OTL Extras logfile created on: 2012-07-07 00:38:27 - Run 1 OTL by OldTimer - Version 3.2.53.1 Folder = D:\Downloads Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,00 Gb Total Physical Memory | 1,38 Gb Available Physical Memory | 68,90% Memory free 4,00 Gb Paging File | 3,56 Gb Available in Paging File | 88,98% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 61,95 Gb Total Space | 22,67 Gb Free Space | 36,60% Space Free | Partition Type: NTFS Drive D: | 202,54 Gb Total Space | 68,22 Gb Free Space | 33,68% Space Free | Partition Type: NTFS Drive E: | 201,17 Gb Total Space | 168,63 Gb Free Space | 83,83% Space Free | Partition Type: NTFS Computer Name: DANIEL-KOMPUTER | User Name: Daniel | Logged in as Administrator. Boot Mode: SafeMode with Networking | Scan Mode: Current user Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- C:\Program Files\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_CURRENT_USER\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- C:\Program Files\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 0 "AntiVirusOverride" = 1 "AntiVirusDisableNotify" = 0 "FirewallDisableNotify" = 0 "FirewallOverride" = 1 "UpdatesDisableNotify" = 0 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0F77C8E0-AFDB-4B63-A7CF-343C64262269}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{181F0562-8061-407C-A8B3-6378AC2AD18E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{26914FC8-F2AA-405F-9C74-41E333824737}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{48A71691-6E89-4553-B2C7-0117917A6C0C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{4E0A792E-6464-4D66-9D05-8D206DBCB895}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{56883DA8-3B9C-4BA4-B237-9CF759B223C1}" = rport=138 | protocol=17 | dir=out | app=system | "{57E0298F-3F10-4EE5-A5FD-EA0D12A62CA5}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{5C3BA254-23FC-41ED-B018-B2050F67424F}" = lport=445 | protocol=6 | dir=in | app=system | "{6F131693-0B84-44D8-B055-35CA15913A10}" = rport=10243 | protocol=6 | dir=out | app=system | "{7C9E584D-A8BE-47EA-8E28-9747641C6934}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{7E9110F7-2842-4717-BD66-597282A37326}" = lport=10243 | protocol=6 | dir=in | app=system | "{82A3B812-7982-461F-87D9-7B8DA84A9405}" = lport=2869 | protocol=6 | dir=in | app=system | "{87DC6363-B0F4-4B42-B34B-F59A9D66FCF3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{8944BBF8-2FE3-4C3D-98C7-8F47C44F1E32}" = rport=139 | protocol=6 | dir=out | app=system | "{8BBDD3C4-5973-4FCF-92CC-14F429DACCC1}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{8BE1979A-7627-4F3A-BDC0-8338D1015383}" = lport=138 | protocol=17 | dir=in | app=system | "{9C846F99-29AD-48C4-BCDA-C12A387CA901}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{BCDB9BDE-B0CE-43E6-A61C-D512B5131D2E}" = rport=445 | protocol=6 | dir=out | app=system | "{C176048D-D9B4-4988-95C5-8001FDBB739F}" = rport=137 | protocol=17 | dir=out | app=system | "{E2BB1592-CFC3-4748-984A-57A948503CCA}" = lport=137 | protocol=17 | dir=in | app=system | "{FEF8BFF7-DD01-400B-8CE4-35DC2BFEB5E7}" = lport=139 | protocol=6 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{01DF1CB7-5737-4180-A92F-4E186C8B93CF}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\xxpr0nick\counter-strike\hl.exe | "{04EDB525-3A04-4597-AD77-CFE201FD1AB1}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{089B8353-3348-479C-A03A-1DCC7D5F2D38}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe | "{0AF22DA2-9EC4-4EB8-8177-1E73E09CF0D1}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{11501D60-AA2F-40A3-B731-AAADDCE64A55}" = protocol=6 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{168C65F6-130C-4CAD-8DE2-FFDBD1D0DB9D}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe | "{1B80836B-D279-4991-BF0E-D2E4ED8D7152}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{1B892158-3705-4968-A3B5-B52D6C72E7AD}" = protocol=17 | dir=in | app=c:\program files\utorrent\utorrent.exe | "{1F59EC9E-011D-49B2-A461-662A8F3B67FA}" = protocol=17 | dir=in | app=c:\users\daniel\appdata\local\temp\rarsfx0\app\proxyswitcher.exe | "{27E2B223-EB16-4A74-9959-AC1D0041DFB2}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\xxpr0nick\counter-strike\hl.exe | "{2DF42601-47DC-4A8B-8D3E-0BE9F18E8039}" = protocol=17 | dir=in | app=c:\users\daniel\appdata\local\temp\rarsfx0\app\proxyswitcher.exe | "{2F674C02-C851-44E9-9109-6556B86D4598}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{33610EC9-EBBE-49F7-A82A-BFA15E9B2897}" = protocol=6 | dir=out | app=system | "{37C55393-70B8-4AEB-9645-5A7D8212DEF0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{38129C8D-709B-42A4-87C5-1B57052CF490}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\xxpr0nick\counter-strike\hl.exe | "{45AEA9C4-4DB6-454A-B5B8-02B2F24938D6}" = protocol=6 | dir=in | app=c:\users\daniel\appdata\local\temp\rarsfx0\app\proxyswitcher.exe | "{52E3B424-C9E4-4973-84C4-EC40047F70C0}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\common\counter-strike go - intro trailer\smp.exe | "{58552EA5-CAD6-44FF-B181-C0B67CB2F903}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{5A01A65C-4BB2-46D3-959C-3584B43DB5C3}" = dir=out | app=d:\program files\eslwire\wire.exe | "{5B32121B-A456-4A8F-AE15-A2FEA4A50294}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{5B6F6CF9-9CC5-4F1A-9893-C79357D3026D}" = protocol=17 | dir=in | app=d:\program files\electronic arts\need for speed(tm) hot pursuit\launcher.exe | "{5B80432E-05B5-40B3-9771-2608776E7C18}" = protocol=17 | dir=in | app=c:\windows\explorer.exe | "{5E60A775-BE7F-4A26-B144-C38724CC6B2B}" = protocol=17 | dir=in | app=d:\program files\proxy switcher standard\proxyswitcher.exe | "{6437C6A1-D3CD-4F60-B445-942DDDBEBDE1}" = protocol=6 | dir=in | app=c:\users\daniel\appdata\local\temp\rarsfx0\app\proxyswitcher.exe | "{6C641A3E-32D5-4F7A-A2E5-D9612F12A90C}" = protocol=17 | dir=in | app=d:\program files\proxy switcher standard\proxyswitcher.exe | "{6C8AD2A7-C112-4B3F-998C-4E31F9103F09}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgdiagex.exe | "{70BFBA9C-C144-4256-8383-73FD56A4E60F}" = protocol=6 | dir=in | app=d:\program files\proxy switcher standard\proxyswitcher.exe | "{8122665E-9DB2-41DD-AE07-F861D28E8DF7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{85174DB2-94C3-4E15-AFF9-D52A365BEA7A}" = protocol=17 | dir=in | app=c:\program files\reactor\ijjioptimizer.exe | "{8665CBF8-9D6C-4B09-BB81-A33662A54D60}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{8C6F1038-D963-4F50-B854-797EF12E5B68}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{92CCDD7C-C16A-4FDD-A1AA-D36F0B2CF8FA}" = dir=in | app=d:\program files\eslwire\wire.exe | "{96970152-81F5-4F0A-BEFA-CBE577B508E0}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe | "{9EB70E24-8578-4F23-8456-7388C543EA0F}" = protocol=6 | dir=in | app=c:\program files\reactor\ijjioptimizer.exe | "{A45C32EE-7545-420E-825B-5DFC9448D613}" = protocol=6 | dir=in | app=d:\program files\electronic arts\need for speed(tm) hot pursuit\launcher.exe | "{A537DACC-A702-47CA-B1FD-92FF90E9D924}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{A6067F0B-C6E1-41FB-8808-EBAF152B9CC7}" = protocol=17 | dir=in | app=d:\program files\steam\steamapps\common\counter-strike go - intro trailer\smp.exe | "{AFA4E316-0FD9-4F4F-A193-0BB677B8012C}" = protocol=17 | dir=in | app=d:\program files\steam\steam.exe | "{AFAFDBF0-3D64-4F6A-870D-6B90BDAF5DC7}" = protocol=17 | dir=in | app=d:\program files\activision\blur(tm)\blur.exe | "{B31F4764-EB9A-44EF-B4E7-7B10C083C1F4}" = protocol=6 | dir=in | app=d:\program files\steam\steam.exe | "{B33778B2-E5A3-44E3-94A3-BC9F81C7D1A9}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{B5BCD146-E480-41E8-A468-7985FB81A16B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{BB157A89-B91A-4520-88F6-1AB7C1236569}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{C00AAEE8-7FDB-4207-86CF-E97602F25654}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe | "{C896609C-FB38-4816-8C1B-FDB85F42F047}" = protocol=6 | dir=in | app=c:\program files\avg\avg2012\avgnsx.exe | "{CF545A62-9506-42F5-8E3A-3DDFE1D7B5A0}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgmfapx.exe | "{D88BC37D-3B27-494E-BFB5-ABD41E02246B}" = protocol=6 | dir=in | app=d:\program files\steam\steamapps\xxpr0nick\counter-strike\hl.exe | "{DCC35DDA-E6E5-4EB1-A3B6-904CCD67E483}" = protocol=6 | dir=in | app=d:\program files\activision\blur(tm)\blur.exe | "{E438FD20-A162-41AD-AB9A-3F72C2A8CB61}" = protocol=6 | dir=in | app=c:\windows\explorer.exe | "{EF27CABA-74E6-479A-8240-73D7CD0C2083}" = protocol=17 | dir=in | app=c:\program files\avg\avg2012\avgemcx.exe | "{F9C0E5D1-42E4-4704-8FB9-7354F103651D}" = protocol=6 | dir=in | app=d:\program files\proxy switcher standard\proxyswitcher.exe | "{F9FEDFC5-5033-449C-ACBD-872CEBED5D60}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{FDE39981-6B70-40CA-A112-F8B8482E12EF}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "TCP Query User{042CFB15-8FF0-4787-A54D-6F2B91FFE567}D:\games\hl.exe" = protocol=6 | dir=in | app=d:\games\hl.exe | "TCP Query User{0CEE2FCC-30CA-48D8-A9DA-4E1852B3B2B8}C:\users\daniel\appdata\local\mediaget2\mediaget.exe" = protocol=6 | dir=in | app=c:\users\daniel\appdata\local\mediaget2\mediaget.exe | "TCP Query User{0E969EAD-309A-4D0E-843D-BB7D1D6FDCC1}D:\program files\winamp\winamp.exe" = protocol=6 | dir=in | app=d:\program files\winamp\winamp.exe | "TCP Query User{3707894F-10A7-4E07-99A3-81A3DAA3F00C}D:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=d:\program files\gadu-gadu 10\gg.exe | "TCP Query User{386E8530-3D51-4190-AB35-7175D3FF6FFF}D:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=d:\program files\gadu-gadu 10\gg.exe | "TCP Query User{3AFCCA7D-39B5-4871-B711-990B3E976ED4}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "TCP Query User{3D88DADA-7BDE-48D9-B673-31703042AED4}D:\program files\counter-strike 1.6 zcp\hl.exe" = protocol=6 | dir=in | app=d:\program files\counter-strike 1.6 zcp\hl.exe | "TCP Query User{4AD327CE-C9A3-4DF2-B299-B11713D4B382}C:\windows\system32\dplaysvr.exe" = protocol=6 | dir=in | app=c:\windows\system32\dplaysvr.exe | "TCP Query User{51B6C6C8-114E-41FC-BC93-BC60A59BB2C6}D:\program files\team17\worms 2\frontend.exe" = protocol=6 | dir=in | app=d:\program files\team17\worms 2\frontend.exe | "TCP Query User{53F9C42E-F74B-44CD-92D4-1CD4C13B68A5}D:\program files\counter strike 1.6 hd nonsteam\hl.exe" = protocol=6 | dir=in | app=d:\program files\counter strike 1.6 hd nonsteam\hl.exe | "TCP Query User{55C21047-56D8-456C-A3FB-8F4539C0067C}D:\program files\counter-strike 1.6 zcp\hlds.exe" = protocol=6 | dir=in | app=d:\program files\counter-strike 1.6 zcp\hlds.exe | "TCP Query User{72648CB5-A9F5-478F-B3E2-D0D18A455387}C:\users\daniel\appdata\roaming\filehunter\pumpa.exe" = protocol=6 | dir=in | app=c:\users\daniel\appdata\roaming\filehunter\pumpa.exe | "TCP Query User{7FD5865E-00CE-44B9-93DE-978E8B274C7F}D:\program files\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" = protocol=6 | dir=in | app=d:\program files\electronic arts\need for speed(tm) hot pursuit\nfs11.exe | "TCP Query User{96DBD91B-CBD8-4104-9872-4BC87B6D5FBB}D:\games\counter-strike 1.6 zcp\hl.exe" = protocol=6 | dir=in | app=d:\games\counter-strike 1.6 zcp\hl.exe | "TCP Query User{B7344C4D-5FAB-44C2-A23A-BB3F8264D2FD}D:\games\hlds.exe" = protocol=6 | dir=in | app=d:\games\hlds.exe | "TCP Query User{C8435FC1-CE66-4A2B-9886-6697074CBA34}D:\program files\counter strike 1.6 hd nonsteam\hltv.exe" = protocol=6 | dir=in | app=d:\program files\counter strike 1.6 hd nonsteam\hltv.exe | "TCP Query User{CA417F4E-AB84-48A5-B450-5A6EEBC1CA39}D:\program files\mirc\mirc.exe" = protocol=6 | dir=in | app=d:\program files\mirc\mirc.exe | "TCP Query User{CDCA29AA-EB13-4DA6-AF36-433DE86DCA06}C:\windows\system32\dwm.exe" = protocol=6 | dir=in | app=c:\windows\system32\dwm.exe | "TCP Query User{DA9E0515-92CF-49B4-AF6B-6176AACA97DB}C:\program files\reactor\reactor.exe" = protocol=6 | dir=in | app=c:\program files\reactor\reactor.exe | "TCP Query User{DC3F45A4-D99C-4521-AD19-FDB5AD99E0C5}D:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe | "TCP Query User{E15E48EB-A6CE-4A65-B4CB-29481B4D6320}C:\program files\counter strike 1.6 hd nonsteam\hl.exe" = protocol=6 | dir=in | app=c:\program files\counter strike 1.6 hd nonsteam\hl.exe | "TCP Query User{F3539B25-BA56-409F-BCFB-5625502CBC93}C:\program files\avira\antivir desktop\avgnt.exe" = protocol=6 | dir=in | app=c:\program files\avira\antivir desktop\avgnt.exe | "TCP Query User{F49872CC-D545-444E-99E2-512D097E6529}C:\users\daniel\downloads\ygoow\downloads\left-4-dead-by karololkusz\left 4 dead\left4dead.exe" = protocol=6 | dir=in | app=c:\users\daniel\downloads\ygoow\downloads\left-4-dead-by karololkusz\left 4 dead\left4dead.exe | "TCP Query User{F63FA70B-C7A0-4617-8111-2FFA2BDA38E1}D:\games\hltv.exe" = protocol=6 | dir=in | app=d:\games\hltv.exe | "TCP Query User{F9E0C405-5A4C-47A1-9E95-360C168B4458}C:\windows\system32\igfxtray.exe" = protocol=6 | dir=in | app=c:\windows\system32\igfxtray.exe | "TCP Query User{FDEF695B-5B67-40DD-988B-777B6E82FEAF}D:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=d:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe | "TCP Query