API tools faq
paste
Advertisement
assassin007

Untitled

assassin007
Jan 19th, 2017
140
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 13.62 KB | None | 0 0
raw download clone embed print report
  1. OTL Extras logfile created on: 1/20/2017 12:55:22 AM - Run 1
  2. OTL by OldTimer - Version 3.2.69.0 Folder = C:\Documents and Settings\benko\My Documents\Downloads
  3. Windows XP Professional Edition Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation
  4. Internet Explorer (Version = 8.0.6001.18702)
  5. Locale: 00000409 | Country: United States | Language: ENU | Date Format: M/d/yyyy
  6.  
  7. 1023.48 Mb Total Physical Memory | 426.50 Mb Available Physical Memory | 41.67% Memory free
  8. 2.40 Gb Paging File | 1.91 Gb Available in Paging File | 79.40% Paging File free
  9. Paging file location(s): c:\pagefile.sys 1536 3072 [binary data]
  10.  
  11. %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files
  12. Drive C: | 68.36 Gb Total Space | 38.49 Gb Free Space | 56.31% Space Free | Partition Type: NTFS
  13. Drive D: | 80.68 Gb Total Space | 53.63 Gb Free Space | 66.46% Space Free | Partition Type: NTFS
  14.  
  15. Computer Name: BENKO-5B4EB8A03 | User Name: benko | Logged in as Administrator.
  16. Boot Mode: Normal | Scan Mode: Current user | Quick Scan
  17. Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days
  18.  
  19. [color=#E56717]========== Extra Registry (SafeList) ==========[/color]
  20.  
  21.  
  22. [color=#E56717]========== File Associations ==========[/color]
  23.  
  24. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
  25. .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
  26.  
  27. [HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
  28. .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation)
  29.  
  30. [color=#E56717]========== Shell Spawning ==========[/color]
  31.  
  32. [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
  33. batfile [open] -- "%1" %*
  34. cmdfile [open] -- "%1" %*
  35. comfile [open] -- "%1" %*
  36. cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%*
  37. exefile [open] -- "%1" %*
  38. htmlfile [edit] -- Reg Error: Key error.
  39. piffile [open] -- "%1" %*
  40. regfile [merge] -- Reg Error: Key error.
  41. scrfile [config] -- "%1"
  42. scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
  43. scrfile [open] -- "%1" /S
  44. txtfile [edit] -- Reg Error: Key error.
  45. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
  46. Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  47. Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation)
  48. Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation)
  49. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
  50.  
  51. [color=#E56717]========== Security Center Settings ==========[/color]
  52.  
  53. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
  54. "FirstRunDisabled" = 1
  55. "AntiVirusDisableNotify" = 0
  56. "FirewallDisableNotify" = 0
  57. "UpdatesDisableNotify" = 0
  58. "AntiVirusOverride" = 0
  59. "FirewallOverride" = 0
  60.  
  61. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
  62.  
  63. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus]
  64.  
  65. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus]
  66.  
  67. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus]
  68.  
  69. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus]
  70.  
  71. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall]
  72.  
  73. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus]
  74.  
  75. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall]
  76.  
  77. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus]
  78.  
  79. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus]
  80.  
  81. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall]
  82.  
  83. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall]
  84.  
  85. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus]
  86.  
  87. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall]
  88.  
  89. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall]
  90.  
  91. [color=#E56717]========== System Restore Settings ==========[/color]
  92.  
  93. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
  94. "DisableSR" = 0
  95.  
  96. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr]
  97. "Start" = 0
  98.  
  99. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService]
  100. "Start" = 2
  101.  
  102. [color=#E56717]========== Firewall Settings ==========[/color]
  103.  
  104. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
  105.  
  106. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
  107. "EnableFirewall" = 1
  108. "DoNotAllowExceptions" = 0
  109. "DisableNotifications" = 0
  110.  
  111. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
  112. "1900:UDP" = 1900:UDP:LocalSubNet:Disabled:@xpsp2res.dll,-22007
  113. "2869:TCP" = 2869:TCP:LocalSubNet:Disabled:@xpsp2res.dll,-22008
  114.  
  115. [color=#E56717]========== Authorized Applications List ==========[/color]
  116.  
  117. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
  118. "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
  119. "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
  120.  
