Anonim / 5 lat, 11 miesięcy temu | Download | Plaintext | Odpowiedz |

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
OTL Extras logfile created on: 2012-05-10 08:43:58 - Run 1
OTL by OldTimer - Version 3.2.42.3     Folder = C:\Users\maximus\Desktop
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd
 
4,00 Gb Total Physical Memory | 2,84 Gb Available Physical Memory | 71,04% Memory free
8,00 Gb Paging File | 6,65 Gb Available in Paging File | 83,14% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]
 
%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 50,78 Gb Total Space | 20,61 Gb Free Space | 40,59% Space Free | Partition Type: NTFS
Drive D: | 207,03 Gb Total Space | 96,41 Gb Free Space | 46,57% Space Free | Partition Type: NTFS
Drive E: | 207,94 Gb Total Space | 99,14 Gb Free Space | 47,68% Space Free | Partition Type: NTFS
 
Computer Name: MAXIMUS-PC | User Name: maximus | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans
Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days
 
[color=#E56717]========== Extra Registry (SafeList) ==========[/color]
 
 
[color=#E56717]========== File Associations ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
 
[HKEY_USERS\S-1-5-21-3315714708-1889660137-2013109812-1000\SOFTWARE\Classes\<extension>]
.html [@ = Max3.Association.HTML] -- Reg Error: Key error. File not found
 
[color=#E56717]========== Shell Spawning ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
inffile [install] -- %SystemRoot%\System32\rundll32.exe setupapi,InstallHinfSection DefaultInstall 132 %1 (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
 
[color=#E56717]========== Security Center Settings ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01  [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
 
[color=#E56717]========== System Restore Settings ==========[/color]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0
 
[color=#E56717]========== Firewall Settings ==========[/color]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
 
[b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"EnableFirewall" = 1
"DisableNotifications" = 0
 
[color=#E56717]========== Authorized Applications List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]
"C:\Program Files (x86)\OrangeBS\BEWInternet-PL\Connectivity\ConnectivityManager.exe" = C:\Program Files (x86)\OrangeBS\BEWInternet-PL\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
"C:\Program Files (x86)\OrangeBS\BEWInternet-PL\Connectivity\ConnectivityManager.exe" = C:\Program Files (x86)\OrangeBS\BEWInternet-PL\Connectivity\ConnectivityManager.exe:*:enabled:CSS -- (France Telecom SA)
 
 
[color=#E56717]========== Vista Active Open Ports Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{071FA78F-2213-47DC-9C60-2E127300D0F6}" = rport=137 | protocol=17 | dir=out | app=system | 
"{0B8F6D0D-F360-4487-80E9-5F166908EFF0}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{10433895-8165-4334-94DE-E8396A6B8DE0}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe | 
"{11B9D8D7-B502-4F05-BAD4-DA1AAE229C23}" = lport=139 | protocol=6 | dir=in | app=system | 
"{15328ECB-8EF3-4DC9-8DB3-559327079F10}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{18D01966-9443-4CC0-8299-E9F1F25AAED4}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{26328E1E-BF05-4040-80B3-1EA616821D65}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{34545DD8-D325-49D9-85B8-0ED740864DEF}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe | 
"{3FCAE5B1-086E-4D83-BD00-25C0F8C55BEE}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{3FD96D23-B458-49B2-B05D-A38892EF6198}" = lport=137 | protocol=17 | dir=in | app=system | 
"{52DBD2D7-531D-4D93-A3E4-5ACF6845C10C}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | 
"{82B8ACD0-EE00-4997-9B5F-FA58D04B4AB3}" = lport=445 | protocol=6 | dir=in | app=system | 
"{91879816-6908-4BD2-B75D-81070264B31E}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | 
"{92C788F2-16F4-4CD6-8541-FF62ED5B2485}" = rport=139 | protocol=6 | dir=out | app=system | 
"{A0ECD88F-4ECA-4BD7-8B27-140A0C600CC9}" = lport=2869 | protocol=6 | dir=in | app=system | 
"{A24E45D4-04C7-4B54-92FF-983C08762A8C}" = rport=10243 | protocol=6 | dir=out | app=system | 
"{B7741AC8-E52F-4F31-8893-1967A5A091B7}" = lport=138 | protocol=17 | dir=in | app=system | 
"{CA070AE6-8FF5-459E-B6B2-CB16228B9E71}" = lport=10243 | protocol=6 | dir=in | app=system | 
"{DEA4053B-7F4E-4445-BD09-FA55E65012EC}" = rport=445 | protocol=6 | dir=out | app=system | 
"{EC898921-C8F0-4E82-88EB-C805ACE4B3FE}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | 
"{FC88C48F-054F-4A3F-9592-272B53857585}" = rport=138 | protocol=17 | dir=out | app=system | 
 
