OTL Extras logfile created on: 2013-01-26 18:01:49 - Run 5 OTL by OldTimer - Version 3.2.54.0 Folder = C:\Users\KYSU\Desktop 64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 9.0.8112.16421) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 3,87 Gb Total Physical Memory | 2,66 Gb Available Physical Memory | 68,73% Memory free 7,73 Gb Paging File | 6,23 Gb Available in Paging File | 80,56% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 58,59 Gb Total Space | 24,76 Gb Free Space | 42,25% Space Free | Partition Type: NTFS Drive D: | 58,59 Gb Total Space | 4,77 Gb Free Space | 8,14% Space Free | Partition Type: NTFS Drive E: | 58,59 Gb Total Space | 21,31 Gb Free Space | 36,37% Space Free | Partition Type: NTFS Drive F: | 57,09 Gb Total Space | 10,19 Gb Free Space | 17,85% Space Free | Partition Type: NTFS Computer Name: KYSU-KOMPUTER | User Name: KYSU | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl[@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) [HKEY_USERS\S-1-5-21-1974966561-2015022450-3812258673-1000\SOFTWARE\Classes\] .html [@ = FirefoxHTML] -- E:\Program Files (x86)\Mozilla Firefox\firefox.exe (Mozilla Corporation) [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htafile [open] -- "%1" %* htmlfile [edit] -- "D:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) htmlfile [print] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [napiprojekt] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" () Directory [napiprojekt0] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" -pobierz_ang () Directory [OneNote.Open] -- D:\PROGRA~1\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\SysWow64\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htafile [open] -- "%1" %* htmlfile [edit] -- "D:\Program Files (x86)\Microsoft Office\Office12\msohtmed.exe" %1 (Microsoft Corporation) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Directory [napiprojekt] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" () Directory [napiprojekt0] -- "C:\Program Files (x86)\NapiProjekt\napisy.exe" "%1" -pobierz_ang () Directory [OneNote.Open] -- D:\PROGRA~1\MICROS~1\Office12\ONENOTE.EXE "%L" (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== System Restore Settings ==========[/color] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore] "DisableSR" = 0 [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 "DoNotAllowExceptions" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "DisableNotifications" = 0 "EnableFirewall" = 1 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0FB3E374-60E3-4C1B-9952-03340AE366BE}" = lport=10243 | protocol=6 | dir=in | app=system | "{110A2716-6056-4D5E-AB32-F95AF7C9A55B}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{11E2017A-3BCD-4203-9865-9B401978FABE}" = lport=6004 | protocol=17 | dir=in | app=d:\program files (x86)\microsoft office\office12\outlook.exe | "{22972CE2-340B-4A5A-A0A7-3FD1D5AF4292}" = rport=10243 | protocol=6 | dir=out | app=system | "{391782A8-DA48-43C9-BF7C-9FDED326B417}" = lport=59161 | protocol=6 | dir=in | name=pando media booster | "{3BF66781-BACC-42DC-B22C-9C3EF008430C}" = lport=24509 | protocol=6 | dir=in | name=bitcomet 24509 tcp | "{583881C1-832A-45C8-B3F5-B832B2AFDB65}" = rport=137 | protocol=17 | dir=out | app=system | "{5B3AF006-F82C-4FDB-8242-C7A82903FBB3}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | "{73D961D3-5C9C-40A2-AD17-4F10AB440CBE}" = lport=137 | protocol=17 | dir=in | app=system | "{777B0972-2080-4CE0-95C9-801B92B6779E}" = lport=139 | protocol=6 | dir=in | app=system | "{8A14C53A-FF13-4154-84C2-4BD980932C95}" = lport=59161 | protocol=6 | dir=in | name=pando media booster | "{91B7936E-DC6C-498B-A6C6-C6053AC38164}" = rport=445 | protocol=6 | dir=out | app=system | "{9268CFAE-6CE8-4132-896F-780DFA7676E1}" = lport=2869 | protocol=6 | dir=in | app=system | "{95A8EA04-4420-48D4-AFB1-EF9D0C1C8051}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{962AB099-A882-42CC-8668-C7F07BCB2698}" = lport=59161 | protocol=17 | dir=in | name=pando media booster | "{A8F1B6C7-E988-4270-B263-F4C8C677B0B1}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{AEFB4235-5BD7-4DCA-855B-C1345F8E735E}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{B0D238E5-085E-4955-81B8-7DB31AB907D0}" = rport=139 | protocol=6 | dir=out | app=system | "{B3364C4A-50D0-4E38-9328-F20E4CF4A807}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{B7CB85B5-5D91-4D3A-918F-55F7FB0EBCE3}" = lport=59161 | protocol=17 | dir=in | name=pando media booster | "{B960A49F-8374-47AE-A003-3D879827837B}" = lport=445 | protocol=6 | dir=in | app=system | "{B9C798BD-EFEE-484C-A461-BB67E28A8C64}" = lport=138 | protocol=17 | dir=in | app=system | "{CD691CDD-BBE4-41DB-AA8D-66EFC58BDDF4}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{D8A1388C-920D-46C4-AD14-2D961EDFD24A}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | "{D9919E2A-C954-43E8-B992-E0B6F2DEF6C7}" = lport=24509 | protocol=17 | dir=in | name=bitcomet 24509 udp | "{F14BAD72-A7A7-4BFD-AD5E-DEF45C88A741}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | "{F4A4C7E9-10C7-436B-A738-4C525A14D93C}" = rport=138 | protocol=17 | dir=out | app=system | "{FE68F815-4ED9-494A-843C-0C7C204321B7}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{09D4E428-925C-454C-A5A5-938D347A53D5}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{0FCBA8F7-1FAC-43F1-AE7E-922D76EEC344}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{132A31DF-9512-47AC-B5D8-E5DDA2663836}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{144D7E32-E68D-4139-8E68-7180B5862C69}" = protocol=6 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | "{194DC63C-BF66-4742-9A85-DC8B1EA30FE5}" = protocol=6 | dir=in | app=d:\program files (x86)\avg\avg2013\avgnsa.exe | "{1F7C0B3A-42A7-4483-8495-9F66C2EA8CC5}" = protocol=6 | dir=in | app=d:\program files (x86)\avg\avg2013\avgemca.exe | "{47BB7EDC-29D2-46B0-BD1D-9D593E26DE6D}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{48378278-2EC5-4815-AF4F-1A6BD3A92570}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | "{4BF5B094-0904-44AB-B371-F27EEB2EAD56}" = protocol=17 | dir=in | app=d:\program files (x86)\avg\avg2013\avgmfapx.exe | "{53BE1455-3CA2-4AE4-B0EA-334F4D958ADC}" = protocol=6 | dir=in | app=d:\program files (x86)\microsoft office\office12\onenote.exe | "{555BE880-37F0-4A11-AF8A-AA0D06C56BBB}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{565ABD93-BE91-47C7-9F77-49412ECA5BA8}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{60EBA00A-FF9D-4B36-975D-0125FFF56BA3}" = protocol=6 | dir=in | app=c:\program files (x86)\giraffic\veoh_girafficwatchdog.exe | "{61261B14-98D6-4AF8-A9D9-84C3A65A67CE}" = protocol=17 | dir=in | app=d:\program files (x86)\microsoft office\office12\groove.exe | "{64AC3C5E-E36B-4634-85CC-915B943EAA23}" = protocol=17 | dir=in | app=d:\program files (x86)\avg\avg2013\avgnsa.exe | "{6501BC58-015C-4229-965E-1657A6E3D337}" = dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{69AA876B-835E-4D13-ABEF-94792DE1C536}" = protocol=6 | dir=in | app=d:\program files (x86)\bitcomet\bitcomet.exe | "{6C83B5F0-6723-4517-9C4F-9D5D9E7622DE}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{72FC7DA7-8B8B-46AA-82FE-835A9C0FF711}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{750E9FB4-52D2-487B-B156-99712A4B16B6}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{795BE949-EC63-4664-BCB1-F1A541F7B5A1}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{7A189922-1E58-4ED3-B937-98EBB7F7136C}" = protocol=6 | dir=in | app=c:\program files (x86)\giraffic\veoh_giraffic.exe | "{7BE21121-7EAA-4321-9510-4A3333F527FC}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe | "{7E567DAD-BA12-4540-BAB8-A912D808AFC1}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{80C62090-2315-4936-9681-A99239A88E7C}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{83741EBE-61B0-4149-970D-A992AE87B055}" = protocol=17 | dir=in | app=c:\programdata\nexoneu\ngm\ngm.exe | "{94F8FF1E-320D-4D46-A966-C7DA5499E588}" = protocol=17 | dir=in | app=f:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "{9577CB55-E96E-4F24-8A43-8F6644D9F1D8}" = protocol=6 | dir=in | app=f:\program files (x86)\konami\pro evolution soccer 2012\pes2012.exe | "{99E24BAC-DF9D-434A-A30C-4F04644ECC8A}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{9CA6D2AC-AB88-4125-B6DF-4374B945076D}" = protocol=17 | dir=in | app=d:\program files (x86)\avg\avg2013\avgemca.exe | "{A7C7A725-FB41-4337-A707-FA67E04A37F1}" = protocol=17 | dir=in | app=d:\program files (x86)\avg\avg2013\avgdiagex.exe | "{AAF748D0-EBDB-4A05-A6B0-636B90D49746}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | "{AB0C0D8E-743D-4723-91B3-042B227E6A96}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{AF367278-AD06-416B-958B-163538A1FF6F}" = protocol=17 | dir=in | app=c:\program files (x86)\giraffic\veoh_girafficwatchdog.exe | "{BC4A5E20-C5E2-4457-9560-F52E88CFD3C8}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{C47C9D1E-01DC-41BC-8DD4-7C9CCEA0B232}" = protocol=17 | dir=in | app=d:\program files (x86)\opera\opera.exe | "{C4FDFDEA-F9B2-48D0-8192-DB1B942B73DB}" = protocol=6 | dir=in | app=d:\program files (x86)\avg\avg2013\avgdiagex.exe | "{C669B6BB-DF0D-4656-8557-FDE25E7334F1}" = protocol=17 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{C7A9E434-E5F9-43A8-9DE9-50E9385B06E6}" = protocol=17 | dir=in | app=d:\program files (x86)\bitcomet\bitcomet.exe | "{C8CC8BF8-CCB9-42B9-ABA3-436207018A06}" = protocol=17 | dir=in | app=c:\program files (x86)\giraffic\veoh_giraffic.exe | "{CE01918B-5AC5-4737-8D23-E04ED94D91C5}" = protocol=6 | dir=out | app=system | "{CEBC55CF-3B13-46DF-A4B5-E9813AEB7F2A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{D1579C06-DF1E-47FA-A778-9777F527E8E1}" = protocol=6 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe | "{D4508E21-9AA4-416C-991A-61063075A4CD}" = protocol=6 | dir=in | app=d:\program files (x86)\microsoft office\office12\groove.exe | "{D6ACE87D-EEEA-4383-B130-7BD9EF116364}" = protocol=6 | dir=in | app=d:\program files (x86)\avg\avg2013\avgmfapx.exe | "{DD7FFA51-C592-49EC-95B0-187B4D87BA11}" = protocol=17 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe | "{E824750D-E40E-4BE5-BADE-C41F1B2BE9F7}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | "{F34398FC-E569-4BF4-B52C-C1F938C61576}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{F5255733-3C1D-43BE-8937-3EFFBE0F9D9B}" = protocol=6 | dir=in | app=d:\program files (x86)\opera\opera.exe | "{F9C4973C-C7F6-46A2-BF16-6967566DB4E6}" = protocol=6 | dir=in | app=c:\program files (x86)\pando networks\media booster\pmb.exe | "{FBB6FB90-42F5-43BB-8EE3-6ED73F875E51}" = protocol=17 | dir=in | app=d:\program files (x86)\microsoft office\office12\onenote.exe | "TCP Query User{046AAA40-D59F-4BB9-AC0C-7C30E4A32D09}E:\program files (x86)\4game\lineageii eu\system\l2.exe" = protocol=6 | dir=in | app=e:\program files (x86)\4game\lineageii eu\system\l2.exe | "TCP Query User{1DFBF104-DB5D-4048-A5F2-84D8ADFF87A9}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | "TCP Query User{3EB62EC2-456B-4531-AFEE-5A9FA7F05C96}F:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=6 | dir=in | app=f:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe | "TCP Query User{45B8EE2E-5514-431D-A615-29562CBC8EE6}C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe" = protocol=6 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe | "TCP Query User{65C99C4A-5C5D-4190-8382-1A0B88E8F18B}D:\program files (x86)\torchlight ii\torchlight2.exe" = protocol=6 | dir=in | app=d:\program files (x86)\torchlight ii\torchlight2.exe | "TCP Query User{77DD69FD-EA7F-4728-8BC5-9747CB5E5EB8}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "TCP Query User{A4B55D40-A424-4543-9E42-EA586FE3356B}C:\program files\java\jre6\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "TCP Query User{A6360FDE-D331-4415-BF0B-D6FBED1ABE85}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | "TCP Query User{B2E0AA07-9A3F-4BEC-BE4D-715AA4FB301D}D:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=d:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{BCDE3B90-AA0A-40E7-AEC4-910F48BD6A37}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=6 