OTL Extras logfile created on: 2012-01-23 14:08:50 - Run 1 OTL by OldTimer - Version 3.2.31.0 Folder = C:\Users\Bartek\Downloads Windows Vista Home Basic Edition (Version = 6.0.6000) - Type = NTWorkstation Internet Explorer (Version = 7.0.6000.16982) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 765,88 Mb Total Physical Memory | 214,29 Mb Available Physical Memory | 27,98% Memory free 1,74 Gb Paging File | 0,87 Gb Available in Paging File | 50,06% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 99,11 Gb Total Space | 22,35 Gb Free Space | 22,55% Space Free | Partition Type: NTFS Drive D: | 45,12 Gb Total Space | 23,36 Gb Free Space | 51,77% Space Free | Partition Type: NTFS Drive E: | 4,81 Gb Total Space | 1,00 Gb Free Space | 20,80% Space Free | Partition Type: NTFS Computer Name: BARTEK-PC | User Name: Bartek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software) .url [@ = InternetShortcut] -- rundll32.exe ieframe.dll,OpenURL %l [HKEY_USERS\S-1-5-21-2248478289-529992986-230967236-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- rundll32.exe ieframe.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0EE38900-6029-4B59-B49C-7FE198F3F692}" = protocol=6 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "{119E82D0-B83E-4ADE-AF67-8F504EA4F1DC}" = protocol=6 | dir=in | app=c:\program files\lexmark 2600 series\lxdnamon.exe | "{293117FD-1E2C-48E0-9C51-1961B79BB609}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxdntime.exe | "{4B7B372E-73DC-471B-BC70-73E6669BBC00}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxdnpswx.exe | "{5319CD16-E766-4CC6-8249-058625739ACB}" = protocol=6 | dir=in | app=c:\program files\lexmark 2600 series\lxdnmon.exe | "{5B29B5B9-97F0-47AD-A6D9-A922ED7FD90A}" = protocol=17 | dir=in | app=c:\program files\lexmark 2600 series\lxdnmon.exe | "{73799F45-785A-4255-8EAA-3B88071F8559}" = protocol=17 | dir=in | app=c:\program files\lexmark 2600 series\frun.exe | "{7C3449D3-60B4-47F0-9DE1-833C8CD2AAFD}" = protocol=6 | dir=in | app=c:\windows\system32\lxdncoms.exe | "{8163D801-4063-4656-ABB9-20FA59C6F3C5}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxdntime.exe | "{8CBB3C1E-4263-49F9-8D2B-1E35DF46ECD8}" = protocol=6 | dir=in | app=c:\program files\lexmark 2600 series\frun.exe | "{94C27C68-6A18-4729-AAC3-DA11C54A1D3A}" = protocol=17 | dir=in | app=c:\windows\system32\lxdncoms.exe | "{97E2B8DD-60F0-4133-86BF-8C72F7AFB10F}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "{9F1341E2-2496-46EA-9DE0-84811D867511}" = protocol=17 | dir=in | app=c:\program files\lexmark 2600 series\lxdnamon.exe | "{B9A936DA-6C00-4846-AC6A-C61E63C39637}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "{CC537691-FB32-45AE-8D33-0906E60D62E2}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\w32x86\3\lxdnpswx.exe | "{CD7F6626-8114-4678-AB88-DD4A823D2A3F}" = protocol=17 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "{E82814F6-5B64-4308-97F6-EB87BED71AC2}" = protocol=6 | dir=in | app=c:\program files\abbyy finereader 6.0 sprint\scan\scanman6.exe | "{F19D1823-DCB4-42A0-B655-BB687E4F7484}" = protocol=17 | dir=in | app=c:\program files\abbyy finereader 6.0 sprint\scan\scanman6.exe | "TCP Query User{06F2D870-C48A-4BDF-9FA1-5B7BDFFEE426}C:\program files\intervideo\dvd8\windvd.exe" = protocol=6 | dir=in | app=c:\program files\intervideo\dvd8\windvd.exe | "TCP Query User{12F63259-94EA-4AAB-AF67-2D4150D212B8}C:\program files\lexmark 2600 series\lxdnmon.exe" = protocol=6 | dir=in | app=c:\program files\lexmark 2600 series\lxdnmon.exe | "TCP Query User{155E4FE4-C4B7-4784-BE6D-255EC86355D1}C:\program files\lexmark 2600 series\frun.exe" = protocol=6 | dir=in | app=c:\program files\lexmark 2600 series\frun.exe | "TCP Query User{5234D614-38E4-4D24-98CD-1A71F8BCFE35}C:\program files\intervideo\dvd8\windvd.exe" = protocol=6 | dir=in | app=c:\program files\intervideo\dvd8\windvd.exe | "TCP Query User{6115AA24-465E-4A1B-85D6-6B0D3A3FAC0A}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "TCP Query User{77644E13-9D0D-4BA1-AB3E-723585894F18}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "TCP Query User{AD764FCE-4A4F-47EF-BD2E-3E45AA757C7F}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "TCP Query User{CF135576-4D73-4BF4-B17B-56A019A78B28}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "TCP Query User{FA3FAE2E-A4FF-40E9-870B-0E7CF39CCF94}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{12489766-9B79-4014-8F4C-D729506D4B40}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{18D854CC-3924-463E-A0A2-654B7F5F2BC9}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{23557F41-24FC-430A-A22C-41E8F45AC645}C:\program files\intervideo\dvd8\windvd.exe" = protocol=17 | dir=in | app=c:\program files\intervideo\dvd8\windvd.exe | "UDP Query User{2C115113-10C0-4C5A-80AD-70F707F9E003}C:\program files\lexmark 2600 series\frun.exe" = protocol=17 | dir=in | app=c:\program files\lexmark 2600 series\frun.exe | "UDP Query User{5A79458B-A218-4402-BD37-257637330470}C:\program files\lexmark 2600 series\lxdnmon.exe" = protocol=17 | dir=in | app=c:\program files\lexmark 2600 series\lxdnmon.exe | "UDP Query User{610DB4E5-506A-4868-8C25-2DB1CCC04A14}C:\program files\intervideo\dvd8\windvd.exe" = protocol=17 | dir=in | app=c:\program files\intervideo\dvd8\windvd.exe | "UDP Query User{97DE283D-AD4B-4FAF-9021-7FBF7E889406}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "UDP Query User{C48A57B2-039F-40B9-AC82-C52DFF6A4B48}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "UDP Query User{F5720DED-6941-48A1-B59B-DB6C74622123}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YouTube Downloader 3.4 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8 "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{26A24AE4-039D-4CA4-87B4-2F83216027FF}" = Java(TM) 6 Update 29 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{55BFC356-5A7B-482F-A213-9ACFDDFF6037}" = Mouse Driver "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{81CD6232-10F5-4832-B3DA-1B88B1571045}" = Nero 7 Essentials "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{84EC225B-3547-4F56-8BD3-CB6D52F81527}" = Europa Universalis 2 "{8842825B-C865-40D3-89FD-A48A942195B4}" = Wireless LAN Driver "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{9D2A93AF-1EA6-42C1-9D04-68EB51FD167B}" = PowerArchiver 2007 Polish - KomputerSWIAT "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{9F72EF8B-AEC9-4CA5-B483-143980AFD6FD}" = ALPS Touch Pad Driver "{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.2) "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{B1364EB1-91B6-4618-A58E-00043E9A4FEA}" = SPSS 14.0PL for Windows "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge "{DB9E4EAB-2717-499F-8D56-4CC8A644AB60}" = MPlayer for Windows (Full Package) "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "ALLPlayer_is1" = ALLPlayer V4.X "avast" = avast! Free Antivirus "BSPlayerf" = BS.Player FREE "CNXT_MODEM_HDAUDIO_VEN_14F1&DEV_2BFA&SUBSYS_14F10001" = HDAUDIO Soft Data Fax Modem with SmartCP "DAEMON Tools Lite" = DAEMON Tools Lite "DVD Decrypter" = DVD Decrypter (Remove Only) "ffdshow_is1" = ffdshow v1.1.3984 [2011-09-22] "Gadu-Gadu 10" = Gadu-Gadu 10 "Google Chrome" = Google Chrome "InstallShield_{20471B27-D702-4FE8-8DEC-0702CC8C0A85}" = InterVideo WinDVD 8 "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń "InstallShield_{55BFC356-5A7B-482F-A213-9ACFDDFF6037}" = Mouse Driver "JDownloader" = JDownloader "Lexmark 2600 Series" = Lexmark 2600 Series "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MKV Player_is1" = MKV Player 2.0.1 "Mozilla Firefox 9.0.1 (x86 pl)" = Mozilla Firefox 9.0.1 (x86 pl) "Opera 11.60.1185" = Opera 11.60 "Picasa2" = Picasa 2 "RealAlt_is1" = Real Alternative 2.0.2 "Usbfix" = UsbFix By El Desaparecido "VIA Chrome9 HC IGP Windows Vista Display" = VIA Display Vista Driver 7.14.10.0058 "VN_VUIns_Rhine_VIA" = VIA Rhine-Family Fast-Ethernet Adapter "Youtube Downloader_is1" = Youtube Downloader 4.52 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2248478289-529992986-230967236-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "FoxTab FLV Player" = FoxTab FLV Player [color=#E56717]========== Last 10 Event Log Errors ==========[/color] [ Application Events ] Error - 2006-12-12 19:11:38 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2006-12-12 19:16:51 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2006-12-12 19:17:22 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2006-12-13 16:23:13 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2006-12-13 16:34:44 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2006-12-13 17:10:35 | Computer Name = Bartek-PC | Source = Microsoft-Windows-CAPI2 | ID = 131083 Description = Error - 2012-01-16 18:01:27 | Computer Name = Bartek-PC | Source = EventSystem | ID = 4609 Description = Error - 2012-01-19 15:38:46 | Computer Name = Bartek-PC | Source = EventSystem | ID = 4609 Description = Error - 2012-01-22 10:19:18 | Computer Name = Bartek-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd nero.exe, wersja 7.5.13.2, sygnatura czasowa 0x45a7d219, moduł powodujący błąd newtrf.dll, wersja 7.5.13.2, sygnatura czasowa 0x45a7c74b, kod wyjątku 0xc0000005, przesunięcie błędu 0x0000a675, identyfikator procesu 0xb48, godzina rozpoczęcia aplikacji 0x01ccd91095d83c8e. Error - 2012-01-22 10:19:34 | Computer Name = Bartek-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd nero.exe, wersja 7.5.13.2, sygnatura czasowa 0x45a7d219, moduł powodujący błąd nero.exe, wersja 7.5.13.2, sygnatura czasowa 0x45a7d219, kod wyjątku 0xc0000005, przesunięcie błędu 0x000041fd, identyfikator procesu 0xb48, godzina rozpoczęcia aplikacji 0x01ccd91095d83c8e. [ System Events ] Error - 2011-10-31 14:15:07 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2011-10-31 14:15:07 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2011-11-01 06:10:32 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2011-11-01 06:10:32 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2011-11-01 14:59:41 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2011-11-01 14:59:41 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2011-11-02 05:50:01 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2011-11-02 05:50:01 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7000 Description = Error - 2011-11-02 15:49:41 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7009 Description = Error - 2011-11-02 15:49:41 | Computer Name = Bartek-PC | Source = Service Control Manager | ID = 7000 Description = < End of report >