OTL Extras logfile created on: 2012-01-13 19:53:20 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Documents and Settings\admin\Pulpit Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 767,48 Mb Total Physical Memory | 385,80 Mb Available Physical Memory | 50,27% Memory free 1,83 Gb Paging File | 1,40 Gb Available in Paging File | 76,74% Paging File free Paging file location(s): C:\pagefile.sys 1152 2304 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 19,53 Gb Total Space | 11,54 Gb Free Space | 59,08% Space Free | Partition Type: NTFS Drive D: | 24,41 Gb Total Space | 19,56 Gb Free Space | 80,12% Space Free | Partition Type: NTFS Drive E: | 17,76 Gb Total Space | 14,39 Gb Free Space | 81,02% Space Free | Partition Type: NTFS Drive F: | 24,41 Gb Total Space | 13,58 Gb Free Space | 55,60% Space Free | Partition Type: NTFS Drive G: | 25,72 Gb Total Space | 16,58 Gb Free Space | 64,47% Space Free | Partition Type: NTFS Computer Name: VOYAGER | User Name: admin | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-839522115-1935655697-854245398-1003\SOFTWARE\Classes\] .html [@ = Opera.HTML] -- D:\Program Files\Opera\Opera.exe (Opera Software) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "D:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft, Inc.) Directory [Winamp.Enqueue] -- "D:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft, Inc.) Directory [Winamp.Play] -- "D:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft, Inc.) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "AntiVirusDisableNotify" = 1 "FirewallDisableNotify" = 1 "UpdatesDisableNotify" = 1 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 "" = [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "D:\Program Files\K2T\WTW\wtw.exe" = D:\Program Files\K2T\WTW\wtw.exe:*:Enabled:WTW Instant Messenger -- (K2T.eu, Kaworu) "D:\Program Files\Steam\Steam.exe" = D:\Program Files\Steam\Steam.exe:*:Enabled:Steam -- (Valve Corporation) "D:\Program Files\uTorrent\uTorrent.exe" = D:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "D:\Program Files\Opera\opera.exe" = D:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software) "C:\Program Files\PANDORA.TV\PanService\PandoraService.exe" = C:\Program Files\PANDORA.TV\PanService\PandoraService.exe:*:Enabled:PandoraService "D:\Program Files\Steam\steamapps\callousnes\half-life\hl.exe" = D:\Program Files\Steam\steamapps\callousnes\half-life\hl.exe:*:Enabled:Half-Life -- (Valve) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{1DF5019A-68B5-4ba1-8E59-E185C7B7FF11}" = Komunikator WTW 0.9.0.3202 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{6580C5A3-2336-4EC5-85F1-3448C5F6208A}" = Kaspersky Anti-Virus 2009 "{7E20EFE6-E604-48C6-8B39-BA4742F2CDB4}" = Zune Desktop Theme "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish "{EB87675F-5281-4767-A54B-31931794C23D}" = OpenOffice.org 3.3 "{F39B81FD-A029-4199-93CE-2A14B63E0C79}" = Gigabyte Client Installation Program "7-Zip" = 7-Zip 9.20 "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Ares" = Ares 2.1.7 "CCleaner" = CCleaner "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-11-11 "Google Chrome" = Google Chrome "ie8" = Windows Internet Explorer 8 "InstallWIX_{6580C5A3-2336-4EC5-85F1-3448C5F6208A}" = Kaspersky Anti-Virus 2009 "LastFM_is1" = Last.fm 1.5.4.27091 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.60.0.1800 "Mathcad7DemoUninstallKey" = Mathcad 7 Explorer "Mozilla Firefox 9.0.1 (x86 pl)" = Mozilla Firefox 9.0.1 (x86 pl) "NVIDIA Drivers" = NVIDIA Drivers "Opera 11.60.1185" = Opera 11.60 "RealAlt_is1" = Real Alternative 2.0.2 "Steam App 70" = Half-Life "uTorrent" = µTorrent "Windows XP Service Pack" = Windows XP Service Pack 3 "WinRAR archiver" = WinRAR 4.01 (32-bitowy) [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-01-12 06:39:50 | Computer Name = VOYAGER | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd winavi 9.0.exe, wersja 0.0.0.0, moduł powodujący błąd mmtranslation.dll, wersja 8.0.0.0, adres błędu 0x000349b7. Error - 2012-01-12 08:20:36 | Computer Name = VOYAGER | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd winavi 9.0.exe, wersja 0.0.0.0, moduł powodujący błąd mmtranslation.dll, wersja 8.0.0.0, adres błędu 0x00034921. [ System Events ] Error - 2012-01-13 14:17:14 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:17:30 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:26:19 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:30:53 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:30:54 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:37:43 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:38:39 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7034 Description = Usługa MBAMService niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2012-01-13 14:38:50 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 14:59:33 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 Error - 2012-01-13 15:08:13 | Computer Name = VOYAGER | Source = Service Control Manager | ID = 7023 Description = Usługa Rozpoznawanie lokalizacji w sieci (NLA) zakończyła działanie; wystąpił następujący błąd: %%127 < End of report >