OTL Extras logfile created on: 2010-10-09 01:23:34 - Run 1 OTL by OldTimer - Version 3.2.10.0 Folder = H:\AV nowe Windows XP Professional Edition Dodatek Service Pack 2 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.2180) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 767,00 Mb Total Physical Memory | 439,00 Mb Available Physical Memory | 57,00% Memory free 1,00 Gb Paging File | 1,00 Gb Available in Paging File | 80,00% Paging File free Paging file location(s): C:\pagefile.sys 512 512 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WIN_XP | %ProgramFiles% = C:\Program Files Drive C: | 25,69 Gb Total Space | 3,04 Gb Free Space | 11,83% Space Free | Partition Type: NTFS D: Drive not present or media not loaded E: Drive not present or media not loaded F: Drive not present or media not loaded Drive G: | 24,41 Gb Total Space | 4,42 Gb Free Space | 18,09% Space Free | Partition Type: NTFS Drive H: | 1,87 Gb Total Space | 1,71 Gb Free Space | 91,26% Space Free | Partition Type: FAT I: Drive not present or media not loaded Computer Name: MARCIN Current User Name: Administrator Logged in as Administrator. Current Boot Mode: Normal Scan Mode: All users Company Name Whitelist: Off Skip Microsoft Files: Off File Age = 30 Days Output = Standard [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) .scr [@ = Reg Error: Key error.] -- Reg Error: Key error. File not found [HKEY_USERS\S-1-5-21-57989841-839522115-682003330-500\SOFTWARE\Classes\] .scr [@ = DWGTrueViewScriptFile] -- "" "%1" [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* htmlfile [edit] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Program Files\Microsoft Office\OFFICE11\msohtmed.exe" /p %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation) https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l (Microsoft Corporation) scrfile [open] -- Reg Error: Value error. txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:*:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:*:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:*:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:*:Enabled:@xpsp2res.dll,-22002 "3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] "139:TCP" = 139:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22004 "445:TCP" = 445:TCP:LocalSubNet:Enabled:@xpsp2res.dll,-22005 "137:UDP" = 137:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22001 "138:UDP" = 138:UDP:LocalSubNet:Enabled:@xpsp2res.dll,-22002 "4662:TCP" = 4662:TCP:*:Enabled:emule Incomming "4672:UDP" = 4672:UDP:*:Enabled:Udp Incomming "3389:TCP" = 3389:TCP:*:Disabled:@xpsp2res.dll,-22009 "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007 "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "G:\Instalki\eMule\emule.exe" = G:\Instalki\eMule\emule.exe:*:Enabled:emule.exe -- (http://www.emule-project.net) "C:\Program Files\Look@LAN\LookAtLan.exe" = C:\Program Files\Look@LAN\LookAtLan.exe:*:Enabled:Look@LAN -- (Carlo Medas) "C:\Program Files\America's Army\System\Server.exe" = C:\Program Files\America's Army\System\Server.exe:*:Enabled:Server -- File not found "C:\Program Files\mIRC\mirc.exe" = C:\Program Files\mIRC\mirc.exe:*:Enabled:mIRC -- (mIRC Co. Ltd.) "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- () [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel "{0F9196C6-58B4-445B-B56E-B1200FECC151}" = Microsoft Bootvis "{250D4653-4A90-4847-8184-F1959490BFFC}_is1" = Slican ConfigMAN 3.07 "{25F2658C-9F46-4DF6-8D5C-61B4CAC04E5F}" = My Scene(TM) "{26A24AE4-039D-4CA4-87B4-2F83216013FF}" = Java(TM) 6 Update 13 "{2CD6BBA0-17C8-4789-9B9B-B36F7E815F6A}" = DWG TrueView 2007 "{300A2961-B2B5-4889-9CB9-5C2A570D08AD}" = Debugging Tools for Windows (x86) "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{358F85B9-BF32-4B0A-A61E-295EE6CE9EC8}" = distributed.net client "{361693F2-A153-4359-A4CB-A1B9FF2AA5E6}" = A4tech USB Mouse Quality Testing Program V4.0 "{583B2720-574F-4A7B-BED3-AB18F91ECEF9}" = Marine Park Empire "{63569CE9-FA00-469C-AF5C-E5D4D93ACF91}" = Windows Genuine Advantage v1.3.0254.0 "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack "{6778954C-13C2-4333-AF77-F5C885EB280F}" = America's Army "{6E7DD182-9FC6-4651-0095-2E666CC6AF35}" = The Sims 2 "{6FCEBA1E-B484-4972-883F-E2B99A12758E}" = Norma Pro "{7131646D-CD3C-40F4-97B9-CD9E4E6262EF}" = Microsoft .NET Framework 2.0 "{767CC44C-9BBC-438D-BAD3-FD4595DD148B}" = VC80CRTRedist - 8.0.50727.762 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{926B578B-505F-4820-A62D-088E1124FED4}" = USB Video Camera Driver v1.10 "{935FF092-EEBA-4E97-8C1B-CD2364F392A4}" = Dimension 4 v5.0 "{981029E0-7FC9-4CF3-AB39-6F133621921A}" = Skype Toolbars "{9C1E855F-7ADA-4FA0-B745-A491F1EFFB23}" = Norma Pro Demo "{A4D7B764-4140-11D4-88EB-0050DA3579C0}" = Nero - Burning Rom "{A9BD391C-A3D7-47EC-847C-A22935AB0193}" = TWL AA Cheat Deterrent Client "{AC76BA86-7AD7-1045-7B44-A93000000001}" = Adobe Reader 9.3.4 - Polish "{B4C88CF0-B617-4658-8F84-C4E847FBC9F7}" = Microsoft Managed DirectX (1126) "{B7050CBDB2504B34BC2A9CA0A692CC29}" = DivX Web Player "{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{D064F16E-88DA-4E8F-BBAE-0E2AA9A6AE61}" = VP6 Decoder "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.2 "{DEDB47A3-C988-4A43-A645-E2CEA571E680}" = Epson Easy Photo Print 2 "{EDB4C5BF-3324-410F-8E1B-60AAB5868CC3}" = DAEMON Tools "{F901CA6D-A074-42D3-A11D-33AAE6FFD0C1}" = HP Deskjet 3740 "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "1f500344b6310dc5e95edbafb4dc854e-691254322" = Encyklopedia małego człowieka "3ivx D4 4.0.4" = 3ivx D4 4.0.4 (remove only) "Absolute Video Converter_is1" = Absolute Video Converter 2.8 "Adobe Acrobat 5.0" = Adobe Acrobat 5.0 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI "ALLPlayer V2.4_is1" = ALLPlayer V2.4 "AnswerWorks" = AnswerWorks Runtime "AP Tuner 3.06" = AP Tuner 3.06 "ATI Display Driver" = ATI Display Driver "Audio WAV To MP3 Converter_is1" = Audio WAV To MP3 Converter 1.0 "AVIConverter" = AVIConverter 4.0.1 "BreakQuest/PL-Polish_is1" = BreakQuest "CdaC13Ba" = SafeCast Shared Components "Chess_pairing" = Chess_pairing "Corel Uninstaller" = Corel Uninstaller "Disk Investigator" = Disk Investigator 1.32 "DMIView" = DMIView "DownloadExpress" = MetaProducts Download Express "eMule" = eMule "Enable S3 for USB Device" = Enable S3 for USB Device "EPSON Scanner" = EPSON Scan "EPSON SX100 Series" = EPSON SX100 Series Printer Uninstall "Ethereal" = Ethereal "ffdshow_is1" = ffdshow [rev 1723] [2007-12-24] "FSP" = Full Screen Player "HaaliMkx" = Haali Media Splitter "InstallShield_{C21D5524-A970-42FA-AC8A-59B8C7CDCA31}" = QuickTime "Look@LAN_1.0" = Look@LAN 2.50 Build 29 "Macromedia Shockwave Player" = Macromedia Shockwave Player "Malwarebytes' Anti-Malware_is1" = Malwarebytes' Anti-Malware "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 2.0" = Microsoft .NET Framework 2.0 "Microsoft Internet Gaming Zone" = MSN Gaming Zone "mIRC" = mIRC "Mozilla Firefox (3.6.10)" = Mozilla Firefox (3.6.10) "Mozilla Thunderbird (2.0.0.24)" = Mozilla Thunderbird (2.0.0.24) "NVIDIA nForce Drivers" = NVIDIA nForce Drivers "Pdf995" = Pdf995 "PITy 2007_is1" = PITy 2007 dla Windows kompilacja:1.0.1.11 "PITy 2008_is1" = PITy 2008 dla Windows kompilacja:1.0.2.7 "PITy 2009_is1" = PITy 2009 dla Windows kompilacja:1.1.2.7 "QuickTime32" = QuickTime for Windows (32-bit) "RealPlayer 6.0" = RealPlayer "Reksiomat" = Liczę z Reksiem "SeeMePlayMe Client" = SeeMePlayMe Client "SuperMemo UX - Hiszpański. No hay problema!+ 1" = SuperMemo UX - Hiszpański. No hay problema!+ 1 "Tabliczka_mnozenia_Polish" = Tabliczka mnożenia "Teamspeak 2 RC2_is1" = TeamSpeak 2 RC2 "TmNationsForever_is1" = TmNationsForever "Ventrilo" = Ventrilo "VLC media player" = VLC media player 1.0.5 "WheelMouse" = Smart-X7 7.72 "Winamp" = Winamp (remove only) "Windows Media Format Runtime" = Windows Media Format Runtime "WinPcapInst" = WinPcap 3.0 - CISCO "WinRAR archiver" = Archiwizator WinRAR "WinZip" = WinZip "XviD" = XviD Video Codec 04102002-1 (Koepi's build with EPSZ ME) "Zuma_Deluxe!_1.0" = Zuma Deluxe! 1.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-57989841-839522115-682003330-500\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Octoshape add-in for Adobe Flash Player" = Octoshape add-in for Adobe Flash Player "uTorrent" = µTorrent [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2010-10-07 18:20:24 | Computer Name = MARCIN | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd skype.exe, wersja 4.2.0.169, moduł powodujący błąd ntdll.dll, wersja 5.1.2600.3520, adres błędu 0x000011ce. Error - 2010-10-07 18:23:08 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-07 18:34:42 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-07 18:42:51 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 11:39:41 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 13:18:29 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 17:38:18 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 17:39:38 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 17:43:01 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. Error - 2010-10-08 18:31:10 | Computer Name = MARCIN | Source = PerfNet | ID = 2004 Description = Nie można otworzyć usługi Server. Dane wydajności usługi Server nie zostaną zwrócone. Zwrócony kod stanu to dane DWORD 0. < End of report >