OTL Extras logfile created on: 2012-07-20 10:59:56 - Run 3 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\Adam\Desktop Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 2,97 Gb Total Physical Memory | 2,40 Gb Available Physical Memory | 80,96% Memory free 5,93 Gb Paging File | 5,49 Gb Available in Paging File | 92,51% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files Drive C: | 39,90 Gb Total Space | 7,13 Gb Free Space | 17,86% Space Free | Partition Type: NTFS Drive D: | 200,00 Gb Total Space | 128,06 Gb Free Space | 64,03% Space Free | Partition Type: NTFS Drive E: | 58,09 Gb Total Space | 37,29 Gb Free Space | 64,19% Space Free | Partition Type: NTFS Computer Name: ADAM-KOMPUTER | User Name: Adam | Logged in as Administrator. Boot Mode: SafeMode | Scan Mode: All users Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: Off | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\System32\control.exe (Microsoft Corporation) .hlp [@ = hlpfile] -- C:\Windows\winhlp32.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [HKEY_USERS\S-1-5-21-1816324019-4052323575-1482712787-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. hlpfile [open] -- %SystemRoot%\winhlp32.exe %1 (Microsoft Corporation) htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1" http [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" https [open] -- "C:\Program Files\Google\Chrome\Application\chrome.exe" -- "%1" inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [ACDSee Photo Manager 12.Manage] -- "C:\Program Files\ACD Systems\ACDSee\12.0\ACDSeeQV12.exe" "%1" (ACD Systems International Inc.) Directory [AddToPlaylistVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" () Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [PlayWithVLC] -- "C:\Program Files\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = Reg Error: Unknown registry data type -- File not found "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{09195338-9817-4D89-BF94-CA0BC8C055AC}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{0BC37C44-1668-4AF0-9546-9BA80AFA3599}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{2C3AED5A-973D-4896-A80B-099B77790F18}" = rport=445 | protocol=6 | dir=out | app=system | "{2D4859A5-1CBE-4923-AB83-79350A3B1107}" = rport=139 | protocol=6 | dir=out | app=system | "{32EE4C94-099E-4CBF-B020-46917212AF59}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{481BF2EE-2C1C-4F2A-93D3-48D70854275A}" = rport=138 | protocol=17 | dir=out | app=system | "{49EA9B75-1140-4086-810E-9F6E4CAE7786}" = lport=138 | protocol=17 | dir=in | app=system | "{57608EB8-5243-4D9D-B46A-D4915E8395B2}" = lport=137 | protocol=17 | dir=in | app=system | "{60613185-901B-4059-8772-2BC393688AF6}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{61743516-1646-434F-9F9A-285B6390FD23}" = lport=2869 | protocol=6 | dir=in | app=system | "{61F81C40-1473-4D0B-9675-0F3B8AF952D6}" = lport=4000 | protocol=6 | dir=out | app=c:\program files\dll-files.com fixer\dllfixer.exe | "{6637D2B3-95E7-4136-BEE4-E40FE8715A5A}" = lport=10243 | protocol=6 | dir=in | app=system | "{6645BCA8-91DD-4FCF-86B2-BF197D67CED3}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{74326BA1-6EF8-4D8F-A5BB-4E5F8F627B03}" = rport=10243 | protocol=6 | dir=out | app=system | "{80A5EE0A-4530-4C2E-A8EF-EA0409D7D0F3}" = lport=139 | protocol=6 | dir=in | app=system | "{97226F3F-EAE2-4CD7-9964-CC881D2FE59D}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{A033EEA5-2894-46BD-AF97-FB17FE4F62FB}" = rport=137 | protocol=17 | dir=out | app=system | "{B480C292-21BC-413E-9A77-3F3EFD27E217}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C824A167-6FB8-4189-B0C0-DC3C9F5F992B}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{E7960868-6253-4D23-A19B-881201DD5A35}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{E84B2E9F-C1F2-4EE1-96D1-4ECDC6125589}" = lport=445 | protocol=6 | dir=in | app=system | "{EC94D1B4-8236-475B-9C8D-D82958D08956}" = lport=6004 | protocol=17 | dir=in | app=c:\program files\microsoft office\office14\outlook.exe | "{F2C1AEF9-1367-43EA-9111-4F3CEA8B69C9}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{03A3D28B-2281-411A-B371-8E56A2A20A4E}" = protocol=17 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe | "{0B44078A-9E03-4AEF-A6A5-C8487E6AA5D8}" = protocol=6 | dir=in | app=c:\program files\rayv\rayv\rayv.exe | "{1397AAA3-CFDD-4139-9287-A55E4ACB21FD}" = protocol=6 | dir=in | app=d:\pobrane\gry\diablo iii\diablo iii.exe | "{18434651-975D-48A7-B6E1-1940B1EED3A4}" = protocol=6 | dir=in | app=c:\windows\system32\muzapp.exe | "{1A762A3F-F4B6-48D9-9352-90BF623770BA}" = dir=in | app=c:\program files\common files\apple\apple application support\webkit2webprocess.exe | "{219B7BAA-176D-492D-984C-4DC005BE9694}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{21CF8BB7-3386-4527-958A-44FE7BC44B00}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{21D60313-E468-4ABD-AC7C-134E1CF75277}" = protocol=17 | dir=in | app=d:\activision\prototype\prototypef.exe | "{2F404126-965D-4C15-88EB-4EF81414E550}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{325EE65F-13A9-4924-83B9-66F7FCF580E9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{33FFF83B-FEA2-445A-82CF-AA838C9437B6}" = protocol=17 | dir=in | app=d:\utorrent\utorrent.exe | "{3B0188DB-5CC7-463F-946E-4B67DE4544B8}" = protocol=17 | dir=in | app=d:\gry\s2\stronghold2.exe | "{406BE750-EFE5-44C3-A894-ECD5C8ECADC4}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{421CB074-6A6C-4150-8F0B-1E2B7E5BB082}" = protocol=6 | dir=in | app=c:\users\adam\appdata\roaming\rayv\viewer\rayv.dll | "{43CF22A3-293A-43FC-B2DD-FC79A0A1135A}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{4A643198-E232-4207-B31C-3392197D20B9}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{5243F455-EDDD-4781-8EA4-4251BF47E444}" = protocol=6 | dir=in | app=d:\utorrent\utorrent.exe | "{5337103D-82B3-4503-87AB-EE288F9C1D27}" = protocol=6 | dir=in | app=c:\program files\opera\pluginwrapper\opera_plugin_wrapper.exe | "{53544665-DECD-4152-8404-72DE3C3595DD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{53F8D006-5C99-4AE0-8B60-798B4B524E4C}" = protocol=6 | dir=in | app=d:\gry\gta4\rockstar games social club\rgsclauncher.exe | "{58519846-A87A-44FB-94B3-DF7CD59DCADB}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{61177599-BABD-43AD-B731-E97778B31D96}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{62241C9B-04DE-4A36-AEB3-3B656CC64C12}" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "{6281195A-A32D-4F66-A179-F4897991CADB}" = protocol=17 | dir=in | app=d:\pobrane\gry\diablo iii\diablo iii.exe | "{68F1C742-ED70-4043-BC07-9C9AAE35903F}" = protocol=17 | dir=in | app=d:\gry\gta4\rockstar games social club\rgsclauncher.exe | "{6BAC11C1-7280-4982-99F5-E0F4937BD15B}" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "{71B332DA-DC6A-4978-93AA-865FA91DDA85}" = protocol=6 | dir=in | app=c:\program files\microsoft office\office14\groove.exe | "{7A7CB901-0E6D-4C92-AE09-88BF9C2AAB92}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe | "{7D086BB0-90C9-4AF9-9B1C-D9EAB3031DCF}" = protocol=17 | dir=in | app=d:\gry\dragon age\bin_ship\daupdatersvc.service.exe | "{7D2177A9-006C-4FF5-A994-EFD721080B77}" = protocol=17 | dir=in | app=d:\gry\dragon age\daoriginslauncher.exe | "{7F64E2C4-1136-4727-AB0E-9FE807501907}" = protocol=17 | dir=in | app=d:\gry\steam\steam.exe | "{81BF82DA-5632-4157-9B87-E6C5DF4833F1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{84B9475C-6AF8-446E-8206-2C3451242299}" = protocol=6 | dir=in | app=d:\gry\dragon age\daoriginslauncher.exe | "{91FACE9B-B621-43A5-B881-D1CF0C915F94}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.524\agent.exe | "{923E5A24-969F-440C-9C6E-CABCECAAA8BA}" = protocol=17 | dir=in | app=d:\gry\me\mass effect\masseffectlauncher.exe | "{9BF2D7C4-EAAF-4921-988E-98BF6506668B}" = protocol=17 | dir=in | app=d:\gry\me\mass effect\binaries\masseffect.exe | "{A35CF9A2-77C2-4038-B4F0-3C96955126F4}" = protocol=6 | dir=out | app=system | "{A7799B1C-3E3E-48C4-A004-9AF81476ED9B}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{A7A14587-2EFA-49D3-B6BA-C690AE5029DB}" = protocol=6 | dir=in | app=d:\activision\prototype\prototypef.exe | "{A98B896E-5ED8-49D2-BC3D-BC433040E07F}" = protocol=17 | dir=in | app=c:\program files\microsoft office\office14\onenote.exe | "{AF4D79B1-6129-4055-BD41-384C26DCFF77}" = protocol=17 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{B5C07DD0-17DB-4A3E-AADB-F2370701D45E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{B6E2D095-EBFA-49CD-920F-D06CB431A96B}" = dir=in | app=c:\program files\skype\phone\skype.exe | "{B7CCFE8E-4EBC-4835-B97D-43A812E0DFF8}" = protocol=6 | dir=in | app=d:\gry\me\mass effect\binaries\masseffect.exe | "{BA44A48E-8BB6-4A77-BE01-856969EAB6F6}" = protocol=6 | dir=in | app=d:\gry\me\mass effect\masseffectlauncher.exe | "{BDE93093-F860-414F-89ED-CD05B320DEA8}" = protocol=6 | dir=in | app=d:\gry\steam\steam.exe | "{C01B375F-1873-4D0B-9BC5-1DAB81923058}" = protocol=6 | dir=in | app=d:\gry\dragon age\bin_ship\daorigins.exe | "{C124C42C-CEF8-4AA5-BD22-F6284D86F427}" = protocol=17 | dir=in | app=c:\program files\opera\pluginwrapper\opera_plugin_wrapper.exe | "{C48CCD98-0242-4888-84E7-0B1BA7430529}" = protocol=17 | dir=in | app=d:\pobrane\gry\diablo iii\diablo iii beta\diablo iii.exe | "{CA5AD3C5-99F2-4BF5-BF30-4F319B335AE9}" = protocol=6 | dir=in | app=d:\pobrane\gry\heroes\might & magic heroes vi.exe | "{CB6AF332-9AC8-4AA8-B51D-E8701CB907F0}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.976\agent.exe | "{D4344E74-FCD4-4667-8E45-30577C2330D4}" = protocol=17 | dir=in | app=c:\windows\system32\muzapp.exe | "{DB5BE366-8EDD-4775-AC63-8DD7D705296B}" = protocol=6 | dir=in | app=d:\gry\dragon age\bin_ship\daupdatersvc.service.exe | "{DBE65023-BADA-4ECB-9DE2-147750FCBD0C}" = protocol=17 | dir=in | app=d:\pobrane\gry\heroes\might & magic heroes vi.exe | "{DFEA8453-F774-405D-BC70-A763D509A32F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{E17A5324-1D1C-43FC-9E92-01E6F1E17903}" = protocol=6 | dir=in | app=c:\program files\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{E39132BB-75EF-4843-A832-042C01B43BB7}" = protocol=17 | dir=in | app=c:\program files\rayv\rayv\rayv.exe | "{E6CA1A81-8E42-4A8B-803D-F29D16684482}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{E80689F0-FFF1-4776-905A-6E40A69AAF96}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{E95F76EB-D7AD-4DCA-96A4-668F1EAD45D2}" = protocol=6 | dir=in | app=d:\gry\s2\stronghold2.exe | "{EA1A8D49-3621-4D5A-8380-30194FE7B2B6}" = protocol=17 | dir=in | app=c:\users\adam\appdata\roaming\rayv\viewer\rayv.dll | "{EDE4CA1A-75F7-4016-8001-58C1B0D25D37}" = protocol=6 | dir=in | app=d:\pobrane\gry\diablo iii\diablo iii beta\diablo iii.exe | "{F04FAB46-ABF3-43DD-8C3F-8D94DAB83400}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{FDE891BE-C2C8-4497-9D60-54FFF472E0EF}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.976\agent.exe | "TCP Query User{018A70C4-F20A-4BC8-8E7D-038832BEDABF}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "TCP Query User{195D0E53-F9D1-448F-83B2-ED67FA7CF31A}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "TCP Query User{25271DBA-8E49-4DDC-97E6-08D9FE13E406}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "TCP Query User{2555A9DB-6ACE-415C-918E-D34BAF9C8154}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "TCP Query User{505392E3-44F3-4F8C-AD1A-23577928239E}C:\program files\mediaget\mediaget.exe" = protocol=6 | dir=in | app=c:\program files\mediaget\mediaget.exe | "TCP Query User{52EFADE5-3010-4DAE-AA3F-8435FC5E27D4}C:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe" = protocol=6 | dir=in | app=c:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe | "TCP Query User{556E4BC1-3F51-4B54-B144-2E121FFAD6E6}D:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe" = protocol=6 | dir=in | app=d:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe | "TCP Query User{618ECFFB-EA49-40EB-A988-C904CD6F4DD1}C:\program files\rayv\rayv\rayv.exe" = protocol=6 | dir=in | app=c:\program files\rayv\rayv\rayv.exe | "TCP Query User{7AF75221-BA0E-4BF0-8C02-1254C0BC444B}C:\program files\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "TCP