OTL Extras logfile created on: 2012-03-17 18:04:57 - Run 1 OTL by OldTimer - Version 3.2.39.1 Folder = D:\Documents and Settings\smo\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,82 Gb Available Physical Memory | 40,90% Memory free 3,85 Gb Paging File | 2,49 Gb Available in Paging File | 64,80% Paging File free Paging file location(s): D:\pagefile.sys 2048 2048 [binary data] %SystemDrive% = D: | %SystemRoot% = D:\WINDOWS | %ProgramFiles% = D:\Program Files Drive C: | 30,27 Gb Total Space | 24,27 Gb Free Space | 80,18% Space Free | Partition Type: NTFS Drive D: | 34,47 Gb Total Space | 14,96 Gb Free Space | 43,39% Space Free | Partition Type: NTFS Drive E: | 40,04 Gb Total Space | 5,10 Gb Free Space | 12,75% Space Free | Partition Type: NTFS Drive F: | 30,27 Gb Total Space | 29,25 Gb Free Space | 96,61% Space Free | Partition Type: NTFS Drive G: | 40,04 Gb Total Space | 7,35 Gb Free Space | 18,37% Space Free | Partition Type: NTFS Drive H: | 20,51 Gb Total Space | 15,13 Gb Free Space | 73,74% Space Free | Partition Type: NTFS Drive I: | 40,04 Gb Total Space | 25,84 Gb Free Space | 64,54% Space Free | Partition Type: NTFS Drive J: | 40,04 Gb Total Space | 35,88 Gb Free Space | 89,61% Space Free | Partition Type: NTFS Drive K: | 40,04 Gb Total Space | 35,79 Gb Free Space | 89,37% Space Free | Partition Type: NTFS Drive L: | 59,57 Gb Total Space | 40,60 Gb Free Space | 68,15% Space Free | Partition Type: NTFS Drive M: | 49,81 Gb Total Space | 32,60 Gb Free Space | 65,45% Space Free | Partition Type: NTFS Drive N: | 44,84 Gb Total Space | 37,60 Gb Free Space | 83,87% Space Free | Partition Type: NTFS Drive P: | 298,08 Gb Total Space | 89,82 Gb Free Space | 30,13% Space Free | Partition Type: NTFS Drive R: | 27,35 Gb Total Space | 19,51 Gb Free Space | 71,33% Space Free | Partition Type: NTFS Drive X: | 298,08 Gb Total Space | 84,36 Gb Free Space | 28,30% Space Free | Partition Type: NTFS Computer Name: BLACKV8 | User Name: smo | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = Opera.HTML] -- D:\Program Files\Opera\Opera.exe (Opera Software) .inf [@ = inffile] -- D:\WINDOWS\System32\NOTEPAD.EXE (Don HO don.h@free.fr) .ini [@ = inifile] -- D:\WINDOWS\System32\NOTEPAD.EXE (Don HO don.h@free.fr) .txt [@ = txtfile] -- D:\Documents and Settings\smo\Moje dokumenty\PitPad.exe (Szczepanik.org) [HKEY_USERS\S-1-5-21-1606980848-1770027372-1801674531-1002\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Don HO don.h@free.fr) batfile [open] -- "%1" %* batfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) cmdfile [edit] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Don HO don.h@free.fr) cmdfile [open] -- "%1" %* cmdfile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "D:\Program Files\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "D:\Program Files\Opera\Opera.exe" "%1" (Opera Software) inffile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Don HO don.h@free.fr) inffile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) inifile [open] -- %SystemRoot%\System32\NOTEPAD.EXE %1 (Don HO don.h@free.fr) inifile [print] -- %SystemRoot%\System32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) jsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Don HO don.h@free.fr) jsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Don HO don.h@free.fr) jsefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Don HO don.h@free.fr) jsefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Don HO don.h@free.fr) piffile [open] -- "%1" %* regfile [edit] -- %SystemRoot%\system32\NOTEPAD.EXE %1 (Don HO don.h@free.fr) regfile [merge] -- Reg Error: Key error. regfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. txtfile [open] -- "D:\Documents and Settings\smo\Moje dokumenty\PitPad.exe" "%1" (Szczepanik.org) txtfile [print] -- %SystemRoot%\system32\NOTEPAD.EXE /p %1 (Don HO don.h@free.fr) txtfile [printto] -- %SystemRoot%\system32\notepad.exe /pt "%1" "%2" "%3" "%4" (Don HO