OTL Extras logfile created on: 2013-05-20 16:27:39 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\maly\Downloads 64bit- Ultimate Edition (Version = 6.1.7600) - Type = NTWorkstation Internet Explorer (Version = 8.0.7600.16385) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,88 Gb Available Physical Memory | 44,05% Memory free 4,00 Gb Paging File | 2,19 Gb Available in Paging File | 54,82% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 64,52 Gb Total Space | 39,47 Gb Free Space | 61,18% Space Free | Partition Type: NTFS Drive D: | 9,76 Gb Total Space | 0,01 Gb Free Space | 0,13% Space Free | Partition Type: NTFS Drive E: | 37,57 Gb Total Space | 25,38 Gb Free Space | 67,56% Space Free | Partition Type: NTFS Drive F: | 97,65 Gb Total Space | 23,81 Gb Free Space | 24,38% Space Free | Partition Type: NTFS Drive H: | 97,65 Gb Total Space | 5,05 Gb Free Space | 5,17% Space Free | Partition Type: NTFS Computer Name: MALY-KOMPUTER | User Name: maly | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-3635181937-4006003954-2036862025-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [[ Odkurz tutaj ]] -- "C:\Program Files (x86)\Odkurzacz\odkurzacz.exe" "%1" (Franmo Software) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [[ Odkurz tutaj ]] -- "C:\Program Files (x86)\Odkurzacz\odkurzacz.exe" "%1" (Franmo Software) Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{071c9b48-7c32-4621-a0ac-3f809523288f}" = Microsoft Visual C++ 2005 Redistributable (x64) "{491AEB8B-9773-4C01-9E8C-B577CBFA68C8}" = Dr.Web Anti-virus for Windows "{9D00A8DA-650F-21C6-E787-78756733F15F}" = ATI Catalyst Install Manager "{E5A509B4-D9B1-4FD9-B3EF-EDB216AA8651}" = ccc-utility64 "CPUID HWMonitor_is1" = CPUID HWMonitor 1.17 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0FFAC7BB-50DC-CB54-6CA7-A8B74513280B}" = CCC Help Chinese Traditional "{1C802083-6D79-78ED-BF1C-601DDF908DD1}" = Catalyst Control Center Core Implementation "{26A24AE4-039D-4CA4-87B4-2F83217021FF}" = Java 7 Update 21 "{28728178-FF15-218B-0B63-012692F42C28}" = CCC Help Danish "{32851025-1E46-83A3-1320-471619254E39}" = Catalyst Control Center Localization All "{40217B2F-462B-94A4-E84E-6A1C6EDBCE2F}" = CCC Help Swedish "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{5343A801-92E5-C234-9F27-AB27EC738BF6}" = CCC Help Japanese "{5D22226D-EBC1-C95F-7746-2E3A9F4C97BA}" = CCC Help Russian "{600C37F2-098B-A165-C1DB-6AE2B89D8D49}" = Catalyst Control Center Graphics Previews Common "{61F8CA2C-9A80-8A1B-D3B9-347530CB387F}" = CCC Help Norwegian "{674B407D-EAB1-B6B6-F9BF-C34CEE4CD83F}" = Catalyst Control Center Graphics Light "{69F411C5-4851-6DA9-EA4C-160BEF8788AA}" = CCC Help French "{6DD27E54-2598-0FEC-7CE1-BE00924C0570}" = Catalyst Control Center Graphics Previews Vista "{7C27114E-6FC8-21F5-E501-FE48F09243DF}" = CCC Help Dutch "{80237C20-CBF3-F841-4AD5-E727AA86FBD1}" = CCC Help Italian "{802EE127-D32A-1447-09DC-77419772BCDC}" = CCC Help Portuguese "{836AFA32-7B8B-2C19-99D9-36EF32B42EB8}" = CCC Help Thai "{8D7133DE-27D2-47E5-B248-4180278D32AA}" = Catalyst Control Center - Branding "{946942CB-D078-F33A-A3CD-27E0393507FD}" = CCC Help Turkish "{9682B99B-BB28-AD37-CA50-C1CB5BFF0FA6}" = Catalyst Control Center Graphics Full New "{9DBCF44B-77AC-81D8-0F8E-1E60D6330AC2}" = Catalyst Control Center InstallProxy "{A02CC93A-134F-0319-1438-B1E895B52577}" = CCC Help German "{A7E1ADB8-162B-7C33-60FB-0561A17BD876}" = CCC Help Spanish "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{A96EEF55-155C-552E-ABB1-6FDAEF5BD944}" = CCC Help Polish "{ADB25FF0-AEC4-2CFB-130C-2C60D80C5934}" = CCC Help Greek "{B04D5DA5-11DA-830C-85C6-0FF9185787E7}" = Skins "{BB603E9F-ECE8-7713-B0AC-7E0614E8C058}" = Catalyst Control Center HydraVision Full "{BE232D60-AEA5-502F-ACBF-9AC188A82C21}" = CCC Help Finnish "{C15C4AB5-EF5D-5050-273C-4636E3FBE301}" = CCC Help Czech "{C7CA731B-BF9A-46D9-92CF-8A8737AE9240}" = System Requirements Lab for Intel "{E09CD13D-7CE3-351C-1625-8DC7F21A99C0}" = ccc-core-static "{E373E0E2-20F5-90DF-B315-615EA6E52101}" = Catalyst Control Center Graphics Full Existing "{E6DA746E-1175-88BD-2B16-1DC62018E060}" = CCC Help Chinese Standard "{F053BFD9-4357-6A82-6042-CF919667448F}" = CCC Help English "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F17EB02C-DA0D-EDEF-2E16-501FB700A710}" = CCC Help Hungarian "{F5DDC0CD-F13A-83F0-5103-563A17EA306F}" = CCC Help Korean "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "AstrumNival Allods" = Allods Online 4.0.00.63 "Google Chrome" = Google Chrome "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 1.70 "Odkurzacz 12.6_is1" = Odkurzacz 12.6 "PowerISO" = PowerISO [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-05-19 22:02:38 | Computer Name = maly-Komputer | Source = DrWebFWSvc | ID = 3 Description = Runtime error occured, details are provided below: Condition: Failed to load trusted application database Error: 2 (0x2) Additional information: Can't open C:\Program Files\DrWeb\frwl_db.bin to query its size. Error - 2013-05-19 22:13:55 | Computer Name = maly-Komputer | Source = Windows Backup | ID = 4104 