows\system32\drivers\secdrv.sys
2008-12-07 17:37 22,328 ----a-w f:\documents and settings\User\Dane aplikacji\PnkBstrK.sys
2008-12-07 17:37 107,832 ----a-w f:\windows\system32\PnkBstrB.exe
2008-12-07 17:36 66,872 ----a-w f:\windows\system32\PnkBstrA.exe
2008-12-07 17:36 2,250,024 ----a-w f:\windows\system32\pbsvc.exe
2008-10-21 16:00 1,635 ----a-w f:\documents and settings\User\nkp2.exe
2008-10-16 04:45 6,656 ----a-w f:\documents and settings\User\planet.exe
2007-10-09 06:41 66,408 ----a-w f:\program files\mozilla firefox\components\jar50.dll
2007-10-09 06:41 54,112 ----a-w f:\program files\mozilla firefox\components\jsd3250.dll
2007-10-09 06:41 34,688 ----a-w f:\program files\mozilla firefox\components\myspell.dll
2007-10-09 06:41 46,456 ----a-w f:\program files\mozilla firefox\components\spellchk.dll
2007-10-09 06:41 171,880 ----a-w f:\program files\mozilla firefox\components\xpinstal.dll
2008-04-06 13:45 88 --sh--r f:\windows\system32\1EB16A5616.sys
2008-04-06 13:45 2,828 --sha-w f:\windows\system32\KGyGaAvL.sys
.
------- Sigcheck -------
2006-03-12 17:48 360448 65c34c093e839505636954ead50fa315 f:\windows\system32\drivers\tcpip.sys
.
((((((((((((((((((((((((((((((((((((( Wpisy startowe rejestru ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Uwaga* puste wpisy oraz domyślne, prawidłowe wpisy nie są pokazane
REGEDIT4
[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"RocketDock"="f:\program files\RocketDock\RocketDock.exe" [2007-09-02 495616]
"AlcoholAutomount"="f:\program files\Alcohol Soft\Alcohol 120\axcmd.exe" [2007-12-22 222080]
"ctfmon.exe"="f:\windows\system32\ctfmon.exe" [2004-08-03 15360]
"Google Update"="f:\documents and settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" [2008-12-18 133104]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"NvCplDaemon"="f:\windows\system32\NvCpl.dll" [2007-06-28 8466432]
"QuickTime Task"="f:\program files\K-Lite Codec Pack\QuickTime\QTTask.exe" [2007-06-29 286720]
"ISUSPM Startup"="f:\progra~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe" [2006-05-16 213936]
"ISUSScheduler"="f:\program files\Common Files\InstallShield\UpdateService\issch.exe" [2006-05-16 86960]
"ISUSPM"="f:\program files\Common Files\InstallShield\UpdateService\isuspm.exe" [2006-05-16 213936]
"WinampAgent"="f:\program files\Winamp\winampa.exe" [2008-03-27 36352]
"nod32kui"="f:\program files\Eset\nod32kui.exe" [2008-10-21 949376]
"RTHDCPL"="RTHDCPL.EXE" [2007-05-10 f:\windows\RTHDCPL.exe]
"nwiz"="nwiz.exe" [2007-06-28 f:\windows\system32\nwiz.exe]
[HKEY_USERS\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Run]
"CTFMON.EXE"="f:\windows\system32\CTFMON.EXE" [2004-08-03 15360]
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\explorer]
"ForceClassicControlPanel"= 1 (0x1)
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoSMConfigurePrograms"= 1 (0x1)
[HKEY_USERS\.default\software\microsoft\windows\currentversion\policies\explorer]
"NoSMConfigurePrograms"= 1 (0x1)
[HKEY_LOCAL_MACHINE\software\microsoft\windows nt\currentversion\drivers32]
"VIDC.3iv2"= f:\progra~1\K-LITE~1\codecs\3IVXVF~1.DLL
"VIDC.VP60"= f:\progra~1\K-LITE~1\codecs\vp6vfw.dll
"VIDC.VP61"= f:\progra~1\K-LITE~1\codecs\vp6vfw.dll
