OTL Extras logfile created on: 2012-07-13 17:13:56 - Run 1 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Documents and Settings\Administrator\Pulpit Windows XP Home Edition Dodatek Service Pack 3 (Version = 5.1.2600) - Type = NTWorkstation Internet Explorer (Version = 8.0.6001.18702) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 1,75 Gb Total Physical Memory | 1,51 Gb Available Physical Memory | 86,38% Memory free 3,60 Gb Paging File | 3,53 Gb Available in Paging File | 98,06% Paging File free Paging file location(s): C:\pagefile.sys 2046 4092 [binary data] %SystemDrive% = C: | %SystemRoot% = C:\WINDOWS | %ProgramFiles% = C:\Program Files Drive C: | 54,61 Gb Total Space | 32,33 Gb Free Space | 59,21% Space Free | Partition Type: NTFS Drive D: | 89,10 Gb Total Space | 89,03 Gb Free Space | 99,92% Space Free | Partition Type: NTFS Drive E: | 89,17 Gb Total Space | 87,63 Gb Free Space | 98,28% Space Free | Partition Type: NTFS Drive G: | 7,50 Gb Total Space | 7,49 Gb Free Space | 99,99% Space Free | Partition Type: FAT32 Computer Name: MYSZA-954173107 | User Name: Administrator | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* .html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software) [HKEY_USERS\S-1-5-21-1844237615-776561741-1801674531-500\SOFTWARE\Classes\] .html [@ = Opera.HTML] -- C:\Program Files\Opera\Opera.exe (Opera Software) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- rundll32.exe shell32.dll,Control_RunDLL "%1",%* exefile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) https [open] -- "C:\Program Files\Opera\Opera.exe" "%1" (Opera Software) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe /idlist,%I,%L (Microsoft Corporation) Folder [explore] -- %SystemRoot%\Explorer.exe /e,/idlist,%I,%L (Microsoft Corporation) Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "FirstRunDisabled" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "UpdatesDisableNotify" = 0 "AntiVirusOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\AhnlabAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ComputerAssociatesAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\McAfeeFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\PandaFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SophosAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\SymantecFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TinyFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendAntiVirus] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\TrendFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\ZoneLabsFirewall] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Sr] "Start" = 4 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SrService] "Start" = 2 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] "C:\Program Files\Opera\opera.exe" = C:\Program Files\Opera\opera.exe:*:Enabled:Opera Internet Browser -- (Opera Software) "C:\Program Files\Gadu-Gadu 10\gg.exe" = C:\Program Files\Gadu-Gadu 10\gg.exe:*:Disabled:Gadu-Gadu 10 -- (GG Network S.A.) "C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe" = C:\Program Files\Opera\pluginwrapper\opera_plugin_wrapper.exe:*:Enabled:Opera Internet Browser - Plugin wrapper -- (Opera Software) [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{004C5DA2-2051-4D25-94BA-51CF810C91EB}" = LightScribe System Software 1.12.37.1 "{055EE59D-217B-43A7-ABFF-507B966405D8}" = ATI Catalyst Control Center "{0969AF05-4FF6-4C00-9406-43599238DE0D}" = ASUS Splendid Video Enhancement Technology "{1FBF6C24-C1FD-4101-A42B-0C564F9E8E79}" = CyberLink DVD Suite "{2580117B-C14B-F48D-A327-6D90AEF2F61D}" = Catalyst Control Center Localization Turkish "{26A24AE4-039D-4CA4-87B4-2F83216017FF}" = Java(TM) 6 Update 17 "{281B2F20-B2E6-E3F0-ACD7-235209A9B313}" = Catalyst Control Center Localization Danish "{2C9E18E4-68A2-D53E-00E0-4AEFAC8E9ACF}" = Skins "{2D9465E8-863A-8661-58CD-D2748D132B25}" = CCC Help Greek "{2E14AE17-EF98-D6EB-3B1C-4A9C735DD79E}" = Catalyst Control Center Localization Chinese Standard "{350C9415-3D7C-4EE8-BAA9-00BCB3D54227}" = WebFldrs XP "{36CDA33B-909B-4719-97D1-C4B99309BDC7}" = ATI Parental Control & Encoder "{3912D529-02BC-4CA8-B5ED-0D0C20EB6003}" = ATK Hotkey "{3B768993-0866-E671-D4DE-138DE07BA174}" = CCC Help Japanese "{3E2CC5AA-6318-4364-4E44-453F480729EE}" = CCC Help Portuguese "{3FDBE6F9-FC0A-8E5B-305F-3BA1980888E7}" = CCC Help Danish "{40BF1E83-20EB-11D8-97C5-0009C5020658}" = Power2Go "{412FE81D-BE52-508F-BA83-4EE163D194DB}" = Catalyst Control Center Localization Finnish "{4369109E-E519-3CE3-C2FC-4B24E69FE53C}" = CCC Help Turkish "{488FE5C5-D9DF-D25D-6DC9-610732EB9A0E}" = CCC Help Hungarian "{4A3DEAEA-D4F6-EA38-452D-09ED51FFD894}" = CCC Help Czech "{4A8926B8-F56D-EAD4-8839-FC5C3052EE00}" = Catalyst Control Center Localization Thai "{4A965C96-AC5F-6DD4-8189-BD6EDD479041}" = ccc-core-preinstall "{539139C6-9165-2608-1C67-0F6E2C2D12D0}" = CCC Help Chinese Traditional "{541DEAC0-5F3D-45E6-B7CB-94ECF3B96748}" = Skype web features "{5A9240FC-D86C-8D7B-4BE3-4BE0C223863B}" = Catalyst Control Center Localization Italian "{5FFE06F8-158F-1434-5F59-DA7F3BB8B427}" = CCC Help Polish "{60CB7D6D-D55F-174E-6FBD-841A0FB75DF7}" = ccc-utility "{612DF751-0F94-B0B2-113B-E711F31871AC}" = CCC Help Spanish "{65875C76-C064-7875-0828-CC4978B4941D}" = Catalyst Control Center Graphics Light "{66706938-B1B8-48AB-1A0D-E1341AD79313}" = CCC Help English "{6811CAA0-BF12-11D4-9EA1-0050BAE317E1}" = PowerDVD "{6C383E5A-A8D6-2F06-DAAD-474176487162}" = CCC Help Thai "{6E32B134-CA8D-49DD-B94C-0DB155CE70B5}" = ccc-Branding "{6FE97F8E-C4B0-39C1-BFD6-8445C931F69C}" = Catalyst Control Center Localization Japanese "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{73CFD1B1-6E78-6804-2347-FC3A8641F2C3}" = CCC Help Korean "{768AEFF6-0ADB-EC94-0F0B-DAA54B52B365}" = Catalyst Control Center Localization Chinese Traditional "{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053 "{790263AF-A697-0F38-06EB-5939B0CE17F9}" = Catalyst Control Center Graphics Full New "{7A271D30-6D65-ED23-872F-3F7A3E6BF2A3}" = Catalyst Control Center Localization Polish "{82A64F42-6C9E-9740-6962-968A0D01205F}" = CCC Help Italian "{831F4245-19C0-84C2-9D9C-7EE90295D200}" = Catalyst Control Center Localization German "{8441FF59-54B7-03A3-5740-B7A5E90C0018}" = CCC Help German "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8DF31BC6-7BEF-22C5-64AA-1D18049BAAD2}" = Catalyst Control Center Graphics Previews Common "{920AB7AD-AC2F-3D20-14E9-BA90E7906B37}" = CCC Help Russian "{92E15E9B-1B5F-A0B3-3267-B27D7F38E90C}" = Catalyst Control Center Localization Greek "{990EF1F3-0C93-AB86-DDC1-7CD7BECD3D94}" = CCC Help Norwegian "{9A7912A0-A08F-073D-3A58-BCC6166F0B7D}" = Catalyst Control Center Localization Portuguese "{9BAF043B-82FC-43E2-96EA-5F68015F4FA2}" = AuthenTec Fingerprint Sensor Minimum Install "{9ED10FE8-6A6D-012F-8ED7-2D88CE8AF6E3}" = Catalyst Control Center Graphics Full Existing "{A2BCA9F1-566C-4805-97D1-7FDC93386723}" = Adobe AIR "{A2D19B52-046B-F483-7354-C2F66EC8F89A}" = CCC Help Finnish "{A3051CD0-2F64-3813-A88D-B8DCCDE8F8C7}" = Microsoft .NET Framework 3.0 Service Pack 2 "{A3CAB163-3EE3-0DDD-28FC-8FDC387111FF}" = Catalyst Control Center Localization Swedish "{AC76BA86-7AD7-1033-7B44-A92000000001}" = Adobe Reader 9.2 "{AEE5AB86-8C98-8BB8-7405-8A386EF6ABC6}" = Catalyst Control Center Core Implementation "{B26FB649-D13B-5D5D-BA13-8620C13CA698}" = Catalyst Control Center Localization Norwegian "{B7A0CE06-068E-11D6-97FD-0050BACBF861}" = PowerProducer "{C09FB3CD-3D0C-3F2D-899A-6A1D67F2073F}" = Microsoft .NET Framework 2.0 Service Pack 2 "{C2C16C6B-AAFE-0371-08AD-8D17D4B375FD}" = Catalyst Control Center Localization Dutch "{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = LabelPrint "{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector "{CE2CDD62-0124-36CA-84D3-9F4DCF5C5BD9}" = Microsoft .NET Framework 3.5 SP1 "{D103C4BA-F905-437A-8049-DB24763BBE36}" = Skype™ 4.1 "{D36DD326-7280-11D8-97C8-000129760CBE}" = PhotoNow! "{D5A9B7C0-8751-11D8-9D75-000129760D75}" = MediaShow "{D8D4AF9A-6ADE-4B14-A7F5-BA858792729E}" = ASUS Security Protect Manager "{DC9766F2-A95D-FCD0-16A3-F7DFD6185210}" = Catalyst Control Center Localization Spanish "{DD952146-DDA5-6640-8DCF-FAB255EB6120}" = Catalyst Control Center Localization Hungarian "{E6640A29-18EB-87B8-7EC5-A48FE518EC5C}" = Catalyst Control Center Localization Czech "{E82B17D6-4A94-0124-E96D-3068DC60B4E7}" = ccc-core-static "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F7B2328E-523D-D652-0449-F1EAE1B0A937}" = CCC Help Dutch "{F8DE24C2-64E5-57A9-ECB5-077D36EEBB60}" = CCC Help Chinese Standard "{F98025F9-CA5F-03E7-2C38-4D88D7FE7F1B}" = Catalyst Control Center Localization Korean "{FCEC5C39-8E8F-376C-B426-78FC723DBC03}" = Catalyst Control Center Localization French "{FDC868E5-9338-042E-15C6-46732984E247}" = CCC Help Swedish "{FF1E9419-269F-96F5-4D07-92B111A7EA69}" = CCC Help French "{FF255BD9-A26D-B524-8728-F5CD18DE55E2}" = Catalyst Control Center Localization Russian "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Agere Systems Soft Modem" = Agere Systems HDA Modem "All ATI Software" = Narzędzie Software Uninstall Utility firmy ATI "ATI Display Driver" = ATI Display Driver "avast!" = avast! Antivirus "blueconnect_is1" = blueconnect "Dziobas Rar Player_is1" = Dziobas Rar Player 0.009.38 "Gadu-Gadu 10" = Gadu-Gadu 10 "ie8" = Windows Internet Explorer 8 "InstallShield_{CB099890-1D5F-11D5-9EA9-0050BAE317E1}" = PowerDirector "KLiteCodecPack_is1" = K-Lite Codec Pack 5.4.4 (Standard) "Microsoft .NET Framework 3.5 SP1" = Microsoft .NET Framework 3.5 SP1 "MSCompPackV1" = Microsoft Compression Client Pack 1.0 for Windows XP "Opera 12.00.1467" = Opera 12.00 "Windows Media Format Runtime" = Windows Media Format 11 runtime "Windows Media Player" = Windows Media Player 11 "WinRAR archiver" = Archiwizator WinRAR "WMFDist11" = Windows Media Format 11 runtime "wmp11" = Windows Media Player 11 "Wudf01000" = Microsoft User-Mode Driver Framework Feature Pack 1.0 [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Antivirus Events ] Error - 2012-06-30 15:26:39 | Computer Name = MYSZA-954173107 | Source = avast! | ID = 33554522 Description = Internal error has occurred in module aswar scan function failed!, function 00000002. [ Application Events ] Error - 2011-08-28 06:48:22 | Computer Name = MYSZA-954173107 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca wmplayer.exe, wersja 11.0.5721.5145, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. Error - 2011-08-28 06:49:17 | Computer Name = MYSZA-954173107 | Source = Application Hang | ID = 1002 Description = Aplikacja zawieszająca wmplayer.exe, wersja 11.0.5721.5145, moduł zawieszenia hungapp, wersja 0.0.0.0, adres zawieszenia 0x00000000. [ ASUS Security Protect Manager Events ] Error - 2009-12-29 10:07:23 | Computer Name = MYSZA-954173107 | Source = AuthWiz | ID = 100796068 Description = The submitted credentials were rejected. User: Mysza@MYSZA-954173107 Credentials: Password Error: (0xC516020B) The system could not log you on. Verify your user name and domain are correct and then type your password again. Letters in passwords must be typed using the correct case. Verify that Caps Lock is off. Error - 2009-12-29 10:07:32 | Computer Name = MYSZA-954173107 | Source = AuthWiz | ID = 100796068 Description = The submitted credentials were rejected. User: Mysza@MYSZA-954173107 Credentials: Password Error: (0xC516020B) The system could not log you on. Verify your user name and domain are correct and then type your password again. Letters in passwords must be typed using the correct case. Verify that Caps Lock is off. [ System Events ] Error - 2012-07-01 10:05:45 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi BITS z argumentami „” w celu uruchomienia serwera: {4991D34B-80A1-4291-83B6-3328366B9097} Error - 2012-07-01 10:06:24 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi BITS z argumentami „” w celu uruchomienia serwera: {4991D34B-80A1-4291-83B6-3328366B9097} Error - 2012-07-01 10:13:36 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi MSIServer z argumentami „” w celu uruchomienia serwera: {000C101C-0000-0000-C000-000000000046} Error - 2012-07-01 10:13:50 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi BITS z argumentami „” w celu uruchomienia serwera: {4991D34B-80A1-4291-83B6-3328366B9097} Error - 2012-07-01 10:14:32 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 2012-07-01 14:19:30 | Computer Name = MYSZA-954173107 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.0.140 dla karty sieciowej o adresie 002243234668 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2012-07-03 03:18:08 | Computer Name = MYSZA-954173107 | Source = Dhcp | ID = 1002 Description = Adres IP połączenia 192.168.1.211 dla karty sieciowej o adresie 002243234668 został zabroniony przez serwer DHCP 192.168.1.1 (Serwer DHCP wysłał komunikat DHCPNACK). Error - 2012-07-13 10:35:05 | Computer Name = MYSZA-954173107 | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: Aavmker4 aswSP Fips ItSDisk Processor Error - 2012-07-13 11:12:46 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi EventSystem z argumentami „” w celu uruchomienia serwera: {1BE1F766-5536-11D1-B726-00C04FB926AF} Error - 2012-07-13 11:13:12 | Computer Name = MYSZA-954173107 | Source = DCOM | ID = 10005 Description = Model DCOM odebrał błąd „%1084” podczas próby uruchomienia usługi StiSvc z argumentami „” w celu uruchomienia serwera: {A1F4E726-8CF1-11D1-BF92-0060081ED811} < End of report >