OTL Extras logfile created on: 2013-05-23 22:30:24 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = J:\ 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16540) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 4,00 Gb Total Physical Memory | 2,94 Gb Available Physical Memory | 73,40% Memory free 8,00 Gb Paging File | 6,77 Gb Available in Paging File | 84,66% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 247,82 Gb Total Space | 142,56 Gb Free Space | 57,53% Space Free | Partition Type: NTFS Drive D: | 51,39 Gb Total Space | 28,16 Gb Free Space | 54,79% Space Free | Partition Type: NTFS Drive E: | 48,83 Gb Total Space | 13,30 Gb Free Space | 27,25% Space Free | Partition Type: NTFS Drive F: | 48,83 Gb Total Space | 48,36 Gb Free Space | 99,04% Space Free | Partition Type: NTFS Drive G: | 341,80 Gb Total Space | 173,90 Gb Free Space | 50,88% Space Free | Partition Type: NTFS Drive H: | 341,80 Gb Total Space | 323,72 Gb Free Space | 94,71% Space Free | Partition Type: NTFS Drive J: | 14,82 Gb Total Space | 14,53 Gb Free Space | 98,07% Space Free | Partition Type: FAT32 Drive K: | 226,94 Mb Total Space | 0,00 Mb Free Space | 0,00% Space Free | Partition Type: CDFS Computer Name: MAREK-KOMPUTER | User Name: MAREK | Logged in as Administrator. Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_CURRENT_USER\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [OneNote.Open] -- C:\PROGRA~2\MICROS~1\Office12\ONENOTE.EXE "%L" Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{04BF7E4A-0CAD-425E-A7C5-C68476512A88}" = rport=138 | protocol=17 | dir=out | app=system | "{35332883-48D3-4A4A-9E77-569FC0748370}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{36589971-8455-4B58-AC75-BD136928AB36}" = lport=10243 | protocol=6 | dir=in | app=system | "{40B78475-9ACA-4F5E-B5B0-178E9ACA9CC6}" = lport=139 | protocol=6 | dir=in | app=system | "{4EC30E90-9851-4A88-B6E5-47C14B443DEC}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{51B1E8B9-8A9A-4161-9BB5-4A18D86FB9B1}" = lport=137 | protocol=17 | dir=in | app=system | "{5ADE833E-6BD4-4F09-84DE-F335A9C4DF24}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{5C11DB47-B5C9-4E06-BB23-E33B6AFED024}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{5F2B6216-708F-47A9-B614-7905CACB5EE5}" = lport=2869 | protocol=6 | dir=in | app=system | "{6C748620-4D40-4BFB-BFB0-ADC4EBD069A6}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{83BCCFEF-BFD3-4153-A9E2-1F5C4C4983B9}" = rport=139 | protocol=6 | dir=out | app=system | "{8E161BEF-5228-4109-8205-9780A78BC5C7}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{99A86F3C-D12F-4BC3-B842-C82A54930597}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{9E5CF453-98C7-46D6-84F8-1D0A2F78C870}" = lport=138 | protocol=17 | dir=in | app=system | "{AB947381-06FC-4D5E-9789-FAC5750E6479}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{B493305D-2A68-4163-B2B0-03F572E3FBFF}" = rport=10243 | protocol=6 | dir=out | app=system | "{BF1ED04B-49A0-4B82-8E9D-4A5FAC9A9E86}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{C84C3B62-18F4-40BA-BDFD-A67ABBD91EDE}" = rport=137 | protocol=17 | dir=out | app=system | "{CEF44B77-0DCA-4FAD-96CC-02DFEDD8077F}" = rport=445 | protocol=6 | dir=out | app=system | "{D9E2EE0C-689D-474E-921F-F9EF7E3035E2}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{E99FAE28-813E-48D2-806C-C68C2DEF77E2}" = lport=445 | protocol=6 | dir=in | app=system | "{EA0BA754-145B-4181-A7CA-3F1AD3F653EE}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{FE62628A-F9A7-4D2D-90FB-80D678BE466D}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{FF278EC1-39B6-4E25-8F66-2FAA2B1E6AF1}" = lport=6004 | protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\outlook.