OTL Extras logfile created on: 2014-04-09 20:10:15 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Tomek\Downloads 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.11.9600.16521) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 5,80 Gb Total Physical Memory | 4,27 Gb Available Physical Memory | 73,54% Memory free 11,61 Gb Paging File | 10,01 Gb Available in Paging File | 86,23% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 156,16 Gb Total Space | 120,74 Gb Free Space | 77,32% Space Free | Partition Type: NTFS Drive D: | 309,50 Gb Total Space | 309,02 Gb Free Space | 99,84% Space Free | Partition Type: NTFS Computer Name: TOMEK-KOMPUTER | User Name: Tomek | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = htmlfile] -- C:\Program Files\Internet Explorer\iexplore.exe (Microsoft Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- "%systemroot%\system32\rundll32.exe" "%systemroot%\system32\mshtml.dll",PrintHTML "%1" http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{07D674AA-BDE6-46FB-B737-CBAC98B34CA4}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{0EA01DC9-1E19-4E7D-9F21-D67B1C031FC6}" = rport=137 | protocol=17 | dir=out | app=system | "{10CA8775-5EC4-458B-AD35-438FD1558D04}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{1F0378FE-A1F1-43C3-99A9-B6FE7F167DFF}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{37789645-3D57-435E-A0BB-EC8CA87E2B6E}" = lport=137 | protocol=17 | dir=in | app=system | "{3C6AD313-A896-4DF7-8A9C-142C1E27DAFE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{3DED87EF-2930-44A7-9A0E-C73B4AEEBE42}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{495BB289-8134-4DD0-B98C-5540B28ACF56}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{4AC6470A-E16D-4053-B4C7-FD15B1C04E34}" = lport=445 | protocol=6 | dir=in | app=system | "{4DEAC896-5FE8-40C8-8E76-BF6E3C3985C4}" = lport=139 | protocol=6 | dir=in | app=system | "{7196688A-D298-4018-871A-B92E03AAB54D}" = lport=10243 | protocol=6 | dir=in | app=system | "{7429A655-04C3-4C02-927C-41B3D0443540}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{8FE29B57-2565-4338-AE17-651847DC0EB6}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{970B568F-8ABB-4DA1-9E8D-EBE45C4398AD}" = rport=445 | protocol=6 | dir=out | app=system | "{AB4A3B7E-678C-4057-AA65-B0BE4AE85A8D}" = lport=138 | protocol=17 | dir=in | app=system | "{ABCF070C-0A9D-4591-8084-EB08D2F9725F}" = rport=139 | protocol=6 | dir=out | app=system | "{B0F36722-CF7A-46CA-87ED-51F5D5D69AC0}" = rport=138 | protocol=17 | dir=out | app=system | "{B3307B80-1B88-48DD-8697-D29334A1E99C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{B56B7089-4589-4854-89E8-C6691549DEE4}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C7A6DDB7-B2A5-4008-910F-5FF2265D995A}" = lport=2869 | protocol=6 | dir=in | app=system | "{D14309DC-A6BB-4061-A254-06C9E7DB0CC8}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{E426E026-D4D9-460E-BD56-903415245801}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F85911B1-334E-4047-A19F-45F00D0F1CF8}" = rport=10243 | protocol=6 | dir=out | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0889E16E-BED7-4FB0-ADDB-1C9F7E14DED1}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{162C9222-3FD5-47DC-88E3-AAE9412D3F4C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{3C578952-49C9-4E01-A3EA-E12AE3E61AD4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{4E1CA83F-094E-4139-BDA2-61C67DB83DE7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{4F70D844-69A2-41A4-9E97-2D58D04C8A5D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{6C2F1C7E-7DA0-4809-9900-2DDD14874E22}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 | "{7188B1D0-F9B4-49F1-9DDD-79D4A72B863F}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{760AF4AE-193B-4692-A442-02FF6CFB7E5A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{881AB957-70EC-43D8-886C-3A6739DFE999}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{9F783C80-F824-4A90-AA2B-3633BAD8B943}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{A4158255-A5D6-45BA-A710-E1CD2FB08C41}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{B6FD642B-0DF8-4EB5-82DC-3A1BCFEA1C77}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{BF6CB695-7923-4841-8184-F1F65AC9AD38}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{C7810689-668B-4FB4-96AD-306D912DFA59}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{C9191554-5683-49DC-9BD2-A960102A8D0A}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{C9BF7713-05E1-4D5C-9E7E-26BD706415DD}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{CB4B12FA-E3CF-4FB6-AB2D-39A0631D6A9B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{DC1A7EF4-37CE-45BC-A28D-FD1C7131EE0B}" = protocol=58 | dir=in | app=system | "{DD322215-A9DE-48F5-B46F-D0DD965693B8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{ECC96D4A-C100-446F-BA00-A84697D35D43}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{F8E89360-33EB-4C74-93A3-A2BEDAE830CA}" = protocol=6 | dir=out | app=system | "{FCD50F96-8D8D-4E9C-9E29-D9077FFBA551}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "TCP Query User{86E615EF-F6AD-4336-B269-C7B5CA827665}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe" = protocol=6 | dir=in | app=c:\users\tomek\appdata\local\google\chrome\application\chrome.exe | "UDP Query User{C7DE284B-EA64-4FE4-85D9-93E2908C8415}C:\users\tomek\appdata\local\google\chrome\application\chrome.exe" = protocol=17 | dir=in | app=c:\users\tomek\appdata\local\google\chrome\application\chrome.