OTL Extras logfile created on: 2011-08-29 21:20:55 - Run 1 OTL by OldTimer - Version 3.2.26.6 Folder = C:\Documents and Settings\Robert\Moje dokumenty\Downloads Windows XP Professional Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,52 Gb Available Physical Memory | 76,00% Memory free 3,85 Gb Paging File | 3,36 Gb Available in Paging File | 87,26% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 37,26 Gb Total Space | 7,83 Gb Free Space | 21,01% Space Free | Partition Type: NTFS Drive D: | 37,26 Gb Total Space | 30,74 Gb Free Space | 82,49% Space Free | Partition Type: NTFS Drive E: | 37,26 Gb Total Space | 16,61 Gb Free Space | 44,58% Space Free | Partition Type: NTFS Drive F: | 37,26 Gb Total Space | 19,29 Gb Free Space | 51,76% Space Free | Partition Type: NTFS Drive G: | 37,26 Gb Total Space | 29,69 Gb Free Space | 79,67% Space Free | Partition Type: NTFS Drive H: | 46,58 Gb Total Space | 26,93 Gb Free Space | 57,81% Space Free | Partition Type: NTFS Computer Name: ROBE-94A27836FA | User Name: Robert | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) .url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l [HKEY_CURRENT_USER\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation) https [open] -- "C:\Program Files\Mozilla Firefox\firefox.exe" -requestPending -osint -url "%1" (Mozilla Corporation) InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\uTorrent\uTorrent.exe" = C:\Program Files\uTorrent\uTorrent.exe:*:Enabled:µTorrent -- (BitTorrent, Inc.) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Enabled:Gadu-Gadu 10 -- (GG Network S.A.) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{04AF207D-9A77-465A-8B76-991F6AB66245}" = Adobe Help Viewer CS3 "{08B32819-6EEF-4057-AEDA-5AB681A36A23}" = Adobe Bridge Start Meeting "{184CE391-7E0E-4C63-9935-D7A10EDFD3C6}" = Adobe WinSoft Linguistics Plugin "{26A24AE4-039D-4CA4-87B4-2F83216025FF}" = Java(TM) 6 Update 26 "{293D5729-7C01-4FA4-A4DE-BB6A1587BBB9}" = PDF Settings "{29E5EA97-5F74-4A57-B8B2-D4F169117183}" = Adobe Stock Photos CS3 "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840 "{54793AA1-5001-42F4-ABB6-C364617C6078}" = Adobe Linguistics CS3 "{6179A7D2-A668-4F1D-BC9A-DCC6A10C7871}" = Adobe Color NA Extra Settings "{6ABE0BEE-D572-4FE8-B434-9E72A289431B}" = Adobe Fonts All "{6D12B99F-EAAA-49D8-8E2F-74FA7459CCB2}" = Adobe Asset Services CS3 "{78EFD06D-7583-42F1-9E77-671D8782EB70}" = Adobe Photoshop CS3 "{802771A9-A856-4A41-ACF7-1450E523C923}" = Adobe XMP Panels CS3 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8D2BA474-F406-4710-9AE4-D4F22D21F0DD}" = Adobe Device Central CS3 "{8E6808E2-613D-4FCD-81A2-6C8FA8E03312}" = Adobe Type Support "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90176341-0A8B-4CCC-A78D-F862228A6B95}" = Adobe Anchor Service CS3 "{9C9824D9-9000-4373-A6A5-D0E5D4831394}" = Adobe Bridge CS3 "{A2B242BD-FF8D-4840-9DAA-9170EABEC59C}" = Adobe CMaps "{A2D81E70-2A98-4A08-A628-94388B063C5E}" = Adobe Color - Photoshop Specific "{AC54E544-3E42-443C-A91D-A00A6974C592}" = NVIDIA PhysX v8.10.13 "{B3BF6689-A81D-40D8-9A86-4AC4ACD9FC1C}" = Adobe Camera Raw 4.0 "{B9B35331-B7E4-4E5C-BF4C-7BC87856124D}" = Adobe Default Language CS3 "{BD087F50-46B2-43E4-BD73-5DB3DC20B47C}" = Adobe Color EU Recommended Settings "{C2D69781-F392-4118-A5A7-C7E9C38DBFC2}" = Adobe ExtendScript Toolkit 2 "{CBF4DADD-974D-49C8-BC83-C6F31554001E}" = Adobe Setup "{D0DFF92A-492E-4C40-B862-A74A173C25C5}" = Adobe Version Cue CS3 Client "{D2559B88-CC9D-4B48-81BB-F492BAA9C48C}" = Adobe PDF Library Files "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{D92B72E2-C854-4738-8ED6-4C3661CC17AE}" = Adobe Color JA Extra Settings "{DADD7B8A-BCB0-44F5-967A-ECB6B4F2ECD9}" = Adobe Color Common Settings "{E69AE897-9E0B-485C-8552-7841F48D42D8}" = Adobe Update Manager CS3 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe_678cd98c8365a5647f9a2e539d120a8" = Adobe Photoshop CS3 "avast!" = avast! Antivirus "ENTERPRISE" = Microsoft Office Enterprise 2007 "Filzip 3.0.6.93_is1" = Filzip 3.06 "Gadu-Gadu 10" = Gadu-Gadu 10 "KLiteCodecPack_is1" = K-Lite Codec Pack 7.0.0 (Full) "Mozilla Firefox 6.0 (x86 pl)" = Mozilla Firefox 6.0 (x86 pl) "NAPIPROJEKT_is1" = NAPIPROJEKT 1.0.6.2 "NVIDIA Drivers" = NVIDIA Drivers "SubEdit-Player_is1" = SubEdit-Player "uTorrent" = µTorrent "vShare.tv plugin" = vShare.tv plugin 1.3 "Wdf01007" = Microsoft Kernel-Mode Driver Framework Feature Pack 1.7 "Winamp" = Winamp (remove only) "Windows Media Format Runtime" = Windows Media Format Runtime [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 2011-07-07 07:53:13 | Computer Name = ROBE-94A27836FA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of I:\Babia Góra\P9230018.JPG failed, 0000001E. Error - 