[color=#E56717]========== Vista Active Application Exception List ==========[/color]
 
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00B63F6B-69B6-453F-A829-71DF35B41C15}" = protocol=17 | dir=in | app=c:\programy\wtw\wtw.exe | 
"{035753E0-11FE-4DDE-A0C3-A366B9E0E714}" = protocol=6 | dir=in | app=c:\programy\tc up\plugins\media\operausb\opera.exe | 
"{09D9E90F-540A-4A8A-B2B5-E0BAF2481662}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{0A0FD2E7-7566-4B22-BAE0-015F4946AF1E}" = protocol=17 | dir=in | app=c:\windows\syswow64\muzapp.exe | 
"{0BA23B6C-DE4E-407B-BB82-0BDA6DF0E365}" = protocol=6 | dir=in | app=d:\steam_old\steamapps\common\dirt 3\dirt3.exe | 
"{11377054-0CDE-493D-B996-65764E90A655}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\trauma\trauma.exe | 
"{11E91263-515D-4890-AAA9-0807F385DAE5}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\chime\chime.exe | 
"{15AF129D-6009-4024-B281-FBBA0EA395C4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{1DEFBDAF-EDE7-4637-9D61-3B456EB2BA47}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{24A911D9-8F26-4AC0-BE9E-30112983AAA7}" = protocol=17 | dir=in | app=c:\program files (x86)\maxthon3\modules\mxminithunder\thundermini.exe | 
"{30151EC7-75BE-40F4-B0A6-A382E2B36A06}" = protocol=6 | dir=in | app=c:\program files (x86)\maxthon3\bin\mxup.exe | 
"{311C5A92-6EDD-4054-A924-C0823196F06E}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | 
"{36CA5F69-98D4-4B9B-9B21-6D0A9053960C}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{3E192569-5EB2-4C09-98F6-7AF9DFD00BAB}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\spacechem\spacechem.exe | 
"{42D293F3-7D03-4FE0-A2D4-FE9D9ADF4E21}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\titan attacks\titanattacks.exe | 
"{4431D431-69F8-45B6-B03D-DA76B8C146DA}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\cogs\cogs.exe | 
"{472DDAE0-D896-4BAF-B3B8-195ABDE3F5FB}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\titan attacks\titanattacks.exe | 
"{4B54AB4B-95A1-4399-836E-A3CE36925664}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\frozen synapse\frozensynapse.exe | 
"{4C8A44CC-F50D-46E6-9C80-71770B838F71}" = protocol=6 | dir=in | app=c:\program files (x86)\maxthon3\modules\mxminithunder\thundermini.exe | 
"{4EE311EB-1EE0-4F04-807A-4F137CE61F8B}" = protocol=6 | dir=in | app=c:\windows\syswow64\muzapp.exe | 
"{576FD1C7-692F-4652-8A36-2D46E6E598E5}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | 
"{5E536AA7-EB81-4009-A88B-54519F5FE5D0}" = protocol=17 | dir=in | app=d:\steam_old\steamapps\common\dirt 3\dirt3.exe | 
"{665E9C1B-2C92-4FFF-AD57-87FFB2D0445D}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\plants vs zombies\plantsvszombies.exe | 
"{6750E215-3A02-4133-B882-3891A6E5C6C9}" = protocol=17 | dir=in | app=c:\programy\tc up\plugins\media\operausb\opera.exe | 
"{72A6645D-F610-4809-A6A2-398DB1AA1E71}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{76022805-44C5-41D8-A845-3CDD6E6BFBAA}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\the binding of isaac\isaac.exe | 
"{76CA3DA4-774D-4B5E-8346-17F916D148FE}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\chime\chime.exe | 
"{774EC9D9-6337-42B3-A117-BDCA0A102273}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{777BAE89-4AB3-4E82-84EB-0DD55C74CC59}" = protocol=6 | dir=out | app=system | 
"{7DB5B2FA-E511-4637-8E22-4BC2A7EB8667}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe | 
"{800BF7DE-6031-4CF5-AE56-1CF958CD25AA}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\spacechem\spacechem.exe | 
"{81FDBC1C-00DE-482C-A9B6-E03BFA1FC6CA}" = protocol=17 | dir=in | app=c:\program files (x86)\maxthon3\bin\mxup.exe | 
"{85BCD0FF-2CEA-4AFB-A822-3CAB8F93A2A8}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe | 
"{8F3B5EFC-EE03-4F1E-B932-EDDC4ECAB818}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{92F46EE4-593A-4238-843B-CBB758C4CE59}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\the binding of isaac\isaac.exe | 
"{9495BE0D-F022-4FEE-85FA-AA9F935B0033}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | 
"{97817C10-8F97-49B9-B03E-EA35BC7A6F26}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\snuggle truck\snuggle truck.exe | 
"{99FD6380-9BDE-4BF5-B88D-7B4F470D4EBE}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | 
"{A3B4587B-9F11-4709-A934-272E33D84A26}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\plants vs zombies\plantsvszombies.exe | 
