OTL Extras logfile created on: 2012-07-11 17:08:38 - Run 1 OTL by OldTimer - Version 3.2.53.1 Folder = C:\Users\Arek\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 1,83 Gb Available Physical Memory | 45,90% Memory free 7,99 Gb Paging File | 5,58 Gb Available in Paging File | 69,86% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 436,37 Gb Total Space | 111,10 Gb Free Space | 25,46% Space Free | Partition Type: NTFS Computer Name: AREK-KOMPUTER | User Name: Arek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-3102192489-277331445-1861856592-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{42D35D6E-F5C7-4929-B80A-DA2FFC3B8D9F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{58D53459-D2D5-48EA-ADE1-EE78CCF8DB64}" = rport=445 | protocol=6 | dir=out | app=system | "{5A8FEA4D-14CB-424B-8B68-924CAAB3C5F0}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{5C0DA0E2-CE3D-40ED-99D1-F47E1C29F134}" = lport=139 | protocol=6 | dir=in | app=system | "{660B7379-9D82-464C-B58F-AA6C09C38B95}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{6B7C53D3-D5D4-421B-BFE5-B0CD7C3F66DF}" = rport=138 | protocol=17 | dir=out | app=system | "{AA5F5DA1-30F8-4E60-A1F1-57D98F8F9F98}" = rport=139 | protocol=6 | dir=out | app=system | "{AC2BACB0-6FD7-4367-8FF1-EF9F3B3C4CF9}" = lport=445 | protocol=6 | dir=in | app=system | "{B5DA56DA-D21E-464A-8D2F-4C57B3E2F16D}" = lport=137 | protocol=17 | dir=in | app=system | "{D7791408-A765-4862-84DE-B696A7087129}" = rport=137 | protocol=17 | dir=out | app=system | "{EF7A4A2A-646C-47AA-8D05-F27BFFF58A8D}" = lport=138 | protocol=17 | dir=in | app=system | "{F163FE47-0B3D-4E67-92B5-4EF6C81213D3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{FBCAFC16-F4B7-43A2-B4C2-712E7707AA51}" = lport=54925 | protocol=17 | dir=in | name=brothernetwork scanner | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{04122272-1852-43E0-9774-73715CFB900D}" = protocol=6 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{19B7DF1A-42F7-4206-8631-1C6C589A3494}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{3A49D02C-6077-428A-8964-3799916604FB}" = protocol=17 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{40105323-8BBE-4C7B-9199-5A70BFDFCFF0}" = dir=in | app=c:\program files (x86)\itunes\itunes.exe | "{603989DA-06CB-4AB8-9B73-368371CAA929}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "{62B7ED3B-765C-47EA-AA8E-93034C124908}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | "{679C827B-BB42-4AEB-8B65-15E289B46FFE}" = protocol=17 | dir=in | app=c:\program files (x86)\bonjour\mdnsresponder.exe | "{73C611C1-D3AF-4BD2-AAB5-8F86F212B64A}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{858A2BFC-5A0D-4D24-957C-837592547356}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer_service.exe | "{87E7527E-13BB-4EA2-B023-E888935A4FC7}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{9A2F5EAC-1465-493C-99E2-983DA0E854FA}" = protocol=6 | dir=in | app=c:\program files\bonjour\mdnsresponder.exe | "{A70E6EDA-0091-4DD4-B6FF-FD2DAEA6C237}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{B227885F-AFB8-4394-8E75-BCC089DE5CE3}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "{B4AFB896-3561-4483-AB1F-666E7E25CB0B}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | "{C32DCB20-3C7A-410F-AB16-3E8E4D575F62}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{ECDB64DA-562A-41A0-8F11-523A916233E4}" = protocol=17 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | "{FBA90912-1400-4CC3-8AC9-C791A2016809}" = protocol=6 | dir=in | app=c:\program files (x86)\teamviewer\version7\teamviewer.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition) "{50431EE1-C1CC-4AE7-BDE3-B60536E7BA92}" = Panda Cloud Antivirus "{6A76BEAF-6D1F-4273-A79B-DA8410A2E56B}" = Apple Mobile Device Support "{6E3610B2-430D-4EB0-81E3-2B57E8B9DE8D}" = Bonjour "{840A3BAA-4C68-4581-9C7A-6F8D6CF531B9}" = iTunes "{87CF757E-C1F1-4D22-865C-00C6950B5258}" = Quickset64 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{D6AB1F5B-FED6-49A9-9747-327BD28FB3C7}" = COMODO Internet Security "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{FD9C13F5-1BF8-4C63-89D2-FE955C9DABD8}" = Motorola Mobile Drivers Installation 5.6.0 "CCleaner" = CCleaner "Defraggler" = Defraggler "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0001B4FD-9EA3-4D90-A79E-FD14BA3AB01D}" = PDFCreator "{122ADF8C-DDA1-480C-9936-C88F2825B265}" = Apple Application Support "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser "{1A2DDF67-3FA4-451C-8BF1-21CA4E546AEF}" = Motorola Device Software Update "{26A24AE4-039D-4CA4-87B4-2F83216022FF}" = Java(TM) 6 Update 22 "{28DB8373-C1BB-444F-A427-A55585A12ED7}" = Motorola Device Manager "{34A153FE-6926-4C14-B48A-B71E68C672A8}_is1" = MiniTool Partition Wizard Home Edition 7.1 "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{90110415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.3) - Polish "{DEAD07C6-D070-43AB-A60D-D9ABE55E296D}_is1" = JPEGCrops 0.7.5 beta "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.8 "{FB83EAC4-E3F6-4666-B45B-44522F2344B6}" = Brother MFL-Pro Suite MFC-J265W "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "AQQ" = WapSter AQQ "Ashampoo Burning Studio Elements_is1" = Ashampoo Burning Studio Elements 10.0.9 "Audacity_is1" = Audacity 1.2.6 "Comodo Dragon" = Comodo Dragon "FileZilla Client" = FileZilla Client 3.5.3 "Gimnazjum RP 2012 - Język Angielski1.0" = Gimnazjum RP 2012 - Język Angielski "Gimnazjum RP 2012 - Profil Humanistyczny1.0" = Gimnazjum RP 2012 - Profil Humanistyczny "Gimnazjum RP 2012 - Profil Matematyczno - Przyrodniczy1.0" = Gimnazjum RP 2012 - Profil Matematyczno - Przyrodniczy "G'MIC for GIMP_is1" = G'MIC for GIMP wersja 1.5.1.4 "Google Chrome" = Google Chrome "ipla" = ipla 2.3.5 "JDownloader" = JDownloader "KLiteCodecPack_is1" = K-Lite Codec Pack 8.4.0 (Full) "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.60.1.1000 "Metin2_is1" = Metin2 "MKVToolNix" = MKVToolNix 5.4.0 "MozBackup" = MozBackup 1.5.1 "Mozilla Firefox 11.0 (x86 pl)" = Mozilla Firefox 11.0 (x86 pl) "Mozilla Thunderbird 13.0.1 (x86 pl)" = Mozilla Thunderbird 13.0.1 (x86 pl) "Mp3tag" = Mp3tag v2.50 "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "Panda Cloud Antivirus" = Panda Cloud Antivirus "Revo Uninstaller" = Revo Uninstaller 1.93 "TeamViewer 7" = TeamViewer 7 "uTorrent" = µTorrent "VLC media player" = VLC media player 2.0.0 "WinGimp-2.0_is1" = GIMP 2.6.12 [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-07-10 19:04:26 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: Continuously busy for more than a second Error - 2012-07-10 19:04:26 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 4758 Error - 2012-07-10 19:04:26 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 4758 Error - 2012-07-10 19:04:28 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: Continuously busy for more than a second Error - 2012-07-10 19:04:28 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 6302 Error - 2012-07-10 19:04:28 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 6302 Error - 2012-07-10 19:04:29 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: Continuously busy for more than a second Error - 2012-07-10 19:04:29 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledEvent 7316 Error - 2012-07-10 19:04:29 | Computer Name = Arek-Komputer | Source = Bonjour Service | ID = 100 Description = Task Scheduling Error: m->NextScheduledSPRetry 7316 Error - 2012-07-11 04:29:02 | Computer Name = Arek-Komputer | Source = SideBySide | ID = 16842815 Description = Nie można wygenerować kontekstu aktywacji dla "c:\program files (x86)\WapSter\wapster aqq\System\DelZip179.dll". Błąd w pliku manifestu lub w pliku zasad "c:\program files (x86)\WapSter\wapster aqq\System\DelZip179.dll" w wierszu 8. Wartość "*" atrybutu "language" elementu "assemblyIdentity" jest nieprawidłowa. [ System Events ] Error - 2012-06-02 13:03:39 | Computer Name = Arek-Komputer | Source = Microsoft-Windows-BitLocker-Driver | ID = 24620 Description = Sprawdzanie zaszyfrowanego woluminu: nie można odczytać informacji o woluminie \\?\Volume{d1c21536-acc7-11e1-94dc-0024e8f542fe}. Error - 2012-06-02 13:19:29 | Computer Name = Arek-Komputer | Source = Microsoft-Windows-BitLocker-Driver | ID = 24620 Description = Sprawdzanie zaszyfrowanego woluminu: nie można odczytać informacji o woluminie \\?\Volume{d1c2156e-acc7-11e1-94dc-0024e8f542fe}. Error - 2012-06-02 13:21:10 | Computer Name = Arek-Komputer | Source = Microsoft-Windows-BitLocker-Driver | ID = 24620 Description = Sprawdzanie zaszyfrowanego woluminu: nie można odczytać informacji o woluminie \\?\Volume{d1c2156e-acc7-11e1-94dc-0024e8f542fe}. Error - 2012-06-02 13:22:00 | Computer Name = Arek-Komputer | Source = Microsoft-Windows-BitLocker-Driver | ID = 24620 Description = Sprawdzanie zaszyfrowanego woluminu: nie można odczytać informacji o woluminie \\?\Volume{d1c2156e-acc7-11e1-94dc-0024e8f542fe}. Error - 2012-06-02 13:29:25 | Computer Name = Arek-Komputer | Source = Microsoft-Windows-BitLocker-Driver | ID = 24620 Description = Sprawdzanie zaszyfrowanego woluminu: nie można odczytać informacji o woluminie \\?\Volume{176f4dfb-70fe-11e1-a557-0024e8f542fe}. Error - 2012-06-13 08:31:51 | Computer Name = Arek-Komputer | Source = Service Control Manager | ID = 7031 Description = Usługa Apple Mobile Device niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 60000 milisekund zostanie podjęta następująca czynność korekcyjna: Uruchom usługę ponownie. Error - 2012-06-17 02:56:33 | Computer Name = Arek-Komputer | Source = DCOM | ID = 10010 Description = Error - 2012-07-05 03:15:53 | Computer Name = Arek-Komputer | Source = DCOM | ID = 10010 Description = Error - 2012-07-05 14:06:54 | Computer Name = Arek-Komputer | Source = DCOM | ID = 10010 Description = Error - 2012-07-11 10:58:59 | Computer Name = Arek-Komputer | Source = Disk | ID = 262155 Description = Sterownik wykrył błąd kontrolera na \Device\Harddisk1\DR1. < End of report >