OTL Extras logfile created on: 2012-11-13 16:52:32 - Run 3
OTL by OldTimer - Version 3.2.69.0     Folder = C:\Users\__\Downloads
64bit- Ultimate Edition  (Version = 6.1.7600) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
4,00 Gb Total Physical Memory | 2,00 Gb Available Physical Memory | 50,03% Memory free
7,99 Gb Paging File | 4,73 Gb Available in Paging File | 59,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 310,32 Gb Total Space | 217,99 Gb Free Space | 70,25% Space Free | Partition Type: NTFS
Drive D: | 310,55 Gb Total Space | 280,32 Gb Free Space | 90,27% Space Free | Partition Type: NTFS
Drive E: | 310,55 Gb Total Space | 192,78 Gb Free Space | 62,08% Space Free | Partition Type: NTFS
 
Computer Name: __-KOMPUTER | User Name: __ | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [print] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1426B82E-2DD4-44F6-9770-6B61B7DAF59F}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{1710737A-9B01-44CA-86EF-65A8F17BE9A6}" = lport=999 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe | 
"{1967203E-7DCC-4712-A005-9426255065A2}" = lport=990 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{1C167621-2E46-4564-82D0-79E2BC0B206A}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{23ECE7D2-8386-4F54-B153-51CCDE1BC0DE}" = lport=139 | protocol=6 | dir=in | app=system | 
"{3FD2D91C-14AB-4537-A2F8-EE28CEB09A6A}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{47E34FAF-BD74-475A-92BE-7005E6CB2179}" = rport=139 | protocol=6 | dir=out | app=system | 
"{4B09DCC0-67FD-4B7F-9F27-57E41BE8BE13}" = rport=445 | protocol=6 | dir=out | app=system | 
"{6086C109-7048-46B9-A518-A883364263B7}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{65CA41EE-49D8-4374-B273-FA22260D5F29}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{736CDF1D-1665-4DFC-9E7C-AC9C2175C825}" = lport=5678 | protocol=6 | dir=in | app=%systemroot%\windowsmobile\wmdhost.exe | 
"{7A925ECF-0014-42DF-B94D-8B4509A2E679}" = lport=137 | protocol=17 | dir=in | app=system | 
"{7E094AE0-2BC2-4050-A57B-B7CE62B9E3A0}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{94DF8F12-F8C7-4494-8F2C-756059A27B1A}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{A41B422D-6BFE-4D32-8FB3-4ECC82F3CB34}" = lport=445 | protocol=6 | dir=in | app=system | 
"{B73A7E9B-6068-4105-91AA-9B8813AAAB5B}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{B80BDAD3-7AE2-4711-9CB5-9CBF1735C781}" = lport=26675 | protocol=6 | dir=in | name=@%systemroot%\windowsmobile\wmdcbase.exe,-4006 | 
"{BE18E074-20DF-4EF5-9517-56F983A436C4}" = rport=5679 | protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{D2BCCDFB-A211-4E5B-8821-B8ECC5743010}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{D3523991-52D6-4796-9642-A8F3D1B5A904}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{D5A1DADB-5957-4B92-A397-1A9CA20F1D17}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{DA8F0BBE-22CF-4D2D-9C6B-4EB99CBA8807}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{E1F3DE42-5190-45D0-837E-2DAD21EC7544}" = rport=137 | protocol=17 | dir=out | app=system | 
"{EAA87343-23DE-4DD4-8402-83DF5A517DE8}" = lport=5721 | protocol=6 | dir=in | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{F33FDD6B-1635-4C86-8984-2790B6B512DB}" = rport=138 | protocol=17 | dir=out | app=system | 
"{F5153CE5-0BA7-4DA0-B269-3A3EDDABF25A}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{FFF1DE8F-010B-496C-BC66-8A5E75CFF09F}" = lport=138 | protocol=17 | dir=in | app=system | 
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{1964DF53-8326-4480-A244-D8FD2BCBD1DD}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe | 