2011-07-10 05:47:44 | Computer Name = ROBE-94A27836FA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of I:\Słowacja 2008\Thumbs.db failed, 00000015. Error - 2011-08-23 13:59:55 | Computer Name = ROBE-94A27836FA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Temp\scoped_dir_8006\CRX_INSTALL\chvsharetvplg.dll failed, 00000005. Error - 2011-08-23 13:59:55 | Computer Name = ROBE-94A27836FA | Source = avast! | ID = 33554522 Description = AAVM - scanning error: x_AavmCheckFileDirectEx: avfilesScanReal of C:\Documents and Settings\Robert\Ustawienia lokalne\Dane aplikacji\Google\Chrome\User Data\Temp\scoped_dir_8006\CRX_INSTALL\manifest.json failed, 00000005. [ Application Events ] Error - 2011-08-14 15:01:49 | Computer Name = ROBE-94A27836FA | Source = Winlogon | ID = 1015 Description = Błąd krytycznego procesu systemowego C:\WINDOWS\system32\lsass.exe z kodem stanu c0000005. Komputer musi być ponownie uruchomiony. Error - 2011-08-18 04:04:53 | Computer Name = ROBE-94A27836FA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd chrome.exe, wersja 0.0.0.0, moduł powodujący błąd chrome.dll, wersja 13.0.782.112, adres błędu 0x00004950. Error - 2011-08-18 16:55:20 | Computer Name = ROBE-94A27836FA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd speed2.exe, wersja 0.0.0.0, moduł powodujący błąd speed2.exe, wersja 0.0.0.0, adres błędu 0x0003fe97. Error - 2011-08-26 07:25:36 | Computer Name = ROBE-94A27836FA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd gta_sa.exe, wersja 0.0.0.0, moduł powodujący błąd gta_sa.exe, wersja 0.0.0.0, adres błędu 0x000d464e. Error - 2011-08-27 07:31:34 | Computer Name = ROBE-94A27836FA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd gta_sa.exe, wersja 0.0.0.0, moduł powodujący błąd gta_sa.exe, wersja 0.0.0.0, adres błędu 0x000d464e. Error - 2011-08-27 13:39:07 | Computer Name = ROBE-94A27836FA | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca gta_sa.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-08-27 13:39:17 | Computer Name = ROBE-94A27836FA | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca gta_sa.exe, wersja 0.0.0.0, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-08-29 07:18:23 | Computer Name = ROBE-94A27836FA | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd gta_sa.exe, wersja 0.0.0.0, moduł powodujący błąd gta_sa.exe, wersja 0.0.0.0, adres błędu 0x000d464e. Error - 2011-08-29 14:26:27 | Computer Name = ROBE-94A27836FA | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.26.6, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-08-29 14:28:13 | Computer Name = ROBE-94A27836FA | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca OTL.exe, wersja 3.2.26.6, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ System Events ] Error - 2011-08-29 14:24:04 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 000000c2, parametr 1 00000007, parametr 2 00000cd4, parametr 3 01590007, parametr 4 bbfc6478. Error - 2011-08-29 14:25:51 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 1000008e, parametr 1 c0000005, parametr 2 bf80121b, parametr 3 f76a6a48, parametr 4 00000000. Error - 2011-08-29 14:25:53 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 1000008e, parametr 1 c0000005, parametr 2 00000103, parametr 3 f7505c10, parametr 4 00000000. Error - 2011-08-29 14:27:26 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 1000008e, parametr 1 c0000005, parametr 2 bf8019d7, parametr 3 b6a75bac, parametr 4 00000000. Error - 2011-08-29 14:27:34 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 10000050, parametr 1 b6a9d000, parametr 2 00000001, parametr 3 804dd99b, parametr 4 00000000. Error - 2011-08-29 14:31:14 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 1000007f, parametr 1 00000008, parametr 2 80042000, parametr 3 00000000, parametr 4 00000000. Error - 2011-08-29 14:31:16 | Computer Name = ROBE-94A27836FA | Source = System Error | ID = 1003 Description = Kod błędu 1000008e, parametr 1 c0000005, parametr 2 8056ed77, parametr 3 b6a7f970, parametr 4 00000000. Error - 2011-08-29 14:55:03 | Computer Name = ROBE-94A27836FA | Source = sr | ID = 1 Description = Filtr Przywracania systemu napotkał nieoczekiwany błąd '0xC0000001' podczas przetwarzania pliku '' w woluminie 'HarddiskVolume1'. W rezultacie zostało zatrzymane monitorowanie woluminu. Error - 2011-08-29 14:55:13 | Computer Name = ROBE-94A27836FA | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi General Purpose USB Driver (e4ldr.sys) z powodu następującego błędu: %%1058 Error - 2011-08-29 15:12:48 | Computer Name = ROBE-94A27836FA | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi General Purpose USB Driver (e4ldr.sys) z powodu następującego błędu: %%1058 < End of report >