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | "TCP Query User{E3AD8C1E-D0C6-446C-A0B9-6C8B3DFF5CF3}D:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=6 | dir=in | app=d:\program files (x86)\gadu-gadu 10\gg.exe | "TCP Query User{FAC5D025-CFBC-4510-BA49-7502D712A22F}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe | "TCP Query User{FD0F25B8-FF67-4533-9A8E-F9901014D4BA}F:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=6 | dir=in | app=f:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe | "UDP Query User{39D6641D-0FFC-4130-8C83-C28BFBE1E1AC}C:\program files\java\jre6\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\java.exe | "UDP Query User{3E05255F-DC7C-4AC6-B0E8-335E50CE143D}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | "UDP Query User{4E7F5540-C302-4323-97CB-24880D97B502}D:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=d:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{50C2B558-3EE2-4BB0-8A18-DD29A636BAA2}F:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=17 | dir=in | app=f:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe | "UDP Query User{759924ED-9E41-4526-88C9-FB899CEAF638}D:\program files (x86)\gadu-gadu 10\gg.exe" = protocol=17 | dir=in | app=d:\program files (x86)\gadu-gadu 10\gg.exe | "UDP Query User{76C9E83D-982A-4DDC-926B-9430C857FEEB}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe | "UDP Query User{7A4E85BE-322F-4B67-A556-1C9F59FDAA93}F:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=17 | dir=in | app=f:\program files (x86)\ea games\kingdoms of amalur reckoning\reckoning.exe | "UDP Query User{857C8B51-E4FD-4981-B2C8-F1A9ECBDFC01}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | "UDP Query User{9D4E9C64-12BE-49BA-9D48-59A75F1A2639}E:\program files (x86)\4game\lineageii eu\system\l2.exe" = protocol=17 | dir=in | app=e:\program files (x86)\4game\lineageii eu\system\l2.exe | "UDP Query User{9F69F5B1-14A4-479D-BCCC-72A708AB8CF1}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | "UDP Query User{C720CC4C-FF4C-472C-B57F-2CEF91F1D4C5}C:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe" = protocol=17 | dir=in | app=c:\nexon\nexon_eu_downloader\nexon_eu_downloader_engine.exe | "UDP Query User{DEC92125-DF65-4075-B532-A8647979B287}C:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe" = protocol=17 | dir=in | app=c:\program files (x86)\veoh networks\veohwebplayer\veohwebplayer.exe | "UDP Query User{FA1CDA01-8714-4943-A397-9DA673A02521}D:\program files (x86)\torchlight ii\torchlight2.exe" = protocol=17 | dir=in | app=d:\program files (x86)\torchlight ii\torchlight2.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{21B133D6-5979-47F0-BE1C-F6A6B304693F}" = Visual Studio 2010 x64 Redistributables "{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition) "{26A24AE4-039D-4CA4-87B4-2F86416031FF}" = Java(TM) 6 Update 31 (64-bit) "{350AA351-21FA-3270-8B7A-835434E766AD}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.21022 "{502275B0-3DA3-44D8-8702-066525CAAE98}" = AVG 2013 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{90120000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2007 "{90120000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2007 "{A49402DD-2781-3782-B0CF-52BDA349E3F3}" = Microsoft .NET Framework 4 Client Profile PLK Language Pack "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 296.10 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.12.0213 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 1.7.11 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_NVIDIA.Update" = NVIDIA Update Components "{BFAB7835-55A2-41CD-AE66-F673BCA4E49F}" = AVG 2013 "{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.30319 "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "AVG" = AVG 2013 "WinRAR archiver" = WinRAR 4.01 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1111706F-666A-4037-7777-210328764D10}" = JavaFX 2.1.0 "{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148 "{23258CCA-EDBF-4BA6-99C8-8278848C500C}" = RaiderZ "{26A24AE4-039D-4CA4-87B4-2F83216031FF}" = Java(TM) 