  121. [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
  122. "%windir%\system32\sessmgr.exe" = %windir%\system32\sessmgr.exe:*:enabled:@xpsp2res.dll,-22019 -- (Microsoft Corporation)
  123. "%windir%\Network Diagnostic\xpnetdiag.exe" = %windir%\Network Diagnostic\xpnetdiag.exe:*:Enabled:@xpsp3res.dll,-20000 -- (Microsoft Corporation)
  124. "D:\Activision\Call of Duty 2\CoD2MP_s.exe" = D:\Activision\Call of Duty 2\CoD2MP_s.exe:*:Enabled:CoD2MP_s -- ()
  125. "C:\Program Files\Activision\Rome - Total War\RomeTW.exe" = C:\Program Files\Activision\Rome - Total War\RomeTW.exe:*:Enabled:Rome: Total War -- (The Creative Assembly Ltd)
  126. "D:\Counter-Strike\hl.exe" = D:\Counter-Strike\hl.exe:*:Enabled:Half-Life Launcher -- (Valve)
  127. "C:\WINDOWS\system32\dxdiag.exe" = C:\WINDOWS\system32\dxdiag.exe:*:Enabled:Microsoft DirectX Diagnostic Tool -- (Microsoft Corporation)
  128. "C:\WINDOWS\system32\dpnsvr.exe" = C:\WINDOWS\system32\dpnsvr.exe:*:Disabled:Microsoft DirectPlay8 Server -- (Microsoft Corporation)
  129. "C:\WINDOWS\system32\dpvsetup.exe" = C:\WINDOWS\system32\dpvsetup.exe:*:Enabled:Microsoft DirectPlay Voice Test -- (Microsoft Corporation)
  130.  
  131.  
  132. [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
  133.  
  134. [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
  135. "{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel
  136. "{13A4EE12-23EA-3371-91EE-EFB36DDFFF3E}" = Microsoft Visual C++ 2013 x86 Minimum Runtime - 12.0.21005
  137. "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform
  138. "{26A24AE4-039D-4CA4-87B4-2F32180111F0}" = Java 8 Update 111
  139. "{350C97B0-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP
  140. "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
  141. "{4D0A0750-B034-4DF8-97DE-26F1212AC2FF}" = DriverDoc
  142. "{518FE6AC-3097-4D96-88EB-D971A2AA30FF}_is1" = Lost Heaven Multiplayer version 1.0.6
  143. "{8054D734-39C7-463D-B764-9C883982B8F9}" = VC_CRT_x86
  144. "{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
  145. "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2
  146. "{f65db027-aff3-4070-886a-0d87064aabb1}" = Microsoft Visual C++ 2013 Redistributable (x86) - 12.0.30501
  147. "{F8CFEB22-A2E7-3971-9EDA-4B11EDEFC185}" = Microsoft Visual C++ 2013 x86 Additional Runtime - 12.0.21005
  148. "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio
  149. "All ATI Software" = ATI - Software Uninstall Utility
  150. "ATI Display Driver" = ATI Display Driver
  151. "AU11_is1" = Advanced Uninstaller PRO - Version 12
  152. "BSPlayerf" = BS.Player FREE
  153. "CPUID CPU-Z_is1" = CPUID CPU-Z 1.78
  154. "DriverAgent_is1" = DriverAgent by eSupport.com
  155. "DriverDoc" = DriverDoc
  156. "DriverPack Notifier" = DriverPack Notifier
  157. "EAX Unified" = EAX Unified
  158. "GameSpy Arcade" = GameSpy Arcade
  159. "ie8" = Windows Internet Explorer 8
  160. "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platform Device Manager
  161. "InstallShield_{A642BB6B-CA1D-4142-8DD4-318C3F3DC834}" = Rome - Total War(TM)
  162. "Mafia Game" = Mafia Game
  163. "PowerISO" = PowerISO
  164. "VN_VUIns_Rhine_VIA" = VIA Rhine-Family Fast-Ethernet Adapter
  165. "WinRAR archiver" = WinRAR 5.40 (32-bit)
  166.  
  167. [color=#E56717]========== Last 20 Event Log Errors ==========[/color]
  168.  