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0116B8E9-39D0-4BDE-8DED-BCBFC6E6ED05}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{0B00C750-5CD9-4146-A502-3EDA46E2F3D9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{1091DECB-E779-4F9F-A0A1-54D11393E886}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{2063B381-776E-422E-96DB-D9414C138A76}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{24A82BEF-62BF-4C33-8F7F-64A38FF224E0}" = protocol=6 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{2FBA0FC0-6A97-4F7A-8ECF-5563D3C6F003}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{32AD914C-8DCD-4253-8B5F-BD7241836BC8}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4BEE4313-6D32-496B-A72B-FA92BF9EFC09}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{4CE2BDC9-9E8C-456D-AEC0-D255D8096774}" = protocol=17 | dir=in | app=c:\program files (x86)\opera\opera.exe | "{50927A8B-08A8-4E11-99FC-89CD50F00138}" = dir=in | app=c:\program files (x86)\cdp.pl\farming simulator 2013\farmingsimulator2013.exe | "{5F10903E-26B1-440A-9C26-A0E5D6607B56}" = protocol=17 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe | "{5F8AE538-F166-43EB-B340-1331CCC0C407}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{6580BDC2-7BBF-4F76-B48C-072E0484E8C6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{671C1459-5E87-4038-937E-BF1713867302}" = protocol=6 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{6C48CE55-CA7D-4098-B15E-F96B0A80D03E}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{73515B4F-AE1C-4396-8EE1-9BAD39F179FF}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{7420AAEE-886B-49F6-B00B-E71A892BB738}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{7A81C17F-F05C-43FD-A309-C748FF922F3A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{7B38FFE3-7B9A-40EB-82F2-70C8E858AB90}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{82689F01-1B91-4186-8155-57354F5B6F96}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{890BBF3F-6237-441D-BFA0-BE2198AAB0FC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{8CDBA0CB-0E76-405A-9740-B116F5DC1084}" = dir=in | app=c:\program files (x86)\cdp.pl\farming simulator 2013\farmingsimulator2013game.exe | "{924CE4DF-3354-46C8-9049-3857DA4F8769}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\groove.exe | "{92FB4237-FCEF-40A9-817A-17F6A74BCD5C}" = protocol=17 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "{98F40722-23D7-46AB-B76D-058C60772833}" = protocol=6 | dir=in | app=c:\program files (x86)\utorrent\utorrent.exe | "{B4F76B43-8304-4A3C-9AA8-2901345D06DE}" = protocol=6 | dir=out | app=system | "{B668B173-84F5-4FB4-A3B9-E69322A1215A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{BA353C07-21BB-4F96-9317-A0F896A0E46B}" = dir=in | app=c:\program files (x86)\cdp.pl\farming simulator 2013\farmingsimulator2013game.exe | "{CE6914A4-4182-4CF9-AF24-E3BF5D114C2A}" = protocol=6 | dir=in | app=c:\program files (x86)\avg\avg2013\avgmfapx.exe | "{DFC4D956-CC3C-45F6-9605-CFAD92032992}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{EE24639A-1AEA-4463-AB42-E6F1F5D4265E}" = dir=in | app=c:\program files (x86)\cdp.pl\farming simulator 2013\farmingsimulator2013.exe | "{F4E6C486-9E37-4575-9599-2ABB5EF1F753}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{F749B330-3FD9-42FB-959C-73B0C319F97A}" = protocol=17 | dir=in | app=c:\program files (x86)\microsoft office\office12\onenote.exe | "{FC57FC7A-11CA-47DA-A7CC-5E6D0665B929}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "TCP Query User{107EAFB4-F898-4128-9DC9-00AACE8BE209}D:\gry\call of duty black ops 2\t6sp.exe" = protocol=6 | dir=in | app=d:\gry\call of duty black ops 2\t6sp.exe | "TCP Query User{3A7076CC-8E0E-4665-92D3-670E1B180ECE}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe | "TCP Query User{53893C1C-D72F-486F-8316-DF384B4C8AF2}F:\nowy folder\call of duty black ops 2\t6sp.exe" = protocol=6 | dir=in | app=f:\nowy folder\call of duty black ops 2\t6sp.exe | "TCP Query User{584030A8-B5C9-4135-938E-EFF437D234E5}C:\program files (x86)\gigabyte\@bios\gwflash.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gigabyte\@bios\gwflash.exe | "TCP Query User{6330B42A-0FB6-4B6C-BEFB-55B556F55816}D:\gry\call of duty black ops 2\t6sp.exe" = protocol=6 | dir=in | app=d:\gry\call of duty black ops 2\t6sp.exe | "TCP Query User{75417C5C-EEF2-44ED-8780-F987076B3123}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{7A78FF64-F16C-4FF0-A8F0-85BABBDE08A8}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{ABF7E83E-AFFC-4AA6-ADB9-B486148A5EE9}C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\need for speed most wanted\nfs13.exe | "TCP Query User{AE7CBCE2-22E7-4137-9D5B-00C70ADC2CDD}C:\users\marek\desktop\winbox.exe" = protocol=6 | dir=in | app=c:\users\marek\desktop\winbox.exe | "TCP Query User{AED008C8-0FAC-48A4-8B8E-5327A65C3803}C:\program files (x86)\farcry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\farcry 3\bin\farcry3.exe | "TCP Query User{EDEF8619-10C2-4016-BFE0-49A1A14E5638}C:\program files (x86)\farcry 3\bin\farcry3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\farcry 3\bin\farcry3.exe | "UDP Query User{13186E40-EDD4-4E27-B70E-1494EBAB6754}C:\program files (x86)\gigabyte\@bios\gwflash.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gigabyte\@bios\gwflash.exe | "UDP Query User{1DA65E76-2E3F-499E-8E2F-28D8E220939C}C:\program files (x86)\farcry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\farcry 3\bin\farcry3.exe | "UDP Query User{27A13074-3A2B-44F2-AD49-D36E9FF3D5C9}C:\users\marek\desktop\winbox.exe" = protocol=17 | dir=in | app=c:\users\marek\desktop\winbox.exe | "UDP Query User{2B228FDF-D214-4B7D-B3EF-B44930BEBAF9}C:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\sniper ghost warrior 2\bin32\sniperghostwarrior2.exe | "UDP Query User{5C1B1F2D-5ED1-4865-BED8-91374C61EB24}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{72FC8155-8C63-4832-B56B-A74EB0EDCE27}D:\gry\call of duty black ops 2\t6sp.exe" = protocol=17 | dir=in | app=d:\gry\call of duty black ops 2\t6sp.exe | "UDP Query User{8A1E1345-D53A-4414-814C-DDE2E6421F9E}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{DF6B40F8-CB39-4CFD-A713-2D3CAF7EEF5A}C:\program files (x86)\ea games\need for speed most wanted\nfs13.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\need for speed most wanted\nfs13.exe | "UDP Query User{EA65A4B8-35B2-4E01-AA19-DFA7AD8AA0B6}F:\nowy folder\call of duty black ops 2\t6sp.exe" = protocol=17 | dir=in | app=f:\nowy folder\call of duty black ops 2\t6sp.exe | "UDP Query User{F105BECA-3B79-4ADA-8160-7043077FE96E}D:\gry\call of duty black ops 2\t6sp.exe" = protocol=17 | dir=in | app=d:\gry\call of duty black ops 2\t6sp.exe | "UDP Query User{F3832DC3-B74B-442C-B68D-CB05D224BC58}C:\program files (x86)\farcry 3\bin\farcry3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\farcry 3\bin\farcry3.