Query User{7BD47BC1-FE3F-4765-84DF-020560B114DB}C:\program files\opera\opera.exe" = protocol=6 | dir=in | app=c:\program files\opera\opera.exe | "TCP Query User{A54C0550-519B-457B-B288-184455EBA368}C:\program files\google\google earth\client\googleearth.exe" = protocol=6 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "TCP Query User{B1C70771-DAC0-4D3E-9569-93C528A65F82}D:\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=6 | dir=in | app=d:\world_of_tanks_closed_beta\wotlauncher.exe | "TCP Query User{B7FF4528-CB85-4C0B-8D30-3513179630E8}D:\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=6 | dir=in | app=d:\world_of_tanks_closed_beta\worldoftanks.exe | "TCP Query User{BFB7FBF8-CF1F-4603-A558-688BD52F2FC2}D:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe" = protocol=6 | dir=in | app=d:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe | "TCP Query User{C7A8BA20-F0BF-456F-A5CE-65BFEB9F2AC6}D:\cs\hl.exe" = protocol=6 | dir=in | app=d:\cs\hl.exe | "TCP Query User{D012CA66-879D-488B-A312-3D5B8F67A432}C:\users\adam\appdata\local\temp\cprogram filesopera\operaupgrader.exe" = protocol=6 | dir=in | app=c:\users\adam\appdata\local\temp\cprogram filesopera\operaupgrader.exe | "TCP Query User{E5845D51-6226-4401-8485-2DEEC096A7FA}C:\program files\mediaget\mediaget.exe" = protocol=6 | dir=in | app=c:\program files\mediaget\mediaget.exe | "TCP Query User{EC7B0F82-0ABC-43EB-AABB-1CC7C21AA018}C:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe" = protocol=6 | dir=in | app=c:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe | "TCP Query User{F169CAF1-97E5-4A82-B5D6-3952C3CD8254}D:\gry\gta4\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=d:\gry\gta4\grand theft auto iv\gtaiv.exe | "UDP Query User{0533B438-8B2F-4059-A051-083EF1496B91}D:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe" = protocol=17 | dir=in | app=d:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe | "UDP Query User{0E4AA828-0957-4862-BD86-80453DCF4369}D:\gry\gta4\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=d:\gry\gta4\grand theft auto iv\gtaiv.exe | "UDP Query User{182AA67C-5ADF-49E2-8A70-626942CD71D5}C:\program files\opera\opera.exe" = protocol=17 | dir=in | app=c:\program files\opera\opera.exe | "UDP Query User{2E1A34CA-6278-4850-9F72-D3F50A1C8EA7}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "UDP Query User{3BADBF04-CA40-46EA-9D6E-3164259B8404}C:\program files\google\google earth\client\googleearth.exe" = protocol=17 | dir=in | app=c:\program files\google\google earth\client\googleearth.exe | "UDP Query User{3E25365F-7324-4A1D-A756-605F63CD6469}D:\world_of_tanks_closed_beta\worldoftanks.exe" = protocol=17 | dir=in | app=d:\world_of_tanks_closed_beta\worldoftanks.exe | "UDP Query User{3EE51CC9-13B1-4F99-ABB0-159E7216CBCD}D:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe" = protocol=17 | dir=in | app=d:\pobrane\counter.strike.source.2010.orange.box.nosteam.[setti]\counter.strike.source.2010.orange.box.nosteam.[setti]\counter strike source 2010\hl2.exe | "UDP Query User{4AEC8FAD-70A7-4755-8F70-03D6BCA0C35B}C:\users\adam\appdata\local\temp\cprogram filesopera\operaupgrader.exe" = protocol=17 | dir=in | app=c:\users\adam\appdata\local\temp\cprogram filesopera\operaupgrader.exe | "UDP Query User{5B3B0344-A4B3-4FB5-A52A-4C4B8473BEDC}C:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe" = protocol=17 | dir=in | app=c:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe | "UDP Query User{7DC1EE2E-8624-45B4-80D1-8C9EB6EEF5A8}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{A6DC6CE8-B277-4ACC-9CBA-F779C7EDA250}C:\program files\mediaget\mediaget.exe" = protocol=17 | dir=in | app=c:\program files\mediaget\mediaget.exe | "UDP Query User{AF61D774-9EE8-4670-9ED0-BB7447166C9C}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "UDP Query User{B19447ED-001C-4C55-B502-E85EC9F76984}C:\program files\rayv\rayv\rayv.exe" = protocol=17 | dir=in | app=c:\program files\rayv\rayv\rayv.exe | "UDP Query User{C39F2614-DD16-4CF4-BDC7-F4394A3BC0A0}C:\program