Programs keep crashing, might be malware/virus related.

Okay.. So after I updated my windows through windows update (windows 7) every time I open up a .exe file it crashes instantly. In the behinning it happened once or twice, retrying worked, but now after a while restarting the program(s) does not nesecarily work anymore. Browsers seem to work somewhat fine, at least chrome. IE keeps crashing (used it to run pcpitstop ( http://www.pcpitstop...?conid=25400675 ).

OTL logs:

OTL logfile created on: 12.08.2013 23:35:31 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Emil\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy

7,90 Gb Total Physical Memory | 5,59 Gb Available Physical Memory | 70,74% Memory free
15,80 Gb Paging File | 13,23 Gb Available in Paging File | 83,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 196,99 Gb Free Space | 42,30% Space Free | Partition Type: NTFS
Drive D: | 6,35 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: EMIL-PC | User Name: Emil | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013.08.12 23:35:23 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Emil\Downloads\OTL.exe
PRC - [2013.07.25 02:49:49 | 000,846,288 | ---- | M] (Google Inc.) -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe
PRC - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe
PRC - [2012.04.11 13:12:30 | 004,727,296 | ---- | M] () -- C:\Program Files (x86)\Hotkey\Hotkey.exe
PRC - [2012.03.26 04:14:26 | 000,291,608 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe
PRC - [2012.03.25 22:32:22 | 000,276,248 | ---- | M] (Intel Corporation) -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe
PRC - [2012.03.14 15:48:22 | 000,362,840 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe
PRC - [2012.03.14 15:48:20 | 000,276,824 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe
PRC - [2012.03.14 15:48:06 | 000,162,648 | R--- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe
PRC - [2011.11.29 21:04:56 | 000,013,592 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe
PRC - [2011.11.29 21:04:54 | 000,284,440 | ---- | M] (Intel Corporation) -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe
PRC - [2011.02.18 16:57:30 | 000,035,328 | ---- | M] () -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe
PRC - [2010.11.01 14:25:36 | 001,374,720 | ---- | M] (Creative Technology Ltd) -- C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe
PRC - [2008.12.05 15:44:44 | 000,053,248 | ---- | M] (Bison Inc.) -- C:\Program Files (x86)\BisonCam\PID_0361\DeLay.exe

