OTL Extras logfile created on: 2012-07-12 02:07:18 - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\ceglarek.ceglarek-PC\Downloads Windows Vista Home Premium Edition Service Pack 2 (Version = 6.0.6002) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,99 Gb Total Physical Memory | 2,40 Gb Available Physical Memory | 80,01% Memory free 6,19 Gb Paging File | 5,76 Gb Available in Paging File | 93,12% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 94,16 Gb Total Space | 33,07 Gb Free Space | 35,12% Space Free | Partition Type: NTFS Drive D: | 129,94 Gb Total Space | 85,84 Gb Free Space | 66,06% Space Free | Partition Type: NTFS Computer Name: CEGLAREK-PC | User Name: ceglarek | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = Opera.HTML] -- "C:\Program Files\Opera\Opera.exe" "%1" [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /separate,/idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /separate,/e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 "AntiVirusDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallDisableNotify" = 1 "FirewallOverride" = 1 "FirstRunDisabled" =  "UpdatesDisableNotify" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "oobe_av" = 1 "AntiVirusOverride" = 1 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 "VistaSp1" = Reg Error: Unknown registry data type -- File not found "VistaSp2" = Reg Error: Unknown registry data type -- File not found [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{1CE78018-2196-4C3F-8059-7B45119ABC09}" = rport=445 | protocol=6 | dir=out | app=system | "{1F3E61DA-E543-4126-9A25-612EE03339E7}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{35EF89F6-93F1-4F77-88C3-59B89BE095CB}" = rport=3702 | protocol=17 | dir=out | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{5380CEEE-2F81-4E62-BECE-5C990F250E07}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{58C7ABE8-B4E2-426E-B1EC-03832234C830}" = rport=138 | protocol=17 | dir=out | app=system | "{7183338D-C700-482E-9BD2-482BC004753D}" = lport=3702 | protocol=17 | dir=in | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{7546B2E9-E763-4BC7-9688-BFF70C1B6633}" = lport=139 | protocol=6 | dir=in | app=system | "{89E3CDF7-0361-43CA-9269-9CAA2A4413A7}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{A44C6924-6B67-4A88-99E5-FD8735EE1A55}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{B952E100-804D-420D-9C38-23EB9AAE4505}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{BDD0EC54-A726-408C-B591-EC168F0905E5}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{BE811E24-D1E1-4464-A94B-D0B3D54F6B68}" = rport=137 | protocol=17 | dir=out | app=system | "{C22B7089-FF8C-4BD8-B343-0EE2B660A56A}" = lport=3702 | protocol=17 | dir=in | svc=fdrespub | app=%systemroot%\system32\svchost.exe | "{D6541B0F-4119-41C7-9B40-4F44880DD24A}" = lport=445 | protocol=6 | dir=in | app=system | "{DCF62B2F-E802-4458-94D2-0AC904D755E7}" = rport=3702 | protocol=17 | dir=out | svc=fdphost | app=%systemroot%\system32\svchost.exe | "{EAAED669-9544-4B5A-89B9-C49DC1480B0D}" = rport=139 | protocol=6 | dir=out | app=system | "{EB948C40-97C9-4257-B87A-15E7D6F7A174}" = lport=137 | protocol=17 | dir=in | app=system | "{FA075AD9-288E-44E1-91E3-95FD85C5F8F1}" = lport=138 | protocol=17 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0F68B1BD-E604-4EED-9BEB-B34BBEA077E8}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "{1D3E8A0F-9968-44D0-B42B-CBD225BC8F82}" = protocol=17 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "{32B595F0-8868-4501-86EC-1CA68F3F653D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{493ED59A-6EB9-41D8-BA05-00F38A056179}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "{7F18EEB5-4F5C-4AA0-92E4-D302FDFF5991}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{95C5D674-082B-4B7D-AB8F-3F8B4D008370}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{9FC6D513-A780-483A-9641-EC57BFAFB993}" = protocol=6 | dir=in | app=c:\users\ceglarek.ceglarek-pc\appdata\local\temp\~ose4a4.tmp\rlvknlg.exe | "{B2F94238-60F5-49A9-B849-712799BC9CC8}" = protocol=6 | dir=in | app=c:\users\ceglarek.ceglarek-pc\appdata\local\temp\~osdfb5.tmp\rlvknlg.exe | "{D21DAFA4-A34D-427D-931A-AA88C87BFA48}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{D56398F3-CBAB-4C68-85E3-16F29F8A75AB}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{DF2226DA-FFBB-4FB5-B85E-D7265FCBC4E7}" = protocol=6 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "{ECB8DF5A-A273-4288-9F4B-F838509A9249}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{FEBB5CDF-EC8F-45DC-81C9-FE40C04E3B4A}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "TCP Query User{143AFF57-7F5B-46D1-96D7-D49AC2F2D761}C:\program files\sopcast\adv\sopadver.