OTL Extras logfile created on: 2013-08-18 15:07:06 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\xxx\Downloads Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 0,58 Gb Available Physical Memory | 29,11% Memory free 4,00 Gb Paging File | 2,33 Gb Available in Paging File | 58,22% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 68,26 Gb Total Space | 45,80 Gb Free Space | 67,09% Space Free | Partition Type: NTFS Drive D: | 164,52 Gb Total Space | 164,43 Gb Free Space | 99,94% Space Free | Partition Type: NTFS Computer Name: XXX-KOMPUTER | User Name: xxx | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) [HKEY_CURRENT_USER\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{04C5734D-AFE3-4E87-A030-44A0AAEACF13}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{0F3CF102-5AFB-4ADB-AABB-B25BD95AFCAF}" = rport=445 | protocol=6 | dir=out | app=system | "{0F95F7B3-37D6-4B21-BD13-54E181B5C293}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{1005DFED-912F-4CB4-AA63-1AC6FD7E6246}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{10F51144-3402-4652-9B41-48EEE34292A9}" = rport=139 | protocol=6 | dir=out | app=system | "{1D5D65D4-8E72-475E-A957-306A8625447D}" = lport=2869 | protocol=6 | dir=in | app=system | "{2A0F3B23-38FB-4D32-9F65-5FAEE96303FF}" = lport=137 | protocol=17 | dir=in | app=system | "{340516D9-1C2A-44B2-B10B-3CF8C6624A79}" = rport=138 | protocol=17 | dir=out | app=system | "{3EC6F2B9-20D4-4D62-9C33-14365D522EAD}" = lport=10243 | protocol=6 | dir=in | app=system | "{3F1FBC23-3CD3-4568-917A-E744049F6044}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{44BA95F8-92A9-4CAF-A8F5-309D9CDFF323}" = rport=137 | protocol=17 | dir=out | app=system | "{65B0572B-873F-4E44-9D97-39FFF15677D0}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{7D710664-72A7-4842-A976-A85FC7544ABA}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{7F202E6D-CF69-4A9C-AF9D-1265DCDD722F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{ABEA7DC0-D722-4A6C-9F41-D55F1BE0821D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{AC2F6D20-67D3-4B38-806A-E88E59B768C4}" = rport=10243 | protocol=6 | dir=out | app=system | "{AC9C2F67-9B4C-43BC-A2A0-1704DC72383B}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{B9424941-B271-4532-8992-845031AA4769}" = lport=139 | protocol=6 | dir=in | app=system | "{BD410645-45D9-46C3-844F-3F41568E5DF2}" = lport=445 | protocol=6 | dir=in | app=system | "{C38E3864-E121-4ACB-AC03-C6FDE598C307}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{DCA77AF2-F039-4DCB-BC07-7FFD9B8F07CB}" = lport=138 | protocol=17 | dir=in | app=system | "{EA1E6BA4-E785-4915-A4D4-EDF88C64E1C2}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{EC266138-4236-4FC3-9BB0-46A8C4F1F3E1}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{001D210C-E055-4B6F-AE1D-94800F2C579A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{297B8D34-F73B-4611-AC84-60232FDA67AE}" = protocol=6 | dir=out | app=system | "{53865599-5408-4A10-B8E2-7750D52DE4EA}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{5B4820AF-CB88-414C-BA78-54E9CA9D7881}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{7B4E205F-8D1C-413D-A8D9-947CD32F3677}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{85E76166-BFE1-4DBF-A11C-2573F51E46CF}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{94BC2F63-316A-4CB0-B12C-D7D33A4E1C3E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{9C1106B8-DCD9-452A-B125-5616A3281858}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{9FFF07B7-35D5-4260-B30D-508CD0C1C8B1}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{A0389565-A858-4F9B-B117-62AFB4F19E77}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{A208A271-2AD1-49B6-98E7-14872FCFD984}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{A5516840-B253-4D68-AA9F-E82A90E5B325}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office12\groove.exe | "{C0350DE6-CC3E-4F77-A108-5AE9DCC4CDE7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{C3759523-5198-4C84-9651-7F63BB8AFBE5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{C39553F6-C213-49FA-99BE-19207256E1F8}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office12\groove.exe | "{D1E601C2-58AD-4E29-9832-E1550B461EB8}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{D4C3B02F-9DB7-4478-80A7-DB2E878CF193}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{E895311F-69D3-466A-BDE9-5A8BDA1C18C1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{EDB3F086-F1EB-484F-97CC-3F61836FE08D}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "TCP Query User{96215902-0BAC-4ECD-9467-BE8068BACB85}C:\totalcmd\totalcmd.