========== Modules (No Company Name) ==========

MOD - [2013.08.11 20:13:01 | 001,670,144 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\Microsoft.VisualBas#\46e5c98ee0b6840ffbc7875ec30e6b38\Microsoft.VisualBasic.ni.dll
MOD - [2013.08.11 20:12:23 | 001,051,136 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Management\a7a3ebc76a454af37918211506e81e31\System.Management.ni.dll
MOD - [2013.08.11 20:12:23 | 000,487,424 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorUtil\5ff75dafe0bda546dc6c71d2cb2d5257\IAStorUtil.ni.dll
MOD - [2013.08.11 20:12:23 | 000,014,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\IAStorCommon\6e3778958a8bfd03bf0f2f60c4e25623\IAStorCommon.ni.dll
MOD - [2013.08.11 20:10:24 | 000,212,992 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.ServiceProce#\f752f8cf702b7c7eff6c659b2e0c760a\System.ServiceProcess.ni.dll
MOD - [2013.08.11 20:10:16 | 000,771,584 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Runtime.Remo#\89fe719039385377f6b5ad8d0070aa6b\System.Runtime.Remoting.ni.dll
MOD - [2013.08.11 20:10:09 | 014,340,096 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationFramewo#\fc4a8709f71eba20cc71c7905bba3dee\PresentationFramework.ni.dll
MOD - [2013.08.11 20:10:01 | 012,436,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Windows.Forms\178644ab40108f3becd8b91049a254c3\System.Windows.Forms.ni.dll
MOD - [2013.08.11 20:09:57 | 001,593,344 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Drawing\bfa7a95284aec941f4b03bae0debe07c\System.Drawing.ni.dll
MOD - [2013.08.11 20:09:55 | 012,238,336 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\PresentationCore\ef17be93e209cc95b9768c7822530432\PresentationCore.ni.dll
MOD - [2013.08.11 20:09:49 | 003,348,480 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\WindowsBase\c25666b99761bc42322bae2e59968df8\WindowsBase.ni.dll
MOD - [2013.08.11 20:09:46 | 005,464,064 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Xml\32066405eb9ab14056b2af3115d2a6de\System.Xml.ni.dll
MOD - [2013.08.11 20:09:44 | 007,989,760 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System\187c13e8967097d2ed1e5f123e7d890a\System.ni.dll
MOD - [2013.08.11 20:09:44 | 000,978,432 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\System.Configuration\9e24b9ffd816c0c90efc4d3fc9fd745f\System.Configuration.ni.dll
MOD - [2013.08.11 20:09:40 | 011,499,520 | ---- | M] () -- C:\Windows\assembly\NativeImages_v2.0.50727_32\mscorlib\9a6c1b7af18b4d5a91dc7f8d6617522f\mscorlib.ni.dll
MOD - [2013.07.25 02:49:46 | 000,396,240 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppgooglenaclpluginchrome.dll
MOD - [2013.07.25 02:49:45 | 013,599,184 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
MOD - [2013.07.25 02:49:44 | 004,052,944 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
MOD - [2013.07.25 02:48:51 | 001,597,392 | ---- | M] () -- C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ffmpegsumo.dll
MOD - [2012.04.11 13:12:30 | 004,727,296 | ---- | M] () -- C:\Program Files (x86)\Hotkey\Hotkey.exe
MOD - [2009.06.06 15:50:32 | 000,019,968 | ---- | M] () -- C:\Program Files (x86)\Hotkey\Audiodll.dll

========== Services (SafeList) ==========

SRV:64bit: - [2013.05.27 07:50:47 | 001,011,712 | ---- | M] (Microsoft Corporation) [Auto | Running] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV:64bit: - [2012.03.29 02:08:02 | 000,235,520 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012.02.26 06:07:52 | 002,669,840 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\ZeroConfigService.exe -- (ZeroConfigService)
SRV:64bit: - [2012.02.26 06:07:42 | 000,273,168 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files\Intel\WiFi\bin\PanDhcpDns.exe -- (MyWiFiDHCPDNS)
SRV:64bit: - [2012.02.26 06:07:32 | 000,626,960 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\WiFi\bin\EvtEng.exe -- (EvtEng)
SRV:64bit: - [2012.02.26 06:07:26 | 000,148,752 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Common Files\Intel\WirelessCommon\RegSrvc.exe -- (RegSrvc)
SRV:64bit: - [2012.02.02 23:29:52 | 000,628,448 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\iCLS Client\HeciServer.exe -- (Intel®
SRV:64bit: - [2012.01.17 17:12:28 | 000,135,952 | ---- | M] (Intel® Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSSecurityMgr.exe -- (BTHSSecurityMgr)
SRV:64bit: - [2012.01.09 13:39:44 | 000,659,968 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files\Intel\BluetoothHS\BTHSAmpPalService.exe -- (AMPPALR3)
SRV:64bit: - [2009.07.14 03:40:01 | 000,193,536 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Windows\SysNative\appmgmts.dll -- (AppMgmt)
SRV - [2013.07.31 00:47:46 | 000,117,656 | ---- | M] (Mozilla Foundation) [On_Demand | Stopped] -- C:\Program Files (x86)\Mozilla Maintenance Service\maintenanceservice.exe -- (MozillaMaintenance)
SRV - [2013.07.27 00:46:24 | 000,563,624 | ---- | M] (Valve Corporation) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Steam\SteamService.exe -- (Steam Client Service)
SRV - [2013.06.03 16:21:54 | 000,162,408 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2013.02.25 16:01:31 | 001,045,256 | ---- | M] (Acresso Software Inc.) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Macrovision Shared\FLEXnet Publisher\FNPLicensingService.exe -- (FLEXnet Licensing Service)
SRV - [2012.12.18 21:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [Auto | Running] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012.03.25 22:32:22 | 000,276,248 | ---- | M] (Intel Corporation) [On_Demand | Running] -- C:\Windows\SysWOW64\IntelCpHeciSvc.exe -- (cphs)
SRV - [2012.03.14 15:48:22 | 000,362,840 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\UNS\UNS.exe -- (UNS)
SRV - [2012.03.14 15:48:20 | 000,276,824 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\LMS\LMS.exe -- (LMS)
SRV - [2012.03.14 15:48:06 | 000,162,648 | R--- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Management Engine Components\DAL\Jhi_service.exe -- (jhi_service)
SRV - [2011.11.29 21:04:56 | 000,013,592 | ---- | M] (Intel Corporation) [Auto | Running] -- C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorDataMgrSvc.exe -- (IAStorDataMgrSvc)
SRV - [2011.02.18 16:57:30 | 000,035,328 | ---- | M] () [Auto | Running] -- C:\Program Files (x86)\Hotkey\PowerBiosServer.exe -- (PowerBiosServer)
SRV - [2010.03.18 13:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009.06.10 23:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)