"{1D8426CC-49D1-4410-84C0-C93561469B59}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{1F2B7721-2CCB-4DAB-B5A6-039EF7A91A9D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{28C119B7-4A66-4315-B4FD-8923FDF67649}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{295992A8-17E5-40A0-9105-142E24849C96}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{2B5DBBF0-28B3-4EF6-A95C-6B9DED0336C5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{2B9C5C22-91B2-4B27-A2C1-C83AB1B2A1A1}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{31BD1110-77D6-4664-9262-2E6FF5B43962}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{31EF9C15-B770-4828-8B06-99D4EE5A390D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{44B01577-7BF1-4DB1-AAEE-E1EF18537FF2}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{54F499C0-83EB-49AC-AF86-5B625A4908B7}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{5A8BEFE1-F945-4431-AD9C-F2C36FFE5F51}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{5E5B9889-CE2B-4B42-B30F-B302CCDA508C}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{660DD152-FD96-42B9-BCDF-6E2D1B148F41}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{69965A57-3AF6-42A4-BF2B-1C10C2F4D913}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{72873368-93A9-437C-90B9-5CBDFF84EF5B}" = protocol=6 | dir=out | app=system | 
"{7362293E-A52D-49A6-B652-C885A9DB0C6A}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{73AE3C8C-90D1-4682-84D5-A524DFD72B7D}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{79B8D229-066D-43B0-8272-5C0736779207}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{7CC461D0-DED1-4958-AE42-62273510A158}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{82AED58B-35D3-48DA-9BA0-D665E2B9F95D}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | 
"{8466101B-7FB3-4F16-B332-C053255966FA}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{864C29B2-F6FD-4890-B393-3B86BA63703A}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{8A43C680-3CB3-4FCB-AF9B-979D5771A55F}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{9492B8A1-925B-4014-80DB-8939D01D7D12}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{97AED0BC-6246-47EF-87E8-9C076717C92C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{9D9D8B33-E440-48A3-84E0-0420A4D9CD4E}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{A2FC4310-8D89-4DA4-8E52-BAB89E4993B3}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{A384CC20-1F37-4025-9FC7-84A37F6ECD0D}" = protocol=17 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe | 
"{ACA91C8B-09E0-4EFF-9709-778A93BA46C9}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{AD29CE8E-08CC-4CDD-B353-2BA0D085A8E9}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{B04BF587-A7E4-4814-9936-2FE02A3C6891}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{B2A7127E-3980-49FB-BA75-3DD1F166A084}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | 
"{B4FBF5C4-D2B3-4837-AC83-0752CD8E8976}" = protocol=6 | dir=in | app=c:\program files (x86)\bittorrent\bittorrent.exe | 
"{BF38738F-14EE-4E1B-83D3-9B500AFC90D4}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{DCFA2373-202F-42CB-8ACB-E4D747588EDA}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{E072FB86-797D-4878-9631-4F13450116C4}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | 
"{ED2F67A3-ED86-4D64-8C4F-6687B65F184C}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{EF2B0073-5CEE-4752-A956-DB9029B695AE}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{F046C8E8-E08F-404A-B4E4-01C7296E8BF9}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{F0A0D05B-9DFD-4DC8-9900-6CE40B4670BD}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{F1D5780A-380C-4B8E-8AB8-72E79929FFBF}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{F40604F9-5A81-4CAE-AAD6-6BD2E4430BCE}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{F4F3A1BA-B53E-4BEC-B96C-A7F7A69BE635}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{F87F0402-2678-4A2A-936F-BA0133C8698D}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"{F92DE912-B081-4677-99AA-35CFCBD1308E}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | 
"TCP Query User{04210B47-BC17-4D6A-9DEB-8C7DD284BF84}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ea games\battlefield play4free\bfp4f.exe | 
"TCP Query User{20DB1BE7-3BBC-417E-B89A-A6518435A476}E:\soldat\soldat.exe" = protocol=6 | dir=in | app=e:\soldat\soldat.exe | 
"TCP Query User{22A96443-6B5D-49D4-AEAA-DC998A68EFB6}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=6 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | 
"TCP Query User{2B43500E-47B6-4800-BF17-9B06A177B01D}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | 
"TCP Query User{3C4D1945-6659-4847-AE39-9FFF7F31F7DF}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe | 