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables "{45E11160-4795-098A-4735-35A9602918C8}" = ccc-utility64 "{46FEAF6D-C70D-A539-40C6-F7707E2B5B50}" = ATI AVIVO64 Codecs "{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{84664114-0F09-6007-AA2D-C103A8AA90B6}" = AMD Fuel "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2007 "{995AF18C-1425-9112-C3AA-1999169D209F}" = ATI Catalyst Install Manager "{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "DriverAgent.exe" = DriverAgent by eSupport.com "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "NVIDIA Drivers" = NVIDIA Drivers [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{15D2D75C-9CB2-4efd-BAD7-B9B4CB4BC693}" = BrowserProtect "{1798D459-6B8B-474B-868D-1229EADA3B95}" = Adobe AIR "{1AE46C09-2AB8-4EE5-88FB-08CD0FF7F2DF}" = Bing Bar "{20D4A895-748C-4D88-871C-FDB1695B0169}" = Platform "{36890640-0DE9-0456-9065-23F34828D849}" = Catalyst Control Center InstallProxy "{47D6F3E4-D158-4E47-84C4-0D6452DB2488}_is1" = Call of Duty Black Ops 2 "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.3 "{57AC79C8-157E-403A-A8D0-DD74EF71BAE2}" = Catalyst Control Center - Branding "{58C91689-85E3-4B25-ADEC-2697986DF817}" = Qtrax Player "{59C8E590-AE35-F424-DFE4-2698C89EC118}" = Catalyst Control Center Localization All "{6ECB39BD-73C2-44DD-B1A0-898207C58D8B}" = Nawigator obrazów i fotografii HP 2.0 - All-in-One Sterowniki "{7E265513-8CDA-4631-B696-F40D983F3B07}_is1" = CDBurnerXP "{84178AE8-C22D-48CB-A6BA-D116FD3FE469}" = Qtrax Player "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0015-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0407-0000-0000000FF1CE}_ENTERPRISE_{928D7B99-2BEA-49F9-83B8-20FA57860643}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0409-0000-0000000FF1CE}_ENTERPRISE_{1FF96026-A04A-4C3E-B50A-BB7022654D0F}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-001F-0415-0000-0000000FF1CE}_ENTERPRISE_{9CC96D78-9E1D-46E0-AF4D-3EB440CD4619}" = Microsoft Office Proofing Tools 2007 Service Pack 3 (SP3) "{90120000-002A-0000-1000-0000000FF1CE}_ENTERPRISE_{664655D8-B9BB-455D-8A58-7EAF7B0B2862}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002A-0415-1000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0030-0000-0000-0000000FF1CE}_ENTERPRISE_{6E107EB7-8B55-48BF-ACCB-199F86A2CD93}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-0044-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}_ENTERPRISE_{0C8AB602-A234-45AB-B355-4C863C1D2FA8}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}_ENTERPRISE_{01CC3B2D-70DB-49DC-839A-A923D2A39EA4}" = Microsoft Office 2007 Service Pack 3 (SP3) "{9867A917-5D17-40DE-83BA-BEA5293194B1}" = Nawigator obrazów i fotografii HP 2.0 - All-in-One "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A215A478-36A7-4EF9-B8D6-9ED083D97EEF}_is1" = Focus Photoeditor 6.5.0.2 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) "{B1665885-C05D-429D-9308-AD74D12502BE}_is1" = PcSpeedTest 1.1.1.0 "{B2DC3F08-2EB2-49A5-AA24-15DFC8B1CB83}" = @BIOS "{B376402D-58EA-45EA-BD50-DD924EB67A70}" = Dysk wspomnieniowy HP "{B6CF2967-C81E-40C0-9815-C05774FEF120}" = Skype Click to Call "{B810D852-DFD6-FC3-89A5-CC4D47756DAF}_is1" = FarCry 3 version 5.1 "{CC208C6B-D80A-66A9-2BFC-5EF7E795DBD1}" = Catalyst Control Center Profiles Desktop "{E21F8885-F3FD-B77E-43D3-CDB7957FE13D}" = CCC Help Polish "{E3B9C5A9-BD7A-4B56-B754-FAEA7DD6FA88}" = Far Cry 3 "{E6E2D4C8-BB56-9B8D-6D05-D9055F109B76}" = HydraVision "{EE3CF57E-11C2-4C1D-A8DC-69C3D800E933}_is1" = Sniper