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "TCP Query User{20C398A1-9440-45AC-8FE4-0B538FFC085D}E:\murator\fsrv\fileserver.exe" = protocol=6 | dir=in | app=e:\murator\fsrv\fileserver.exe | "TCP Query User{7AE544C2-AD3E-4723-B85C-B83F2ABEA151}C:\program files\sopcast\sopcast.exe" = protocol=6 | dir=in | app=c:\program files\sopcast\sopcast.exe | "TCP Query User{7D462332-FED0-4A6A-88C6-93982C5FF0EF}C:\program files\relevantknowledge\rlvknlg.exe" = protocol=6 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "TCP Query User{A3796218-9880-48CC-A180-86F00383D74E}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe | "TCP Query User{A91D03FF-0885-4F23-876D-93A61226ECFF}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe | "TCP Query User{B697F4E1-7C51-4EFB-8A54-0309B19E151A}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "TCP Query User{BB8DA746-AF2F-4F28-8066-0CB8D34EA87C}C:\users\ceglarek.ceglarek-pc\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\ceglarek.ceglarek-pc\appdata\local\google\chrome\application\chrome.exe | "TCP Query User{E024C601-84C9-4B46-8115-F60EFB528B81}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "TCP Query User{E48FB108-FC79-4BB7-B6C0-17D7485CF3A0}C:\program files\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "UDP Query User{016CA3DA-53DF-4E36-823D-A733FDFCADA3}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe | "UDP Query User{10521E6A-5E12-4598-A735-AD1FB99D03CB}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe | "UDP Query User{20DC70A0-A652-4D79-B634-5DE0FDE221DC}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{43E5E5D6-D8F5-4E00-9DE4-A3B8D476389C}C:\program files\sopcast\sopcast.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\sopcast.exe | "UDP Query User{62301EDE-08C7-46C2-82C0-B30CD6C6EACD}C:\program files\google\google earth\plugin\geplugin.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\plugin\geplugin.exe | "UDP Query User{7039D407-15F7-42CD-AA4B-0FB70838241D}C:\program files\relevantknowledge\rlvknlg.exe" = protocol=17 | dir=in | app=c:\program files\relevantknowledge\rlvknlg.exe | "UDP Query User{86C93B47-69A5-4D1F-8E37-06A95481809E}E:\murator\fsrv\fileserver.exe" = protocol=17 | dir=in | app=e:\murator\fsrv\fileserver.exe | "UDP Query User{94F66ECE-5A8F-4B23-A2D3-9CC7D5534985}C:\users\ceglarek.ceglarek-pc\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\ceglarek.ceglarek-pc\appdata\local\google\chrome\application\chrome.exe | "UDP Query User{9D1EC3AB-2B1F-41B8-858A-3D1BA9708770}C:\program files\sopcast\adv\sopadver.exe" = protocol=17 | dir=in | app=c:\program files\sopcast\adv\sopadver.exe | "UDP Query User{A1ED4034-C3F0-4835-9785-52F47AE99D1A}C:\program files\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files\internet explorer\iexplore.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{089DD780-DB3F-4CDB-A0C2-111360247298}" = PC Connectivity Solution "{1B9B5B3B-28E7-4E59-A80D-D670AA984514}" = Nokia Connectivity Cable Driver "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{2934DCB0-F8EE-11E0-A4A5-B8AC6F97B88E}" = Google Earth Plug-in "{3921A67A-5AB1-4E48-9444-C71814CF3027}" = VCRedistSetup "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{46C045BF-2B3F-4BC4-8E4C-00E0CF8BD9DB}" = Adobe AIR "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{6D3245B1-8DB8-4A23-9CD2-2C90F40ABAF6}" = MSVC80_x86_v2 "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{854C47D1-C2A0-4492-8655-C3F8D49C1045}" = Nero 8 Essentials "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{90120000-00B0-0409-0000-0000000FF1CE}" = Microsoft Save as PDF Add-in for 2007 Microsoft Office programs "{90120000-00B2-0409-0000-0000000FF1CE}" = Microsoft Save as PDF or XPS Add-in for 2007 Microsoft Office programs "{9EFDFBA8-9174-3C61-8645-28376C5CA994}" = Microsoft .NET Framework 3.5 Language Pack SP1 - plk "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-AA1000000001}" = Adobe Reader X (10.1.3) "{C5DA59CF-2BB8-48D5-8E5B-17F2E0F0FEE4}" = System Requirements Lab for Intel "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{d08d9f98-1c78-4704-87e6-368b0023d831}" = RelevantKnowledge "{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1" = JPEGCrops 0.7.5 beta "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F58B763E-9FB9-4629-AF3C-CC9744BC4BA7}" = Fujitsu Siemens Computers Recovery "504244733D18C8F63FF584AEB290E3904E791693" = Pakiet sterowników systemu Windows - Nokia pccsmcfd (08/22/2008 7.0.0.0) "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "ALLPlayer_is1" = ALLPlayer V4.X "AutocompletePro3_is1" = AutocompletePro "Browsers Protector" = Browsers Protector "Fotosizer" = Fotosizer 1.25 "GoldWave v5.58" = GoldWave v5.58 "KLiteCodecPack_is1" = K-Lite Codec Pack 4.8.5 (Full) "Microsoft .NET Framework 3.5 Language Pack SP1 - plk" = Pakiet językowy programu Microsoft .NET Framework 3.5 z dodatkiem SP1 — PLK "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "NVIDIA Drivers" = NVIDIA Drivers "WinRAR archiver" = Archiwizator WinRAR [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Google Chrome" = Google Chrome [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-06-06 15:37:39 | Computer Name = ceglarek-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd winamp.exe, wersja 5.5.8.2985, sygnatura czasowa 0x4c3b43ea, moduł powodujący błąd USER32.dll, wersja 6.0.6002.18005, sygnatura czasowa 0x49e0380e, kod wyjątku 0xc0000005, przesunięcie błędu 0x00022048, identyfikator procesu 0xe6c, godzina rozpoczęcia aplikacji 0x01cd441bd415ab00. Error - 2012-06-06 15:37:53 | Computer Name = ceglarek-PC | Source = Application Error | ID = 1000 Description = Aplikacja powodująca błąd winamp.exe, wersja 5.5.8.2985, sygnatura czasowa 0x4c3b43ea, moduł powodujący błąd USER32.dll, wersja 6.0.6002.18005, sygnatura czasowa 0x49e0380e, kod wyjątku 0xc0000005, przesunięcie błędu 0x00022048, identyfikator procesu 0x1698, godzina rozpoczęcia aplikacji 0x01cd441bdc0f7250. Error - 2012-06-08 01:25:04 | Computer Name = ceglarek-PC | Source = WinMgmt | ID = 10 Description = Error - 2012-06-09 01:51:13 | Computer Name = ceglarek-PC | Source = WinMgmt | ID = 10 Description = Error - 2012-06-09 09:46:32 | Computer Name = ceglarek-PC | Source = WinMgmt | ID = 10 Description = Error - 2012-06-10 14:08:29 | Computer Name = ceglarek-PC | Source = WinMgmt | ID = 10 Description = Error - 2012-06-13 21:27:52 | Computer Name = ceglarek-PC | Source = WinMgmt | ID = 10 Description = Error - 2012-06-25 10:02:28 | Computer Name = ceglarek-PC | Source = ESENT | ID = 467 Description = Windows (1324) Windows: Baza danych C:\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb: Indeks System_ItemFolderNameDisplay415 tabeli SystemIndex_0A jest uszkodzony (0). Error - 2012-06-25 10:02:28 | Computer Name = ceglarek-PC | Source = Windows Search Service | ID = 7040 Description = Error - 2012-07-02 12:32:42 | Computer Name = ceglarek-PC | Source = Application Hang | ID = 1002 Description = Program iexplore.exe w wersji 9.0.8112.16446 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania raportami i rozwiązaniami problemów. Identyfikator procesu: 761c Godzina rozpoczęcia: 01cd586e24c4ab80 Godzina zakończenia: 202 [ System Events ] Error - 2012-07-11 19:34:01 | Computer Name = ceglarek-PC | Source = Service Control Manager | ID = 7026 Description = Error - 2012-07-11 19:34:47 | Computer Name = ceglarek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001 Description = Error - 2012-07-11 19:43:51 | Computer Name = ceglarek-PC | Source = Microsoft-Windows-LanguagePackSetup | ID = 1001 Description = Error - 2012-07-11 19:44:37 | Computer Name = ceglarek-PC | Source = Service Control Manager | ID = 7026 Description = Error - 2012-07-11 19:47:34 | Computer Name = ceglarek-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-11 19:47:42 | Computer Name = ceglarek-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-11 19:47:44 | Computer Name = ceglarek-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-11 19:47:47 | Computer Name = ceglarek-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-11 19:47:47 | Computer Name = ceglarek-PC | Source = DCOM | ID = 10005 Description = Error - 2012-07-11 19:48:28 | Computer Name = ceglarek-PC | Source = Service Control Manager | ID = 7026 Description = < End of report >