a sprzęt mam taki: procesor AMD Core2Duo 2x 1.8, płyta ASUS P5B, grafika Palit GeForce 8600 256mb, 2gb ddr2 ram oraz hdd seagate barracuda 200gb. Z góry dziękuje za przegląd
OTL
- Kod: Zaznacz wszystko
OTL logfile created on: 2009-11-30 20:11:06 - Run 1
OTL by OldTimer - Version 3.1.11.4 Folder = C:\Users\kajtek\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,29 Gb Available Physical Memory | 64,67% Memory free
4,00 Gb Paging File | 3,06 Gb Available in Paging File | 76,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 30,24 Gb Total Space | 14,22 Gb Free Space | 47,02% Space Free | Partition Type: NTFS
Drive D: | 202,55 Gb Total Space | 53,17 Gb Free Space | 26,25% Space Free | Partition Type: NTFS
Drive E: | 3,60 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: LOSBURDELOS
Current User Name: kajtek
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
[color=#E56717]========== Processes (SafeList) ==========[/color]
PRC - [2009-11-30 20:08:08 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Users\kajtek\Desktop\OTL.exe
PRC - [2009-11-30 16:45:05 | 00,467,422 | ---- | M] (BitTorrent, Inc.) -- C:\Program Files\uTorrent\uTorrent.exe
PRC - [2009-11-30 13:12:01 | 00,038,184 | ---- | M] (NCSoft) -- C:\Program Files\NCSoft\Launcher\NCLauncher.exe
PRC - [2009-11-29 23:35:05 | 00,329,174 | ---- | M] (Sun Microsystems, Inc.) -- C:\Program Files\Java\jre6\bin\jusched.exe
PRC - [2009-11-21 17:15:39 | 01,391,576 | ---- | M] (Karol Winnicki) -- D:\Stuff\Instalki\BESTplayer.exe
PRC - [2009-10-30 12:57:00 | 00,229,936 | ---- | M] (DT Soft Ltd) -- C:\Program Files\DAEMON Tools Lite\DTLiteShellHlp.exe
PRC - [2009-10-29 12:27:54 | 01,074,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe
PRC - [2009-07-14 02:14:42 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\taskhost.exe
PRC - [2009-07-14 02:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe
PRC - [2009-07-14 02:14:20 | 02,613,248 | ---- | M] (Microsoft Corporation) -- C:\Windows\explorer.exe
PRC - [2008-03-20 11:04:46 | 02,127,296 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\gg.exe
PRC - [2006-11-03 11:01:16 | 00,319,488 | ---- | M] (PixArt Imaging Incorporation) -- C:\Windows\PixArt\Pac207\Monitor.exe
[color=#E56717]========== Modules (SafeList) ==========[/color]
MOD - [2009-11-30 20:08:08 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Users\kajtek\Desktop\OTL.exe
MOD - [2009-11-29 22:26:41 | 00,176,128 | ---- | M] () -- C:\Users\kajtek\AppData\Local\Temp\mtaC17A.tmp
MOD - [2009-07-14 02:16:20 | 00,015,360 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wsock32.dll
MOD - [2009-07-14 02:16:15 | 00,099,840 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sspicli.dll
MOD - [2009-07-14 02:16:13 | 00,092,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sechost.dll
MOD - [2009-07-14 02:16:13 | 00,050,688 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\samcli.dll
MOD - [2009-07-14 02:16:12 | 00,031,744 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\profapi.dll
MOD - [2009-07-14 02:16:03 | 00,022,016 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\netutils.dll
MOD - [2009-07-14 02:15:35 | 00,288,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\KernelBase.dll
MOD - [2009-07-14 02:15:13 | 00,067,072 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dwmapi.dll
MOD - [2009-07-14 02:15:11 | 00,064,512 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\devobj.dll
MOD - [2009-07-14 02:15:07 | 00,036,864 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cryptbase.dll
MOD - [2009-07-14 02:15:02 | 00,145,920 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\cfgmgr32.dll
MOD - [2009-07-14 02:03:50 | 01,680,896 | ---- | M] (Microsoft Corporation) -- C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7600.16385_none_421189da2b7fabfc\comctl32.dll
MOD - [2006-12-21 13:30:44 | 00,102,400 | ---- | M] (Gadu-Gadu S.A.) -- C:\Program Files\Gadu-Gadu\ggwhook.dll
[color=#E56717]========== Win32 Services (SafeList) ==========[/color]
SRV - [2009-10-29 12:27:54 | 01,074,568 | ---- | M] (LogMeIn Inc.) -- C:\Program Files\LogMeIn Hamachi\hamachi-2.exe -- (Hamachi2Svc)
SRV - [2009-07-14 02:16:21 | 00,185,856 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wwansvc.dll -- (WwanSvc)
SRV - [2009-07-14 02:16:17 | 00,151,552 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\wbiosrvc.dll -- (WbioSrvc)
SRV - [2009-07-14 02:16:17 | 00,119,808 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\umpo.dll -- (Power)
SRV - [2009-07-14 02:16:16 | 00,037,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\themeservice.dll -- (Themes)
SRV - [2009-07-14 02:16:15 | 00,053,760 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppuinotify.dll -- (sppuinotify)
SRV - [2009-07-14 02:16:13 | 00,043,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\RpcEpMap.dll -- (RpcEptMapper)
SRV - [2009-07-14 02:16:13 | 00,025,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sensrsvc.dll -- (SensrSvc)
SRV - [2009-07-14 02:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (PNRPsvc)
