OTL Extras logfile created on: 2012-07-30 19:41:01 - Run 1 OTL by OldTimer - Version 3.2.55.0 Folder = G:\ Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,87 Gb Total Physical Memory | 1,14 Gb Available Physical Memory | 60,71% Memory free 3,98 Gb Paging File | 3,50 Gb Available in Paging File | 87,86% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 59,11 Gb Total Space | 16,56 Gb Free Space | 28,02% Space Free | Partition Type: NTFS Drive G: | 981,55 Mb Total Space | 652,39 Mb Free Space | 66,46% Space Free | Partition Type: FAT32 Computer Name: USER-PC | User Name: user | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-2364727033-1817014445-2149197606-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [Browse with &IrfanView] -- "C:\Program Files\IrfanView\i_view32.exe" "%1 /thumbs" (Irfan Skiljan) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\Winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\Winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\Winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 "UacDisableNotify" = 1 "InternetSettingsDisableNotify" = 1 "AutoUpdateDisableNotify" = 1 "AntiVirusDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "FirewallOverride" = 1 "UpdatesDisableNotify" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 1 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\S-1-5-21-2364727033-1817014445-2149197606-1000] "EnableNotifications" = 0 "EnableNotificationsRef" = 3 [color=#E56717]========== Firewall Settings ==========[/color] [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148 "{015C5B35-B678-451C-9AEE-821E8D69621C}_is1" = PeerBlock 1.1 (r518) "{0D62890C-2061-E6EA-8E37-244BBC3B51EF}" = Catalyst Control Center Graphics Light "{0E532C84-4275-41B3-9D81-D4A1A20D8EE7}" = PlayStation(R)Store "{0F2A2D93-368F-C181-A127-1F55A8C79724}" = ccc-utility "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{21E0BFF2-F0C3-8966-394C-8382918E90E0}" = CCC Help English "{24D753CA-6AE9-4E30-8F5F-EFC93E08BF3D}" = Skype™ 4.0 "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{28006915-2739-4EBE-B5E8-49B25D32EB33}" = Atheros Driver Installation Program "{311E9A56-F2B0-4B6A-ABA9-355DA17D9E2F}" = Opera 11.64 "{31BFEC6C-1F27-45B5-839C-BCBAE327993A}" = OpenOffice.org 3.0 "{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4278B780-6CB5-437A-BA6A-31C7F9FAB980}" = Adobe Flash Player 11 ActiveX "{47609E69-4C5E-48B1-A889-24C6B82B5C04}" = Vista Shortcut Manager "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{59F6A514-9813-47A3-948C-8A155460CC2A}" = RICOH R5C83x/84x Flash Media Controller Driver Ver.3.51.01 "{5A3C1721-F8ED-11E0-8AFB-B8AC6F97B88E}" = Google Earth "{5C1DB4ED-E9B4-402D-BB14-D75D97D6C1A6}" = ATKOSD2 "{5D87FB79-FEF9-E38A-B97A-528708049D9E}" = Catalyst Control Center Graphics Previews Vista "{6324A1EF-CEF4-43E3-8BCD-9EF3F67317FD}" = NB Probe "{68D1CBD5-899D-037D-FC17-191811C44EA5}" = ATI Catalyst Install Manager "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{6D2993F4-0C04-739B-BC79-EC352410541F}" = Catalyst Control Center Graphics Previews Common "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{7FA1DAFD-AF55-E915-FD92-F269443A2ADF}" = Media Go Video Playback Engine 1.88.116.12060 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8CFEBE9C-F29F-4C49-80E0-7106970F8734}" = Power4Gear eXtreme "{8D52E0F9-17A0-493B-8692-937381DDB62B}" = SimCity 2000 "{8F02E37B-1B3B-9724-FACA-1BB9025D6F82}" = Catalyst Control Center Graphics Full New "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{a0fe116e-9a8a-466f-aee0-625cb7c207e3}" = Microsoft Visual C++ 2005 Redistributable - KB2467175 "{a9264802-8a7a-40fe-a135-5c6d204aed7a}.sdb" = Internet Explorer (Enable