OTL Extras logfile created on: 2012-07-22 11:22:00 - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Administrator\Moje dokumenty\Pobieranie Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 6.0.2900.5512) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 511,48 Mb Total Physical Memory | 257,68 Mb Available Physical Memory | 50,38% Memory free 1,22 Gb Paging File | 1,03 Gb Available in Paging File | 84,73% Paging File free Paging file location(s): C:\pagefile.sys 768 1536 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 9,99 Gb Total Space | 1,05 Gb Free Space | 10,53% Space Free | Partition Type: NTFS Drive D: | 19,53 Gb Total Space | 14,33 Gb Free Space | 73,34% Space Free | Partition Type: NTFS Drive E: | 21,49 Gb Total Space | 11,81 Gb Free Space | 54,95% Space Free | Partition Type: NTFS Drive F: | 23,51 Gb Total Space | 8,83 Gb Free Space | 37,55% Space Free | Partition Type: NTFS Computer Name: XXX-BECEE2F8A87 | User Name: Administrator | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .url [@ = InternetShortcut] -- rundll32.exe shdocvw.dll,OpenURL %l [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* InternetShortcut [open] -- rundll32.exe shdocvw.dll,OpenURL %l piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [Winamp.Bookmark] -- "C:\Program Files\Winamp\winamp.exe" /BOOKMARK "%1" (Nullsoft) Directory [Winamp.Enqueue] -- "C:\Program Files\Winamp\winamp.exe" /ADD "%1" (Nullsoft) Directory [Winamp.Play] -- "C:\Program Files\Winamp\winamp.exe" "%1" (Nullsoft) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 1 "FirewallDisableNotify" = 1 "UpdatesDisableNotify" = 1 "AntiVirusOverride" = 1 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Skype\Plugin Manager\skypePM.exe" = C:\Program Files\Skype\Plugin Manager\skypePM.exe:*:Enabled:Skype Extras Manager "F:\Gadu-Gadu 10\gg.exe" = F:\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10 -- (GG Network S.A.) "F:\Ares\Ares.exe" = F:\Ares\Ares.exe:*:Disabled:Ares p2p for windows -- (Ares Development Group) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{00203668-8170-44A0-BE44-B632FA4D780F}" = Adobe AIR "{0BEDBD4E-2D34-47B5-9973-57E62B29307C}" = ATI Control Panel "{18455581-E099-4BA8-BC6B-F34B2F06600C}" = Google Toolbar for Internet Explorer "{19339503-C7B5-4FBB-808C-847C3D1C2353}" = MISTRZ WIZAŻU "{1F63ED0B-EDD2-4037-B6AB-1358C624AF48}" = Scan "{21E75254-410E-49C4-8981-2E1A2A2221F2}" = HP Diagnostic Assistant "{2318C2B1-4965-11d4-9B18-009027A5CD4F}" = Google Toolbar for Internet Explorer "{2405665A-16C9-4D3A-B70E-F006220E1472}" = Overland "{267868CE-6DFF-40F7-9C58-C01119B7B117}" = Fax "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{2BBC9458-07CA-4843-848B-5C8146E5EFA8}" = CreativeProjects "{2F71F2BA-B513-4113-969C-18A84D238E27}" = 1310 "{34A59AC3-6C5C-4A09-A7F5-369A37176C8A}" = AiOSoftware "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{3AE681E0-4E8D-453F-950A-48534D3C0724}" = Copy "{3CF78481-FB7B-4B51-99A2-D5E0CD0B3AAF}" = HPSystemDiagnostics "{41254D7B-EADF-4078-AE4A-BD73B300EE86}" = Unload "{457791C5-D702-4143-A7B2-2744BE9573F2}" = HP Software Update "{56C049BE-79E9-4502-BEA7-9754A3E60F9B}" = neroxml "{597D73A8-5FDB-4bc1-9893-40B54459F1BC}" = ProductContext "{64CB2553-C109-4132-AA51-1F421B515FD1}" = Microsoft .NET