SRV - [2009-07-14 02:16:12 | 00,269,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpsvc.dll -- (p2pimsvc)
SRV - [2009-07-14 02:16:12 | 00,165,376 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\provsvc.dll -- (HomeGroupProvider)
SRV - [2009-07-14 02:16:12 | 00,020,480 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\pnrpauto.dll -- (PNRPAutoReg)
SRV - [2009-07-14 02:15:41 | 00,680,960 | ---- | M] (Microsoft Corporation) -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2009-07-14 02:15:36 | 00,194,560 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\ListSvc.dll -- (HomeGroupListener)
SRV - [2009-07-14 02:15:21 | 00,797,696 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\FntCache.dll -- (FontCache)
SRV - [2009-07-14 02:15:11 | 00,253,440 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\dhcpcore.dll -- (Dhcp)
SRV - [2009-07-14 02:15:10 | 00,218,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\defragsvc.dll -- (defragsvc)
SRV - [2009-07-14 02:14:59 | 00,076,800 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\bdesvc.dll -- (BDESVC)
SRV - [2009-07-14 02:14:58 | 00,088,064 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\AxInstSv.dll -- (AxInstSV) Instalator formantów ActiveX (AxInstSV)
SRV - [2009-07-14 02:14:53 | 00,027,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\appidsvc.dll -- (AppIDSvc)
SRV - [2009-07-14 02:14:29 | 03,179,520 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\sppsvc.exe -- (sppsvc)
[color=#E56717]========== Driver Services (SafeList) ==========[/color]
DRV - [2009-11-29 22:41:34 | 00,691,696 | ---- | M] () -- C:\Windows\System32\Drivers\sptd.sys -- (sptd)
DRV - [2009-09-23 09:41:58 | 00,026,176 | -H-- | M] (LogMeIn, Inc.) -- C:\Windows\System32\drivers\hamachi.sys -- (hamachi)
DRV - [2009-07-14 02:26:21 | 00,015,952 | ---- | M] (CMD Technology, Inc.) -- C:\Windows\system32\DRIVERS\cmdide.sys -- (cmdide)
DRV - [2009-07-14 02:26:17 | 00,297,552 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpahci.sys -- (adpahci)
DRV - [2009-07-14 02:26:15 | 00,422,976 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adp94xx.sys -- (adp94xx)
DRV - [2009-07-14 02:26:15 | 00,159,312 | ---- | M] (AMD Technologies Inc.) -- C:\Windows\system32\DRIVERS\amdsbs.sys -- (amdsbs)
DRV - [2009-07-14 02:26:15 | 00,146,512 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\adpu320.sys -- (adpu320)
DRV - [2009-07-14 02:26:15 | 00,086,608 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arcsas.sys -- (arcsas)
DRV - [2009-07-14 02:26:15 | 00,079,952 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\DRIVERS\amdsata.sys -- (amdsata)
DRV - [2009-07-14 02:26:15 | 00,076,368 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\arc.sys -- (arc)
DRV - [2009-07-14 02:26:15 | 00,023,616 | ---- | M] (Advanced Micro Devices) -- C:\Windows\system32\DRIVERS\amdxata.sys -- (amdxata)
DRV - [2009-07-14 02:26:15 | 00,014,400 | ---- | M] (Acer Laboratories Inc.) -- C:\Windows\system32\DRIVERS\aliide.sys -- (aliide)
DRV - [2009-07-14 02:20:44 | 00,142,416 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvstor.sys -- (nvstor)
DRV - [2009-07-14 02:20:44 | 00,117,312 | ---- | M] (NVIDIA Corporation) -- C:\Windows\system32\DRIVERS\nvraid.sys -- (nvraid)
DRV - [2009-07-14 02:20:44 | 00,044,624 | ---- | M] (IBM Corporation) -- C:\Windows\system32\DRIVERS\nfrd960.sys -- (nfrd960)
DRV - [2009-07-14 02:20:37 | 00,089,168 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas.sys -- (LSI_SAS)
DRV - [2009-07-14 02:20:36 | 00,332,352 | ---- | M] (Intel Corporation) -- C:\Windows\system32\DRIVERS\iaStorV.sys -- (iaStorV)
DRV - [2009-07-14 02:20:36 | 00,235,584 | ---- | M] (LSI Corporation, Inc.) -- C:\Windows\system32\DRIVERS\MegaSR.sys -- (MegaSR)
DRV - [2009-07-14 02:20:36 | 00,133,200 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\ksecpkg.sys -- (KSecPkg)
DRV - [2009-07-14 02:20:36 | 00,096,848 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_scsi.sys -- (LSI_SCSI)
DRV - [2009-07-14 02:20:36 | 00,095,824 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_fc.sys -- (LSI_FC)
DRV - [2009-07-14 02:20:36 | 00,054,864 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\lsi_sas2.sys -- (LSI_SAS2)
DRV - [2009-07-14 02:20:36 | 00,041,040 | ---- | M] (Intel Corp./ICP vortex GmbH) -- C:\Windows\system32\DRIVERS\iirsp.sys -- (iirsp)
DRV - [2009-07-14 02:20:36 | 00,030,800 | ---- | M] (LSI Corporation) -- C:\Windows\system32\DRIVERS\megasas.sys -- (megasas)
DRV - [2009-07-14 02:20:36 | 00,013,904 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\hwpolicy.sys -- (hwpolicy)
DRV - [2009-07-14 02:20:28 | 00,453,712 | ---- | M] (Emulex) -- C:\Windows\system32\DRIVERS\elxstor.sys -- (elxstor)
DRV - [2009-07-14 02:20:28 | 00,070,720 | ---- | M] (Adaptec, Inc.) -- C:\Windows\system32\DRIVERS\djsvs.sys -- (aic78xx)
DRV - [2009-07-14 02:20:28 | 00,067,152 | ---- | M] (Hewlett-Packard Company) -- C:\Windows\system32\DRIVERS\HpSAMD.sys -- (HpSAMD)
DRV - [2009-07-14 02:20:28 | 00,046,160 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\fsdepends.sys -- (FsDepends)