6 Update 31 "{26A24AE4-039D-4CA4-87B4-2F83217004FF}" = Java(TM) 7 Update 4 "{289AC7E0-0AEE-4a7b-913C-709D9803D23E}" = Nexon Game Manager "{3BD98AAF-61B5-46E0-A6C8-593C242C7C48}" = TP-LINK Wireless Client Utility "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable "{90120000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2007 "{90120000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2007 "{90120000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2007 "{90120000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2007 "{90120000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2007 "{90120000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2007 "{90120000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2007 "{90120000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2007 "{90120000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2007 "{90120000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2007 "{90120000-0030-0000-0000-0000000FF1CE}" = Microsoft Office Enterprise 2007 "{90120000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2007 "{90120000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2007 "{90120000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2007 "{90120000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2007 "{90850415-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Word Viewer 2003 "{918A9082-6287-4D25-9002-5E5D5E4971CB}" = League of Legends "{933B4015-4618-4716-A828-5289FC03165F}" = VC80CRTRedist - 8.0.50727.6195 "{9370105C-71BB-4FF9-A85B-36D79B95457A}_is1" = ALLConverter PRO 1.2 "{980A182F-E0A2-4A40-94C1-AE0C1235902E}" = Pando Media Booster "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{A2F166A0-F031-4E27-A057-C69733219435}_is1" = RaiderZ "{AADBB888-1330-4A35-94F2-246E0AD68859}" = 4game "{AC76BA86-7AD7-1045-7B44-AA1000000001}" = Adobe Reader X (10.1.5) - Polish "{C4ABDBC8-1C81-42C9-BFFC-4A68511E9E4F}" = TuneUp Utilities 2013 "{C66A542D-B66B-4E67-84EA-F2D0383FBC14}" = TuneUp Utilities Language Pack (pl-PL) "{DA909E62-3B45-4BA1-8B58-FCAEBA4BCEC9}" = NVIDIA PhysX "{E737A098-F161-4B6F-AF22-86AAE34F6FBD}" = Pro Evolution Soccer 2012 "{EE7257A2-39A2-4D2F-9DAC-F9F25B8AE1D8}" = Skype™ 5.10 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F40963EC-223E-4E65-8CF0-A60E9A227245}_is1" = Prawo Jazdy ABCDT - egzamin wewnętrzny "{F5346614-B7C4-4E94-826A-E2363155233D}" = EasyCleaner "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "7-Zip" = 7-Zip 9.14 beta "Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX "Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin "Adobe Shockwave Player" = Adobe Shockwave Player 11.6 "AIDA64 Extreme Edition_is1" = AIDA64 Extreme Edition v2.30 "AIMP3" = AIMP3 "ALLPlayer_is1" = ALLPlayer V5.X "Ashampoo Burning Studio 6 FREE_is1" = Ashampoo Burning Studio 6 FREE v.6.80 "BandiMPEG1" = Bandisoft MPEG-1 Decoder "BitComet_x64" = BitComet 1.31 64-bit "Diablo II" = Diablo II "Diablo III" = Diablo III "Diablo III Beta" = Diablo III Beta "ENTERPRISE" = Microsoft Office Enterprise 2007 "Gadu-Gadu 10" = Gadu-Gadu 10 "Game Booster_is1" = Game Booster 3 "Giraffic" = Veoh Giraffic Video Accelerator "Kingdoms of Amalur Reckoning_is1" = Kingdoms of Amalur Reckoning "Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 1.70.0.1100 "Mozilla Firefox 18.0.1 (x86 pl)" = Mozilla Firefox 18.0.1 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "NapiProjekt_is1" = NapiProjekt 2.0.0 (build 2151) "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "Opera 12.12.1707" = Opera 12.12 "R.A.W Realms of Ancient War (c) Focus Home Interactive_is1" = R.A.W Realms of Ancient War (c) Focus Home Interactive version 1 "Skrzyżowania_is1" = Skrzyżowania 1.0.0.16 "SpeedFan" = SpeedFan (remove only) "Torchlight II (c) Runic Games_is1" = Torchlight II (c) Runic Games version 1 "TuneUp Utilities 2013" = TuneUp Utilities 2013 "Vindictus EU" = Vindictus EU [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-1974966561-2015022450-3812258673-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "790a8a4cad536f51" = Fishbowl 