"TCP Query User{48A55D04-8877-4C41-B11A-30D38464A5FD}D:\r.g. catalyst\max payne 3\maxpayne3.exe" = protocol=6 | dir=in | app=d:\r.g. catalyst\max payne 3\maxpayne3.exe | 
"TCP Query User{5141D20C-1452-4BA6-B00B-FFBFDB994038}C:\xampp\apache\bin\httpd.exe" = protocol=6 | dir=in | app=c:\xampp\apache\bin\httpd.exe | 
"TCP Query User{76BAF3AA-1F30-47BF-8C0C-B1303398EF43}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=6 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe | 
"TCP Query User{80E0BAD2-9A5A-4B51-8BC8-5FA1C4FD06E4}C:\games\world_of_tanks\worldoftanks.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | 
"TCP Query User{8F836EF9-A72B-4389-886F-12F14D52E3E9}C:\program files (x86)\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\f.e.a.r. 3\f.e.a.r. 3.exe | 
"TCP Query User{AF12B793-1EC4-4611-9FFF-8A0CC2217EB1}C:\program files (x86)\black_box\max payne 3\maxpayne3.exe" = protocol=6 | dir=in | app=c:\program files (x86)\black_box\max payne 3\maxpayne3.exe | 
"TCP Query User{D57181CC-F23F-4F6B-9914-2551B26151D6}C:\totalcmd\totalcmd64.exe" = protocol=6 | dir=in | app=c:\totalcmd\totalcmd64.exe | 
"TCP Query User{DF9E0262-979F-450B-BEDC-57F7D303F7AF}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | 
"TCP Query User{E279645C-7B10-41D1-9DF2-5129EAECFC63}C:\program files (x86)\wirtualna polska\wpkontakt\wpkontakt.exe" = protocol=6 | dir=in | app=c:\program files (x86)\wirtualna polska\wpkontakt\wpkontakt.exe | 
"TCP Query User{E7137812-CC8D-4741-A6F7-26569D727385}C:\games\world_of_tanks\wotlauncher.exe" = protocol=6 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | 
"TCP Query User{FC00C647-F820-463B-91A6-03EFB7E26870}C:\xampp\mysql\bin\mysqld.exe" = protocol=6 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe | 
"UDP Query User{153DF52C-8A5B-44F4-A01C-2D26B14AFB13}C:\xampp\filezillaftp\filezillaserver.exe" = protocol=17 | dir=in | app=c:\xampp\filezillaftp\filezillaserver.exe | 
"UDP Query User{20D64371-BE7C-4939-8D29-5AEAFF532692}C:\program files (x86)\wirtualna polska\wpkontakt\wpkontakt.exe" = protocol=17 | dir=in | app=c:\program files (x86)\wirtualna polska\wpkontakt\wpkontakt.exe | 
"UDP Query User{23E7C678-4D6D-4BF6-AF09-EDDFF5294A28}E:\soldat\soldat.exe" = protocol=17 | dir=in | app=e:\soldat\soldat.exe | 
"UDP Query User{416877AA-B6FB-4D05-9F9F-D795966CEA84}C:\program files (x86)\wapster\wapster aqq\aqq.exe" = protocol=17 | dir=in | app=c:\program files (x86)\wapster\wapster aqq\aqq.exe | 
"UDP Query User{526C875B-7C62-4FD4-A06F-205F336FDC79}C:\games\world_of_tanks\wotlauncher.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\wotlauncher.exe | 
"UDP Query User{5453BD42-ACA1-47C5-84D7-389AE0888F06}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | 
"UDP Query User{5796A65D-1E6E-4700-9502-514EADAD3174}C:\program files (x86)\f.e.a.r. 3\f.e.a.r. 3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\f.e.a.r. 3\f.e.a.r. 3.exe | 
"UDP Query User{6AAE9DC9-F410-4405-8D4F-9A9FD4AE5022}C:\totalcmd\totalcmd64.exe" = protocol=17 | dir=in | app=c:\totalcmd\totalcmd64.exe | 
"UDP Query User{8BC66E74-C971-4658-A5BA-3AB7BFF25713}C:\games\world_of_tanks\worldoftanks.exe" = protocol=17 | dir=in | app=c:\games\world_of_tanks\worldoftanks.exe | 
"UDP Query User{AB6DFBB8-F338-49E7-9044-73162F03D72E}C:\xampp\mysql\bin\mysqld.exe" = protocol=17 | dir=in | app=c:\xampp\mysql\bin\mysqld.exe | 
"UDP Query User{ABD2F6FE-509D-42FE-9260-A68CF3C4E71F}C:\xampp\apache\bin\httpd.exe" = protocol=17 | dir=in | app=c:\xampp\apache\bin\httpd.exe | 
"UDP Query User{BB70FD4B-DE7B-4FA5-A287-D4EB181CE1EB}D:\r.g. catalyst\max payne 3\maxpayne3.exe" = protocol=17 | dir=in | app=d:\r.g. catalyst\max payne 3\maxpayne3.exe | 
"UDP Query User{C747AAEA-9E06-4230-B27F-D5E41D75DD0A}C:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\electronic arts\crytek\crysis 2\bin32\crysis2.exe | 
"UDP Query User{C8F7149E-B9B1-47F6-A0F5-F598D27CA79D}C:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=c:\program files (x86)\gadu-gadu 10\gg.exe | 
"UDP Query User{C91BFA91-0715-402C-8A09-047DAE89A2EB}C:\program files (x86)\black_box\max payne 3\maxpayne3.exe" = protocol=17 | dir=in | app=c:\program files (x86)\black_box\max payne 3\maxpayne3.exe | 