DRV - [2009-07-14 02:19:11 | 00,141,904 | ---- | M] (VIA Technologies Inc.,Ltd) -- C:\Windows\system32\DRIVERS\vsmraid.sys -- (vsmraid)
DRV - [2009-07-14 02:19:10 | 00,159,824 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vhdmp.sys -- (vhdmp)
DRV - [2009-07-14 02:19:10 | 00,032,832 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\vdrvroot.sys -- (vdrvroot)
DRV - [2009-07-14 02:19:10 | 00,019,008 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wimmount.sys -- (WIMMount)
DRV - [2009-07-14 02:19:10 | 00,016,976 | ---- | M] (VIA Technologies, Inc.) -- C:\Windows\system32\DRIVERS\viaide.sys -- (viaide)
DRV - [2009-07-14 02:19:04 | 01,383,488 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql2300.sys -- (ql2300)
DRV - [2009-07-14 02:19:04 | 00,173,648 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\rdyboost.sys -- (rdyboost)
DRV - [2009-07-14 02:19:04 | 00,106,064 | ---- | M] (QLogic Corporation) -- C:\Windows\system32\DRIVERS\ql40xx.sys -- (ql40xx)
DRV - [2009-07-14 02:19:04 | 00,077,888 | ---- | M] (Silicon Integrated Systems) -- C:\Windows\system32\DRIVERS\sisraid4.sys -- (SiSRaid4)
DRV - [2009-07-14 02:19:04 | 00,043,088 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\pcw.sys -- (pcw)
DRV - [2009-07-14 02:19:04 | 00,040,016 | ---- | M] (Silicon Integrated Systems Corp.) -- C:\Windows\system32\DRIVERS\SiSRaid2.sys -- (SiSRaid2)
DRV - [2009-07-14 02:19:04 | 00,021,072 | ---- | M] (Promise Technology) -- C:\Windows\system32\DRIVERS\stexstor.sys -- (stexstor)
DRV - [2009-07-14 02:17:54 | 00,369,568 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\Drivers\cng.sys -- (CNG)
DRV - [2009-07-14 01:57:25 | 00,272,128 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\Brserid.sys -- (Brserid) Brother MFC Serial Port Interface Driver (WDM)
DRV - [2009-07-14 01:02:41 | 00,018,944 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\rdpbus.sys -- (rdpbus)
DRV - [2009-07-14 01:01:41 | 00,007,168 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\RDPREFMP.sys -- (RDPREFMP)
DRV - [2009-07-14 00:55:00 | 00,049,152 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\agilevpn.sys -- (RasAgileVpn) WAN Miniport (IKEv2)
DRV - [2009-07-14 00:53:51 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\wfplwf.sys -- (WfpLwf)
DRV - [2009-07-14 00:52:44 | 00,027,136 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\ndiscap.sys -- (NdisCap)
DRV - [2009-07-14 00:52:02 | 00,019,968 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\vwifibus.sys -- (vwifibus)
DRV - [2009-07-14 00:52:00 | 00,163,328 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\1394ohci.sys -- (1394ohci)
DRV - [2009-07-14 00:51:35 | 00,008,192 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\umpass.sys -- (UmPass)
DRV - [2009-07-14 00:51:08 | 00,004,096 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\mshidkmdf.sys -- (mshidkmdf)
DRV - [2009-07-14 00:46:55 | 00,012,288 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\MTConfig.sys -- (MTConfig)
DRV - [2009-07-14 00:45:26 | 00,031,232 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\CompositeBus.sys -- (CompositeBus)
DRV - [2009-07-14 00:36:52 | 00,050,176 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\drivers\appid.sys -- (AppID)
DRV - [2009-07-14 00:33:50 | 00,026,624 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\scfilter.sys -- (scfilter)
DRV - [2009-07-14 00:24:05 | 00,032,256 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\drivers\discache.sys -- (discache)
DRV - [2009-07-14 00:19:21 | 00,021,504 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\HidBatt.sys -- (HidBatt)
DRV - [2009-07-14 00:16:36 | 00,009,728 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\acpipmi.sys -- (AcpiPmi)
DRV - [2009-07-14 00:11:04 | 00,052,736 | ---- | M] (Microsoft Corporation) -- C:\Windows\system32\DRIVERS\amdppm.sys -- (AmdPPM)
DRV - [2009-07-13 23:54:14 | 00,026,624 | ---- | M] (Hauppauge Computer Works, Inc.) -- C:\Windows\system32\drivers\hcw85cir.sys -- (hcw85cir)
DRV - [2009-07-13 23:53:33 | 00,012,160 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbMdm.sys -- (BrUsbMdm)
DRV - [2009-07-13 23:53:33 | 00,011,904 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrUsbSer.sys -- (BrUsbSer)
DRV - [2009-07-13 23:53:32 | 00,062,336 | ---- | M] (Brother Industries Ltd.) -- C:\Windows\System32\Drivers\BrSerWdm.sys -- (BrSerWdm)
DRV - [2009-07-13 23:53:28 | 00,013,568 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltLo.sys -- (BrFiltLo)
DRV - [2009-07-13 23:53:28 | 00,005,248 | ---- | M] (Brother Industries, Ltd.) -- C:\Windows\system32\DRIVERS\BrFiltUp.sys -- (BrFiltUp)
DRV - [2009-07-13 23:02:52 | 00,139,776 | ---- | M] (Realtek Corporation ) -- C:\Windows\System32\drivers\Rt86win7.sys -- (RTL8167)
DRV - [2009-07-13 23:02:49 | 00,229,888 | ---- | M] (Broadcom Corporation) -- C:\Windows\System32\drivers\b57nd60x.sys -- (b57nd60x)
DRV - [2009-07-13 23:02:48 | 03,100,160 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\evbdx.sys -- (ebdrv)