  169. [ Application Events ]
  170. Error - 1/16/2017 12:40:32 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  171. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  172. permitted due to an error in software restriction policy processing. The object
  173. cannot be trusted.
  174.  
  175. Error - 1/16/2017 12:40:32 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  176. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  177. permitted due to an error in software restriction policy processing. The object
  178. cannot be trusted.
  179.  
  180. Error - 1/16/2017 12:40:32 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  181. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  182. permitted due to an error in software restriction policy processing. The object
  183. cannot be trusted.
  184.  
  185. Error - 1/16/2017 12:40:32 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  186. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  187. permitted due to an error in software restriction policy processing. The object
  188. cannot be trusted.
  189.  
  190. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  191. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  192. permitted due to an error in software restriction policy processing. The object
  193. cannot be trusted.
  194.  
  195. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  196. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  197. permitted due to an error in software restriction policy processing. The object
  198. cannot be trusted.
  199.  
  200. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  201. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  202. permitted due to an error in software restriction policy processing. The object
  203. cannot be trusted.
  204.  
  205. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  206. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  207. permitted due to an error in software restriction policy processing. The object
  208. cannot be trusted.
  209.  
  210. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  211. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  212. permitted due to an error in software restriction policy processing. The object
  213. cannot be trusted.
  214.  
  215. Error - 1/16/2017 12:40:33 AM | Computer Name = BENKO-5B4EB8A03 | Source = MsiInstaller | ID = 1008
  216. Description = The installation of d:\caf23473095522add3c0b5\vs_setup.ms_ is not
  217. permitted due to an error in software restriction policy processing. The object
  218. cannot be trusted.
  219.  
  220. [ System Events ]
  221. Error - 1/16/2017 12:52:40 AM | Computer Name = BENKO-5B4EB8A03 | Source = DCOM | ID = 10005
  222. Description = DCOM got error "%1084" attempting to start the service wuauserv with
  223. arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
  224.  
  225. Error - 1/16/2017 12:52:46 AM | Computer Name = BENKO-5B4EB8A03 | Source = DCOM | ID = 10005
  226. Description = DCOM got error "%1084" attempting to start the service wuauserv with
  227. arguments "" in order to run the server: {E60687F7-01A1-40AA-86AC-DB1CBF673334}
  228.  
  229. Error - 1/16/2017 12:54:05 AM | Computer Name = BENKO-5B4EB8A03 | Source = DCOM | ID = 10005
  230. Description = DCOM got error "%1084" attempting to start the service EventSystem
  231. with arguments "" in order to run the server: {1BE1F766-5536-11D1-B726-00C04FB926AF}
  232.  
  233. Error - 1/16/2017 1:17:04 AM | Computer Name = BENKO-5B4EB8A03 | Source = SRService | ID = 104
  234. Description = The System Restore initialization process failed.
  235.  
  236. Error - 1/16/2017 1:17:04 AM | Computer Name = BENKO-5B4EB8A03 | Source = Service Control Manager | ID = 7023
  237. Description = The System Restore Service service terminated with the following error:
  238. %%2
  239.  
  240. Error - 1/16/2017 1:19:41 AM | Computer Name = BENKO-5B4EB8A03 | Source = SRService | ID = 104
  241. Description = The System Restore initialization process failed.
  242.  
  243. Error - 1/16/2017 1:19:41 AM | Computer Name = BENKO-5B4EB8A03 | Source = Service Control Manager | ID = 7023
  244. Description = The System Restore Service service terminated with the following error:
  245. %%2
  246.  
  247. Error - 1/16/2017 1:42:13 AM | Computer Name = BENKO-5B4EB8A03 | Source = SRService | ID = 104
  248. Description = The System Restore initialization process failed.
  249.  
  250. Error - 1/16/2017 1:42:14 AM | Computer Name = BENKO-5B4EB8A03 | Source = Service Control Manager | ID = 7023
  251. Description = The System Restore Service service terminated with the following error:
  252. %%2
  253.  
  254. Error - 1/16/2017 1:42:37 AM | Computer Name = BENKO-5B4EB8A03 | Source = System Error | ID = 1003
  255. Description = Error code 1000008e, parameter1 c0000005, parameter2 03020100, parameter3
  256. f792e4b4, parameter4 00000000.
  257.  
  258.  
  259. < End of report >
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!