User{FE990F9B-316C-449F-B238-66B2D9DC71DB}D:\program files\valve\hl.exe" = protocol=6 | dir=in | app=d:\program files\valve\hl.exe | "UDP Query User{03630F04-D39B-440B-AF62-C9BA2562D957}D:\program files\counter strike 1.6 hd nonsteam\hltv.exe" = protocol=17 | dir=in | app=d:\program files\counter strike 1.6 hd nonsteam\hltv.exe | "UDP Query User{07D7E59B-64A7-4BCB-B3F4-59672DC22FC9}D:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe | "UDP Query User{09D84E10-82C3-46F3-A9CB-03D5DD840CFF}D:\program files\team17\worms 2\frontend.exe" = protocol=17 | dir=in | app=d:\program files\team17\worms 2\frontend.exe | "UDP Query User{0EEA25E9-7C5F-4549-88AE-1328B63DCC15}D:\games\counter-strike 1.6 zcp\hl.exe" = protocol=17 | dir=in | app=d:\games\counter-strike 1.6 zcp\hl.exe | "UDP Query User{3903CF59-4B03-4BCF-BDE5-6C3F1F23570E}D:\program files\counter strike 1.6 hd nonsteam\hl.exe" = protocol=17 | dir=in | app=d:\program files\counter strike 1.6 hd nonsteam\hl.exe | "UDP Query User{3D6D29E5-C180-49A6-AB75-5234000ABE0E}D:\program files\counter-strike 1.6 zcp\hlds.exe" = protocol=17 | dir=in | app=d:\program files\counter-strike 1.6 zcp\hlds.exe | "UDP Query User{3D98EF7F-6952-4708-AC65-38179152BB04}D:\program files\valve\hl.exe" = protocol=17 | dir=in | app=d:\program files\valve\hl.exe | "UDP Query User{45948BDB-AA37-46E3-91B5-113C0C87F099}D:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=d:\program files\gadu-gadu 10\gg.exe | "UDP Query User{51B4EAA4-3B45-4B7E-98F8-4E1DC05B5077}D:\program files\counter-strike 1.6 zcp\hl.exe" = protocol=17 | dir=in | app=d:\program files\counter-strike 1.6 zcp\hl.exe | "UDP Query User{572F380D-FA77-47EF-9872-D935E80DC698}D:\games\hl.exe" = protocol=17 | dir=in | app=d:\games\hl.exe | "UDP Query User{71A81718-2B82-4BA5-8A6C-E0FF555BCFB1}D:\program files\winamp\winamp.exe" = protocol=17 | dir=in | app=d:\program files\winamp\winamp.exe | "UDP Query User{7D45E24D-BED2-4564-B113-766F2A8F1A65}C:\program files\counter strike 1.6 hd nonsteam\hl.exe" = protocol=17 | dir=in | app=c:\program files\counter strike 1.6 hd nonsteam\hl.exe | "UDP Query User{7F3F6FF2-00B4-49DB-9273-18E4785E18C8}C:\users\daniel\appdata\roaming\filehunter\pumpa.exe" = protocol=17 | dir=in | app=c:\users\daniel\appdata\roaming\filehunter\pumpa.exe | "UDP Query User{88409E97-E67A-47B4-A292-B56EE0611460}D:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=d:\program files\gadu-gadu 10\gg.exe | "UDP Query User{8F23501A-D3F7-4766-9774-3B4961EE5B36}C:\windows\system32\dplaysvr.exe" = protocol=17 | dir=in | app=c:\windows\system32\dplaysvr.exe | "UDP Query User{93238126-1AE5-4C5D-9C2B-95CBB7E2BF6D}D:\games\hlds.exe" = protocol=17 | dir=in | app=d:\games\hlds.exe | "UDP Query User{94BB0D29-8F6F-4604-935D-AD6C1771A4CC}C:\users\daniel\downloads\ygoow\downloads\left-4-dead-by karololkusz\left 4 dead\left4dead.exe" = protocol=17 | dir=in | app=c:\users\daniel\downloads\ygoow\downloads\left-4-dead-by karololkusz\left 4 dead\left4dead.exe | "UDP Query User{9BF73D5B-E91E-4C2A-89D3-3F21A4013879}D:\games\hltv.exe" = protocol=17 | dir=in | app=d:\games\hltv.exe | "UDP Query User{B81C65DF-CE37-4A21-9972-91A777BDE1EC}C:\program files\reactor\reactor.exe" = protocol=17 | dir=in | app=c:\program files\reactor\reactor.exe | "UDP Query User{B8590756-C20C-4E12-854F-AD20CBAB9B33}C:\program