files\mediaget\mediaget.exe" = protocol=17 | dir=in | app=c:\program files\mediaget\mediaget.exe | "UDP Query User{C6AA4BD6-0DA8-4EE6-85A1-0EBA5BCEA67A}C:\program files\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files\gadu-gadu 10\gg.exe | "UDP Query User{C9434997-E223-4E0A-BCFB-1C7BCA6A760A}C:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe" = protocol=17 | dir=in | app=c:\users\adam\appdata\roaming\cacaoweb\cacaoweb.exe | "UDP Query User{D2E43F71-0321-44BD-ABD2-DE619D88C63F}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "UDP Query User{EFF8D40E-0B69-43C7-8EB2-E811F42DCA75}D:\world_of_tanks_closed_beta\wotlauncher.exe" = protocol=17 | dir=in | app=d:\world_of_tanks_closed_beta\wotlauncher.exe | "UDP Query User{F4012F0A-93C1-437B-89F8-96C935844C2D}D:\cs\hl.exe" = protocol=17 | dir=in | app=d:\cs\hl.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0E64B098-8018-4256-BA23-C316A43AD9B0}" = QuickTime "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2624B969-7135-4EB1-B0F6-2D8C397B45F7}_is1" = Media Player Classic - Home Cinema v. 1.3.1249.0 "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{3C3901C5-3455-3E0A-A214-0B093A5070A6}" = Microsoft .NET Framework 4 Client Profile "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4D905890-5435-49D8-B33B-37243F35ADAB}" = PhoTransEdit "{59C78B84-D256-4BFF-B7BF-F58EE0B68744}" = PDF Combiner "{5B4383F2-37EE-4E97-AD81-F5FF76F286DA}" = OutlookAddInNet3Setup "{5EE7D259-D137-4438-9A5F-42F432EC0421}" = VC80CRTRedist - 8.0.50727.4053 "{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{745D37C2-26F4-4B65-BA13-F9840EBFA75B}" = Might & Magic Heroes VI "{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update "{7B63B2922B174135AFC0E1377DD81EC2}" = "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8B743AA0-53B2-11D2-808A-00600895FB43}" = Heroes of Might and Magic III - Złota Edycja "{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010 "{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010 "{90140000-0015-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010 "{90140000-0016-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010 "{90140000-0018-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010 "{90140000-0019-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010 "{90140000-001A-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010 "{90140000-001B-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010 "{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010 "{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010 "{90140000-001F-0415-0000-0000000FF1CE}_Office14.PROPLUS_{1D751709-BA6C-49E2-844B-4F4F20F410C9}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010 "{90140000-002C-0415-0000-0000000FF1CE}_Office14.PROPLUS_{6606F321-8216-466E-981E-B75A14C46894}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2010 "{90140000-0044-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010 "{90140000-006E-0415-0000-0000000FF1CE}_Office14.PROPLUS_{6AF8887A-72F7-4FA0-ABE4-396172B64550}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010 "{90140000-00A1-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{90140000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2010 "{90140000-00BA-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1) "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{9E35B051-C7EE-47CB-BA43-9A7FFD4E61DE}" = OpenOffice.org 3.1 "{A5CBD7C5-CF16-443F-A4F2-3503C9DE311B}" = ACDSee Photo Manager 12 "{AA59DDE4-B672-4621-A016-4C248204957A}" = Skype™ 5.5 "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.1 - Polish "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 301.42 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.8.15 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.16.