DRV - [2009-07-13 23:02:48 | 00,430,080 | ---- | M] (Broadcom Corporation) -- C:\Windows\system32\DRIVERS\bxvbdx.sys -- (b06bdrv)
DRV - [2009-07-13 21:50:20 | 00,020,480 | ---- | M] (Macrovision Corporation, Macrovision Europe Limited, and Macrovision Japan and Asia K.K.) -- C:\Windows\System32\drivers\secdrv.sys -- (secdrv)
DRV - [2009-06-10 22:19:48 | 09,853,248 | ---- | M] (NVIDIA Corporation) -- C:\Windows\System32\drivers\nvlddmkm.sys -- (nvlddmkm)
DRV - [2006-12-05 11:34:42 | 00,507,136 | ---- | M] (PixArt Imaging Inc.) -- C:\Windows\System32\drivers\PFC027.SYS -- (PAC207)
DRV - [2004-08-13 09:56:20 | 00,005,810 | ---- | M] () -- C:\Windows\System32\drivers\ASACPI.sys -- (MTsensor)
[color=#E56717]========== Standard Registry (SafeList) ==========[/color]
[color=#E56717]========== Internet Explorer ==========[/color]
IE - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.ask.com?o=15161&l=dis
IE - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001\S-1-5-21-3966821771-1560413166-1456834172-1001\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0
[color=#E56717]========== FireFox ==========[/color]
FF - prefs.js..browser.search.defaultengine: "Ask.com"
FF - prefs.js..browser.search.defaultenginename: "Ask.com"
FF - prefs.js..browser.search.order.1: "Ask.com"
FF - prefs.js..browser.search.selectedEngine: "Google"
FF - prefs.js..browser.search.useDBForOrder: true
FF - prefs.js..keyword.URL: "http://supertoolbar.ask.com/redirect?client=ff&src=kw&tb=UT2V5&o=15158&locale=en_US&q="
FF - HKLM\software\mozilla\Mozilla Firefox 3.6b3\extensions\\Components: C:\Program Files\Mozilla Firefox 3.6 Beta 3\components [2009-11-30 19:21:36 | 00,000,000 | ---D | M]
FF - HKLM\software\mozilla\Mozilla Firefox 3.6b3\extensions\\Plugins: C:\Program Files\Mozilla Firefox 3.6 Beta 3\plugins [2009-11-30 19:21:35 | 00,000,000 | ---D | M]
[2009-11-29 22:32:09 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\mozilla\Extensions
[2009-11-30 18:00:43 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\mozilla\Firefox\Profiles\97s8g1q3.default\extensions
[2009-11-29 22:41:50 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\mozilla\Firefox\Profiles\97s8g1q3.default\extensions\DTToolbar@toolbarnet.com
[2009-11-30 18:00:39 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\mozilla\Firefox\Profiles\97s8g1q3.default\extensions\toolbar@ask.com
[2009-11-30 18:00:40 | 00,002,257 | ---- | M] () -- C:\Users\kajtek\AppData\Roaming\Mozilla\FireFox\Profiles\97s8g1q3.default\searchplugins\askcom.xml
[2009-11-29 22:41:49 | 00,002,055 | ---- | M] () -- C:\Users\kajtek\AppData\Roaming\Mozilla\FireFox\Profiles\97s8g1q3.default\searchplugins\daemon-search.xml
O1 HOSTS File: (824 bytes) - C:\Windows\System32\drivers\etc\hosts
O2 - BHO: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll (Sun Microsystems, Inc.)
O3 - HKLM\..\Toolbar: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O3 - HKLM\..\Toolbar: (Ask Toolbar) - {D4027C7F-154A-4066-A1AD-4243D8127440} - C:\Program Files\Ask.com\GenericAskToolbar.dll (Ask.com)
O3 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001\..\Toolbar\WebBrowser: (DAEMON Tools Toolbar) - {32099AAC-C132-4136-9E9A-4E364A424E17} - C:\Program Files\DAEMON Tools Toolbar\DTToolbar.dll ()
O4 - HKLM..\Run: [Monitor] C:\Windows\PixArt\Pac207\Monitor.exe (PixArt Imaging Incorporation)
O4 - HKLM..\Run: [SunJavaUpdateSched] C:\Program Files\Java\jre6\bin\jusched.exe (Sun Microsystems, Inc.)
O4 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001..\Run: [DAEMON Tools Lite] C:\Program Files\DAEMON Tools Lite\DTLite.exe (DT Soft Ltd)
O4 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001..\Run: [Gadu-Gadu] C:\Program Files\Gadu-Gadu\gg.exe (Gadu-Gadu S.A.)
O4 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001..\Run: [PlayNC Launcher] File not found
O4 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001..\Run: [Skype] C:\Program Files\Skype\Phone\Skype.exe (Skype Technologies S.A.)
O4 - HKU\S-1-5-21-3966821771-1560413166-1456834172-1001..\Run: [uTorrent] C:\Program Files\uTorrent\uTorrent.exe (BitTorrent, Inc.)
O4 - HKU\S-1-5-19..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O4 - HKU\S-1-5-20..\RunOnce: [mctadmin] C:\Windows\System32\mctadmin.exe (Microsoft Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLUA = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: PromptOnSecureDesktop = 0
O13 - gopher Prefix: missing
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-0016-0000-0017-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_17-windows-i586.cab (Java Plug-in 1.6.0_17)
O16 - DPF: {D27CDB6E-AE6D-11CF-96B8-444553540000} http://fpdownload2.macromedia.com/get/shockwave/cabs/flash/swflash.cab (Shockwave Flash Object)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (SystemPropertiesPerformance.exe) - C:\Windows\System32\SystemPropertiesPerformance.exe (Microsoft Corporation)
O20 - HKLM Winlogon: VMApplet - (/pagefile) - File not found
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - CLSID or File not found.