Ghost Warrior 2 version 5.1 "{F0457E70-5D48-42DC-840F-2C30F1BD7E21}" = AMD VISION Engine Control Center "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "Ace Translator 10.4.0.818" = Ace Translator 10.4.0.818 "Adobe AIR" = Adobe AIR "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "BlueSprig_JetClean_is1" = JetClean "ContentaConverter-PREMIUM" = Contenta Converter PREMIUM "DAEMON Tools Lite" = DAEMON Tools Lite "delta" = Delta toolbar "Delta Chrome Toolbar" = Delta Chrome Toolbar "ENTERPRISE" = Microsoft Office Enterprise 2007 "EVEREST Ultimate Edition_is1" = EVEREST Ultimate Edition v5.50 "Gadu-Gadu 10" = Gadu-Gadu 10 "Google Chrome" = Google Chrome "HD Tune_is1" = HD Tune 2.55 "Hitman Absolution_is1" = Hitman Absolution "InstallShield_{20D4A895-748C-4D88-871C-FDB1695B0169}" = VIA Platforma Menedżera urządzeń "JetBoost_is1" = JetBoost "Mozilla Firefox 20.0.1 (x86 pl)" = Mozilla Firefox 20.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "Need for Speed Most Wanted_is1" = Need for Speed Most Wanted "Opera 12.15.1748" = Opera 12.15 "QuickTime" = QuickTime "slow_12_60_is1" = Profesor Henry 6.0 Słownictwo poziom 1 i 2 "SMPlayer" = SMPlayer 0.8.1 "Uplay" = Uplay "uTorrent" = µTorrent "uTorrentControl_v2 Toolbar" = uTorrentControl_v2 Toolbar "VDC_is1" = Video Download Converter version 1.0.0.0 "VideoDownloadConverter_4zbar Uninstall" = VideoDownloadConverter Toolbar "WinRAR archiver" = WinRAR 4.20 (32-bitowy) [color=#E56717]========== HKEY_CURRENT_USER Uninstall List ==========[/color] [HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "830132638.portal.qtrax.com" = Qtrax Player "DSite" = Update for Hoolapp "Hoolapp Packages" = Hoolapp Packages "Mipony Download Manager Packages" = Mipony Download Manager Packages "UnityWebPlayer" = Unity Web Player "Video Converter Packages" = Video Converter Packages [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-05-22 17:46:18 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 15:34:22 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 15:35:12 | Computer Name = MAREK-Komputer | Source = Application Error | ID = 1000 Description = Nazwa aplikacji powodującej błąd: t6sp.exe, wersja: 1.0.0.1, sygnatura czasowa: 0x509a7621 Nazwa modułu powodującego błąd: unknown, wersja: 0.0.0.0, sygnatura czasowa: 0x00000000 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x0018fd4c Identyfikator procesu powodującego błąd: 0xea8 Godzina uruchomienia aplikacji powodującej błąd: 0x01ce57eca2745ad3 Ścieżka aplikacji powodującej błąd: D:\gry\Call of Duty Black Ops 2\t6sp.exe Ścieżka modułu powodującego błąd: unknown Identyfikator raportu: e2574b52-c3df-11e2-a397-002522f1a38b Error - 2013-05-23 15:35:16 | Computer Name = MAREK-Komputer | Source = Application Error | ID = 1000 Description = Nazwa aplikacji powodującej błąd: SniperGhostWarrior2.exe, wersja: 3.4.1.4621, sygnatura czasowa: 0x513ef6a0 Nazwa modułu powodującego błąd: CryRenderD3D9.DLL, wersja: 3.4.1.4621, sygnatura czasowa: 0x513e6576 Kod wyjątku: 0xc0000005 Przesunięcie błędu: 0x001cb99f Identyfikator procesu powodującego błąd: 0x278 Godzina uruchomienia aplikacji powodującej błąd: 0x01ce57ec9f1ce10e Ścieżka aplikacji powodującej błąd: C:\Program Files (x86)\Sniper Ghost Warrior 2\Bin32\SniperGhostWarrior2.exe Ścieżka modułu powodującego błąd: C:\Program Files (x86)\Sniper Ghost Warrior 2\Bin32\CryRenderD3D9.DLL Identyfikator raportu: e4dd1c4c-c3df-11e2-a397-002522f1a38b Error - 2013-05-23 15:39:51 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 15:45:08 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 15:48:37 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 15:55:21 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 16:00:54 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2013-05-23 16:04:49 | Computer Name = MAREK-Komputer | Source = WinMgmt | ID = 10 Description = [ Media Center Events ] Error - 2013-04-03 04:31:22 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 10:31:22 - Błąd podczas nawiązywania połączenia z Internetem. 