"UDP Query User{FDBDD3B4-D5A8-4685-AB16-28104E5720BE}C:\program files (x86)\ea games\battlefield play4free\bfp4f.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ea games\battlefield play4free\bfp4f.exe | 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{09AD6FBB-2843-4644-B669-DEC30A75E8A3}" = Droid Explorer 0.8.8.2 (x64)
"{1B7FF76E-10FF-6EC1-1289-E8089B6423CC}" = AMD Fuel
"{3FD3FC64-DA16-318E-DFD5-57466FF5FEB5}" = ATI Catalyst Install Manager
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum obsługi urządzeń z systemem Windows Mobile
"{7CAFBA1E-D090-3F1F-662D-9828FD4D8E4D}" = ccc-utility64
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{86E42509-8029-7678-F522-0636D80CD277}" = ATI AVIVO64 Codecs
"{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack
"{ad8a2fa1-06e7-4b0d-927d-6e54b3d31028}" = Microsoft Visual C++ 2005 Redistributable (x64)
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6595E85-1193-4803-BBD6-FF90703A07A8}" = Windows 7 Manager
"GIMP-2_is1" = GIMP 2.8.2
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Client Profile PLK Language Pack" = Polski pakiet językowy dla programu Microsoft .NET Framework 4 Client Profile
"Totalcmd64" = Total Commander 64-bit (Remove or Repair)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0B7C79A5-5CB2-4ABD-A9C1-92A6213CE8DD}_is1" = MSI Kombustor 2.0.2
"{0B7F7645-F948-98D7-18F7-1C69D7B6ACDB}" = CCC Help Portuguese
"{1a413f37-ed88-4fec-9666-5c48dc4b7bb7}" = YTD Video Downloader 3.9
"{1B7710D4-9D75-D5E5-4B6D-40F471E70398}" = HydraVision
"{1EAC1D02-C6AC-4FA6-9A44-96258C37C812}_is1" = World of Tanks
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{364B2826-EEB6-A31B-F25B-5CBB78273414}" = CCC Help English
"{4DFF1415-4C29-44A8-BFD4-2BCE249C4991}" = SpPhones
"{50B93225-3F76-F555-27A2-A1EAEC83C527}" = Catalyst Control Center InstallProxy
"{560F47F7-EB23-44B1-AAFC-667F1CD8FE5C}" = Sp5
"{57AC79C8-157E-403A-A8D0-DD74EF71BAE2}" = Catalyst Control Center - Branding
"{61B563AC-F31E-A727-CBEA-F9648B803948}" = CCC Help Italian
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{6C3959C6-943E-44B3-BAAD-570B04B134E5}" = SpCommon
"{6D71D21F-1535-487B-BB5D-57E3A8A764A2}_is1" = NecroVisioN Patch 1.2
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{7BE15435-2D3E-4B58-867F-9C75BED0208C}" = QuickTime
"{8334930A-9405-467B-9498-1EBC1878A09D}" = AMD VISION Engine Control Center
"{87686C21-8A15-4b4d-A3F1-11141D9BE094}" = Battlefield Play4Free
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8CC928F6-93A2-D49D-E253-532C2FF053A1}" = Catalyst Control Center Profiles Desktop
"{90280415-6000-11D3-8CFE-0050048383C9}" = Microsoft Office XP Professional z programem FrontPage
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9C5BBDA1-F311-476B-1863-C0A3073CAC86}" = CCC Help Polish
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1033-7B44-A95000000001}" = Adobe Reader 9.5.2
"{AF9CA86D-83FA-C143-F9C8-EAB535B8B78C}" = Catalyst Control Center Localization All
"{C24EF652-3DEF-418A-AD96-B95D86AFCB82}_is1" = NecroVisioN Patch 1.1
"{D3F3A0AC-45BF-43FD-B6C6-DDBE9D65C189}_is1" = NecroVisioN Lost Company
"{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"{E415C943-37E5-473F-8BAE-043C56734124}" = Sp5TTInt
"{F2F7E361-D336-1338-A453-AB03B4818927}" = CCC Help Czech
"{FD4B33E1-24AE-4535-AA7B-162B30FB57CD}" = Sp5Intl
"{FDF1D75A-1F72-6C4F-1103-DC6BF5218AE6}" = CCC Help Russian
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 10 Plugin
"ALLPlayer_is1" = ALLPlayer V4.X
"avast" = avast! Free Antivirus
"BitTorrent" = BitTorrent
"CellProfiler" = CellProfiler
"Codecs for Windows 7 Pack" = Codecs for Windows 7 Pack 4.0.5
"F.E.A.R. 3_is1" = F.E.A.R. 3
"FileZilla Client" = FileZilla Client 3.5.3
"FXSALT" = FXSALT
"Gadu-Gadu 10" = Gadu-Gadu 10
"Google Chrome" = Google Chrome
"Gtk+ Runtime Environment" = Gtk+ Runtime Environment 2.10.6-1
"InstallShield_{DFBB738C-71D8-4DC5-B8D2-D65C37680E27}" = Etron USB3.0 Host Controller
"Koala Player 3.5 XP Full" = Koala Player 3.5 XP Full
"PunkBusterSvc" = PunkBuster Services
"Rockstar Games Social Club" = Rockstar Games Social Club
"Run.GPS Trainer UV_is1" = Run.GPS 2.3.1
"Sniper Elite V2_is1" = Sniper Elite V2
"SpeedFan" = SpeedFan (remove only)
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"UltraISO_is1" = UltraISO Premium V9.53
"WinRAR archiver" = Archiwizator WinRAR
 