Framework 1.1 Polish Language Pack "{68e0457b-881a-449f-909e-ecd995ceaba0}" = Nero 9 Lite "{7748AC8C-18E3-43BB-959B-088FAEA16FB2}" = Nero StartSmart "{77DCDCE3-2DED-62F3-8154-05E745472D07}" = Acrobat.com "{79FAE1B5-634C-4AFC-A994-13AB94A69FCB}" = Pszczółka Maja - Urodzinowa niespodzianka "{80413011-029C-4D6B-B3AD-725DDE60B81C}" = 1310Trb "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Arcade Town Toolbar "{8777AC6D-89F9-4793-8266-DE406F343E89}" = QFolder "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-0010-0415-0000-0000000FF1CE}" = Microsoft Software Update for Web Folders (Polish) 12 "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{981FB376-8418-4EA8-BBED-9DE5AA63E7D5}" = SkinsHP1 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9CB2512B-3EC4-43DF-8002-46BDAB5EDD1B}" = QuickProjects "{9E35B051-C7EE-47CB-BA43-9A7FFD4E61DE}" = OpenOffice.org 3.1 "{9EEBF8D5-8712-4D1D-88F4-4CDC2D270BC3}" = PrintScreen "{A1062847-0846-427A-92A1-BB8251A91E91}" = HP PSC & OfficeJet 4.2 "{A1DCC235-DACC-4E1F-8D11-D630634B4AEF}" = PhotoGallery "{A2500497-FD32-493e-B8E5-28D6728DBEF5}" = Readme "{A4EA3AB4-E78C-4286-96DF-26035507CE55}" = AiO_Scan "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-A90000000001}" = Adobe Reader 9 "{B2EC4A38-B545-4A00-8214-13FE0E915E6D}" = Advertising Center "{B32C75F2-7495-4D01-9431-C11E97D66F8C}" = DocProc "{B3D5D4E0-E965-41C4-ABFD-A7B1AD0663C2}" = Director "{B45D9FEE-1AF4-46F3-9A83-2545F81547F5}" = CreativeProjectsTemplates "{B56D5B09-C4FB-4EA0-8EAD-7BC3E2715A2D}" = DocumentViewer "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{BCC992E5-5C81-4066-9B55-03DC10B24D21}" = InstantShare "{BD5CA0DA-71AD-43DA-B19E-6EEE0C9ADC9A}" = Nero ControlCenter "{BF018D2F-C788-4AB1-AB95-1280EAB8F13E}" = TrayApp "{C81A2FE0-3574-00A9-CED4-BDAA334CBE8E}" = Nero Online Upgrade "{CB2F7EDD-9D1F-43C1-90FC-4F52EAE172A1}" = Microsoft .NET Framework 1.1 "{CCA5EAAD-92F4-4B7A-B5EE-14294C66AB61}" = PlayReady PC Runtime x86 "{E21658D0-8C83-4ADD-937B-6ED07F335ABA}" = 1310Tour "{E7310F2E-C551-4FAB-BA07-EAC2E158B1BB}" = IKEA Home Planner "{E8A80433-302B-4FF1-815D-FCC8EAC482FF}" = Nero Installer "{E90BEB5B-CFA0-418E-9ABB-4C4A7B0D9483}" = 1310_Help "{EC8673DA-F96B-497E-B2DB-BC7B029FD680}" = BufferChm "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F4F47155-5B4D-42AA-97F8-490BC52EA7F3}" = Destinations "{F65787F3-B356-45EC-8DD0-0E6758EDBCEE}" = WebReg "{FB08F381-6533-4108-B7DD-039E11FBC27E}" = Realtek AC'97 Audio "{FF26F7EA-BCEE-478C-9A1B-6B4F88717D73}" = CueTour "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "All ATI Software" = ATI - Software Uninstall Utility "Ares" = Ares 2.1.7 "Ashampoo Photo Commander 8_is1" = Ashampoo Photo Commander 8 v.8.5.0 "ATI Display Driver" = ATI Display Driver "Avira AntiVir Desktop" = Avira Free Antivirus "Best Friends Free Trial_is1" = Best Friends 1.03 "com.adobe.mauby.4875E02D9FB21EE389F73B8D1702B320485DF8CE.1" = Acrobat.com "ENTERPRISE" = Microsoft Office Enterprise 2007 "Gadu-Gadu 10" = Gadu-Gadu 10 "Gimnazjum - Chemia Nowej Ery" = Gimnazjum - Chemia Nowej Ery "Gimnazjum - Chemia Nowej Ery 2" = Gimnazjum - Chemia Nowej Ery 2 "Gimnazjum klasa 2 - Puls życia" = Gimnazjum klasa 2 - Puls życia "Gimnazjum klasa 3 - Puls życia" = Gimnazjum klasa 3 - Puls życia "GIMP-2_is1" = GIMP 2.8.0 "gry Toolbar" = gry Toolbar "HP Photo & Imaging" = HP Image Zone 4.2 "Microsoft .NET Framework 1.1 (1033)" = Microsoft .NET Framework 1.1 "Mozilla Firefox 14.0.1 (x86 pl)" = Mozilla Firefox 14.