"VIDC.VP62"= f:\progra~1\K-LITE~1\codecs\vp6vfw.dll
"VIDC.VP70"= f:\progra~1\K-LITE~1\codecs\vp7vfw.dll
"VIDC.VP31"= f:\progra~1\K-LITE~1\codecs\vp31vfw.dll
"VIDC.FFDS"= f:\progra~1\K-LITE~1\ffdshow\ff_vfw.dll
"msacm.ac3acm"= f:\progra~1\K-LITE~1\codecs\ac3acm.acm
"msacm.l3fhg"= f:\progra~1\K-LITE~1\codecs\l3codecp.acm
[HKLM\~\startupfolder\F:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Adobe Gamma Loader.lnk]
path=f:\documents and settings\All Users\Menu Start\Programy\Autostart\Adobe Gamma Loader.lnk
backup=f:\windows\pss\Adobe Gamma Loader.lnkCommon Startup
[HKLM\~\startupfolder\F:^Documents and Settings^All Users^Menu Start^Programy^Autostart^Last.fm Helper.lnk]
path=f:\documents and settings\All Users\Menu Start\Programy\Autostart\Last.fm Helper.lnk
backup=f:\windows\pss\Last.fm Helper.lnkCommon Startup
[HKLM\~\startupfolder\F:^Documents and Settings^User^Menu Start^Programy^Autostart^Vista-HDMonitor-Windows.lnk]
path=f:\documents and settings\User\Menu Start\Programy\Autostart\Vista-HDMonitor-Windows.lnk
backup=f:\windows\pss\Vista-HDMonitor-Windows.lnkStartup
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Adobe Reader Speed Launcher]
--a------ 2007-05-11 02:06 40048 f:\program files\Adobe\Reader 8.0\Reader\reader_sl.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Gadu-Gadu]
--a------ 2007-07-09 08:39 2119104 f:\program files\Gadu-Gadu\gg.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NeroFilterCheck]
--a------ 2001-07-09 10:50 155648 f:\windows\system32\NeroCheck.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\NvMediaCenter]
--a------ 2007-06-28 23:43 81920 f:\windows\system32\nvmctray.dll
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\µTorrent]
--a------ 2007-08-09 11:09 109568 G:\utorrent.exe
[HKEY_LOCAL_MACHINE\software\microsoft\shared tools\msconfig\startupreg\Alcmtr]
-r------- 2005-05-03 11:43 69632 f:\windows\Alcmtr.exe
[HKLM\~\services\sharedaccess\parameters\firewallpolicy\standardprofile\AuthorizedApplications\List]
"e:\\gry\\PES 2008\\PES2008.exe"=
"f:\\Program Files\\Tlen.pl\\tlen.exe"=
"g:\\utorrent.exe"=
"f:\\Program Files\\BearShare\\BearShare.exe"=
"f:\\Program Files\\Gadu-Gadu\\gg.exe"=
"e:\\gry\\Assasin\\AssassinsCreed_Dx9.exe"=
"e:\\gry\\Assasin\\AssassinsCreed_Dx10.exe"=
"e:\\gry\\Assasin\\AssassinsCreed_Launcher.exe"=
"f:\\Program Files\\TVUPlayer\\TVUPlayer.exe"=
"f:\\Program Files\\Hamachi\\hamachi.exe"=
"z:\\INSTALKI\\Gry\\GRID\\Race.Driver.GRID.Multi-5.Full-Rip.Skullptura\\Grid\\GRID.exe"=
"f:\\Program Files\\Skype\\Phone\\Skype.exe"=
"e:\\gry\\FC2\\Far Cry 2\\bin\\FarCry2.exe"=
"e:\\gry\\FC2\\Far Cry 2\\bin\\FC2Launcher.exe"=
"e:\\gry\\FC2\\Far Cry 2\\bin\\FC2Editor.exe"=
"f:\\WINDOWS\\system32\\PnkBstrA.exe"=
"f:\\WINDOWS\\system32\\PnkBstrB.exe"=
"f:\\Program Files\\SopCast\\SopCast.exe"=
"f:\\Program Files\\SopCast\\adv\\SopAdver.exe"=
"f:\\Program Files\\MD4DC++\\DCPlusPlus.exe"=
R1 nod32drv;nod32drv;f:\windows\system32\drivers\nod32drv.sys [2008-10-21 15424]
R2 TabletServicePen;TabletServicePen;f:\windows\system32\Pen_Tablet.exe [2008-10-30 1373480]
S3 SetupNTGLM7X;SetupNTGLM7X;\??\h:\ntglm7x.sys --> h:\NTGLM7X.sys [?]