[color=#E56717]========== Last 20 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2012-11-12 15:37:26 | Computer Name = __-Komputer | Source = Software Protection Platform Service | ID = 8193
Description = Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod
 błędu:   0x80070005
 
Error - 2012-11-12 16:37:26 | Computer Name = __-Komputer | Source = Software Protection Platform Service | ID = 8193
Description = Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod
 błędu:   0x80070005
 
Error - 2012-11-12 17:37:26 | Computer Name = __-Komputer | Source = Software Protection Platform Service | ID = 8193
Description = Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod
 błędu:   0x80070005
 
Error - 2012-11-12 18:37:27 | Computer Name = __-Komputer | Source = Software Protection Platform Service | ID = 8193
Description = Wystąpił błąd harmonogramu aktywacji licencji (sppuinotify.dll), kod
 błędu:   0x80070005
 
Error - 2012-11-13 05:48:19 | Computer Name = __-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 23.0.1271.64,
 sygnatura czasowa: 0x5091791e  Nazwa modułu powodującego błąd: chrome.dll, wersja:
 23.0.1271.64, sygnatura czasowa: 0x509178cd  Kod wyjątku: 0x80000003  Przesunięcie 
błędu: 0x0056733a  Identyfikator procesu powodującego błąd: 0xdfc  Godzina uruchomienia
 aplikacji powodującej błąd: 0x01cdc06bdaab1197  Ścieżka aplikacji powodującej błąd:
 C:\Users\__\AppData\Local\google\chrome\Application\chrome.exe  Ścieżka modułu powodującego
 błąd: C:\Users\__\AppData\Local\google\chrome\Application\23.0.1271.64\chrome.dll
Identyfikator
 raportu: 4098b6d9-2d77-11e2-be7b-0015833d0a57
 
Error - 2012-11-13 06:04:36 | Computer Name = __-Komputer | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-11-13 06:04:44 | Computer Name = __-Komputer | Source = Apache Service | ID = 3299
Description = The Apache service named  reported the following error:  >>> httpd.exe:
 Could not open configuration file C:/xampp/apache/conf/httpd.conf: System nie mo\xbfe
 odnale\x9f\xe6 okre\x9clonej \x9ccie\xbfki.     .
 
