OTL Extras logfile created on: 2011-11-05 12:34:06 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\magda\Desktop\Downloads Windows Vista Home Basic Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 893,45 Mb Total Physical Memory | 384,80 Mb Available Physical Memory | 43,07% Memory free 2,00 Gb Paging File | 1,43 Gb Available in Paging File | 71,53% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 43,96 Gb Total Space | 21,57 Gb Free Space | 49,05% Space Free | Partition Type: NTFS Drive D: | 10,46 Gb Total Space | 3,05 Gb Free Space | 29,19% Space Free | Partition Type: NTFS Computer Name: MAGDA-PC | User Name: magda | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-2754268946-846393241-3050299697-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{904E8B37-5206-49B5-8A8D-3D75ECA2383E}" = protocol=6 | dir=in | app=c:\users\magda\appdata\local\temp\7zsb3f9.tmp\symnrt.exe | "{C89A1A2C-4505-4C24-BDFC-20E9A6E8877A}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{DE5882F0-731E-4454-8641-BB37A346BF3E}" = protocol=17 | dir=in | app=c:\users\magda\appdata\local\temp\7zsb3f9.tmp\symnrt.exe | "{F0186A29-C459-4F97-AAB5-0553F3F3E620}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0141D498-16DA-4221-A529-1D7A64BE8B05}" = OpenOffice.org 3.3 "{05BFB060-4F22-4710-B0A2-2801A1B606C5}" = Microsoft Antimalware "{10E1E87C-656C-4D08-86D6-5443D28583BE}" = TrayApp "{1753255A-0AEB-4220-8C75-607B73F0C133}" = Copy "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{22466889-7642-488d-AA0E-F619704CF7AB}" = DeviceDiscovery "{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v1.5.2.3456 "{26A24AE4-039D-4CA4-87B4-2F83217000FF}" = Java(TM) 7 "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Program instalacyjny sterownika Atheros "{29FA38B4-0AE4-4D0D-8A51-6165BB990BB0}" = WebReg "{2F28B3C9-2C89-4206-8B33-8ADC9577C49B}" = Scan "{43592B2E-C393-433F-8D0E-5A4B15A8C786}" = Microsoft Antimalware Service PL-PL Language Pack "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{50779A29-834E-4E36-BBEB-B7CABC67A825}" = Microsoft Security Client PL-PL Language Pack "{543E938C-BDC4-4933-A612-01293996845F}" = UnloadSupport "{54B6DC7D-8C5B-4DFB-BC15-C010A3326B2B}" = Microsoft Security Client "{55A41219-9B22-4098-BAE7-AE289B3C569A}_is1" = Panda USB Vaccine 1.0.1.4 "{66E6CE0C-5A1E-430C-B40A-0C90FF1804A8}" = eSupportQFolder "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{985F828E-0E98-429F-9C05-EF3BDE7568F7}" = Paragon Drive Backup™ 9.0 Free Edition "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{A6B90148-02C5-4fd3-8D7A-EF2386835CB9}" = F4100_Help "{A6C265BE-E2C1-483e-843D-6B4C1E912AE0}" = F4100 "{AB5D51AE-EBC3-438D-872C-705C7C2084B0}" = DeviceManagementQFolder "{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.1) - Polish "{AEA07F97-9088-497c-8821-0F36BD5DC251}" = HPProductAssistant "{AF7FC1CA-79DF-43c3-90A3-33EFEB9294CE}" = AIO_Scan "{B4509BCE-7BAD-4a8c-B1AE-4D0CE7467C42}" = F4100_doccd "{B4F35A00-24FD-4fb3-BF5E-413D5423434D}" = DJ_AIO_Software_min "{B5FDA445-CAC4-4BA6-A8FB-A7212BD439DE}" = Microsoft XML Parser "{BCD6CD1A-0DBE-412E-9F25-3B500D1E6BA1}" = SolutionCenter "{CA50045C-5119-48e7-9BA7-6B317379857A}" = DJ_AIO_Software "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D0E39A1D-0CEE-4D85-B4A2-E3BE990D075E}" = Destination Component "{E2662C24-B31E-4349-A084-32EB76E8B760}" = BufferChm "{E548726E-F4E8-459f-BAB8-45551BC071E9}" = DJ_AIO_ProductContext "{E9C18EBD-85BE-47D0-AA73-3FEDCC976B04}" = Toolbox "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F1E63043-54FC-429B-AB2C-31AF9FBA4BC7}" = 32 Bit HP CIO Components Installer "{FA8A44D7-3E8A-4034-9C4F-088FA6B72BC4}" = HP Deskjet All-In-One Software 9.0 "{FD8D8B04-BEAD-4A55-AA1D-62D2373E7DEA}" = Status "7-Zip" = 7-Zip 9.20 "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Agere Systems Soft Modem" = TOSHIBA Software Modem "CCleaner" = CCleaner "DAEMON Tools Lite" = DAEMON Tools Lite "HP Imaging Device Functions" = HP Imaging Device Functions 9.0 "HP Solution Center & Imaging Support Tools" = HP Solution Center 9.0 "KeyScrambler" = KeyScrambler "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware wersja 1.51.2.1300 "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft Security Client" = Microsoft Security Essentials "Mozilla Firefox 7.0.1 (x86 pl)" = Mozilla Firefox 7.0.1 (x86 pl) "Puran Defrag Free Edition_is1" = Puran Defrag Free Edition 7.3 "SynTPDeinstKey" = Synaptics Pointing Device Driver "uTorrent" = µTorrent "Wondershare Time Freeze_is1" = Wondershare Time Freeze [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2754268946-846393241-3050299697-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Flux" = F.lux [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2011-11-04 18:51:05 | Computer Name = magda-PC | Source = EventSystem | ID = 4621 Description = Error - 2011-11-04 21:13:06 | Computer Name = magda-PC | Source = .NET Runtime Optimization Service | ID = 1111 Description = Error - 2011-11-04 21:31:07 | Computer Name = magda-PC | Source = EventSystem | ID = 4621 Description = Error - 2011-11-05 02:06:56 | Computer Name = magda-PC | Source = .NET Runtime Optimization Service | ID = 1111 Description = Error - 2011-11-05 02:29:30 | Computer Name = magda-PC | Source = EventSystem | ID = 4621 Description = Error - 2011-11-05 04:02:33 | Computer Name = magda-PC | Source = .NET Runtime Optimization Service | ID = 1111 Description = Error - 2011-11-05 07:21:33 | Computer Name = magda-PC | Source = EventSystem | ID = 4621 Description = Error - 2011-11-05 07:25:19 | Computer Name = magda-PC | Source = .NET Runtime Optimization Service | ID = 1111 Description = Error - 2011-11-05 07:29:46 | Computer Name = magda-PC | Source = EventSystem | ID = 4621 Description = Error - 2011-11-05 07:33:37 | Computer Name = magda-PC | Source = .NET Runtime Optimization Service | ID = 1111 Description = [ System Events ] Error - 2011-07-20 08:04:31 | Computer Name = magda-PC | Source = R300 | ID = 43015 Description = Error - 2011-07-20 08:04:31 | Computer Name = magda-PC | Source = R300 | ID = 43015 Description = Error - 2011-07-20 08:05:47 | Computer Name = magda-PC | Source = HTTP | ID = 15016 Description = Error - 2011-07-20 08:06:19 | Computer Name = magda-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2011-07-20 08:11:07 | Computer Name = magda-PC | Source = Microsoft-Windows-Eventlog | ID = 30 Description = Error - 2011-07-20 08:18:03 | Computer Name = magda-PC | Source = DCOM | ID = 10010 Description = Error - 2011-07-20 08:23:36 | Computer Name = magda-PC | Source = R300 | ID = 43015 Description = Error - 2011-07-20 08:23:36 | Computer Name = magda-PC | Source = R300 | ID = 43015 Description = Error - 2011-07-20 08:24:23 | Computer Name = magda-PC | Source = HTTP | ID = 15016 Description = Error - 2011-07-20 08:25:10 | Computer Name = magda-PC | Source = Service Control Manager | ID = 7000 Description = < End of report >