OTL Extras logfile created on: 2013-02-11 13:21:18 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = D:\Pobrane Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,83 Gb Available Physical Memory | 41,44% Memory free 4,00 Gb Paging File | 2,37 Gb Available in Paging File | 59,25% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 73,38 Gb Total Space | 51,31 Gb Free Space | 69,93% Space Free | Partition Type: NTFS Drive D: | 224,61 Gb Total Space | 217,43 Gb Free Space | 96,81% Space Free | Partition Type: NTFS Computer Name: DOM | User Name: Ursus | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-448702323-655474586-2091594761-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring\KasperskyAntiVirus] "DisableMonitoring" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{08CFE170-3063-4A4C-A32E-8B2F28468F8D}" = lport=445 | protocol=6 | dir=in | app=system | "{0ECA991C-DFB8-41FE-B76F-7BBC66E74D9B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{3854F8A7-3300-4EA5-9F0C-81C4431B7D40}" = lport=10243 | protocol=6 | dir=in | app=system | "{451EB6D0-A518-4FC1-A11C-B86F18A24F80}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{4FE97C42-CCA7-423D-B224-49C9E1C24D2D}" = rport=138 | protocol=17 | dir=out | app=system | "{596589A9-0097-46DF-9C24-9E9121393EF9}" = rport=139 | protocol=6 | dir=out | app=system | "{5F502261-0BFC-4C93-91B9-5822C5C4D340}" = rport=10243 | protocol=6 | dir=out | app=system | "{776296DD-BD29-4AC7-B526-8CD11477049A}" = lport=139 | protocol=6 | dir=in | app=system | "{7B8DFD34-748C-482A-BDCB-8AA5F4C77130}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{7C613A09-A2D1-493A-A400-A725D9F652FA}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{7F72F3FA-2D79-4977-8438-00FF2AADF827}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{9727B26A-63C2-4216-BC17-667CF19AC7DE}" = rport=137 | protocol=17 | dir=out | app=system | "{98B64998-8770-400B-B1AB-22A558BA14D5}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{99C3F733-E977-4C94-BBE3-C3E7C6364C1F}" = lport=2869 | protocol=6 | dir=in | app=system | "{A7768977-DDFB-4849-8AA7-35D058150D9B}" = rport=445 | protocol=6 | dir=out | app=system | "{CC6DF127-8A96-47D2-AEE0-C221F5C4B977}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{E30E1A4B-5693-4A26-AC26-34D53DFA7C1C}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{E3A670CE-F001-4A25-B521-1D897F70E2D9}" = lport=137 | protocol=17 | dir=in | app=system | "{E94239B5-D426-497E-97AB-B9CBD69DB55C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{EE78254C-9C84-4460-B8AD-BA6592067985}" = lport=138 | protocol=17 | dir=in | app=system | "{F5A0E5DA-6171-4515-B7B9-6BB14EAD213D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0DE3C3A5-E92A-4FF5-ADAE-392DAD610891}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{14EA6088-15E1-4DC7-9084-59D648CAFEEA}" = protocol=6 | dir=in | app=d:\programy\steam\steam.exe | "{1ABACE04-1454-4F34-852A-881C38ACBAC7}" = protocol=6 | dir=out | app=system | "{2FD40893-B1C1-4255-B101-F36B473B9002}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{3618EE77-B2B0-4B66-A7D3-B23774964EAB}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{367A0F28-A5B4-4D92-90D1-B73ABD6BD8AC}" = protocol=17 | dir=in | app=d:\programy\utorrent\utorrent.exe | "{3CF08C95-6CC2-4610-8E71-8B2147F08EE6}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{3E6E4430-C3D1-40DF-81EE-6DB30D2B7FA1}" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3x.exe | "{607FC4E4-356F-41DB-B19B-77EDCCFCBA10}" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3y.exe | "{61042F54-2E7C-4235-A506-35AC545902BC}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{68F87C0F-B269-4711-B962-E912DD3B4589}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{6CC81297-B49A-4DC3-BA99-23A60763E3D6}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{6E8F4E12-3004-49A7-A3C6-546B0BD5A2C4}" = protocol=17 | dir=in | app=d:\programy\steam\steam.exe | "{716C9C6D-ADBE-4F26-8EEE-7BEE122AF14C}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{846F63FC-39C9-432E-A849-1D265C369DEC}" = protocol=6 | dir=in | app=d:\programy\utorrent\utorrent.exe | "{A2A510E9-CCDF-4672-B55F-C5B117EBB274}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{A529D1BC-53C3-47AD-A5AF-3D239E3A254E}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{B5E3CDD6-C567-4ADA-9002-D034C13021F7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{B8F9A04F-3F36-4C63-BEEC-80C0AC54D96A}" = protocol=17 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3y.exe | "{C01802DD-4EED-4D1D-B915-DEB476925D2C}" = protocol=6 | dir=in | app=c:\program files\microsoft games\age of empires iii\age3x.exe | "{CAF3804C-2424-47D4-A7C7-83008DEDA389}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{D0A1C728-BEB0-46FD-A5FC-CA980272B255}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{D1E8EC1E-EE7E-4007-AB61-05B6287EE9F3}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{E3C17AEC-F258-4789-AADD-8B95FE554C29}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{FBB3F38B-FE74-445B-863D-D67702EBE779}" = dir=in | app=c:\program files\skype\phone\skype.exe | "TCP Query User{B8817F0F-1485-4B9D-9A01-38B79A179905}E:\easysetupassistant\tl-wr340g\easysetupassistant.exe" = protocol=6 | dir=in | app=e:\easysetupassistant\tl-wr340g\easysetupassistant.exe | "UDP Query User{F0D09792-141D-46B6-B3A2-1C8E26441061}E:\easysetupassistant\tl-wr340g\easysetupassistant.exe" = protocol=17 | dir=in | app=e:\easysetupassistant\tl-wr340g\easysetupassistant.