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "Odlotowa farma 3" = Odlotowa farma 3 "PhotoScape" = PhotoScape "PhotoWipe_is1" = PhotoWipe 1.0 "QuickTime" = QuickTime "RealAlt_is1" = Real Alternative 1.9.0 "SubEdit-Player_is1" = SubEdit-Player "Winamp" = Winamp (remove only) [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-05-08 09:57:32 | Computer Name = XXX-BECEE2F8A87 | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2012-05-08 09:57:32 | Computer Name = XXX-BECEE2F8A87 | Source = crypt32 | ID = 131083 Description = Nie można wyodrębnić głównej listy innych firm z pliku cab automatycznej aktualizacji z: , wystąpił błąd: Wymagany certyfikat jest poza okresem ważności, co wynika z weryfikacji bieżącego zegara systemowego lub sygnatury czasowej. Error - 2012-05-10 15:00:59 | Computer Name = XXX-BECEE2F8A87 | Source = Avira Antivirus | ID = 4104 Description = The virus definition file ANTIVIR.VDF could not be found! Returned error code: 0x3 Error - 2012-06-27 06:33:08 | Computer Name = XXX-BECEE2F8A87 | Source = VSS | ID = 12292 Description = Błąd Usługi kopiowania woluminów w tle: błąd tworzenia klasy COM dostawcy kopii w tle z identyfikatorem CLSID: {65ee1dba-8ff4-4a58-ac1c-3470ee2f376a} [0x80080005]. Error - 2012-07-03 04:43:41 | Computer Name = XXX-BECEE2F8A87 | Source = WmiAdapter | ID = 4099 Description = Otwarcie usługi nie powiodło się. [ OSession Events ] Error - 2010-05-12 14:05:26 | Computer Name = XXX-BECEE2F8A87 | Source = Microsoft Office 12 Sessions | ID = 7001 Description = ID: 0, Application Name: Microsoft Office Word, Application Version: 12.0.4518.1014, Microsoft Office Version: 12.0.4518.1014. This session lasted 9847 seconds with 7320 seconds of active time. This session ended with a crash. [ System Events ] Error - 2012-07-21 16:38:25 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error - 2012-07-21 16:44:21 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Sterownik portu równoległego z powodu następującego błędu: %%1058 Error - 2012-07-21 16:44:21 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error - 2012-07-22 05:00:13 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Sterownik portu równoległego z powodu następującego błędu: %%1058 Error - 2012-07-22 05:00:13 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error - 2012-07-22 05:04:04 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Sterownik portu równoległego z powodu następującego błędu: %%1058 Error - 2012-07-22 05:04:04 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi Usługa Google Update (gupdate) z powodu następującego błędu: %%2 Error - 2012-07-22 05:20:01 | Computer Name = XXX-BECEE2F8A87 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 2012-07-22 05:21:06 | Computer Name = XXX-BECEE2F8A87 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: avipbb avkmgr Fips intelppm ssmdrv Error - 2012-07-22 05:24:03 | Computer Name = XXX-BECEE2F8A87 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi StiSvc z argumentami „” w celu uruchomienia serwera: {A1F4E726-8CF1-11D1-BF92-0060081ED811} < End of report >