"{A5D2FAAE-E054-418E-A0C2-D14DBEA27E3C}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\frozen synapse\frozensynapse.exe | 
"{A790DE3C-8BCA-4A67-BD79-91F13A9D8D55}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{AC907563-6993-4B68-A3D1-BD461F4CF6E4}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\trauma\trauma.exe | 
"{B6AF09DB-64F1-42B1-9410-EF052CCC4DA8}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe | 
"{BF7C6AC2-092F-46BA-BB68-E46A33C40230}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{C461DA40-F2E4-4115-814A-653C1C1F5078}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\avadon the black fortress\avadon.exe | 
"{C58E3FDD-C2D1-40A6-9D4F-AAE9E60BB1C2}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | 
"{C94F8697-2DD4-4F1E-AC0C-C0FA957F2C39}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\amd driver updater, vista and 7, 64 bit\setup.exe | 
"{D93749B7-1B99-47FB-9465-CF684F41CEA5}" = protocol=6 | dir=in | app=d:\steam\steamapps\common\snuggle truck\snuggle truck.exe | 
"{DA0A3B1F-9BCF-4A6D-86D1-6C6F10DACB2D}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\avadon the black fortress\avadon.exe | 
"{DB7500CA-5776-439B-B5AB-9C47DD9F6593}" = protocol=6 | dir=in | app=c:\program files (x86)\maxthon3\bin\maxthon.exe | 
"{E9486700-6BA2-41AC-96FD-A9E4286FDA93}" = protocol=6 | dir=in | app=c:\programy\wtw\wtw.exe | 
"{ED496617-6D23-47F8-99FC-D53B5581E392}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\left 4 dead 2\left4dead2.exe | 
"{F00517CF-EB52-48EF-B0AB-F514F2EE2691}" = protocol=17 | dir=in | app=d:\steam\steamapps\common\cogs\cogs.exe | 
"{F9A66467-3E83-49F3-B283-3003C060F4B4}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"{FA32BFD3-33E9-4929-80F8-D0A6E77CA24B}" = protocol=17 | dir=in | app=c:\program files (x86)\maxthon3\bin\maxthon.exe | 
"{FC80D861-FEBD-4698-86E2-354FA54E6A90}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | 
"{FD22072A-B014-4074-897F-F38D3DD3A18D}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | 
"TCP Query User{1D1B3E15-8B30-4563-9F26-BFF011FE808A}C:\program files\java\jre6\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"TCP Query User{3427DAA8-E0B7-40C1-BD16-002CF2D03351}D:\sh4g\sh4.exe" = protocol=6 | dir=in | app=d:\sh4g\sh4.exe | 
"TCP Query User{35AAFE8B-A0A5-4979-BEF0-3312BE693022}C:\miranda im\miranda32.exe" = protocol=6 | dir=in | app=c:\miranda im\miranda32.exe | 
"TCP Query User{3F41AD17-15C1-45C4-823D-2B91DFD9C910}C:\frozensynapse\frozensynapse.exe" = protocol=6 | dir=in | app=c:\frozensynapse\frozensynapse.exe | 
"TCP Query User{48D6BA1B-8D59-4F48-8D8D-89C577E4B636}D:\steam\steamapps\common\dirt 3\dirt3_game.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\dirt 3\dirt3_game.exe | 
"TCP Query User{DA8E9FA7-5E87-4D6F-9B06-FFA4AED7A5B3}D:\steam\steamapps\rzeznik_mocy\team fortress 2\hl2.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\rzeznik_mocy\team fortress 2\hl2.exe | 
"TCP Query User{DBE03F6C-2CF1-454A-BC26-E9EB49DD5313}D:\steam\steamapps\common\alien swarm\swarm.exe" = protocol=6 | dir=in | app=d:\steam\steamapps\common\alien swarm\swarm.exe | 
"TCP Query User{DDECB7B0-0586-4F10-84D7-6570C20B195C}D:\cod5\codwaw.exe" = protocol=6 | dir=in | app=d:\cod5\codwaw.exe | 
"UDP Query User{1F5AFE13-4B67-427A-BA97-F39EB0559630}C:\program files\java\jre6\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre6\bin\javaw.exe | 
"UDP Query User{26FF7EEF-CD2E-4644-A316-DCCED0C36DFA}C:\frozensynapse\frozensynapse.exe" = protocol=17 | dir=in | app=c:\frozensynapse\frozensynapse.exe | 
"UDP Query User{29A8E7B2-80E1-4265-9D6A-E7B366C5ECF6}D:\steam\steamapps\common\alien swarm\swarm.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\alien swarm\swarm.exe | 
"UDP Query User{2F8DC91F-9C4E-4ADD-B2EC-E791190283B7}D:\steam\steamapps\common\dirt 3\dirt3_game.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\common\dirt 3\dirt3_game.exe | 
"UDP Query User{3F424365-C613-4BAC-9C88-6589C4E84939}D:\steam\steamapps\rzeznik_mocy\team fortress 2\hl2.exe" = protocol=17 | dir=in | app=d:\steam\steamapps\rzeznik_mocy\team fortress 2\hl2.exe | 
"UDP Query User{7C13AC43-0809-4A84-ACEE-752C1B1D22F0}D:\cod5\codwaw.exe" = protocol=17 | dir=in | app=d:\cod5\codwaw.exe | 
"UDP Query User{AA98566A-543D-444D-81E4-0DDA48BF2BB0}D:\sh4g\sh4.exe" = protocol=17 | dir=in | app=d:\sh4g\sh4.exe | 
"UDP Query User{B3670CC2-75E6-40B5-AB8F-ADEE9880F9A1}C:\miranda im\miranda32.exe" = protocol=17 | dir=in | app=c:\miranda im\miranda32.exe | 
 