========== Driver Services (SafeList) ==========

DRV:64bit: - [2013.03.31 22:06:27 | 000,283,200 | ---- | M] (DT Soft Ltd) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\dtsoftbus01.sys -- (dtsoftbus01)
DRV:64bit: - [2013.02.14 02:33:06 | 000,037,472 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdkmpfd.sys -- (amdkmpfd)
DRV:64bit: - [2012.08.23 16:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012.08.23 16:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012.07.17 18:12:08 | 000,062,784 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\HECIx64.sys -- (MEIx64)
DRV:64bit: - [2012.05.08 16:06:42 | 000,293,992 | R--- | M] (Realtek Semiconductor Corp.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RtsBaStor.sys -- (RSBASTOR)
DRV:64bit: - [2012.04.19 18:36:26 | 000,035,256 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\intelaud.sys -- (intaud_WaveExtensible)
DRV:64bit: - [2012.04.19 18:36:26 | 000,025,528 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iwdbus.sys -- (iwdbus)
DRV:64bit: - [2012.03.29 02:42:58 | 010,859,008 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012.03.29 01:08:10 | 000,328,704 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012.03.26 04:13:20 | 000,789,272 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3xhc.sys -- (iusb3xhc)
DRV:64bit: - [2012.03.26 04:13:20 | 000,356,632 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\iusb3hub.sys -- (iusb3hub)
DRV:64bit: - [2012.03.26 04:13:18 | 000,019,224 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iusb3hcs.sys -- (iusb3hcs)
DRV:64bit: - [2012.03.25 22:09:54 | 014,748,416 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\igdpmd64.sys -- (intelkmd)
DRV:64bit: - [2012.03.08 23:41:16 | 000,685,160 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012.03.01 08:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2012.02.20 13:36:58 | 011,471,872 | ---- | M] (Intel Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Netwsw00.sys -- (NETwNs64)
DRV:64bit: - [2012.01.09 13:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPALP)
DRV:64bit: - [2012.01.09 13:32:40 | 000,195,584 | ---- | M] (Windows ® Win 7 DDK provider) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AmpPal.sys -- (AMPPAL)
DRV:64bit: - [2011.12.05 08:23:08 | 000,331,264 | ---- | M] (Intel® Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\IntcDAud.sys -- (IntcDAud)
DRV:64bit: - [2011.11.29 20:40:32 | 000,568,600 | ---- | M] (Intel Corporation) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\iaStor.sys -- (iaStor)
DRV:64bit: - [2011.07.27 20:37:56 | 001,448,496 | ---- | M] (Synaptics Incorporated) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\SynTP.sys -- (SynTP)
DRV:64bit: - [2011.03.11 08:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011.03.11 08:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2010.11.20 15:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2009.07.14 03:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009.07.14 03:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009.07.14 03:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009.06.10 22:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009.06.10 22:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009.06.10 22:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009.06.10 22:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009.03.18 16:35:42 | 000,033,856 | -H-- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hamachi.sys -- (hamachi)
DRV - [2009.07.14 03:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)