[HKEY_LOCAL_MACHINE\software\microsoft\active setup\installed components\{10880D85-AAD9-4558-ABDC-2AB1552D831F}]
"f:\program files\Common Files\LightScribe\LSRunOnce.exe"
.
Zawartość folderu 'Zaplanowane zadania'
2009-02-07 f:\windows\Tasks\GoogleUpdateTaskUserS-1-5-21-1214440339-1202660629-725345543-1003.job
- f:\documents and settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe [2008-12-18 21:03]
2007-08-28 f:\windows\Tasks\Norton Security Scan.job
- f:\program files\Norton Security Scan\Nss.exe [2007-04-19 21:42]
.
.
------- Skan uzupełniający -------
.
uStart Page = hxxp://www.windowsxlive.net
IE: E&ksport do programu Microsoft Excel - f:\progra~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
LSP: f:\windows\system32\imon.dll
TCP: {38BD57F4-72B6-4D7E-81DF-0C65D342AE5B} = 208.67.222.222,208.67.220.220
FF - ProfilePath -
.
**************************************************************************
catchme 0.3.1367 W2K/XP/Vista - rootkit/stealth malware detector by Gmer, http://www.gmer.net
Rootkit scan 2009-02-23 21:24:34
Windows 5.1.2600 Dodatek Service Pack 2 NTFS
skanowanie ukrytych procesów ...
skanowanie ukrytych wpisów autostartu ...
skanowanie ukrytych plików ...
skanowanie pomyślnie ukończone
ukryte pliki: 0
**************************************************************************
.
--------------------- ZABLOKOWANE KLUCZE REJESTRU ---------------------
[HKEY_USERS\S-1-5-21-1214440339-1202660629-725345543-1003\Software\SecuROM\!CAUTION! NEVER A OR CHANGE ANY KEY*]
"??"=hex:2f,73,e3,a6,68,23,11,e8,fb,e2,38,22,21,c5,94,81,b7,7a,81,9d,39,7c,d1,
b5,00,d0,e5,24,02,f0,01,25,a8,b9,10,c6,c6,c6,ed,86,71,e2,2f,5a,0a,8d,f7,54,\
"??"=hex:0b,49,cc,3c,f1,f7,eb,aa,89,c7,eb,9a,2b,c9,6d,b8
[HKEY_USERS\S-1-5-21-1214440339-1202660629-725345543-1003\Software\SecuROM\License information*]
"datasecu"=hex:e5,0f,ea,43,91,31,ad,3b,81,34,f5,52,36,a6,21,8b,22,99,71,f2,77,
3e,94,06,bf,2d,67,b7,51,eb,d4,25,56,e1,99,cd,eb,a3,d7,7c,14,ee,40,cb,40,f8,\
"rkeysecu"=hex:5c,1b,25,63,07,b2,d9,1f,88,4d,f0,62,6f,ca,22,0c
.
--------------------- Pliki DLL ładowane pod uruchomionymi procesami ---------------------
- - - - - - - > 'lsass.exe'(816)
f:\windows\system32\imon.dll
f:\program files\Eset\pr_imon.dll
.