O30 - LSA: Security Packages - (pku2u) - C:\Windows\System32\pku2u.dll (Microsoft Corporation)
O32 - HKLM CDRom: AutoRun - 1
O32 - AutoRun File - [2009-06-10 22:42:20 | 00,000,024 | ---- | M] () - C:\autoexec.bat -- [ NTFS ]
O32 - AutoRun File - [2009-07-14 11:59:45 | 00,000,043 | R--- | M] () - E:\autorun.inf -- [ UDF ]
O33 - MountPoints2\{21e15e4c-dd30-11de-a5e1-001bfc888efb}\Shell - "" = AutoRun
O33 - MountPoints2\{21e15e4c-dd30-11de-a5e1-001bfc888efb}\Shell\AutoRun\command - "" = F:\Setup.exe -- File not found
O34 - HKLM BootExecute: (autocheck) - File not found
O34 - HKLM BootExecute: (*) - File not found
O35 - comfile [open] -- "%1" %*
O35 - exefile [open] -- "%1" %*
[color=#E56717]========== Files/Folders - Created Within 30 Days ==========[/color]
[2009-11-30 20:08:04 | 00,535,552 | ---- | C] (OldTimer Tools) -- C:\Users\kajtek\Desktop\OTL.exe
[2009-11-30 17:58:02 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\ElevatedDiagnostics
[2009-11-30 17:57:55 | 00,000,000 | ---D | C] -- C:\Windows\PixArt
[2009-11-30 17:55:40 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\skypePM
[2009-11-30 17:54:12 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Skype
[2009-11-30 17:53:52 | 00,000,000 | ---D | C] -- C:\Program Files\Common Files\Skype
[2009-11-30 17:53:51 | 00,000,000 | R--D | C] -- C:\Program Files\Skype
[2009-11-30 17:53:49 | 00,000,000 | ---D | C] -- C:\ProgramData\Skype
[2009-11-30 16:45:15 | 00,000,000 | ---D | C] -- C:\Program Files\Ask.com
[2009-11-30 16:45:05 | 00,000,000 | ---D | C] -- C:\Program Files\uTorrent
[2009-11-30 16:44:53 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\uTorrent
[2009-11-30 16:38:44 | 00,000,000 | ---D | C] -- C:\Program Files\Trend Micro
[2009-11-30 13:11:50 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\assembly
[2009-11-30 13:07:15 | 00,000,000 | ---D | C] -- C:\Program Files\NCSoft
[2009-11-30 13:07:14 | 00,000,000 | -H-D | C] -- C:\Program Files\InstallShield Installation Information
[2009-11-30 13:06:28 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\InstallShield
[2009-11-30 13:06:10 | 00,000,000 | ---D | C] -- C:\Users\kajtek\Documents\BioWare
[2009-11-30 13:00:18 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\LogMeIn Hamachi
[2009-11-30 12:59:47 | 00,000,000 | ---D | C] -- C:\Program Files\LogMeIn Hamachi
[2009-11-30 00:28:58 | 09,249,238 | ---- | C] (Mozilla) -- C:\Users\kajtek\Desktop\Firefox Setup 3.6 Beta 3.exe
[2009-11-29 23:39:37 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\DC++
[2009-11-29 23:39:37 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\DC++
[2009-11-29 23:37:12 | 00,000,000 | ---D | C] -- C:\Windows\Sun
[2009-11-29 23:35:09 | 00,411,368 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2009-11-29 23:35:09 | 00,329,170 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009-11-29 23:35:09 | 00,325,084 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009-11-29 23:35:09 | 00,325,080 | ---- | C] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009-11-29 23:35:04 | 00,000,000 | ---D | C] -- C:\Program Files\Java
[2009-11-29 23:01:13 | 00,373,204 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[2009-11-29 22:46:45 | 00,000,000 | -HSD | C] -- C:\Windows\Installer
[2009-11-29 22:46:20 | 01,974,616 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DCompiler_42.dll
[2009-11-29 22:46:20 | 01,892,184 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\D3DX9_42.dll
[2009-11-29 22:46:20 | 00,515,416 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAudio2_5.dll
[2009-11-29 22:46:20 | 00,081,768 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\xinput1_3.dll
[2009-11-29 22:46:20 | 00,069,464 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\XAPOFX1_3.dll
[2009-11-29 22:46:20 | 00,022,360 | ---- | C] (Microsoft Corporation) -- C:\Windows\System32\X3DAudio1_6.dll
[2009-11-29 22:44:49 | 00,000,000 | ---D | C] -- C:\Program Files\Devolver Digital
[2009-11-29 22:41:49 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Toolbar
[2009-11-29 22:41:22 | 00,000,000 | ---D | C] -- C:\Program Files\DAEMON Tools Lite
[2009-11-29 22:41:15 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\DAEMON Tools Lite
[2009-11-29 22:41:13 | 00,000,000 | ---D | C] -- C:\ProgramData\DAEMON Tools Lite
[2009-11-29 22:39:32 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Gadu-Gadu
[2009-11-29 22:36:37 | 00,000,000 | ---D | C] -- C:\Program Files\WinRAR
[2009-11-29 22:34:35 | 00,000,000 | ---D | C] -- C:\Users\kajtek\Gadu-Gadu
[2009-11-29 22:34:32 | 00,000,000 | ---D | C] -- C:\Program Files\Gadu-Gadu
[2009-11-29 22:33:13 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Macromedia
[2009-11-29 22:33:13 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Adobe
[2009-11-29 22:32:34 | 00,000,000 | ---D | C] -- C:\Windows\System32\Macromed
[2009-11-29 22:32:05 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Mozilla
[2009-11-29 22:32:05 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\Mozilla
[2009-11-29 22:31:57 | 00,000,000 | ---D | C] -- C:\Program Files\Mozilla Firefox 3.6 Beta 3
[2009-11-29 22:31:18 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\BESTplayer
[2009-11-29 22:25:05 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Searches
[2009-11-29 22:24:57 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Identities
[2009-11-29 22:24:56 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Contacts
[2009-11-29 22:24:49 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\VirtualStore
[2009-11-29 22:24:48 | 00,000,000 | --SD | C] -- C:\Users\kajtek\AppData\Roaming\Microsoft
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Videos
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Saved Games
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Pictures
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Music
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Links
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Favorites
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Downloads
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Documents