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{D0ACE89D-EC7F-470F-80BE-4C98ED366B32}" = Acer Crystal Eye webcam Ver:1.1.72.108 "{D417C96A-FCC7-4590-A1BB-FAF73F5BC98E}" = GTA San Andreas "{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{EB879750-CCBD-4013-BFD5-0294D4DA5BD0}" = Apple Application Support "{FA200000-0001-0000-0000-074957833700}" = ABBYY PDF Transformer 2.0 "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "Adobe Flash Player ActiveX" = Adobe Flash Player 10 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.5 "Android Commander_is1" = Android Commander version 0.7.9.8.2 "blueconnect" = blueconnect "DAEMON Tools Lite" = DAEMON Tools Lite "DAEMON Tools Toolbar" = DAEMON Tools Toolbar "DivX Plus DirectShow Filters" = DivX Plus DirectShow Filters "Dll-Files.com Fixer_is1" = Dll-Files.com Fixer "Get Styles" = Get Styles "InstallShield_{D6CD26FD-CD7F-4C86-96A3-EEBFABE5FE47}" = Kies "JDownloader" = JDownloader "JPG2PDF_is1" = JPG2PDF 2.2 "MediaGet DB Toolbar" = MediaGet DB Toolbar "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "NapiProjekt_is1" = NapiProjekt 1.0.6.9 "NeroMultiInstaller!UninstallKey" = Nero Suite "Office14.PROPLUS" = Microsoft Office Professional Plus 2010 "Opera 12.00.1467" = Opera 12.00 "PandoraRecovery" = PandoraRecovery (Remove Only) "RayV" = PL-IPTV "RealAlt_is1" = Real Alternative 2.0.1 "Recuva" = Recuva "SUUBCOMM&10C4&80F6" = Suunto USB Serial Port Drivers (Driver Removal) "SUUCOMM&10C4&80F6" = Suunto USB Serial Port "SuuntoMonitor_is1" = Suunto Monitor "SuuntoTrainingManager_is1" = Suunto Training Manager "SuuntoUSB_is1" = Suunto USB Drive "SuuntoUSBFTDIVista_is1" = Suunto USB Driver "SuuntoUSBVista_is1" = Suunto USB Driver "System Security Guard_is1" = System Security Guard 1.0 "TNod" = TNod User & Password Finder "uTorrent" = µTorrent "uTorrentBar Toolbar" = uTorrentBar Toolbar "VLC media player" = VLC media player 2.0.1 "WinRAR archiver" = WinRAR archiver "YU2010_is1" = Your Uninstaller! 2010 [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1816324019-4052323575-1482712787-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "UnityWebPlayer" = Unity Web Player [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2012-07-20 03:48:33 | Computer Name = Adam-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error - 2012-07-20 04:08:02 | Computer Name = Adam-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-20 04:08:06 | Computer Name = Adam-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-20 04:10:55 | Computer Name = Adam-Komputer | Source = Software Protection Platform Service | ID = 8198 Description = Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9 Error - 2012-07-20 04:10:55 | Computer Name = Adam-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error - 2012-07-20 04:15:18 | Computer Name = Adam-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-20 04:15:21 | Computer Name = Adam-Komputer | Source = System Restore | ID = 8193 Description = Error - 2012-07-20 04:36:48 | Computer Name = Adam-Komputer | Source = Software Protection Platform Service | ID = 8198 Description = Wystąpił błąd aktywacji licencji (slui.exe), kod błędu: 0x800401F9 Error - 2012-07-20 04:36:48 | Computer Name = Adam-Komputer | Source = Winlogon | ID = 4103 Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x00000000. Error - 2012-07-20 04:51:37 | Computer Name = Adam-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\System32\systemcpl.dll". Nie można odnaleźć zestawu zależnego Microsoft.Windows.Common-Controls,language="*",processorArchitecture="*",publicKeyToken="436865772d574741",type="win32",version="6.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. [ System Events ] Error - 2012-07-20 04:38:28 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:29 | Computer Name = Adam-Komputer | Source = DCOM | ID = 10005 Description = Error - 2012-07-20 04:38:29 | Computer Name = Adam-Komputer | Source = DCOM | ID = 10005 Description = Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:38:38 | Computer Name = Adam-Komputer | Source = Service Control Manager | ID = 7001 Description = Usługa Usługa listy sieci zależy od usługi Rozpoznawanie lokalizacji w sieci, której nie można uruchomić z powodu następującego błędu: %%1068 Error - 2012-07-20 04:40:52 | Computer Name = Adam-Komputer | Source = DCOM | ID = 10005 Description = < End of report >