10:31:22 - Nie można skontaktować się z serwerem.. Error - 2013-04-03 04:31:27 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 10:31:27 - Błąd podczas nawiązywania połączenia z Internetem. 10:31:27 - Nie można skontaktować się z serwerem.. Error - 2013-04-03 06:24:25 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 12:24:25 - Błąd podczas nawiązywania połączenia z Internetem. 12:24:25 - Nie można skontaktować się z serwerem.. Error - 2013-04-03 06:24:30 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 12:24:30 - Błąd podczas nawiązywania połączenia z Internetem. 12:24:30 - Nie można skontaktować się z serwerem.. Error - 2013-04-03 07:24:35 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 13:24:35 - Błąd podczas nawiązywania połączenia z Internetem. 13:24:35 - Nie można skontaktować się z serwerem.. Error - 2013-04-03 07:24:41 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 13:24:40 - Błąd podczas nawiązywania połączenia z Internetem. 13:24:40 - Nie można skontaktować się z serwerem.. Error - 2013-04-04 02:12:28 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 08:12:28 - Błąd podczas nawiązywania połączenia z Internetem. 08:12:28 - Nie można skontaktować się z serwerem.. Error - 2013-04-04 02:12:38 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 08:12:33 - Błąd podczas nawiązywania połączenia z Internetem. 08:12:33 - Nie można skontaktować się z serwerem.. Error - 2013-04-04 03:12:42 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 09:12:42 - Błąd podczas nawiązywania połączenia z Internetem. 09:12:42 - Nie można skontaktować się z serwerem.. Error - 2013-04-04 03:12:48 | Computer Name = MAREK-Komputer | Source = MCUpdate | ID = 0 Description = 09:12:47 - Błąd podczas nawiązywania połączenia z Internetem. 09:12:47 - Nie można skontaktować się z serwerem.. [ System Events ] Error - 2013-05-23 15:47:04 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFS Error - 2013-05-23 15:52:30 | Computer Name = MAREK-Komputer | Source = DCOM | ID = 10010 Description = Error - 2013-05-23 15:53:47 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi AODDriver4.0 z powodu następującego błędu: %%3 Error - 2013-05-23 15:53:47 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFS Error - 2013-05-23 15:56:07 | Computer Name = MAREK-Komputer | Source = DCOM | ID = 10010 Description = Error - 2013-05-23 15:59:21 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi AODDriver4.0 z powodu następującego błędu: %%3 Error - 2013-05-23 15:59:21 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFS Error - 2013-05-23 16:01:55 | Computer Name = MAREK-Komputer | Source = DCOM | ID = 10010 Description = Error - 2013-05-23 16:03:15 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi AODDriver4.0 z powodu następującego błędu: %%3 Error - 2013-05-23 16:03:15 | Computer Name = MAREK-Komputer | Source = Service Control Manager | ID = 7026 Description = Nie można załadować następujących sterowników startu rozruchowego lub systemowego: AFS < End of report >