========== Standard Registry (SafeList) ==========

========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE:64bit: - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKLM\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...ms}&FORM=IE8SRC

IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache = http://no.msn.com/?ocid=iehp
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache AcceptLangs = nb-NO
IE - HKCU\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page Redirect Cache_TIMESTAMP = F4 85 12 F7 9F 97 CE 01 [binary data]
IE - HKCU\..\SearchScopes,DefaultScope = {0633EE93-D776-472f-A0FF-E1416B8B2E3A}
IE - HKCU\..\SearchScopes\{0633EE93-D776-472f-A0FF-E1416B8B2E3A}: "URL" = http://www.bing.com/...Box&FORM=IE8SRC
IE - HKCU\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

========== FireFox ==========

FF - prefs.js..extensions.enabledAddons: %7B972ce4c6-7e08-4474-a285-3208198ce6fd%7D:23.0
FF - user.js - File not found

FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.17.2: C:\Windows\system32\npDeployJava1.dll (Oracle Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.17.2: C:\Program Files\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Google.com/GoogleEarthPlugin: C:\Program Files (x86)\Google\Google Earth\plugin\npgeplugin.dll (Google)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI ipt;version=2.0.59: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@intel-webapi.intel.com/Intel WebAPI updater: C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll (Intel Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.25.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.25.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: c:\Program Files (x86)\Microsoft Silverlight\5.1.20125.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@raidcall.en/RCplugin: C:\Users\Emil\AppData\Roaming\raidcall\plugins\nprcplugin.dll (Raidcall)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.153\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@videolan.org/vlc,version=2.0.5: C:\Program Files (x86)\VideoLAN\VLC\npvlc.dll (VideoLAN)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)
FF - HKCU\Software\MozillaPlugins\ubisoft.com/uplaypc: C:\Program Files (x86)\Ubisoft\Ubisoft Game Launcher\npuplaypc.dll ()

FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0\extensions\\Components: C:\Program Files (x86)\Mozilla Firefox\components
FF - HKEY_LOCAL_MACHINE\software\mozilla\Mozilla Firefox 23.0\extensions\\Plugins: C:\Program Files (x86)\Mozilla Firefox\plugins

[2013.08.12 23:12:06 | 000,000,000 | ---D | M] (No name found) -- C:\Users\Emil\AppData\Roaming\Mozilla\Extensions
[2013.08.12 23:12:00 | 000,000,000 | ---D | M] (No name found) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions
[2013.08.12 23:12:00 | 000,000,000 | ---D | M] (Default) -- C:\Program Files (x86)\Mozilla Firefox\browser\extensions\{972ce4c6-7e08-4474-a285-3208198ce6fd}