don.h@free.fr) vbefile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Don HO don.h@free.fr) vbefile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Don HO don.h@free.fr) vbsfile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Don HO don.h@free.fr) vbsfile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Don HO don.h@free.fr) wsffile [edit] -- %SystemRoot%\System32\Notepad.exe %1 (Don HO don.h@free.fr) wsffile [print] -- %SystemRoot%\System32\Notepad.exe /p %1 (Don HO don.h@free.fr) Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [opennew] -- explorer.exe %1 (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "UpdatesDisableNotify" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "D:\Program Files\Winamp\winamp.exe" = D:\Program Files\Winamp\winamp.exe:*:Enabled:Winamp -- (Nullsoft, Inc.) "D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe" = D:\Program Files\IVT Corporation\BlueSoleil\BlueSoleilCS.exe:*:Enabled:BlueSoleilCS -- () "D:\Program Files\Opera\opera.exe" = D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software) "D:\Program Files\uTorrent\uTorrent.exe" = D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "D:\Program Files\IDriveWindows\idwutil_501.exe" = D:\Program Files\IDriveWindows\idwutil_501.exe:*:Enabled:idwutil_501 "D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe" = D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe:*:Enabled:SMC Service -- (Symantec Corporation) "D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\snac.exe" = D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\snac.exe:*:Enabled:SNAC Service -- (Symantec Corporation) "D:\Program Files\VMware\VMware Workstation\vmware-authd.exe" = D:\Program Files\VMware\VMware Workstation\vmware-authd.exe:*:Enabled:VMware Authd Service -- (VMware, Inc.) "D:\Program Files\VMware\VMware Workstation\vmware-hostd.exe" = D:\Program Files\VMware\VMware Workstation\vmware-hostd.exe:*:Enabled:VMware Workstation Server -- () [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{003BFBBD-6C67-419E-A24D-0DCAFC3A5249}" = tools-freebsd "{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518) "{0A0CADCF-78DA-33C4-A350-CD51849B9702}" = Microsoft .NET Framework 4 Extended "{0D94F75A-0EA6-4951-B3AF-B145FA9E05C6}" = VMware Workstation "{168F7651-422E-44A5-A5FA-D84441CCACC6}" = Symantec Endpoint Protection "{18F11181-EA1A-42AE-AF89-4867C7F7A6FA}" = Sound Blaster X-Fi "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{197597A7-AD33-4898-9D8E-73066818B464}" = tools-netware "{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks v.0.6.7 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{23170F69-40C1-2701-0920-000001000000}" = 7-Zip 9.20 "{23D6630B-7538-483B-8B27-6452AE3BA628}" = ExtremeCopy "{26A24AE4-039D-4CA4-87B4-2F83216022F0}" = Java(TM) 6 Update 22 "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{2AFF2951-86B1-3C53-B34D-B440F11E7D0A}" = Microsoft .NET Framework 2.0 Service Pack 2 Language Pack - PLK "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{45A66726-69BC-466B-A7A4-12FCBA4883D7}" = HiJackThis "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5A0DDC27-88E5-3CAD-BC3D-28FFD05CA6B9}" = Microsoft .NET Framework 3.0 Service Pack 2 Language Pack - PLK "{611E3800-CE31-4953-8AD4-5657B6EE7ACF}" = Oracle VM VirtualBox 4.1.8 "{63886E34-F9F8-378B-A7FB-710C6ED9AAEB}" = ATI Catalyst Install Manager "{679068CA-C9E9-4C22-A90D-2C4F2881EF9C}" = Bluesoleil 6.2.227.11 "{7236672F-6430-439E-9B27-27EDEAF1D676}" = Diagnostic Utility "{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable "{782B6053-CEF0-432D-94CC-EA2CB5CAF587}" = RAM Kontroler "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{9757062A-CF62-47C3-B649-C91BBB8CA9DE}" = VmciSockets "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9CF6A157-F0E8-4216-B229-C0CA8204BE2C}_is1" = Copy Handler 1.32Final "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{9FD6F1A8-5550-46AF-8509-271DF0E768B5}" = Dual-Core Optimizer "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A92D7264-1A13-45BE-B769-88445DD04FD6}" = Desktop Sidebar "{AB1C87CB-1807-4CF0-B4C2-CEE14C18CDB4}" = tools-solaris "{AD483998-2E9A-4405-83FF-6E503AF49CBB}" = Microsoft Virtual PC 2007 SP1 "{AE0F62A7-A1A2-407F-9F4C-48939BD9AD8D}" = tools-winPre2k "{AFE83615-88BE-47F6-B3E4-A3FEF8B7B57F}_is1" = xrecode II 1.0.0.187 "{B26B00DA-2E5D-4CF2-83C5-911198C0F009}" = GoodSync "{BB05D173-9681-4812-A7FA-BD4042A3DA00}" = Alky for Applications (Windows XP) "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C151CE54-E7EA-4804-854B-F515368B0798}" = AMD Processor Driver "{C9BED750-1211-4480-B1A5-718A3BE15525}" = REALTEK GbE & FE Ethernet PCI-E NIC Driver "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D102611A-6466-4101-A51D-51069303AC65}" = tools-linux "{D3A80508-CD83-4CA3-8671-914A1BC78B61}" = Microsoft Sync Framework 2.0 Provider Services (x86) ENU "{DD070C1A-30D4-4344-8F67-986468D0A65E}" = TuneUp Utilities Language Pack (pl-PL) "{DE59B901-18EA-4CB9-ADE4-291BF5C1E12E}_is1" = MiniTool Partition Wizard Home Edition 7.0 "{DF6A13C0-77DF-41FE-BD05-6D5201EB0CE7}_is1" = Auslogics Disk Defrag "{E9ECF354-2422-4FDB-9ABF-D8ADAC0EF941}" = Styler "{EB87675F-5281-4767-A54B-31931794C23D}" = OpenOffice.org 3.3 "{FF63121D-91C6-42CC-B341-F1AA729728E7}" = Microsoft Sync Framework 2.0 Core Components (x86) ENU "{FFD9383C-01D5-4897-A954-43AF599AED30}" = tools-windows "3.0.100.39_is1" = Disktrix UltimateDefrag 3.0 "6A1545AE87FC8D98ACA7539CE7AA69DF2A5C7E1C" = Pakiet sterowników systemu Windows - Advanced Micro Devices (AmdK8) Processor (05/27/2006 1.3.2.0) "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Advanced Disk Catalog" = Advanced Disk Catalog "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition wersja 2.00.1700 "AIMP3" = AIMP3 "ALSong_is1" = ALSong "ALUpdate_is1" = ALTools Update "Apex Video Converter Super_is1" = Apex Video Converter Super 6.44 "Ashampoo Burning Studio 11_is1" = Ashampoo Burning Studio 11 v.11.0.4 "Cacheman" = Cacheman 7.0 "CCleaner" = CCleaner "Cheat Engine 6.1_is1" = Cheat Engine 6.1 "CPLBonus" = Kels' CPL Bonus Pack! "Digital Audio Editor_is1" = Digital Audio Editor v7.6.0.228 "DragonUnPACKer5_is1" = Dragon UnPACKer 5 "FLAC To MP3_is1" = FLAC To MP3 V4.0.4 "Foxit Reader_is1" = Foxit Reader 5.1 "Free Download Manager_is1" = Free Download Manager 3.0 "FreeArc" = FreeArc 0.666 "GMailFS" = GMail Drive Shell Extension "GoldWave v5.57" = GoldWave v5.57 "ie8" = Windows Internet Explorer 8 "IrfanView" = IrfanView (remove only) "JetBee_is1" = JetBee FREE 5.1.2 (build 456) "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 6.9.0 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Mozilla Firefox 10.0.2 (x86 pl)" = Mozilla Firefox 10.0.2 (x86 pl) "Nero8Lite_is1" = Nero 8 Micro 8.3.6.0 "NVIDIA Display Control Panel" = NVIDIA Display Control Panel "NVIDIA Drivers" = NVIDIA Drivers "NVIDIA nView Desktop Manager" = NVIDIA nView Desktop Manager "Opera 11.61.1250" = Opera 11.61 "Puran Defrag Free Edition_is1" = Puran Defrag Free Edition 7.3 "QuicktimeAlt_is1" = QuickTime Alternative 3.2.2 "RADVideo" = RAD Video Tools "RealAlt_is1" = Real Alternative 2.0.2 "Rigs of Rods 0.38.33" = Rigs of Rods 0.38.33 "Sandboxie" = Sandboxie 3.56 (32-bit) "SysInfo" = Creative System Information "TagScanner_is1" = TagScanner 4.9 build 492 "TC UP" = Total Commander Ultima Prime 5.3.0.0 "Trade Mania 1.00" = Trade Mania 1.00 "Trojan Remover_is1" = Trojan Remover 6.8.3 "Ultra Video Converter_is1" = Ultra Video Converter 5.1.0108 "Ultra Video Joiner_is1" = Ultra Video Joiner 6.1.0108 "Ultra Video Splitter_is1" = Ultra Video Splitter 6.0.1201 "UltraDefrag" = Ultra Defragmenter "UltraISO_is1" = UltraISO wersja v9.5.1 "Uninstall Tool_is1" = Uninstall Tool "Universal Extractor_is1" = Universal Extractor 1.6.1 "Unlocker" = Unlocker 1.8.7 "uTorrent" = µTorrent "Vista Drive Icon" = Vista Drive Icon 1.4 "VMware_Workstation" = VMware Workstation "WheelMouse" = Smart-X7 7.72 "Winamp" = Winamp "WinRAR archiver" = WinRAR 4.00 (32-bitowy) "xp-AntiSpy" = xp-AntiSpy 3.97-10 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1606980848-1770027372-1801674531-1002\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome "SugarSync" = SugarSync Manager "Winamp Detect" = Winamp Detector Plug-in [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-03-17 10:45:30 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: SYSTEM Podjęte działanie: Data znalezienia: 17 marca 2012 15:45:30 Error - 2012-03-17 10:45:34 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\PROGRAM FILES\JAVA\JRE6\BIN\JQS.