OTL Extras logfile created on: 2014-02-07 21:50:08 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Rusher\Desktop\programsy 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.10.9200.16660) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,91 Gb Total Physical Memory | 1,74 Gb Available Physical Memory | 44,55% Memory free 7,82 Gb Paging File | 6,01 Gb Available in Paging File | 76,86% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 224,51 Gb Total Space | 181,23 Gb Free Space | 80,72% Space Free | Partition Type: NTFS Drive D: | 241,15 Gb Total Space | 138,06 Gb Free Space | 57,25% Space Free | Partition Type: NTFS Computer Name: RUSHER-KOMPUTER | User Name: Rusher | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-2048665305-901967102-3235237696-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [napiprojekt] -- "D:\NapiProjekt\napisy.exe" "%1" () Directory [napiprojekt0] -- "D:\NapiProjekt\napisy.exe" "%1" -pobierz_ang () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- "C:\Program Files\Internet Explorer\iexplore.exe" (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htmlfile [edit] -- Reg Error: Key error. htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [napiprojekt] -- "D:\NapiProjekt\napisy.exe" "%1" () Directory [napiprojekt0] -- "D:\NapiProjekt\napisy.exe" "%1" -pobierz_ang () Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Applications\iexplore.exe [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation) CLSID\{871C5380-42A0-1069-A2EA-08002B30309D} [OpenHomePage] -- Reg Error: Value error. [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 "FirewallDisableNotify" = 0 "AntiVirusDisableNotify" = 0 "UpdatesDisableNotify" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0E214A26-FE96-4316-A05E-DFE4A0B02F30}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{0F69F574-8474-4869-8C53-116CAEE2C7B7}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{158BE5D5-D662-4122-B08B-F10DAD36FFFA}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{191E301F-0A0D-4C5C-B6C7-D787E1B36391}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{1C0FAF4F-9A3D-4978-BE95-8588AAF4F734}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{21D315A3-6624-4141-8811-98ED218BD8ED}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{2306E693-89F6-44D1-941F-9A7907677BEA}" = rport=139 | protocol=6 | dir=out | app=system | "{2661BA6A-EDDA-47CC-A9A8-B197569477BA}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{344B8B93-6361-4969-89F3-5E5311506DBD}" = lport=445 | protocol=6 | dir=in | app=system | "{3D9C5256-A1EE-4E3B-BCAC-BA925BB40565}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{55252C6E-02D0-4FC6-89FC-1FC6F993D78F}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{558F4222-CB68-442C-8D4C-041BFDF01CED}" = rport=445 | protocol=6 | dir=out | app=system | "{59238C30-6B7C-47B6-A9B7-794990737DC7}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{5F1E57D9-D404-4ABD-A077-F82E5F8B8612}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{68265E10-B257-4DDA-AF21-7293889DF136}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{6B420971-5C43-401F-8CA3-11F35ED12806}" = rport=138 | protocol=17 | dir=out | app=system | "{6E425962-B5A5-468A-B092-927EF3BA630E}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{72491BA8-F2E4-499B-9BDA-3A1CBDBB1607}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{7348EDF3-615B-4E5B-B81F-C1B6985EA958}" = lport=57810 | protocol=17 | dir=in | name=pando media booster | "{7B31F2AD-9709-4088-8571-7426E56330BA}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{7CC7849B-D5C6-4984-B891-067D9D777A80}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{7ECFC459-BEA5-4D11-8C80-351E525BCAC5}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{8123A1FF-B51E-441C-B757-260F20720D62}" = rport=10243 | protocol=6 | dir=out | app=system | "{857F7D55-EC03-4F4E-88A3-0E8C480B4D93}" = lport=57810 | protocol=17 | dir=in | name=pando media booster | "{8D1229F1-5CF5-4DC9-84D7-A0AAA81E1F50}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{96995E52-19B4-4F29-9939-8CD6CF6CF54E}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{96A8C6E2-F28A-4BB8-8593-2010A5A69D24}" = rport=137 | protocol=17 | dir=out | app=system | "{96F868B8-0487-4BCA-817C-8FE2404505D2}" = lport=47987 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{98011650-8826-4591-9B76-3EE74F8B19E9}" = lport=57810 | protocol=6 | dir=in | name=pando media booster | "{A4CB888B-48F1-434F-963E-0E5B880BE55C}" = lport=139 | protocol=6 | dir=in | app=system | "{A8D97963-3E42-440E-B111-1037C7C271D3}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{B10178F2-21D2-4D81-8850-E590BDD0B548}" = lport=2869 | protocol=6 | dir=in | app=system | "{C22E8BA3-414C-42C1-8255-769299FFA343}" = lport=137 | protocol=17 | dir=in | app=system | "{CBA5CBF8-6E46-4E22-A720-7732446FAEAA}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{E37C0D11-5D65-4D38-B23B-8D4B2E922CF0}" = lport=57810 | protocol=6 | dir=in | name=pando media booster | "{ED13734E-1601-4FB5-AC6B-7564DB961C38}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{F2AB7C93-C5D9-4848-956C-6767B01B5334}" = lport=10243 | protocol=6 | dir=in | app=system | "{F99BC017-921E-4B49-AB72-59C39D9406C7}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{FCAEC014-A330-45D7-9957-7CA77E01C21E}" = lport=138 | protocol=17 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{00CD85FE-9960-475E-982F-CCEBE3C6674C}" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\bitwa o śródziemie ii\game.dat | "{029A3F85-87FE-4C59-B900-59DDDFAF2C5E}" = protocol=17 | dir=in | app=d:\program files (x86)\electronic arts\battlefield bad company 2\bfbc2updater.exe | "{0DD9D49F-0F82-470C-80F3-DB5DA68CD971}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{0E0E2013-6229-4422-A4C1-E0647C270EBF}" = protocol=6 | dir=in | app=c:\program files (x86)\lexmark 2600 series\lxdnamon.exe | "{0E3D08B2-9E69-4D20-A2D6-037F10D3EBA3}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{1226B965-D757-4386-89E6-9A3F93842F0A}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{1AD25EBE-8EFC-48C9-AD00-2E11465574C6}" = protocol=6 | dir=out | app=system | "{1AE8EC50-3BAA-4E18-AC24-B134EA431918}" = protocol=6 | dir=in | app=c:\program files (x86)\lexmark 2600 series\lxdnmon.exe | "{1C9D8B6C-368E-4ECE-BC75-30935450869E}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdntime.exe | "{1C9E45E5-967B-401E-A81B-7811A5D95597}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{1DE4CEA8-EABB-480D-8BE1-DAF399AF2B7F}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{21B7376C-82A1-42FF-8E95-862C462741B8}" = protocol=6 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe | "{2312549B-580B-487C-926E-48BFA0FD18A5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{23F38A4F-D5CA-4EE5-9202-A17972AF5FF8}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{260695F2-CBDE-4FC0-8E8B-94581E95D09D}" = protocol=17 | dir=in | app=c:\windows\system32\lxdncoms.exe | "{28F8B26F-A756-438E-85BF-47D94D7A101F}" = protocol=17 | dir=in | app=d:\władca pierścieni 2\game.dat | "{295D9AA2-013A-40AC-9570-4AE1CF5B29F8}" = protocol=6 | dir=in | app=c:\programdata\esafe\egdpsvc.exe | "{2C86C9FE-ABB4-4B86-B3D3-71B588D1D0DE}" = dir=in | app=c:\windows\system32\lxdncoms.exe | "{327732B8-E0E3-4A5C-B719-7F37D28805F5}" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\bitwa o śródziemie ii\game.dat | "{344E564D-217D-4BFB-BBC1-A87930D2D9B2}" = protocol=6 | dir=in | app=d:\władca pierścieni 2\game.dat | "{361CD7B2-5BE2-43B3-8438-7D623FE3DBFD}" = protocol=6 | dir=in | app=d:\program files (x86)\electronic arts\battlefield bad company 2\bfbc2updater.exe | "{387FC129-C1EF-42E6-A442-A2EF6EA4254D}" = dir=out | app=d:\dragony\dragon's prophet\launcher.exe | "{3FBCA984-9870-41B2-BE6A-1D91E95B08AE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{412FB2FE-706F-4999-A58C-D6BE3EE2E91F}" = dir=in | app=c:\windows\syswow64\lxdncoms.exe | "{43F79D22-030F-4303-B00C-771C4085C7F9}" = protocol=17 | dir=in | app=d:\władca pierścieni 2\game.dat | "{443A4BEC-BD11-41D3-AE58-A41C446C453B}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{455CD9CE-ADE8-4656-802C-52917E28AE11}" = protocol=6 | dir=in | app=c:\windows\syswow64\lxdncoms.exe | "{46C1626B-C083-4DF8-B0D3-E2A3BF0AB272}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe | "{490B3448-A4A4-4B29-9D14-026DA9B2D62A}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{4B1A0B63-FD3B-46D4-8862-E72E7E9CF87E}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4D004B59-8716-43C7-AAE4-2297A4390AC7}" = protocol=6 | dir=in | app=c:\windows\system32\lxdncoms.exe | "{515851B3-98E2-4E97-8052-6F3288223007}" = protocol=6 | dir=in | app=d:\napiprojekt\napisy.exe | "{529371F2-22CD-4E20-981D-E900448F4ADC}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{5597D49D-BA1D-4FA4-B494-CA91F0C191C9}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{568E75C4-9FF7-4FF8-A53F-BACBC38EEB46}" = dir=out | app=d:\dragony\dragon's prophet\dp_x64.exe | "{5992464B-8617-421A-9905-40135F34885F}" = dir=out | app=d:\dragony\dragon's prophet\dp_x86.exe | "{5EAC2DC3-BB9B-4064-AD70-11EDF3ACB456}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{6078F4E3-373D-4434-809F-6A4BE557F8A0}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{64E54A28-F195-4E58-9125-4221E30BD8B3}" = protocol=6 | dir=in | app=d:\steam\steam.exe | "{675BA501-ADBB-4C49-946F-A976E4D5D452}" = protocol=17 | dir=in | app=c:\program files (x86)\lexmark 2600 series\frun.exe | "{692E2DC6-13A0-4D08-8EA3-907554EEB3B5}" = protocol=6 | dir=in | app=c:\program files (x86)\lexmark 2600 series\frun.exe | "{75F12DFE-90AC-4340-93E6-5250A8762036}" = protocol=6 | dir=in | app=c:\users\rusher\appdata\local\temp\nspf253.tmp\bundlesweetimsetup.exe | "{768F8DE2-38DE-4454-82BB-27152E1764D9}" = dir=in | app=d:\dragony\dragon's prophet\dp_x64.exe | "{78A6A989-C4F4-4AFC-AB45-EBF6D5E81120}" = dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdntime.exe | "{83625110-90C7-40C0-A15D-F9792A422D2F}" = protocol=17 | dir=in | app=c:\windows\syswow64\lxdncoms.exe | "{93323DFB-5ECF-4C17-9571-DDD53A745DFA}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe | "{9D6B3AF3-9A0C-4D24-A8C3-4AF4214A1BD2}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{A88D2A36-26B1-4ACE-A925-DD8C6192B25F}" = protocol=17 | dir=in | app=c:\users\rusher\appdata\local\temp\nspf253.tmp\bundlesweetimsetup.exe | "{AF538AA2-2A97-4EFB-87E5-2521F2742790}" = protocol=6 | dir=in | app=d:\utorrent.exe | "{B4252791-1C30-42D7-8874-58229A326340}" = protocol=6 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdnjswx.exe | "{B6E13660-19C7-42F2-BB2E-2EEE340594B1}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{B8456505-0376-41BE-8D76-2ADD69D45D19}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdntime.exe | "{BA0EB6F1-4A28-4CCD-B18C-3B61D4FCAE73}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{BAA4E6DE-5512-4BB9-BF02-9F5E7D723D0F}" = protocol=17 | dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdnjswx.exe | "{C24F921D-A963-4C5E-8A94-788B8C989828}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{C3EB23E0-E507-41EE-8198-DFD964365242}" = protocol=17 | dir=in | app=d:\napiprojekt\napisy.exe | "{C57D0A8B-8A5F-4407-8649-D85561F17C6B}" = protocol=17 | dir=in | app=d:\utorrent.exe | "{C7BF60AF-71A8-4718-8603-562BF82EC476}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{CBB0BC7A-4BA6-454A-86B8-26745485DAC6}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{D32FB121-C6B7-4840-9D51-A7CD03A12045}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{D44841E1-DBFB-4DFE-9634-C24686BCA576}" = protocol=6 | dir=in | app=d:\władca pierścieni 2\game.dat | "{D5871C66-237F-4D94-9264-8FD8C0DD6CCB}" = protocol=17 | dir=in | app=d:\steam\steam.exe | "{D64B407E-B688-4F5C-BEA9-43ADA16BC288}" = protocol=17 | dir=in | app=c:\program files (x86)\lexmark 2600 series\lxdnamon.exe | "{E6867C62-F625-4A78-8F5B-6CE7F0ACE248}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{EA5B1390-6BF3-4364-92C7-47E84D054977}" = protocol=17 | dir=in | app=c:\program files (x86)\abbyy finereader 6.0 sprint\scan\scanman6.exe | "{EBBF147B-0269-4055-AEF1-028EE5F89B17}" = dir=in | app=d:\dragony\dragon's prophet\dp_x86.exe | "{ECB9A893-D158-4747-83E9-D44D01548E84}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{F0610ABE-DDA7-479D-9AA8-13CACB721A77}" = dir=in | app=d:\dragony\dragon's prophet\launcher.exe | "{F2E02C1A-5097-49B7-B77F-1FAF47540608}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F6F97EE7-A3EF-4E0A-9944-4333D52C2155}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{F98934D4-67BB-4A81-935F-EF7B0CD0F9A4}" = dir=in | app=c:\windows\system32\spool\drivers\x64\3\lxdnpswx.exe | "{FD7E6F65-10F7-4882-8D3A-66EB3A02A5AF}" = protocol=17 | dir=in | app=c:\program files (x86)\lexmark 2600 series\lxdnmon.exe | "{FE46017A-8496-4F03-887D-D7E7749999F8}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{FF964A64-06A0-4EC7-89BB-8F64D7F18926}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "TCP Query User{1594E2B9-BA41-4BCA-ABBF-5A4687CC54EC}D:\samoloty\wowplauncher.exe" = protocol=6 | dir=in | app=d:\samoloty\wowplauncher.exe | "TCP Query User{4864C90D-D59D-41AC-A2B6-748A292189BD}D:\world of tanks\worldoftanks.exe" = protocol=6 | dir=in | app=d:\world of tanks\worldoftanks.exe | "TCP Query User{6151C572-8CD2-4A25-8738-6162F525565A}D:\world of tanks\worldoftanks.exe" = protocol=6 | dir=in | app=d:\world of tanks\worldoftanks.exe | "TCP Query User{66B7BF42-FAB1-47AA-B8AC-D21C87DC3081}D:\muuuu\ex702clientnosound\main.exe" = protocol=6 | dir=in | app=d:\muuuu\ex702clientnosound\main.exe | "TCP Query User{7D28BDBD-090E-40B9-8500-21F9604F20ED}C:\program files (x86)\torntv.com\torntv downloader.exe" = protocol=6 | dir=in | app=c:\program files (x86)\torntv.com\torntv downloader.exe | "TCP Query User{8D78EEFD-2B89-40DE-8FFF-2158C4F36181}C:\program files (x86)\electronic arts\bitwa o śródziemie ii\patchget.dat" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\bitwa o śródziemie ii\patchget.dat | "TCP Query User{B14CE555-0ED2-4ABE-8151-CD63ABD71412}D:\world of tanks\wotlauncher.exe" = protocol=6 | dir=in | app=d:\world of tanks\wotlauncher.exe | "TCP Query User{BED68CE5-48A9-4D97-AB5F-1D41B1318FA9}D:\muuuu\main.exe" = protocol=6 | dir=in | app=d:\muuuu\main.exe | "TCP Query User{D4CDC483-ACA5-4B20-8E69-6F6FE9389771}D:\dragony\dp_x64.exe" = protocol=6 | dir=in | app=d:\dragony\dp_x64.exe | "TCP Query User{DD061518-6E9D-4CF7-B1A3-B26E83F85970}C:\program files (x86)\lexmark 2600 series\frun.exe" = protocol=6 | dir=in | app=c:\program files (x86)\lexmark 2600 series\frun.exe | "TCP Query User{EBDB9905-5EC0-4BDC-893E-2084215056E2}D:\program files (x86)\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe" = protocol=6 | dir=in | app=d:\program files (x86)\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe | "UDP Query User{0BE7A909-DFA4-44BD-9C43-EE0AF3F08708}D:\program files (x86)\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe" = protocol=17 | dir=in | app=d:\program files (x86)\firefly studios\stronghold 3\bin\win32_release\stronghold3.exe | "UDP Query User{0F1A091E-B10C-4ABA-A3D1-49810D145352}C:\program files (x86)\lexmark 2600 series\frun.exe" = protocol=17 | dir=in | app=c:\program files (x86)\lexmark 2600 series\frun.exe | "UDP Query User{13315D55-BA2F-45B4-A391-904A1A847F28}D:\samoloty\wowplauncher.exe" = protocol=17 | dir=in | app=d:\samoloty\wowplauncher.exe | "UDP Query User{3451D416-06CA-452E-985B-3E7E8091A6BB}D:\world of tanks\worldoftanks.exe" = protocol=17 | dir=in | app=d:\world of tanks\worldoftanks.exe | "UDP Query User{4930E28E-AD7D-4F3D-9698-EBD38B59C7CE}D:\muuuu\main.exe" = protocol=17 | dir=in | app=d:\muuuu\main.exe | "UDP Query User{5F5F5842-64DE-4860-BDF7-897E2A021C8C}D:\muuuu\ex702clientnosound\main.exe" = protocol=17 | dir=in | app=d:\muuuu\ex702clientnosound\main.exe | "UDP Query User{6BE1F928-0ED0-42DF-B03A-6CD7B9717E29}C:\program files (x86)\torntv.com\torntv downloader.exe" = protocol=17 | dir=in | app=c:\program files (x86)\torntv.com\torntv downloader.exe | "UDP Query User{A1ED3409-4CB3-42B9-9796-136E11DFB5A0}C:\program files (x86)\electronic arts\bitwa o śródziemie ii\patchget.dat" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\bitwa o śródziemie ii\patchget.dat | "UDP Query User{A8B45E69-D565-4D1E-B7A6-3EEDBA846353}D:\world of tanks\wotlauncher.exe" = protocol=17 | dir=in | app=d:\world of tanks\wotlauncher.exe | "UDP Query User{C155652E-29E4-4C84-9BBB-8B6E45D11B07}D:\dragony\dp_x64.exe" = protocol=17 | dir=in | app=d:\dragony\dp_x64.exe | "UDP Query User{E28BCE02-7425-4D05-B077-F626DF159B9E}D:\world of tanks\worldoftanks.exe" = protocol=17 | dir=in | app=d:\world of tanks\worldoftanks.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{89B0ECE0-A41F-4A45-98D9-D54C74338117}" = ESET NOD32 Antivirus "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{8E5DA9A6-7A9F-3A6F-BC5C-D6CBCA6A29C7}" = Microsoft .NET Framework 4 Extended PLK Language Pack "{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 332.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 332.21 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 1.8.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Optimus" = NVIDIA Optimus Update 10.11.15 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.13.0725 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 10.11.15 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamC" = GeForce Experience NvStream Client Components "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 10.11.15 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.19 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "0E74EB10C05C955C24243E6D3120CDC972FC5B1D" = Windows Driver Package - Broadcom HIDClass (06/11/2009 6.2.0.9500) "2AA10AB519DC7432D599A0E860206A7DDCC27764" = Windows Driver Package - Broadcom Bluetooth (07/29/2009 6.1.7100.0) "F9FD5BBF579A4BFD40D38BE291F731666B27DC28" = Windows Driver Package - Broadcom Bluetooth (07/17/2009 6.2.0.9403) "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "Microsoft .NET Framework 4 Extended PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Extended "TeamSpeak 3 Client" = TeamSpeak 3 Client "WinRAR archiver" = WinRAR 4.20 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{0141D498-16DA-4221-A529-1D7A64BE8B05}" = OpenOffice.org 3.3 "{1EAC1D02-C6AC-4FA6-9A44-96258C37C812EU}_is1" = World of Tanks "{1EAC1D02-C6AC-4FA6-9A44-96258C37C813EU}_is1" = World of Warplanes "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{2A9F95AB-65A3-432c-8631-B8BC5BF7477A}" = Bitwa o Śródziemie™ II "{4D2A6330-2F8B-11E3-9C40-B8AC6F97B88E}" = Google Earth "{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.6 "{5DE67937-45D5-45E4-923C-0B7F7EC929A7}" = League of Legends "{62BBB2F0-E220-4821-A564-730807D2C34D}" = Realtek USB 2.0 Reader Driver "{7B5AA67E-FEA0-40BB-BAB5-CA56645A589C}" = NVIDIA PhysX "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AB5C933E-5C7D-4D30-B314-9C83A49B94BE}" = ATK Package "{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.06) "{ACF60000-22B9-4CE9-98D6-2CCF359BAC07}" = ABBYY FineReader 6.0 Sprint "{BE7D7701-F714-41D7-B8CF-9EEEE44F5292}" = Tibiacast "{E4FB0B39-C991-4EE7-95DD-1A1A7857D33D}" = Asmedia ASM104x USB 3.0 Host Controller