DEP) "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AB127B96-EF3F-72BE-79EF-42FAE103D817}" = Catalyst Control Center HydraVision Full "{AC76BA86-7AD7-1033-7B44-A81300000003}" = Adobe Reader 8.1.3 "{AF111648-99A1-453E-81DD-80DBBF6DAD0D}" = MSVC90_x86 "{B038A58E-EAF0-44CB-ADCA-3895ECD0812D}" = BibleWorks 8 "{B24839E5-A70C-48AD-B4D9-B9FB46B4B038}_is1" = Hydrogen 0.9.6 preview release for windows "{B4092C6D-E886-4CB2-BA68-FE5A88D31DE6}_is1" = Spybot - Search & Destroy "{B6659DD8-00A7-4A24-BBFB-C1F6982E5D66}" = PlayStation(R)Network Downloader "{B7588D45-AFDC-4C93-9E2E-A100F3554B64}" = Microsoft Fix it Center "{C0FC1C14-4824-4A73-87A6-9E888C9C3102}" = ASUS Splendid Video Enhancement Technology "{CA9BE5A1-2D94-C203-75C6-71A3B621830E}" = ccc-core-static "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{CE386A4E-D0DA-4208-8235-BCE43275C694}" = LightScribe 1.4.142.1 "{CEBB6BFB-D708-4F99-A633-BC2600E01EF6}" = Bluetooth Stack for Windows by Toshiba "{D97ADCC0-DE02-16BC-7F3E-870058269067}" = Catalyst Control Center Core Implementation "{DBF1AE39-DA30-4B89-A7EB-3BDA675C5D9E}" = Media Go "{DE10AB76-4756-4913-BE25-55D1C1051F9A}" = WinFlash "{E657B243-9AD4-4ECC-BE81-4CCF8D667FD0}" = ASUS Live Update "{E91D14EF-CC7A-4AD3-87B4-4D5D8ED0EC4B}_is1" = EasyRecovery "{E96B4BD4-1D1D-5751-0913-1B8705D7B7E9}" = Skins "{F09EF8F2-0976-42C1-8D9D-8DF78337C6E3}" = Sony PC Companion 2.10.053 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F333A33D-125C-32A2-8DCE-5C5D14231E27}" = Visual C++ 2008 x86 Runtime - (v9.0.30729) "{F333A33D-125C-32A2-8DCE-5C5D14231E27}.vc_x86runtime_30729_01" = Visual C++ 2008 x86 Runtime - v9.0.30729.01 "{F99891F5-181F-1C47-A017-0F562AD824E8}" = Catalyst Control Center Graphics Full Existing "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Aspell Polish Dictionary_is1" = Aspell Polish Dictionary-0.50-2 "Asus_Camera_ScreenSaver" = Asus_Camera_ScreenSaver "Audacity 1.3 Beta (Unicode)_is1" = Audacity 1.3.3 (Unicode) "Avira AntiVir Desktop" = Avira Free Antivirus "Bullzip PDF Printer_is1" = Bullzip PDF Printer 7.2.0.1304 "Burn4Free CD & DVD_is1" = Burn4Free CD & DVD 5.1.0.0 "CCleaner" = CCleaner "CDisplay_is1" = CDisplay 1.8 "CLV module for ISA" = CLV module for ISA 1.0 "CWK" = CWK (Czasowy Wyłącznik Komputera) "DAEMON Tools Lite" = DAEMON Tools Lite "Driver Cleaner" = Driver Cleaner 3 "eMule" = eMule "Exact Audio Copy" = Exact Audio Copy 1.0beta3 "foobar2000" = foobar2000 v1.1.7 "GNU Aspell_is1" = GNU Aspell 0.50-3 "GPL Ghostscript Lite_is1" = GPL Ghostscript Lite 8.70 "InfraRecorder" = InfraRecorder "Interlinear Scripture Analyzer" = Interlinear Scripture Analyzer 1.2.0.3 "Internet Manager" = Internet Manager "IrfanView" = IrfanView (remove only) "ISA 2 - CLV module" = ISA 2 - CLV module 1.2.0 "ISA 2 basic" = ISA 2 basic "ISA 2.0 - YLT module" = ISA 2.0 - YLT module 1.1.2 "KLiteCodecPack_is1" = K-Lite Codec Pack 7.2.0 (Basic) "LAME for Audacity_is1" = LAME v3.98.3 for Audacity "LastFM_is1" = Last.fm 1.5.4.27091 "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.62.0.1300 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "MiniStumbler" = MiniStumbler 0.4.0 (remove only) "MobilityDotNET" = DH Mobility Modder.NET "Monkey's Audio_is1" = Monkey's Audio "Monopoly by Parker Brothers" = Monopoly by Parker Brothers "Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl) "Mozilla Thunderbird (2.0.0.19)" = Mozilla Thunderbird (2.0.0.19) "MozillaMaintenanceService" = Mozilla Maintenance Service "Need For Speed - Porsche Unleashed" = Need For Speed - Porsche Unleashed "Pidgin" = Pidgin "qt7lite_is1" = QT Lite 2.9.2 "RealAlt_is1" = Real Alternative 1.9.0 "Revo Uninstaller" = Revo Uninstaller 1.92 "Słownik angielsko-polski_is1" = Słownik angielsko-polski wersja 2.25 "SMSERIAL" = Motorola SM56 Data Fax Modem "Soulseek2" = SoulSeek 157 NS 13c "SwordBible_is1" = SwordBible "SynTPDeinstKey" = Synaptics Pointing Device Driver "TabIt for Windows_is1" = TabIt version 2.03 "uTorrent" = µTorrent "Vidalia" = Vidalia 0.1.10 "VLC media player" = VLC media player 1.1.11 "Winamp" = Winamp (remove only) "WinASO Registry Optimizer 4.2_is1" = WinASO Registry Optimizer 4.2 "WinASO Registry Optimizer 4.6.0_is1" = WinASO Registry Optimizer 4.6.0 "WinASO Registry Optimizer_is1" = WinASO Registry Optimizer 4.7.2 "WinHTTrack Website Copier_is1" = WinHTTrack Website Copier 3.43-9C "WinRAR archiver" = Archiwizator WinRAR [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\.DEFAULT\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-18\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-19\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-20\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2364727033-1817014445-2149197606-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Live Security Platinum" = Live Security Platinum "Tlen.pl" = Tlen.pl "uTorrent" = µTorrent [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-07-30 12:24:14 | Computer Name = user-PC | Source = Windows Search Service | ID = 3029 Description = Error - 2012-07-30 12:24:34 | Computer Name = user-PC | Source = Windows Search Service | ID = 7040 Description = Error - 2012-07-30 12:24:34 | Computer Name = user-PC | Source = Windows Search Service | ID = 7040 Description = Error - 2012-07-30 12:24:34 | Computer Name = user-PC | Source = Windows Search Service | ID = 3029 Description = Error - 2012-07-30 12:24:34 | Computer Name = user-PC | Source = Windows Search Service | ID = 3028 Description = Error - 2012-07-30 12:24:34 | Computer Name = user-PC | Source = Windows Search Service | ID = 3058 Description = Error - 2012-07-30 12:27:43 | Computer Name = user-PC | Source = Avira Antivirus | ID = 4118 Description = EXCEPTION calling function AVEPROC_TestFile() for the file C:\Users\user\Documents\20100331(002_2).jpg [ACCESS_VIOLATION Exception!! EIP = 0x1db6d12] Please inform Avira and submit the appropriate file! Error - 2012-07-30 12:29:25 | Computer Name = user-PC | Source = Avira Antivirus | ID = 4118 Description = EXCEPTION calling function AVEPROC_TestFile() for the file C:\Users\user\Pictures\2010-05\20100530.jpg [ACCESS_VIOLATION Exception!! EIP = 0x1db6d12] Please inform Avira and submit the appropriate file! Error - 2012-07-30 12:29:32 | Computer Name = user-PC | Source = Windows Search Service | ID = 3024 Description = Error - 2012-07-30 13:19:02 | Computer Name = user-PC | Source = EventSystem | ID = 4609 Description = [ System Events ] Error - 2012-07-30 13:18:54 | Computer Name = user-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-30 13:19:02 | Computer Name = user-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-30 13:19:06 | Computer Name = user-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-30 13:19:13 | Computer Name = user-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-30 13:19:15 | Computer Name = user-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-30 13:19:25 | Computer Name = user-PC | Source = Service Control Manager | ID = 7001 Description = Error - 2012-07-30 13:19:25 | Computer Name = user-PC | Source = Service Control Manager | ID = 7003 Description = Error - 2012-07-30 13:19:25 | Computer Name = user-PC | Source = Service Control Manager | ID = 7003 Description = Error - 2012-07-30 13:19:25 | Computer Name = user-PC | Source = Service Control Manager | ID = 7003 Description = Error - 2012-07-30 13:19:25 | Computer Name = user-PC | Source = Service Control Manager | ID = 7026 Description = < End of report >