Description = Error - 2013-05-20 06:49:58 | Computer Name = maly-Komputer | Source = MsiInstaller | ID = 11722 Description = Error - 2013-05-20 06:54:16 | Computer Name = maly-Komputer | Source = DrWebFWSvc | ID = 3 Description = Runtime error occured, details are provided below: Condition: Failed to load trusted application database Error: 2 (0x2) Additional information: Can't open C:\Program Files\DrWeb\frwl_db.bin to query its size. Error - 2013-05-20 06:59:58 | Computer Name = maly-Komputer | Source = DrWebFWSvc | ID = 3 Description = Runtime error occured, details are provided below: Condition: Failed to load trusted application database Error: 2 (0x2) Additional information: Can't open C:\Program Files\DrWeb\frwl_db.bin to query its size. Error - 2013-05-20 07:03:01 | Computer Name = maly-Komputer | Source = EventSystem | ID = 4621 Description = Error - 2013-05-20 07:15:05 | Computer Name = maly-Komputer | Source = Windows Search Service | ID = 3100 Description = Error - 2013-05-20 07:27:22 | Computer Name = maly-Komputer | Source = Microsoft-Windows-Defrag | ID = 257 Description = Error - 2013-05-20 08:25:34 | Computer Name = maly-Komputer | Source = Windows Search Service | ID = 3100 Description = Error - 2013-05-20 08:32:23 | Computer Name = maly-Komputer | Source = DrWebFWSvc | ID = 3 Description = Runtime error occured, details are provided below: Condition: Failed to load trusted application database Error: 2 (0x2) Additional information: Can't open C:\Program Files\DrWeb\frwl_db.bin to query its size. [ Doctor Web Events ] Error - 2013-05-19 21:58:00 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'unsigned long __cdecl DrWebSpIDer_GetState(void * Error - 2013-05-19 21:58:00 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'void __cdecl DrWebScanEngine_Info(void *,struct DrWebScan_version_t_ *,struct DrWebScan_version_t_ *,unsigned int *,unsigned int *,unsigned long *,wchar_t **,unsigned long *,struct DrWebScan_vdb_info_t_ ** Error - 2013-05-19 22:03:24 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 4044 Description = No valid SpIDer Guard license (no license file foun Error - 2013-05-20 06:55:02 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 4044 Description = No valid SpIDer Guard license (no license file foun Error - 2013-05-20 07:00:07 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 21 Description = No one Dr.Web Engine has been load Error - 2013-05-20 07:00:07 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 4044 Description = No valid SpIDer Guard license (no license file foun Error - 2013-05-20 07:03:05 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'unsigned long __cdecl DrWebSpIDer_GetState(void * Error - 2013-05-20 07:03:05 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'void __cdecl DrWebScanEngine_Info(void *,struct DrWebScan_version_t_ *,struct DrWebScan_version_t_ *,unsigned int *,unsigned int *,unsigned long *,wchar_t **,unsigned long *,struct DrWebScan_vdb_info_t_ ** Error - 2013-05-20 07:03:05 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'unsigned long __cdecl DrWebSpIDer_GetState(void * Error - 2013-05-20 07:03:05 | Computer Name = maly-Komputer | Source = Dr.Web Engine | ID = 10 Description = Unable to impersonate RPC client (Powiązanie nie zawiera żadnych informacji o uwierzytelnianiu. ) Initiator: 'void __cdecl DrWebScanEngine_Info(void *,struct DrWebScan_version_t_ *,struct DrWebScan_version_t_ *,unsigned int *,unsigned int *,unsigned long *,wchar_t **,unsigned long *,struct DrWebScan_vdb_info_t_ ** [ System Events ] Error - 2013-05-19 15:21:01 | Computer Name = maly-Komputer | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 21:19:27 na ?2013-?05-?19 było nieoczekiwane. Error - 2013-05-19 20:25:41 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7023 Description = Usługa Publikacja zasobów odnajdowania funkcji zakończyła działanie; wystąpił następujący błąd: %%-2147024891 Error - 2013-05-19 20:25:41 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Publikacja zasobów odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%-2147024891 Error - 2013-05-19 20:25:46 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Publikacja zasobów odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%-2147024891 Error - 2013-05-19 20:25:46 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7023 Description = Usługa Publikacja zasobów odnajdowania funkcji zakończyła działanie; wystąpił następujący błąd: %%-2147024891 Error - 2013-05-20 06:54:17 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: CFRMD Error - 2013-05-20 06:59:59 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: CFRMD Error - 2013-05-20 07:20:32 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-05-20 07:20:34 | Computer Name = maly-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla Start nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-05-20 08:20:45 | Computer Name = maly-Komputer | Source = EventLog | ID = 6008 Description = Poprzednie zamknięcie systemu przy 14:19:33 na ?2013-?05-?20 było nieoczekiwane. < End of report >