files\avira\antivir desktop\avgnt.exe" = protocol=17 | dir=in | app=c:\program files\avira\antivir desktop\avgnt.exe | "UDP Query User{B917A472-78FD-4059-883D-DF24F61FCED5}C:\users\daniel\appdata\local\mediaget2\mediaget.exe" = protocol=17 | dir=in | app=c:\users\daniel\appdata\local\mediaget2\mediaget.exe | "UDP Query User{C1154883-B1B0-4186-9AA9-8DA865B5A516}D:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=d:\program files\electronic arts\crytek\crysis 2\bin32\crysis2.exe | "UDP Query User{C6BEECB9-9C57-4993-A140-423D8201F5FA}D:\program files\electronic arts\need for speed(tm) hot pursuit\nfs11.exe" = protocol=17 | dir=in | app=d:\program files\electronic arts\need for speed(tm) hot pursuit\nfs11.exe | "UDP Query User{D5222243-EFAD-4B15-A972-5ED7A449935C}D:\program files\mirc\mirc.exe" = protocol=17 | dir=in | app=d:\program files\mirc\mirc.exe | "UDP Query User{DA3DCB7E-879D-4D25-9775-90E0B0B9FC7F}C:\windows\system32\dwm.exe" = protocol=17 | dir=in | app=c:\windows\system32\dwm.exe | "UDP Query User{E16CACEC-AB36-49F8-8097-C8E5F405087A}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{F31F88E1-9CC2-4AB6-8C84-79C65EA3E72E}C:\windows\system32\igfxtray.exe" = protocol=17 | dir=in | app=c:\windows\system32\igfxtray.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{2315B23D-3E21-4920-837D-AE6460934ECB}" = FIFA 09 "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{31A559C1-9E4D-423B-9DD3-34A6C5398752}" = HTC BMP USB Driver "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{42AF51C0-4028-46CF-B616-FB1F75286457}" = A.V.A "{47FA2C44-D148-4DBC-AF60-B91934AA4842}" = Adobe AIR "{4999B2F1-3E74-409A-B8B5-E94448AA9EA6}" = PC TWIN SHOCK "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4AE3A0CB-87B0-4F51-BECD-3D1F8DFDD62F}" = SAGEM F@st 800-840 "{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones "{4E0C89A4-4040-47C7-AD0C-0E8226B6AFE2}" = AVG 2012 "{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5 "{589A63D3-89E1-4D9B-8DBC-6039BB27289E}" = Activision(R) "{6033673D-2530-4587-8AD0-EB059FC263F9}" = Crysis® 2 "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{6984297D-54B4-47F2-B160-D40C305756AF}" = GUILTY GEAR X2 #RELOAD "{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon "{6D12EC75-E7D3-4EAD-AB10-E1F3AFF94AA6}" = AVG 2012 "{6D6664A9-3342-4948-9B7E-034EFE366F0F}" = HTC Driver Installer "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{789289CA-F73A-4A16-A331-54D498CE069F}" = Ventrilo "{7FB413C8-3CAD-49F7-A67C-6EFEB4B04050}" = LogMeIn Hamachi "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{83A606F5-BF6F-42ED-9F33-B9F74297CDED}" = Need for Speed(TM) Hot Pursuit "{86D4B82A-ABED-442A-BE86-96357B70F4FE}" = Ask Toolbar "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek 8136 8168 8169 Ethernet Driver "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{901DC58A-5C1B-4315-BA40-5AD3D3A463B9}" = REACTOR "{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9ABFB92D-93DA-49EE-8ABF-F8195DE45CA9}" = Counter-Strike 1.6 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A48B9CD8-C2BA-4EC9-0081-7260D238C7CF}" = Need for Speed™ Most Wanted "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 266.58 "{B2FE1952-0186-46c3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 266.58 