[2009-11-29 22:24:48 | 00,000,000 | R--D | C] -- C:\Users\kajtek\Desktop
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Ustawienia lokalne
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\AppData\Local\Temporary Internet Files
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Szablony
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\SendTo
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Recent
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\PrintHood
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\NetHood
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Documents\Moje wideo
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Documents\Moje obrazy
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Moje dokumenty
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Documents\Moja muzyka
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Menu Start
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\AppData\Local\Historia
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Dane aplikacji
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\AppData\Local\Dane aplikacji
[2009-11-29 22:24:48 | 00,000,000 | -HSD | C] -- C:\Users\kajtek\Cookies
[2009-11-29 22:24:48 | 00,000,000 | -H-D | C] -- C:\Users\kajtek\AppData
[2009-11-29 22:24:48 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\Temp
[2009-11-29 22:24:48 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Local\Microsoft
[2009-11-29 22:24:48 | 00,000,000 | ---D | C] -- C:\Users\kajtek\AppData\Roaming\Media Center Programs
[2009-11-29 22:24:32 | 00,000,000 | -HSD | C] -- C:\Recovery
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Ulubione
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Szablony
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Pulpit
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje wideo
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moje obrazy
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\Users\Public\Documents\Moja muzyka
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Menu Start
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Dokumenty
[2009-11-29 22:24:31 | 00,000,000 | -HSD | C] -- C:\ProgramData\Dane aplikacji
[2009-11-29 22:20:54 | 00,000,000 | ---D | C] -- C:\Windows\SoftwareDistribution
[2009-11-29 22:18:21 | 00,000,000 | ---D | C] -- C:\Windows\Prefetch
[2009-11-29 22:18:05 | 00,000,000 | -HSD | C] -- C:\System Volume Information
[2009-11-29 22:17:00 | 00,000,000 | ---D | C] -- C:\Windows\Panther
[color=#E56717]========== Files - Modified Within 30 Days ==========[/color]
[2009-11-30 20:11:58 | 01,048,576 | -HS- | M] () -- C:\Users\kajtek\NTUSER.DAT
[2009-11-30 20:08:08 | 00,535,552 | ---- | M] (OldTimer Tools) -- C:\Users\kajtek\Desktop\OTL.exe
[2009-11-30 19:42:54 | 00,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2009-11-30 19:42:54 | 00,009,584 | -H-- | M] () -- C:\Windows\System32\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2009-11-30 19:21:37 | 00,001,992 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox 3.6 Beta 3.lnk
[2009-11-30 17:58:55 | 00,453,695 | ---- | M] () -- C:\Users\kajtek\Desktop\Silent Runners.vbs
[2009-11-30 17:58:00 | 00,000,446 | ---- | M] () -- C:\Windows\win.ini
[2009-11-30 17:55:40 | 00,000,056 | -H-- | M] () -- C:\Windows\System32\ezsidmv.dat
[2009-11-30 17:54:54 | 00,002,043 | ---- | M] () -- C:\Users\kajtek\Desktop\HijackThis.lnk
[2009-11-30 17:53:52 | 00,002,505 | ---- | M] () -- C:\Users\Public\Desktop\Skype.lnk
[2009-11-30 16:45:05 | 00,000,917 | ---- | M] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2009-11-30 14:18:36 | 01,523,412 | ---- | M] () -- C:\Windows\System32\PerfStringBackup.INI
[2009-11-30 14:18:36 | 00,687,590 | ---- | M] () -- C:\Windows\System32\perfh015.dat
[2009-11-30 14:18:36 | 00,606,992 | ---- | M] () -- C:\Windows\System32\perfh009.dat
[2009-11-30 14:18:36 | 00,131,176 | ---- | M] () -- C:\Windows\System32\perfc015.dat
[2009-11-30 14:18:36 | 00,103,370 | ---- | M] () -- C:\Windows\System32\perfc009.dat
[2009-11-30 14:12:51 | 00,000,006 | -H-- | M] () -- C:\Windows\tasks\SA.DAT
[2009-11-30 14:12:45 | 00,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2009-11-30 14:12:43 | 16,099,65568 | -HS- | M] () -- C:\hiberfil.sys
[2009-11-30 13:13:04 | 00,002,014 | ---- | M] () -- C:\Users\kajtek\Desktop\Aion.lnk
[2009-11-30 13:10:50 | 00,001,978 | ---- | M] () -- C:\Users\Public\Desktop\NCsoft Launcher.lnk
[2009-11-29 23:35:05 | 00,411,368 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\deploytk.dll
[2009-11-29 23:35:05 | 00,329,170 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaws.exe
[2009-11-29 23:35:05 | 00,325,084 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\javaw.exe
[2009-11-29 23:35:05 | 00,325,080 | ---- | M] (Sun Microsystems, Inc.) -- C:\Windows\System32\java.exe
[2009-11-29 22:41:53 | 00,915,848 | -H-- | M] () -- C:\Users\kajtek\AppData\Local\IconCache.db
[2009-11-29 22:41:34 | 00,691,696 | ---- | M] () -- C:\Windows\System32\drivers\sptd.sys
[2009-11-29 22:28:58 | 00,524,288 | -HS- | M] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009-11-29 22:28:58 | 00,524,288 | -HS- | M] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009-11-29 22:28:58 | 00,065,536 | -HS- | M] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009-11-29 22:28:25 | 00,000,003 | ---- | M] () -- C:\7Loader.TAG
[2009-11-29 22:26:45 | 00,057,560 | ---- | M] () -- C:\Users\kajtek\AppData\Local\GDIPFONTCACHEV1.DAT
[2009-11-29 22:24:48 | 00,000,020 | -HS- | M] () -- C:\Users\kajtek\ntuser.ini
[2009-11-29 22:21:48 | 00,067,517 | ---- | M] () -- C:\Windows\System32\license.rtf
[2009-11-29 22:18:32 | 00,265,896 | ---- | M] () -- C:\Windows\System32\FNTCACHE.DAT
[2009-11-21 19:23:28 | 09,249,238 | ---- | M] (Mozilla) -- C:\Users\kajtek\Desktop\Firefox Setup 3.6 Beta 3.exe
[2009-11-02 20:42:06 | 00,373,204 | ---- | M] (Microsoft Corporation) -- C:\Windows\System32\MpSigStub.exe
[color=#E56717]========== Files Created - No Company Name ==========[/color]
[2009-11-30 17:58:51 | 00,453,695 | ---- | C] () -- C:\Users\kajtek\Desktop\Silent Runners.vbs
[2009-11-30 17:55:40 | 00,000,056 | -H-- | C] () -- C:\Windows\System32\ezsidmv.dat