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\SavUI.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: SYSTEM Podjęte działanie: Data znalezienia: 17 marca 2012 15:45:34 Error - 2012-03-17 11:59:53 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\WINDOWS\SYSTEM32\DRWTSN32.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: smo Podjęte działanie: Data znalezienia: 17 marca 2012 16:59:53 Error - 2012-03-17 11:59:53 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\WINDOWS\SYSTEM32\DRWTSN32.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: smo Podjęte działanie: Data znalezienia: 17 marca 2012 16:59:53 Error - 2012-03-17 11:59:53 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\WINDOWS\SYSTEM32\DRWTSN32.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: smo Podjęte działanie: Data znalezienia: 17 marca 2012 16:59:53 Error - 2012-03-17 12:47:45 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\DOCUMENTS AND SETTINGS\SMO\PULPIT\FILEMON.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\ccSvcHst.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: smo Podjęte działanie: Data znalezienia: 17 marca 2012 17:47:45 Error - 2012-03-17 12:48:14 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711725 Description = Typ skanowania: skanowanie Ochrona przed naruszeniem integralności Zdarzenie: Wykryto zagrożenie bezpieczeństwa: D:\DOCUMENTS AND SETTINGS\SMO\PULPIT\FILEMON.EXE Plik: D:\Program Files\Symantec\Symantec Endpoint Protection\12.1.671.4971.105\Bin\Smc.exe Lokalizacja: Usunięto lub zablokowano dostęp Komputer: BLACKV8 Użytkownik: smo Podjęte działanie: Data znalezienia: 17 marca 2012 17:48:14 Error - 2012-03-17 13:09:15 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711731 Description = Znaleziono zagrożenie bezpieczeństwa!WS.Reputation.1 w pliku: D:\Documents and Settings\smo\Pulpit\OTS.com przez: Automatyczna ochrona skanowań. Działanie: Kwarantanna zakończone pomyślnie : Odmowa dostępu. Opis działania: Plik pomyślnie objęto kwarantanną. Error - 2012-03-17 13:09:24 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711731 Description = Znaleziono zagrożenie bezpieczeństwa!WS.Reputation.1 w pliku: D:\Documents and Settings\smo\Pulpit\OTS (1).com przez: Automatyczna ochrona skanowań. Działanie: Kwarantanna zakończone pomyślnie : Odmowa dostępu. Opis działania: Plik pomyślnie objęto kwarantanną. Error - 2012-03-17 13:09:32 | Computer Name = BLACKV8 | Source = Symantec AntiVirus | ID = 16711731 Description = Znaleziono zagrożenie bezpieczeństwa!WS.Reputation.1 w pliku: D:\Documents and Settings\smo\Pulpit\OTS.exe przez: Automatyczna ochrona skanowań. Działanie: Kwarantanna zakończone pomyślnie : Odmowa dostępu. Opis działania: Plik pomyślnie objęto kwarantanną. [ System Events ] Error - 2011-11-18 07:13:38 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:13:46 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:13:55 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:01 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:10 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:18 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:25 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:33 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:41 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2011-11-18 07:14:48 | Computer Name = BLACKV8 | Source = Cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. < End of report >