Error - 2012-11-13 06:26:15 | Computer Name = __-Komputer | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-11-13 06:26:22 | Computer Name = __-Komputer | Source = Apache Service | ID = 3299
Description = The Apache service named  reported the following error:  >>> httpd.exe:
 Could not open configuration file C:/xampp/apache/conf/httpd.conf: System nie mo\xbfe
 odnale\x9f\xe6 okre\x9clonej \x9ccie\xbfki.     .
 
Error - 2012-11-13 10:25:28 | Computer Name = __-Komputer | Source = Application Error | ID = 1000
Description = Nazwa aplikacji powodującej błąd: chrome.exe, wersja: 23.0.1271.64,
 sygnatura czasowa: 0x5091791e  Nazwa modułu powodującego błąd: chrome.dll, wersja:
 23.0.1271.64, sygnatura czasowa: 0x509178cd  Kod wyjątku: 0x80000003  Przesunięcie 
błędu: 0x0056733a  Identyfikator procesu powodującego błąd: 0xfbc  Godzina uruchomienia
 aplikacji powodującej błąd: 0x01cdc18ba15167c8  Ścieżka aplikacji powodującej błąd:
 C:\Program Files (x86)\Google\Chrome\Application\chrome.exe  Ścieżka modułu powodującego
 błąd: C:\Program Files (x86)\Google\Chrome\Application\23.0.1271.64\chrome.dll  Identyfikator
 raportu: f870436f-2d9d-11e2-a525-0015833d0a57
 
[ Media Center Events ]
Error - 2012-10-04 21:33:53 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 03:33:49 - Błąd podczas nawiązywania połączenia z Internetem.  03:33:49
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-04 22:34:23 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 04:34:23 - Błąd podczas nawiązywania połączenia z Internetem.  04:34:23
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-04 22:34:53 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 04:34:52 - Błąd podczas nawiązywania połączenia z Internetem.  04:34:52
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-04 23:35:24 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 05:35:24 - Błąd podczas nawiązywania połączenia z Internetem.  05:35:24
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-04 23:35:54 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 05:35:53 - Błąd podczas nawiązywania połączenia z Internetem.  05:35:53
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-05 00:36:25 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 06:36:25 - Błąd podczas nawiązywania połączenia z Internetem.  06:36:25
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-05 00:36:55 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 06:36:54 - Błąd podczas nawiązywania połączenia z Internetem.  06:36:54
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-05 01:37:26 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 07:37:26 - Błąd podczas nawiązywania połączenia z Internetem.  07:37:26
 -     Nie można skontaktować się z serwerem..  
 
Error - 2012-10-05 01:37:56 | Computer Name = __-Komputer | Source = MCUpdate | ID = 0
Description = 07:37:55 - Błąd podczas nawiązywania połączenia z Internetem.  07:37:55
 -     Nie można skontaktować się z serwerem..  
 
[ System Events ]
Error - 2012-11-13 06:05:47 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
 z usługą FileZillaServer.
 
Error - 2012-11-13 06:05:47 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi FileZillaServer z powodu następującego 
błędu:   %%1053
 
Error - 2012-11-13 06:07:23 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7022
Description = Usługa mysql zawiesiła się podczas uruchamiania.
 
Error - 2012-11-13 06:07:24 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego 
lub systemowego:   iaStorV
 
Error - 2012-11-13 06:25:21 | Computer Name = __-Komputer | Source = DCOM | ID = 10010
Description = 
 
Error - 2012-11-13 06:26:22 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7024
Description = Usługa Apache2.4 zakończyła działanie; wystąpił specyficzny dla niej
 błąd %%1.
 
Error - 2012-11-13 06:27:15 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7009
Description = Upłynął limit czasu (30000 ms) podczas oczekiwania na połączenie się
 z usługą FileZillaServer.
 
Error - 2012-11-13 06:27:15 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7000
Description = Nie można uruchomić usługi FileZillaServer z powodu następującego 
błędu:   %%1053
 
Error - 2012-11-13 06:28:51 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7022
Description = Usługa mysql zawiesiła się podczas uruchamiania.
 
Error - 2012-11-13 06:28:51 | Computer Name = __-Komputer | Source = Service Control Manager | ID = 7026
Description = Nie można załadować następujących sterowników startu rozruchowego 
lub systemowego:   iaStorV
 
 
< End of report >