[2009-11-30 17:53:52 | 00,002,505 | ---- | C] () -- C:\Users\Public\Desktop\Skype.lnk
[2009-11-30 16:45:05 | 00,000,917 | ---- | C] () -- C:\Users\Public\Desktop\µTorrent.lnk
[2009-11-30 16:38:44 | 00,002,043 | ---- | C] () -- C:\Users\kajtek\Desktop\HijackThis.lnk
[2009-11-30 13:13:04 | 00,002,014 | ---- | C] () -- C:\Users\kajtek\Desktop\Aion.lnk
[2009-11-30 13:10:50 | 00,001,978 | ---- | C] () -- C:\Users\Public\Desktop\NCsoft Launcher.lnk
[2009-11-30 00:29:08 | 00,001,992 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox 3.6 Beta 3.lnk
[2009-11-29 22:41:34 | 00,691,696 | ---- | C] () -- C:\Windows\System32\drivers\sptd.sys
[2009-11-29 22:28:25 | 00,000,003 | ---- | C] () -- C:\7Loader.TAG
[2009-11-29 22:24:48 | 01,048,576 | -HS- | C] () -- C:\Users\kajtek\NTUSER.DAT
[2009-11-29 22:24:48 | 00,524,288 | -HS- | C] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000002.regtrans-ms
[2009-11-29 22:24:48 | 00,524,288 | -HS- | C] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TMContainer00000000000000000001.regtrans-ms
[2009-11-29 22:24:48 | 00,065,536 | -HS- | C] () -- C:\Users\kajtek\NTUSER.DAT{6cced2f1-6e01-11de-8bed-001e0bcd1824}.TM.blf
[2009-11-29 22:24:48 | 00,000,020 | -HS- | C] () -- C:\Users\kajtek\ntuser.ini
[2009-11-29 22:18:05 | 16,099,65568 | -HS- | C] () -- C:\hiberfil.sys
[2009-07-14 00:51:43 | 00,073,728 | ---- | C] () -- C:\Windows\System32\BthpanContextHandler.dll
[2009-07-14 00:42:10 | 00,064,000 | ---- | C] () -- C:\Windows\System32\BWContextHandler.dll
[2006-11-02 09:27:46 | 00,000,518 | ---- | C] () -- C:\Windows\System32\SP207.INI
[2004-08-13 09:56:20 | 00,005,810 | ---- | C] () -- C:\Windows\System32\drivers\ASACPI.sys
[color=#E56717]========== LOP Check ==========[/color]
[2009-11-29 22:32:29 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\BESTplayer
[2009-11-29 22:44:35 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\DAEMON Tools Lite
[2009-11-30 13:04:31 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\DC++
[2009-11-29 22:39:32 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\Gadu-Gadu
[2009-11-30 20:11:43 | 00,000,000 | ---D | M] -- C:\Users\kajtek\AppData\Roaming\uTorrent
[2009-07-14 05:53:46 | 00,001,700 | ---- | M] () -- C:\Windows\Tasks\SCHEDLGU.TXT
[color=#E56717]========== Purity Check ==========[/color]
< End of report >
Extras
- Kod: Zaznacz wszystko
OTL Extras logfile created on: 2009-11-30 20:11:06 - Run 1
OTL by OldTimer - Version 3.1.11.4 Folder = C:\Users\kajtek\Desktop
Home Premium Edition (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7600.16385)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
2,00 Gb Total Physical Memory | 1,29 Gb Available Physical Memory | 64,67% Memory free
4,00 Gb Paging File | 3,06 Gb Available in Paging File | 76,58% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files
Drive C: | 30,24 Gb Total Space | 14,22 Gb Free Space | 47,02% Space Free | Partition Type: NTFS
Drive D: | 202,55 Gb Total Space | 53,17 Gb Free Space | 26,25% Space Free | Partition Type: NTFS
Drive E: | 3,60 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF
F: Drive not present or media not loaded
G: Drive not present or media not loaded
H: Drive not present or media not loaded
I: Drive not present or media not loaded
Computer Name: LOSBURDELOS
Current User Name: kajtek
Logged in as Administrator.
Current Boot Mode: Normal
Scan Mode: All users
Company Name Whitelist: Off
Skip Microsoft Files: Off
File Age = 30 Days
Output = Standard
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
[color=#E56717]========== File Associations ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.chm [@ = chm.file] -- "%SystemRoot%\hh.exe" %1
.cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation)
.hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation)
.html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation)
[HKEY_USERS\S-1-5-21-3966821771-1560413166-1456834172-1001\SOFTWARE\Classes\<extension>]
.html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox 3.6 Beta 3\firefox.exe (Mozilla Corporation)
[color=#E56717]========== Shell Spawning ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
chm.file [open] -- "%SystemRoot%\hh.exe" %1
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation)
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" -nohome (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation)
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation)
[color=#E56717]========== Security Center Settings ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = Reg Error: Unknown registry data type -- File not found
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
[color=#E56717]========== Authorized Applications List ==========[/color]
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{067EC517-9731-43FD-B4D5-296EE0027BBB}" = LogMeIn Hamachi
"{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17
"{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features
"{5F8E2CBB-949D-4175-AC98-5ADE7F6C9697}" = NCsoft Launcher
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar
"{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1
"Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"DAEMON Tools Toolbar" = DAEMON Tools Toolbar
"Gadu-Gadu" = Gadu-Gadu 7.7
"HijackThis" = HijackThis 2.0.2
"LogMeIn Hamachi" = LogMeIn Hamachi
"Mozilla Firefox (3.6b3)" = Mozilla Firefox (3.6b3)
"Serious Sam HD The First Encounter_is1" = Serious Sam HD The First Encounter
"uTorrent" = µTorrent
"WinRAR archiver" = Archiwizator WinRAR
[color=#E56717]========== HKEY_USERS Uninstall List ==========[/color]
[HKEY_USERS\S-1-5-21-3966821771-1560413166-1456834172-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"NCsoft-AionEU" = Aion
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
[ Application Events ]
Error - 2009-11-29 17:28:53 | Computer Name = losburdelos | Source = Software Protection Platform Service | ID = 1017
Description = Instalacja dowodu zakupu nie powiodła się. 0xC004F015 Częściowy klucz
Pkey=P4K27 Identyfikator ACID=7cfd4696-69a9-4af7-af36-ff3d12b6b6c8 Szczegóły błędu[?]