Czas ukończenia: 2009-02-23 21:26:40
ComboFix-quarantined-files.txt 2009-02-23 20:25:26
Przed: 2 735 112 192 bajtów wolnych
Po: 3,070,296,064 bajtów wolnych
WindowsXP-KB310994-SP2-Pro-BootDisk-PLK.exe
196
oraz HJ
- Kod: Zaznacz wszystko
Logfile of HijackThis v1.99.1
Scan saved at 21:30:23, on 2009-02-23
Platform: Windows XP Dodatek SP2 (WinNT 5.01.2600)
MSIE: Internet Explorer v6.00 SP2 (6.00.2900.2180)
Running processes:
F:\WINDOWS\System32\smss.exe
F:\WINDOWS\system32\winlogon.exe
F:\WINDOWS\system32\services.exe
F:\WINDOWS\system32\lsass.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\System32\svchost.exe
F:\WINDOWS\system32\spoolsv.exe
F:\WINDOWS\RTHDCPL.EXE
F:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe
F:\Program Files\Winamp\winampa.exe
F:\Program Files\RocketDock\RocketDock.exe
F:\WINDOWS\system32\ctfmon.exe
F:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe
F:\Program Files\Bonjour\mDNSResponder.exe
F:\Program Files\Common Files\LightScribe\LSSrvc.exe
F:\Program Files\Common Files\Microsoft Shared\VS7DEBUG\MDM.EXE
F:\Program Files\Eset\nod32krn.exe
F:\WINDOWS\system32\nvsvc32.exe
F:\WINDOWS\system32\PnkBstrA.exe
F:\WINDOWS\system32\PnkBstrB.exe
F:\Program Files\Common Files\Protexis\License Service\PSIService.exe
F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
F:\WINDOWS\system32\svchost.exe
F:\WINDOWS\system32\Pen_Tablet.exe
F:\WINDOWS\system32\WTablet\Pen_TabletUser.exe
F:\WINDOWS\system32\Pen_Tablet.exe
F:\WINDOWS\system32\wscntfy.exe
F:\Program Files\Last.fm\LastFM.exe
F:\Program Files\Winamp\winamp.exe
F:\Program Files\Tlen.pl\tlen.exe
F:\WINDOWS\explorer.exe
F:\Program Files\Opera\Opera.exe
F:\Program Files\ESET\nod32kui.exe
Z:\Moje Dokumenty\HijackThis.exe
R0 - HKCU\Software\Microsoft\Internet Explorer\Main,Start Page = http://www.windowsxlive.net
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Page_URL = http://go.microsoft.com/fwlink/?LinkId=69157
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Default_Search_URL = http://go.microsoft.com/fwlink/?LinkId=54896
R1 - HKLM\Software\Microsoft\Internet Explorer\Main,Search Page = http://go.microsoft.com/fwlink/?LinkId=54896
R0 - HKCU\Software\Microsoft\Internet Explorer\Toolbar,LinksFolderName = Łącza
O2 - BHO: Adobe PDF Reader Link Helper - {06849E9F-C8D7-4D59-B87D-784B7D6BE0B3} - F:\Program Files\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelper.dll
O4 - HKLM\..\Run: [RTHDCPL] RTHDCPL.EXE
O4 - HKLM\..\Run: [NvCplDaemon] RUNDLL32.EXE F:\WINDOWS\system32\NvCpl.dll,NvStartup
O4 - HKLM\..\Run: [nwiz] nwiz.exe /install
O4 - HKLM\..\Run: [QuickTime Task] "F:\Program Files\K-Lite Codec Pack\QuickTime\QTTask.exe" -atboottime
O4 - HKLM\..\Run: [ISUSPM Startup] F:\PROGRA~1\COMMON~1\INSTAL~1\UPDATE~1\isuspm.exe -startup
O4 - HKLM\..\Run: [ISUSScheduler] "F:\Program Files\Common Files\InstallShield\UpdateService\issch.exe" -start
O4 - HKLM\..\Run: [ISUSPM] "F:\Program Files\Common Files\InstallShield\UpdateService\isuspm.exe" -scheduler
O4 - HKLM\..\Run: [WinampAgent] "F:\Program Files\Winamp\winampa.exe"