[color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color]
 
64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{23170F69-40C1-2702-0920-000001000000}" = 7-Zip 9.20 (x64 edition)
"{26A24AE4-039D-4CA4-87B4-2F86416031FF}" = Java(TM) 6 Update 31 (64-bit)
"{353D1262-B2D2-AD87-EB5E-6B1395AF9FAE}" = AMD Catalyst Install Manager
"{90140000-002A-0000-1000-0000000FF1CE}" = Microsoft Office Office 64-bit Components 2010
"{90140000-002A-0415-1000-0000000FF1CE}" = Microsoft Office Shared 64-bit MUI (Polish) 2010
"{9B48B0AC-C813-4174-9042-476A887592C7}" = Windows Live ID Sign-in Assistant
"{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones
"{DA5E371C-6333-3D8A-93A4-6FD5B20BCC6E}" = Microsoft Visual C++ 2010  x64 Redistributable - 10.0.30319
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX 64-bit
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin 64-bit
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
 
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{2397CAD4-2263-4CD0-96BE-E43A980B9C9A}_is1" = Geeks3D.com FurMark 1.9.2
"{26A24AE4-039D-4CA4-87B4-2F83216029FF}" = Java(TM) 6 Update 29
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4CB0307C-565E-4441-86BE-0DF2E4FB828C}" = Microsoft Games for Windows Marketplace
"{69FDFBB6-351D-4B8C-89D8-867DC9D0A2A4}" = Windows Media Player Firefox Plugin
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"{832D9DE0-8AFC-4689-9819-4DBBDEBD3E4F}" = Microsoft Games for Windows - LIVE Redistributable
"{90140000-0011-0000-0000-0000000FF1CE}" = Microsoft Office Professional Plus 2010
"{90140000-0011-0000-0000-0000000FF1CE}_Office14.PROPLUS_{047B0968-E622-4FAA-9B4B-121FA109EDDE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0015-0415-0000-0000000FF1CE}" = Microsoft Office Access MUI (Polish) 2010
"{90140000-0015-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0016-0415-0000-0000000FF1CE}" = Microsoft Office Excel MUI (Polish) 2010
"{90140000-0016-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0018-0415-0000-0000000FF1CE}" = Microsoft Office PowerPoint MUI (Polish) 2010
"{90140000-0018-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0019-0415-0000-0000000FF1CE}" = Microsoft Office Publisher MUI (Polish) 2010
"{90140000-0019-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001A-0415-0000-0000000FF1CE}" = Microsoft Office Outlook MUI (Polish) 2010
"{90140000-001A-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001B-0415-0000-0000000FF1CE}" = Microsoft Office Word MUI (Polish) 2010
"{90140000-001B-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0407-0000-0000000FF1CE}" = Microsoft Office Proof (German) 2010
"{90140000-001F-0407-0000-0000000FF1CE}_Office14.PROPLUS_{65A2328E-FDFB-4CA3-8582-357EA6825FEA}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0409-0000-0000000FF1CE}" = Microsoft Office Proof (English) 2010
"{90140000-001F-0409-0000-0000000FF1CE}_Office14.PROPLUS_{99ACCA38-6DD3-48A8-96AE-A283C9759279}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-001F-0415-0000-0000000FF1CE}" = Microsoft Office Proof (Polish) 2010