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs "{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13 "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.1 "{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013 "{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{8B531332-0D5D-4B3B-A22C-8330DEA695A7}" = LogMeIn Hamachi "{8B922CF8-8A6C-41CE-A858-F1755D7F5D29}" = NVIDIA PhysX "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 310.90 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 310.90 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 310.90 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 310.90 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.1031 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.11.3 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties "{DADC7AB0-E554-4705-9F6A-83EA82ED708E}" = Realtek Ethernet Diagnostic Utility "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "CCleaner" = CCleaner "CPUID CPU-Z_is1" = CPUID CPU-Z 1.63.0 "DAEMON Tools Lite" = DAEMON Tools Lite "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Google Chrome" = Google Chrome "InstallShield_{1C08A24C-B168-407E-A826-68FAF5F20710}" = Age of Empires III - The WarChiefs "InstallShield_{7B9CC60A-9B81-46A3-A953-76B6BF9EEC97}" = Age of Empires III "InstallShield_{C43C1415-3DFC-4089-9A32-0BECF28A6046}" = Age of Empires III - The Asian Dynasties "InstallWIX_{560985FB-4B76-4121-9189-7A2CDC7886D6}" = Kaspersky Internet Security 2013 "LogMeIn Hamachi" = LogMeIn Hamachi "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Steam App 10" = Counter-Strike "uTorrent" = µTorrent "WinRAR archiver" = WinRAR 4.20 (32-bitowy) [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-448702323-655474586-2091594761-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "GG" = GG [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-02-11 07:47:30 | Computer Name = Dom | Source = ESENT | ID = 455 Description = Windows (3544) Windows: Wystąpił błąd -1811 podczas otwierania pliku dziennika C:\ProgramData\Microsoft\Search\Data\Applications\Windows\MSS00007.log. Error - 2013-02-11 07:47:30 | Computer Name = Dom | Source = Windows Search Service | ID = 9000 Description = Error - 2013-02-11 07:47:30 | Computer Name = Dom | Source = Windows Search Service | ID = 7040 Description = Error - 2013-02-11 07:47:30 | Computer Name = Dom | Source = Windows Search Service | ID = 7042 Description = Error - 2013-02-11 07:47:31 | Computer Name = Dom | Source = Windows Search Service | ID = 9002 Description = Error - 2013-02-11 07:47:31 | Computer Name = Dom | Source = Windows Search Service | ID = 3029 Description = Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Windows Search Service | ID = 3029 Description = Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Windows Search Service | ID = 3028 Description = Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Windows Search Service | ID = 3058 Description = Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Windows Search Service | ID = 7010 Description = [ System Events ] Error - 2013-02-10 12:21:38 | Computer Name = Dom | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi LogMeIn Hamachi Tunneling Engine z powodu następującego błędu: %%1053 Error - 2013-02-10 15:07:15 | Computer Name = Dom | Source = DCOM | ID = 10010 Description = Error - 2013-02-10 15:08:54 | Computer Name = Dom | Source = Microsoft-Windows-Time-Service | ID = 4 Description = Uruchomienie dostawcy czasu „VMICTimeProvider” nie powiodło się, ponieważ wystąpił następujący błąd: This file is open for modification in an unresolved transaction and may be opened for execute only by a transacted reader. (0x80071AB6) Error - 2013-02-10 15:14:25 | Computer Name = Dom | Source = DCOM | ID = 10016 Description = Error - 2013-02-10 15:14:33 | Computer Name = Dom | Source = WMPNetworkSvc | ID = 866321 Description = Error - 2013-02-10 15:14:33 | Computer Name = Dom | Source = WMPNetworkSvc | ID = 866317 Description = Error - 2013-02-10 15:14:33 | Computer Name = Dom | Source = WMPNetworkSvc | ID = 866321 Description = Error - 2013-02-10 15:14:33 | Computer Name = Dom | Source = WMPNetworkSvc | ID = 866317 Description = Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Service Control Manager | ID = 7024 Description = Usługa Windows Search zakończyła działanie; wystąpił specyficzny dla niej błąd %%-1073473535. Error - 2013-02-11 07:47:33 | Computer Name = Dom | Source = Service Control Manager | ID = 7031 Description = Usługa Windows Search niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. W przeciągu 30000 milisekund zostanie podjęta następująca czynność korekcyjna: Restart the service. < End of report >