O4 - HKLM\..\Run: [nod32kui] "F:\Program Files\Eset\nod32kui.exe" /WAITSERVICE
O4 - HKCU\..\Run: [RocketDock] "F:\Program Files\RocketDock\RocketDock.exe"
O4 - HKCU\..\Run: [AlcoholAutomount] "F:\Program Files\Alcohol Soft\Alcohol 120\axcmd.exe" /automount
O4 - HKCU\..\Run: [ctfmon.exe] F:\WINDOWS\system32\ctfmon.exe
O4 - HKCU\..\Run: [Google Update] "F:\Documents and Settings\User\Ustawienia lokalne\Dane aplikacji\Google\Update\GoogleUpdate.exe" /c
O4 - Startup: Sidebar.lnk = F:\Documents and Settings\User\Moje dokumenty\Clear Sidebar.exe
O8 - Extra context menu item: E&ksport do programu Microsoft Excel - res://F:\PROGRA~1\MICROS~2\OFFICE11\EXCEL.EXE/3000
O9 - Extra button: (no name) - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra 'Tools' menuitem: Sun Java Console - {08B0E5C0-4FCB-11CF-AAA5-00401C608501} - F:\Program Files\Java\jre1.5.0_05\bin\npjpi150_05.dll
O9 - Extra button: Badanie - {92780B25-18CC-41C8-B9BE-3C9C571A8263} - F:\PROGRA~1\MICROS~2\OFFICE11\REFIEBAR.DLL
O10 - Unknown file in Winsock LSP: f:\program files\bonjour\mdnsnsp.dll
O16 - DPF: {0EB0E74A-2A76-4AB3-A7FB-9BD8C29F7F75} (CKAVWebScan Object) - http://www.kaspersky.pl/resources/virusscanner/kavwebscan_unicode.cab
O16 - DPF: {1E54D648-B804-468d-BC78-4AFFED8E262E} (System Requirements Lab) - http://www.srtest.com/srl_bin/sysreqlab_srl.cab
O16 - DPF: {67A5F8DC-1A4B-4D66-9F24-A704AD929EEE} (System Requirements Lab) - http://www.systemrequirementslab.com/sysreqlab2.cab
O17 - HKLM\System\CCS\Services\Tcpip\..\{38BD57F4-72B6-4D7E-81DF-0C65D342AE5B}: NameServer = 208.67.222.222,208.67.220.220
O18 - Protocol: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - F:\PROGRA~1\COMMON~1\Skype\SKYPE4~1.DLL
O23 - Service: ##Id_String1.6844F930_1628_4223_B5CC_5BB94B879762## (Bonjour Service) - Apple Computer, Inc. - F:\Program Files\Bonjour\mDNSResponder.exe
O23 - Service: FLEXnet Licensing Service - Macrovision Europe Ltd. - F:\Program Files\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe
O23 - Service: InstallDriver Table Manager (IDriverT) - Macrovision Corporation - F:\Program Files\Common Files\InstallShield\Driver\11\Intel 32\IDriverT.exe
O23 - Service: LightScribeService Direct Disc Labeling Service (LightScribeService) - Hewlett-Packard Company - F:\Program Files\Common Files\LightScribe\LSSrvc.exe
O23 - Service: NOD32 Kernel Service (NOD32krn) - Eset - F:\Program Files\Eset\nod32krn.exe
O23 - Service: NVIDIA Display Driver Service (NVSvc) - NVIDIA Corporation - F:\WINDOWS\system32\nvsvc32.exe
O23 - Service: PnkBstrA - Unknown owner - F:\WINDOWS\system32\PnkBstrA.exe
O23 - Service: PnkBstrB - Unknown owner - F:\WINDOWS\system32\PnkBstrB.exe
O23 - Service: ProtexisLicensing - Unknown owner - F:\Program Files\Common Files\Protexis\License Service\PSIService.exe
O23 - Service: StarWind AE Service (StarWindServiceAE) - Rocket Division Software - F:\Program Files\Alcohol Soft\Alcohol 120\StarWind\StarWindServiceAE.exe
O23 - Service: TabletServicePen - Wacom Technology, Corp. - F:\WINDOWS\system32\Pen_Tablet.exe
prosze o sprawdzenie