"{90140000-001F-0415-0000-0000000FF1CE}_Office14.PROPLUS_{1D751709-BA6C-49E2-844B-4F4F20F410C9}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0000-1000-0000000FF1CE}_Office14.PROPLUS_{967EF02C-5C7E-4718-8FCB-BDC050190CCF}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002A-0415-1000-0000000FF1CE}_Office14.PROPLUS_{0844B6E1-0A6F-4D81-8BCF-48F883F521FE}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-002C-0415-0000-0000000FF1CE}" = Microsoft Office Proofing (Polish) 2010
"{90140000-002C-0415-0000-0000000FF1CE}_Office14.PROPLUS_{6606F321-8216-466E-981E-B75A14C46894}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-0044-0415-0000-0000000FF1CE}" = Microsoft Office InfoPath MUI (Polish) 2010
"{90140000-0044-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-006E-0415-0000-0000000FF1CE}" = Microsoft Office Shared MUI (Polish) 2010
"{90140000-006E-0415-0000-0000000FF1CE}_Office14.PROPLUS_{6AF8887A-72F7-4FA0-ABE4-396172B64550}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00A1-0415-0000-0000000FF1CE}" = Microsoft Office OneNote MUI (Polish) 2010
"{90140000-00A1-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{90140000-00BA-0415-0000-0000000FF1CE}" = Microsoft Office Groove MUI (Polish) 2010
"{90140000-00BA-0415-0000-0000000FF1CE}_Office14.PROPLUS_{39EFF327-D2C4-4C4B-B8EE-37325DECE1A4}" = Microsoft Office 2010 Service Pack 1 (SP1)
"{9733747E-E53D-4C17-977E-3A872AFB93E1}" = ROCCAT Kone Mouse Driver
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{BEWINTERNET-PL}.UninstallSuite" = Business Everywhere
"{D2FCA41E-AC01-4DCD-B3A7-DC9E32363065}}_is1" = Rapture3D 2.4.8 Game
"{DAF650C8-AFE5-3460-E1C4-B9716D2DA5D2}" = Catalyst Control Center InstallProxy
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010  x86 Redistributable - 10.0.40219
"{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022
"Avira AntiVir Desktop" = Avira Free Antivirus
"CardDetectorHUAWEI177" = Card Detector for Huawei E177
"DAEMON Tools Lite" = DAEMON Tools Lite
"Foxit Reader_is1" = Foxit Reader
"Host OpenAL (ADI)" = Host OpenAL (ADI)
"InstallShield_{758C8301-2696-4855-AF45-534B1200980A}" = Samsung Kies
"KLiteCodecPack_is1" = K-Lite Codec Pack 8.4.0 (Standard)
"Marvell Miniport Driver" = Marvell Miniport Driver
"Mozilla Firefox 12.0 (x86 pl)" = Mozilla Firefox 12.0 (x86 pl)
"Mozilla Thunderbird 10.0.2 (x86 pl)" = Mozilla Thunderbird 10.0.2 (x86 pl)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"Office14.PROPLUS" = Microsoft Office Professional Plus 2010
"OpenAL" = OpenAL
"Opera 11.62.1347" = Opera 11.62
"Steam App 111100" = Snuggle Truck
"Steam App 112100" = Avadon: The Black Fortress
"Steam App 113200" = The Binding Of Isaac
"Steam App 203210" = Titan Attacks
"Steam App 26500" = Cogs
"Steam App 44320" = DiRT 3
"Steam App 61600" = Zen Bound® 2
"Steam App 62100" = Chime
"Steam App 92800" = SpaceChem
"Steam App 95300" = Capsized
"Steam App 98100" = TRAUMA
"Steam App 98200" = Frozen Synapse
 