2 "Runic Games Torchlight" = Torchlight "TeamSpeak 3 Client" = TeamSpeak 3 Client [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] Error - 2013-01-16 19:30:42 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-18 11:13:54 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-20 18:45:17 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-22 18:14:09 | Computer Name = KYSU-Komputer | Source = Application Hang | ID = 1002 Description = Program Explorer.EXE w wersji 6.1.7601.17567 zatrzymał interakcję z systemem Windows i został zamknięty. Aby zobaczyć, czy jest dostępnych więcej informacji dotyczących tego problemu, sprawdź historię problemu w panelu sterowania Centrum akcji. Identyfikator procesu: d54 Godzina rozpoczęcia: 01cdf8d097ec70cb Godzina zakończenia: 50131 Ścieżka aplikacji: C:\Windows\Explorer.EXE Identyfikator raportu: ea1bd88d-64e0-11e2-9354-ffed10bb1e0f Error - 2013-01-22 19:38:39 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-24 11:53:32 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-25 04:05:02 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842785 Description = Nie można wygenerować kontekstu aktywacji dla "C:\Windows\Installer\{AF7EBCA4-9FAF-4DC8-8D09-67854BB84D34}\recordingmanager.exe". Nie można odnaleźć zestawu zależnego rpshellextension.1.0,language="*",type="win32",version="1.0.0.0". Użyj narzędzia sxstrace.exe, aby uzyskać szczegółową diagnozę. Error - 2013-01-26 09:32:50 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Users\KYSU\Downloads\SoftonicDownloader_dla_fishbowl.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error - 2013-01-26 09:32:53 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Users\KYSU\Downloads\SoftonicDownloader_dla_fishbowl.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. Error - 2013-01-26 09:32:54 | Computer Name = KYSU-Komputer | Source = SideBySide | ID = 16842832 Description = Nie można wygenerować kontekstu aktywacji dla „C:\Users\KYSU\Downloads\SoftonicDownloader_dla_fishbowl.exe”. Błąd w pliku manifestu lub w pliku zasad „” w wierszu . Wersja składnika wymagana przez aplikację powoduje konflikt z inną wersją składnika, która jest już aktywna. Składniki powodujące konflikt: Składnik 1: C:\Windows\WinSxS\manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_41e6975e2bd6f2b2.manifest. Składnik 2: C:\Windows\WinSxS\manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.17514_none_fa396087175ac9ac.manifest. [ System Events ] Error - 2013-01-26 12:34:54 | Computer Name = KYSU-Komputer | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 Description = Uruchomienie modułu rozszerzalności sieci WLAN nie powiodło się. Ścieżka modułu: C:\Windows\system32\athExt.dll Kod błędu: 126 Error - 2013-01-26 12:35:00 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-01-26 12:35:12 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-01-26 12:41:38 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7034 Description = Usługa NVIDIA Stereoscopic 3D Driver Service niespodziewanie zakończyła pracę. Wystąpiło to razy: 1. Error - 2013-01-26 12:42:19 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-01-26 12:43:29 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7000 Description = Nie można uruchomić usługi eamonm z powodu następującego błędu: %%2 Error - 2013-01-26 12:43:30 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7023 Description = Usługa Windows Defender zakończyła działanie; wystąpił następujący błąd: %%126 Error - 2013-01-26 12:43:31 | Computer Name = KYSU-Komputer | Source = Microsoft-Windows-WLAN-AutoConfig | ID = 10000 Description = Uruchomienie modułu rozszerzalności sieci WLAN nie powiodło się. Ścieżka modułu: C:\Windows\system32\athExt.dll Kod błędu: 126 Error - 2013-01-26 12:43:34 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: %%5. Error - 2013-01-26 12:43:59 | Computer Name = KYSU-Komputer | Source = Service Control Manager | ID = 7006 Description = Wywołanie ScRegSetValueExW dla FailureActions nie powiodło się i wystąpił następujący błąd: %%5. < End of report >