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd.exe | "UDP Query User{8A01BA51-FFF5-416E-BC8A-372D4B87352B}C:\totalcmd\totalcmd.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0FC5CB92-40A9-40A5-9D4B-79148677B70A}" = ESET NOD32 Antivirus "{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25 "{321320E1-0E5A-36CB-9E52-F3B201B8C4D4}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195 "{9E9D49A4-1DF4-4138-B7DB-5D87A893088E}" = HP Integrated Module with Bluetooth wireless technology "{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.7) - Polish "{B27B646E-76EA-4412-91D8-A4DFDA8AD152}" = LogMeIn "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F59AC46C-10C3-4023-882C-4212A92283B3}_is1" = Lagarith Lossless Codec (1.3.27) "A6A8668C0A13640CA28FE2A7D9654BE4AE478B13" = Windows Driver Package - Broadcom Bluetooth (07/30/2009 6.2.0.9405) "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "B7541EC5F72AA713F557569278EB6273725F5607" = Windows Driver Package - Broadcom Bluetooth (06/15/2009 6.2.0.9000) "BF20603967CFDCB2BBF91950E8A56DFBC5C833FE" = Windows Driver Package - Broadcom HIDClass (07/28/2009 6.2.0.9800) "DC-Bass Source" = DC-Bass Source 1.3.0 "DivX Setup" = DivX Setup "ENTERPRISE" = Microsoft Office Enterprise 2007 "EPSON SX218 Series" = EPSON SX218 Series Printer Uninstall "KLiteCodecPack_is1" = K-Lite Mega Codec Pack 5.6.1 "LAME_is1" = LAME v3.99.3 (for Windows) "McAfee Security Scan" = McAfee Security Scan Plus "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 22.0 (x86 pl)" = Mozilla Firefox 22.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NetPanel" = NetPanel "NVIDIA Drivers" = NVIDIA Drivers "OpenSource Flash Video Splitter" = OpenSource Flash Video Splitter 1.0.0.5 "SMSERIAL" = Motorola SM56 Data Fax Modem "SynTPDeinstKey" = Synaptics Pointing Device Driver "Totalcmd" = Total Commander (Remove or Repair) "vsfilter_is1" = DirectVobSub 2.40.4209 "WinRAR archiver" = WinRAR archiver "Xvid Video Codec 1.3.2" = Xvid Video Codec [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Codec Package Packages" = Codec Package Packages "DSite" = Update for Codec Package [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-08-15 12:03:38 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-16 08:16:35 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-16 11:07:27 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-16 15:08:26 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-17 10:09:57 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-17 16:13:12 | Computer Name = xxx-Komputer | Source = Application Error | ID = 1000 Description = Nazwa aplikacji powodującej błąd: svchost.exe, wersja: 6.1.7600.16385, sygnatura czasowa: 0x4a5bc100 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x00000000 Identyfikator procesu powodującego błąd: 0x13f4 Godzina uruchomienia aplikacji powodującej błąd: 0x01ce9b53932bd5e9 Ścieżka aplikacji powodującej błąd: C:\Windows\system32\svchost.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: 7099901e-0779-11e3-8cb8-001e37e2980c Error - 2013-08-18 08:48:09 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-18 08:51:29 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-18 08:57:06 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. Error - 2013-08-18 09:02:49 | Computer Name = xxx-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005. [ System Events ] Error - 2013-08-18 08:57:20 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:20 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:20 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 08:57:21 | Computer Name = xxx-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2013-08-18 09:03:09 | Computer Name = xxx-Komputer | Source = DCOM | ID = 10001 Description = < End of report >