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.10.0514 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B9DB4C76-01A4-46D5-8910-F7AA6376DBAF}" = NVIDIA PhysX "{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe AIR" = Adobe AIR "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "Audacity_is1" = Audacity 2.0 "AVG" = AVG 2012 "Call of Duty: Black Ops_is1" = Call of Duty: Black Ops "CCleaner" = CCleaner "Chicken Invaders 2_is1" = Chicken Invaders 2 v2.61 "Counter Strike 1.6 HD NonSteam Full" = Counter Strike 1.6 HD NonSteam Full "ESL Wire_is1" = ESL Wire 1.12 "EVEREST Home Edition_is1" = EVEREST Home Edition v2.20 "Fraps" = Fraps "Gadu-Gadu 10" = Gadu-Gadu 10 "GamersFirst War Rock" = War Rock "Google Chrome" = Google Chrome "HDMI" = Intel(R) Graphics Media Accelerator Driver "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń "InstallShield_{589A63D3-89E1-4D9B-8DBC-6039BB27289E}" = Blur(TM) "LogMeIn Hamachi" = LogMeIn Hamachi "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Mozilla Firefox 13.0.1 (x86 pl)" = Mozilla Firefox 13.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Revo Uninstaller" = Revo Uninstaller 1.94 "Steam App 10" = Counter-Strike "TeamSpeak 3 Client" = TeamSpeak 3 Client "TVWiz" = Intel(R) TV Wizard "uTorrent" = µTorrent "Winamp" = Winamp "WinRAR archiver" = Archiwizator WinRAR "World of Goo/PL-Polish_is1" = World of Goo [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{79A765E1-C399-405B-85AF-466F52E918B0}" = Avira SearchFree Toolbar plus Web Protection Updater [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-07-06 18:13:06 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-06 18:13:52 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-06 18:13:55 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-06 18:14:28 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-06 18:18:00 | Computer Name = Daniel-Komputer | Source = VSS | ID = 18 Description = Error - 2012-07-06 18:18:00 | Computer Name = Daniel-Komputer | Source = VSS | ID = 8193 Description = Error - 2012-07-06 18:18:00 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-06 18:29:04 | Computer Name = Daniel-Komputer | Source = VSS | ID = 18 Description = Error - 2012-07-06 18:29:04 | Computer Name = Daniel-Komputer | Source = VSS | ID = 8193 Description = Error - 2012-07-06 18:29:04 | Computer Name = Daniel-Komputer | Source = System Restore | ID = 8193 Description = [ System Events ] Error - 2012-07-06 18:35:31 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:35:31 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:35:31 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:35:53 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Dostawca grupy domowej zależy od usługi Host dostawcy odnajdowania funkcji, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:36:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:36:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:36:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:41:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:41:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-06 18:41:05 | Computer Name = Daniel-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Przeglądarka komputera zależy od usługi Serwer, której nie można uruchomić z powodu następującego błędu: %%1068 < End of report >