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{23170F69-40C1-2702-0922-000001000000}" = 7-Zip 9.22 (x64 edition) "{26A24AE4-039D-4CA4-87B4-2F86417051FF}" = Java 7 Update 51 (64-bit) "{45F1F774-38B4-3CC3-BAAF-051E6D19E48E}" = Microsoft .NET Framework 4.5.1 (PLK) "{7DEBE4EB-6B40-3766-BB35-5CBBC385DA37}" = Microsoft .NET Framework 4.5.1 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1033" = Microsoft .NET Framework 4.5.1 "{92FB6C44-E685-45AD-9B20-CADF4CABA132} - 1045" = Microsoft .NET Framework 4.5.1 (Polski) "CCleaner" = CCleaner "FindRight" = FindRight [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{451517F1-7E41-400B-AA36-FB7E2563526D}" = Dell Wireless Driver Installation "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{7A3C7E05-EE37-47D6-99E1-2EB05A3DA3F7}" = Skype™ 6.13 "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{E3A5A8AB-58F6-45FF-AFCB-C9AE18C05001}" = IDT Audio "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics "Adobe Shockwave Player" = Adobe Shockwave Player 12.0 "Avast" = avast! Free Antivirus "Drakensang Online" = Drakensang Online "fst_pl_59_is1" = fst_pl_59 "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 10.3.0 "SMPlayer" = SMPlayer 0.8.6.0 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-4112164598-2673477356-737689867-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Dropbox" = Dropbox "Google Chrome" = Google Chrome "UnityWebPlayer" = Unity Web Player [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2014-03-06 17:51:56 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-07 18:58:04 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-08 02:47:21 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-09 05:25:08 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-11 12:19:52 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-12 15:46:17 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-14 15:19:29 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-15 06:15:17 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-03-15 06:26:44 | Computer Name = Tomek-Komputer | Source = Application Error | ID = 1000 Description = Nazwa aplikacji powodującej błąd: Minecraft-Setup.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x53075f37 Nazwa modułu powodującego błąd: Minecraft-Setup.exe, wersja: 0.0.0.0, sygnatura czasowa: 0x53075f37 Kod wyjątku: 0xc0000094 Przesunięcie błędu: 0x000121e6 Identyfikator procesu powodującego błąd: 0x8d4 Godzina uruchomienia aplikacji powodującej błąd: 0x01cf4038ee63d11b Ścieżka aplikacji powodującej błąd: C:\Users\Tomek\Downloads\Minecraft-Setup.exe Ścieżka modułu powodującego błąd: C:\Users\Tomek\Downloads\Minecraft-Setup.exe Identyfikator raportu: 4dba7794-ac2c-11e3-b3c3-180373aa12ab Error - 2014-03-16 04:57:47 | Computer Name = Tomek-Komputer | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 2014-02-18 14:59:22 | Computer Name = Tomek-Komputer | Source = cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2014-02-18 14:59:31 | Computer Name = Tomek-Komputer | Source = cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2014-02-18 14:59:39 | Computer Name = Tomek-Komputer | Source = cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2014-02-18 14:59:48 | Computer Name = Tomek-Komputer | Source = cdrom | ID = 262151 Description = W urządzeniu \Device\CdRom0 wystąpił zły blok. Error - 2014-03-09 20:28:09 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7011 Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi iphlpsvc. Error - 2014-03-09 20:28:39 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7011 Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi ShellHWDetection. Error - 2014-03-09 20:29:09 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7011 Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi Schedule. Error - 2014-03-09 20:29:39 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7011 Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi ShellHWDetection. Error - 2014-03-10 12:27:44 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7011 Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na odpowiedź transakcji z usługi STacSV. Error - 2014-03-27 01:45:27 | Computer Name = Tomek-Komputer | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Update zakończyła działanie; wystąpił następujący błąd: %%-2147467243 < End of report >