Driver "{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel(R) Processor Graphics "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{FCB3772C-B7D0-4933-B1A9-3707EBACC573}" = Intel(R) SDK for OpenCL - CPU Only Runtime Package "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "CCleaner" = CCleaner "Combined Community Codec Pack_is1" = Combined Community Codec Pack 2011-11-11 "Google Chrome" = Google Chrome "League of Legends 3.0.1" = League of Legends "Mozilla Firefox 27.0 (x86 pl)" = Mozilla Firefox 27.0 (x86 pl) "NapiProjekt_is1" = NapiProjekt (2.2.0.2399) "PunkBusterSvc" = PunkBuster Services "SpeedFan" = SpeedFan (remove only) "Stronghold 3_is1" = Stronghold 3 "Tibia_is1" = Tibia "Torntv V6.0" = Torntv V6.0 "uTorrent" = µTorrent "WinZipper" = WinZipper [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-2048665305-901967102-3235237696-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "Skype Packages" = Skype Packages [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2014-02-06 15:27:11 | Computer Name = Rusher-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-02-07 05:50:18 | Computer Name = Rusher-Komputer | Source = MsiInstaller | ID = 11316 Description = Error - 2014-02-07 12:35:03 | Computer Name = Rusher-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2014-02-07 12:35:03 | Computer Name = Rusher-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2014-02-07 12:36:19 | Computer Name = Rusher-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-02-07 13:20:02 | Computer Name = Rusher-Komputer | Source = MsiInstaller | ID = 11316 Description = Error - 2014-02-07 13:37:22 | Computer Name = Rusher-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2014-02-07 13:37:22 | Computer Name = Rusher-Komputer | Source = NvStreamSvc | ID = 131073 Description = Error - 2014-02-07 13:38:36 | Computer Name = Rusher-Komputer | Source = WinMgmt | ID = 10 Description = Error - 2014-02-07 14:20:03 | Computer Name = Rusher-Komputer | Source = MsiInstaller | ID = 11316 Description = Error - 2014-02-07 15:20:01 | Computer Name = Rusher-Komputer | Source = MsiInstaller | ID = 11316 Description = [ Media Center Events ] Error - 2013-07-31 04:18:12 | Computer Name = Rusher-Komputer | Source = MCUpdate | ID = 0 Description = 10:18:12 - Nie można pobrać pakietu Directory (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2013-07-31 04:19:16 | Computer Name = Rusher-Komputer | Source = MCUpdate | ID = 0 Description = 10:18:54 - Nie można pobrać pakietu MCESpotlight (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2013-07-31 04:19:58 | Computer Name = Rusher-Komputer | Source = MCUpdate | ID = 0 Description = 10:19:37 - Nie można pobrać pakietu MCEClientUX (Błąd: Nie można połączyć się z serwerem zdalnym) Error - 2013-07-31 04:20:19 | Computer Name = Rusher-Komputer | Source = MCUpdate | ID = 0 Description = 10:20:19 - Nie można pobrać pakietu Broadband (Błąd: Nie można połączyć się z serwerem zdalnym) [ System Events ] Error - 2013-09-22 04:49:26 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-22 07:34:23 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-22 14:31:36 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-23 02:26:49 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-23 05:58:19 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-23 09:05:14 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-23 13:20:44 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-24 03:07:11 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-24 07:08:28 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. Error - 2013-09-24 13:11:12 | Computer Name = Rusher-Komputer | Source = BTHUSB | ID = 327697 Description = W lokalnym adapterze Bluetooth wystąpił nieokreślony błąd. Adapter nie będzie używany. Sterownik został usunięty z pamięci. < End of report >