OTL Extras logfile created on: 2014-07-27 03:02:07 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Karol\Desktop 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,07 Gb Available Physical Memory | 51,82% Memory free 8,00 Gb Paging File | 6,31 Gb Available in Paging File | 78,97% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 270,44 Gb Total Space | 248,45 Gb Free Space | 91,87% Space Free | Partition Type: NTFS Drive D: | 195,31 Gb Total Space | 174,88 Gb Free Space | 89,54% Space Free | Partition Type: NTFS Computer Name: KAROL-PC | User Name: Karol | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-3657000577-510290356-3797029375-1001\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{03DC78A3-3A3C-4A43-9232-3C5C4318EC77}" = lport=137 | protocol=17 | dir=in | app=system | "{0D66D3BF-6C73-4416-B4CF-88D55D703890}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{0DBFC263-6EBE-49FD-8547-A2B738D0E8A8}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{294FB1F9-6ED0-498D-98C8-02C4452A1937}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{45CF093B-F1A5-4261-A86D-F41A3E090EBB}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{524F1864-147F-484E-9100-6827CEAE6DBF}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{5E781FEA-2ED4-48FB-A686-7AC4AE4B2002}" = rport=139 | protocol=6 | dir=out | app=system | "{715DEAB3-83F5-4F45-9411-7491600506A2}" = lport=10243 | protocol=6 | dir=in | app=system | "{724758A0-F85C-4066-9E25-A83106B63672}" = rport=445 | protocol=6 | dir=out | app=system | "{73F79BE4-83FE-4C6B-AC17-7FA00AD5C7C0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{7E08C039-AA64-4A43-8073-3018C1C0DBA1}" = rport=138 | protocol=17 | dir=out | app=system | "{86FDA63A-ACB7-4C03-868A-1686CE7E5ED7}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{9DC3A979-CFA0-495D-9BE6-23887651FE66}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{9F2374A4-755D-42E1-818A-963A03710F44}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{A3E18F67-B0DE-4FCD-848D-B9E1631FE5CB}" = lport=445 | protocol=6 | dir=in | app=system | "{BBBA6C0E-7AD3-4653-A55A-5BC1B91D1A04}" = rport=137 | protocol=17 | dir=out | app=system | "{C5E96E30-12B5-4081-9F17-62B8BB31F26E}" = lport=139 | protocol=6 | dir=in | app=system | "{CCD08E48-2118-43D2-9DA3-32C4C5488F77}" = lport=2869 | protocol=6 | dir=in | app=system | "{D2BD44D1-3994-49DB-A371-349C989216E3}" = rport=10243 | protocol=6 | dir=out | app=system | "{E14352CC-FF47-46D7-A3F1-C67982C6B7EA}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{E25621AF-26D2-4A1B-BF9B-8C535DDF3BC8}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{E5332A75-08F9-422C-ABBF-2CCFFF30A8B5}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{E6525EAA-A139-4359-8803-B9D6ABE1193C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{F1F78E2E-E2A0-4417-8888-06FE784A8BF7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F4282759-621F-4103-AAB7-C651566F748A}" = lport=138 | protocol=17 | dir=in | app=system | "{FBB4D12B-B2A0-411F-AC80-30584EC29988}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{FE7DF782-08AC-42FC-8625-706DC0AB2668}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{175F0AF1-9E8F-4EA7-98B7-DBF5659975DB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{2E56A9B1-CE3D-4F26-A2EF-4FF24B0A49F5}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{3BEE735C-ECD0-4801-932F-67E0896F5FC4}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{48B993D5-B714-447E-9B0D-CB7AC349883E}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{509DAF32-B433-4C36-97FE-FDF8FCED2F8E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{526878CE-0FDC-48D8-92D6-0631CC81D246}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{5581CC24-0FE0-414F-83DB-DD2BF05F494C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{5A28AC16-F7A4-4E92-BE29-BB8E5C373E98}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{76B9D7A6-5BC3-4538-827E-24A8284C42B4}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe | "{7AC2CD39-7D19-45A5-91D6-2F67B8B9C04E}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe | "{84C78319-8B8D-444B-9415-EDE4C49993BE}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{867201FE-43BE-4837-8642-3F46D4F358B4}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{8C7C11BA-F52C-47FF-A65A-1A57DED56F67}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgmfapx.exe | "{92C090D9-B3AF-4FE2-B370-2211379BFCEE}" = protocol=6 | dir=out | app=system | "{971ABB4C-9596-4889-95B7-3B3BBE65BCA6}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe | "{9C6F841F-A687-4E91-9D02-CCB99855511E}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{9F3C3F7F-2A4F-425A-A0E7-9408D96E7D8D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{B4F6E6B9-D7CB-4AB5-BC0A-DEE53EE35AC7}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{BED1015B-0458-4203-81C7-42894819B893}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{C2D3B8E5-149D-49D9-B0F1-38E70C226DAE}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe | "{D2283999-6DCA-41AA-80F5-EC6466B6FA8E}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2014\avgdiagex.exe | "{D653760A-7555-448D-9826-488F79DD7FF8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{E02C7BB6-151B-491B-BCE2-76F167B38FE8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{E24510B0-4F8B-4553-890E-4AF4A4CD404B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{E41010CF-0573-489F-8542-849188796DEC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{E802B43E-F03C-4E44-8405-DB88435845B2}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgnsa.exe | "{ED2F0AAD-CE21-4BE1-95F0-7DA18B1E2D63}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2014\avgemca.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{8C775E70-A791-4DA8-BCC3-6AB7136F4484}" = Visual Studio 2012 x64 Redistributables "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 337.88 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 337.88 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 337.88 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.0.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 337.88 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.13.1220 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 12.4.67 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.30.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 12.4.67 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.23 "{B5BBEF15-44B1-43FA-A4B7-3AFE501B5949}" = AVG 2014 "{D1C0C574-6385-4ED1-BBD9-2B62FCECE0EF}" = AVG 2014 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "AVG" = AVG 2014 "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "NVIDIA Drivers" = NVIDIA Drivers "VLC media player" = VLC media player 2.1.4 "WinRAR archiver" = WinRAR 5.10 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{196BB40D-1578-3D01-B289-BEFC77A11A1E}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.30319 "{80407BA7-7763-4395-AB98-5233F1B34E65}" = NVIDIA PhysX "{98EFF19A-30AB-4E4B-B943-F06B1C63EBF8}" = Visual Studio 2012 x86 Redistributables "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "Adobe Flash Player Plugin" = Adobe Flash Player 14 Plugin "Metin2_is1" = Metin2 "Mozilla Firefox 31.0 (x86 pl)" = Mozilla Firefox 31.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-3657000577-510290356-3797029375-1001\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "GG" = GG "OpenFM" = OpenFM [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2014-07-23 08:04:53 | Computer Name = Karol-PC | Source = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe | ID = 131073 Description = Error - 2014-07-23 09:59:32 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-24 07:01:09 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-24 14:05:32 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-24 20:43:26 | Computer Name = Karol-PC | Source = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe | ID = 131073 Description = Error - 2014-07-25 05:31:40 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-25 16:42:38 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-25 21:52:08 | Computer Name = Karol-PC | Source = C:\Program Files\NVIDIA Corporation\NvStreamSrv\nvstreamsvc.exe | ID = 131073 Description = Error - 2014-07-26 07:24:58 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = Error - 2014-07-26 18:50:20 | Computer Name = Karol-PC | Source = WinMgmt | ID = 10 Description = [ System Events ] Error - 2014-07-23 07:09:45 | Computer Name = Karol-PC | Source = DCOM | ID = 10010 Description = Error - 2014-07-24 13:53:13 | Computer Name = Karol-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 19:39:34 na ?2014-?07-?24 było nieoczekiwane. Error - 2014-07-24 14:04:05 | Computer Name = Karol-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 19:54:08 na ?2014-?07-?24 było nieoczekiwane. Error - 2014-07-25 16:41:13 | Computer Name = Karol-PC | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 15:50:56 na ?2014-?07-?25 było nieoczekiwane. < End of report >