Error - 2009-11-29 17:41:23 | Computer Name = losburdelos | Source = VSS | ID = 8194
Description =
Error - 2009-11-29 17:46:05 | Computer Name = losburdelos | Source = VSS | ID = 8194
Description =
Error - 2009-11-29 17:49:22 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: SamHD.exe, wersja: 3.0.3.0, sygnatura
czasowa: 0x4b0bbb74 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura
czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000 Identyfikator
procesu powodującego błąd: 0xe88 Godzina uruchomienia aplikacji powodującej błąd:
0x01ca713dcf43acf6 Ścieżka aplikacji powodującej błąd: D:\Gry\Serious Sam HD The
First Encounter\Bin\SamHD.exe Ścieżka modułu powodującego błąd: unknown Identyfikator
raportu: 0d3a027f-dd31-11de-a5e1-001bfc888efb
Error - 2009-11-29 19:28:27 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 1.9.2.3606,
sygnatura czasowa: 0x4b00cb0c Nazwa modułu powodującego błąd: firefox.exe, wersja:
1.9.2.3606, sygnatura czasowa: 0x4b00cb0c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x000e0018 Identyfikator procesu powodującego błąd: 0x2b4 Godzina uruchomienia aplikacji
powodującej błąd: 0x01ca714ba634f198 Ścieżka aplikacji powodującej błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Ścieżka modułu powodującego błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Identyfikator raportu: e4b90389-dd3e-11de-a5e1-001bfc888efb
Error - 2009-11-30 08:07:16 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: NCsoftLauncherSetup.exe, wersja:
12.0.0.49974, sygnatura czasowa: 0x4474907b Nazwa modułu powodującego błąd: unknown,
wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x0775d0cc Identyfikator procesu powodującego błąd: 0xe48 Godzina uruchomienia
aplikacji powodującej błąd: 0x01ca71b58a19540b Ścieżka aplikacji powodującej błąd:
D:\Stuff\Instalki\NCsoftLauncherSetup.exe Ścieżka modułu powodującego błąd: unknown
Identyfikator
raportu: e64f05ef-dda8-11de-a5e1-001bfc888efb
Error - 2009-11-30 08:08:19 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: NCsoftLauncherSetup.exe, wersja:
12.0.0.49974, sygnatura czasowa: 0x4474907b Nazwa modułu powodującego błąd: unknown,
wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie
błędu: 0x0775d0cc Identyfikator procesu powodującego błąd: 0xd78 Godzina uruchomienia
aplikacji powodującej błąd: 0x01ca71b5b6b19bad Ścieżka aplikacji powodującej błąd:
D:\Stuff\Instalki\NCsoftLauncherSetup.exe Ścieżka modułu powodującego błąd: unknown
Identyfikator
raportu: 0be21ea2-dda9-11de-a5e1-001bfc888efb
Error - 2009-11-30 09:21:30 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 1.9.2.3606,
sygnatura czasowa: 0x4b00cb0c Nazwa modułu powodującego błąd: firefox.exe, wersja:
1.9.2.3606, sygnatura czasowa: 0x4b00cb0c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x000e0012 Identyfikator procesu powodującego błąd: 0xc78 Godzina uruchomienia aplikacji
powodującej błąd: 0x01ca71c0065c5723 Ścieżka aplikacji powodującej błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Ścieżka modułu powodującego błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Identyfikator raportu: 451f20af-ddb3-11de-8fa6-001bfc888efb
Error - 2009-11-30 14:21:25 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: firefox.exe, wersja: 1.9.2.3606,
sygnatura czasowa: 0x4b00cb0c Nazwa modułu powodującego błąd: firefox.exe, wersja:
1.9.2.3606, sygnatura czasowa: 0x4b00cb0c Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x000e0014 Identyfikator procesu powodującego błąd: 0xdf8 Godzina uruchomienia aplikacji
powodującej błąd: 0x01ca71e9ebdfe172 Ścieżka aplikacji powodującej błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Ścieżka modułu powodującego błąd: C:\Program
Files\Mozilla Firefox 3.6 Beta 3\firefox.exe Identyfikator raportu: 2af18f75-dddd-11de-8fa6-001bfc888efb
Error - 2009-11-30 15:05:01 | Computer Name = losburdelos | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: UpdateTask.exe, wersja: 0.0.0.0,
sygnatura czasowa: 0x4a9ee955 Nazwa modułu powodującego błąd: UpdateTask.exe, wersja:
0.0.0.0, sygnatura czasowa: 0x4a9ee955 Kod wyjątku: 0xc0000005 Przesunięcie błędu:
0x0001a012 Identyfikator procesu powodującego błąd: 0xab0 Godzina uruchomienia aplikacji
powodującej błąd: 0x01ca71f003b882d1 Ścieżka aplikacji powodującej błąd: C:\Program
Files\Ask.com\UpdateTask.exe Ścieżka modułu powodującego błąd: C:\Program Files\Ask.com\UpdateTask.exe
Identyfikator
raportu: 41fc7d92-dde3-11de-8fa6-001bfc888efb
[ System Events ]
Error - 2009-11-30 08:00:06 | Computer Name = losburdelos | Source = Service Control Manager | ID = 7030
Description = Usługa LogMeIn Hamachi 2.0 Tunneling Engine jest oznaczona jako usługa
interakcyjna. System jest jednak skonfigurowany tak, aby nie zezwalać na usługi
interakcyjne, dlatego ta usługa może nie działać właściwie.
Error - 2009-11-30 08:00:06 | Computer Name = losburdelos | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
z usługą LogMeIn Hamachi 2.0 Tunneling Engine.
Error - 2009-11-30 08:00:06 | Computer Name = losburdelos | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi LogMeIn Hamachi 2.0 Tunneling Engine z
powodu następującego błędu: %%1053
Error - 2009-11-30 08:02:12 | Computer Name = losburdelos | Source = bowser | ID = 8003
Description =
Error - 2009-11-30 09:12:49 | Computer Name = losburdelos | Source = EventLog | ID = 6008
Description = Poprzednie zamknięcie systemu przy 14:10:49 na ?2009-?11-?30 było
nieoczekiwane.
Error - 2009-11-30 13:14:57 | Computer Name = losburdelos | Source = NetBT | ID = 4319
Description = W sieci TCP wykryto zduplikowaną nazwę. Adres IP komputera, który
wysłał wiadomość, przedstawiono w danych. Użyj polecenia nbtstat -n w oknie wiersza
polecenia, aby stwierdzić, która nazwa znajduje się w stanie konfliktu.
Error - 2009-11-30 13:14:58 | Computer Name = losburdelos | Source = NetBT | ID = 4319
Description = W sieci TCP wykryto zduplikowaną nazwę. Adres IP komputera, który
wysłał wiadomość, przedstawiono w danych. Użyj polecenia nbtstat -n w oknie wiersza
polecenia, aby stwierdzić, która nazwa znajduje się w stanie konfliktu.
Error - 2009-11-30 13:14:59 | Computer Name = losburdelos | Source = bowser | ID = 8003
Description =
< End of report >
zaraz poprawie
no trudno, co poradzić. Dzięki za pomoc, masz plusika ode mnie 