[color=#E56717]========== Last 10 Event Log Errors ==========[/color]
 
[ Application Events ]
Error - 2012-05-09 16:52:21 | Computer Name = maximus-PC | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-05-09 16:54:06 | Computer Name = maximus-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 2012-05-09 17:13:10 | Computer Name = maximus-PC | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-05-09 17:14:30 | Computer Name = maximus-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 2012-05-09 17:44:18 | Computer Name = maximus-PC | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-05-09 17:45:17 | Computer Name = maximus-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 2012-05-10 02:24:37 | Computer Name = maximus-PC | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-05-10 02:27:21 | Computer Name = maximus-PC | Source = Winlogon | ID = 4103
Description = Aktywacja licencji systemu Windows nie powiodła się. Błąd 0x80070005.
 
Error - 2012-05-10 02:29:04 | Computer Name = maximus-PC | Source = WinMgmt | ID = 10
Description = 
 
Error - 2012-05-10 02:31:06 | Computer Name = maximus-PC | Source = RasClient | ID = 20227
Description = 
 
[ System Events ]
Error - 2012-03-26 11:58:02 | Computer Name = maximus-PC | Source = DCOM | ID = 10001
Description = 
 
Error - 2012-04-11 12:19:40 | Computer Name = maximus-PC | Source = volsnap | ID = 393252
Description = Wykonywanie kopii w tle woluminu C: zostało przerwane, ponieważ nie
 można powiększyć magazynu kopii w tle z powodu limitu wprowadzonego przez użytkownika.
 
Error - 2012-04-11 12:34:48 | Computer Name = maximus-PC | Source = DCOM | ID = 10001
Description = 
 
Error - 2012-04-27 03:26:01 | Computer Name = maximus-PC | Source = DCOM | ID = 10001
Description = 
 
Error - 2012-05-04 17:39:53 | Computer Name = maximus-PC | Source = DCOM | ID = 10001
Description = 
 
Error - 2012-05-09 17:08:00 | Computer Name = maximus-PC | Source = Service Control Manager | ID = 7030
Description = Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System
 jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego
 ta usługa może nie działać właściwie.
 
Error - 2012-05-09 17:10:06 | Computer Name = maximus-PC | Source = Application Popup | ID = 1060
Description = Ładowanie sterownika \??\C:\ComboFix\catchme.sys zostało zablokowane
 z powodu niezgodności z tym systemem. Skontaktuj się z dostawcą oprogramowania 
w celu uzyskania zgodnej wersji sterownika.
 
Error - 2012-05-09 17:11:38 | Computer Name = maximus-PC | Source = Service Control Manager | ID = 7030
Description = Usługa PEVSystemStart jest oznaczona jako usługa interakcyjna. System
 jest jednak skonfigurowany tak, aby nie zezwalać na usługi interakcyjne, dlatego
 ta usługa może nie działać właściwie.
 
Error - 2012-05-09 17:12:52 | Computer Name = maximus-PC | Source = Service Control Manager | ID = 7023
Description = Usługa Windows Defender zakończyła działanie; wystąpił następujący
 błąd:   %%126
 
Error - 2012-05-09 17:20:39 | Computer Name = maximus-PC | Source = VDS Basic Provider | ID = 33554433
Description = 
 
 
< End of report >