========== Chrome ==========

CHR - default_search_provider: Google (Enabled)
CHR - default_search_provider: search_url = {google:baseURL}search?q={searchTerms}&{google:RLZ}{google:originalQueryForSuggestion}{google:assistedQueryStats}{google:searchFieldtrialParameter}{google:searchClient}{google:sourceId}{google:instantExtendedEnabledParameter}ie={inputEncoding}
CHR - default_search_provider: suggest_url = {google:baseSuggestURL}search?{google:searchFieldtrialParameter}client=chrome&q={searchTerms}&{google:cursorPosition}{google:zeroPrefixUrl}sugkey={google:suggestAPIKeyParameter},
CHR - plugin: Shockwave Flash (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\PepperFlash\pepflashplayer.dll
CHR - plugin: Chrome Remote Desktop Viewer (Enabled) = internal-remoting-viewer
CHR - plugin: Native Client (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\ppGoogleNaClPluginChrome.dll
CHR - plugin: Chrome PDF Viewer (Enabled) = C:\Program Files (x86)\Google\Chrome\Application\28.0.1500.95\pdf.dll
CHR - plugin: Google Update (Enabled) = C:\Program Files (x86)\Google\Update\1.3.21.135\npGoogleUpdate3.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIIPT.dll
CHR - plugin: Intel\u00AE Identity Protection Technology (Enabled) = C:\Program Files (x86)\Intel\Intel® Management Engine Components\IPT\npIntelWebAPIUpdater.dll
CHR - Extension: Google Docs = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\aohghmighlieiainnegkcijnfilokake\0.5_0\
CHR - Extension: Google Drive = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\apdfllckaahabafndbhieahigkjlhalf\6.3_0\
CHR - Extension: YouTube = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\blpcfgokakmgnkcojhhkbfbldkacnbeo\4.2.6_0\
CHR - Extension: Google Search = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\coobgpohoikkiipiblmjeljniedjpjpf\0.0.0.20_0\
CHR - Extension: Google Kalender = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\ejjicmeblgpmajnghnpcppodonldlgfn\4.5.3_0\
CHR - Extension: AdBlock = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom\2.6.4_0\
CHR - Extension: Reddit Enhancement Suite = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\kbmfpngjjgdllneeigpgjifpgocmfgmb\4.3.0.1_0\
CHR - Extension: DotA 2 Match Ticker = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\nejdjlaibiicicciokonbbkecjleilon\1.6.2_0\
CHR - Extension: Media Hint = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pbogbchcdigifagelnlmhlenmofdgbao\0.1.12_0\
CHR - Extension: Gmail = C:\Users\Emil\AppData\Local\Google\Chrome\User Data\Default\Extensions\pjkljhegncpnkpknbcohdijeoejaedia\7_0\

O1 HOSTS File: ([2009.06.10 23:00:26 | 000,000,824 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O2:64bit: - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2:64bit: - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java™ Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O4:64bit: - HKLM..\Run: [DeLay] C:\Program Files (x86)\BisonCam\PID_0361\DeLay.exe (Bison Inc.)
O4:64bit: - HKLM..\Run: [HotKeysCmds] C:\Windows\SysNative\hkcmd.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [IgfxTray] C:\Windows\SysNative\igfxtray.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [Persistence] C:\Windows\SysNative\igfxpers.exe (Intel Corporation)
O4:64bit: - HKLM..\Run: [RtHDVCpl] C:\Program Files\Realtek\Audio\HDA\RAVCpl64.exe (Realtek Semiconductor)
O4:64bit: - HKLM..\Run: [THXCfg64] C:\Windows\SysNative\THXCfg64.DLL (Creative Technology Ltd.)
O4 - HKLM..\Run: [IAStorIcon] C:\Program Files (x86)\Intel\Intel® Rapid Storage Technology\IAStorIcon.exe (Intel Corporation)
O4 - HKLM..\Run: [StartCCC] C:\Program Files (x86)\ATI Technologies\ATI.ACE\Core-Static\CLIStart.exe (Advanced Micro Devices, Inc.)
O4 - HKLM..\Run: [THX Audio Control Panel] C:\Program Files (x86)\Creative\THX TruStudio Pro\THXAudioCP\THXAudio.exe (Creative Technology Ltd)
O4 - HKLM..\Run: [UpdReg] C:\Windows\Updreg.EXE (Creative Technology Ltd.)
O4 - HKLM..\Run: [USB3MON] C:\Program Files (x86)\Intel\Intel® USB 3.0 eXtensible Host Controller Driver\Application\iusb3mon.exe (Intel Corporation)
O4 - HKCU..\Run: [Steam] C:\Program Files (x86)\Steam\steam.exe (Valve Corporation)
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktop = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoActiveDesktopChanges = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O1364bit: - gopher Prefix: missing
O13 - gopher Prefix: missing
O16 - DPF: {0E5F0222-96B9-11D3-8997-00104BD12D94} http://www.pcpitstop...t/PCPitStop.CAB (PCPitstop Utility)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.25.2)
O16 - DPF: {CAFEEFAC-0016-0000-0043-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 1.6.0_43)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/...indows-i586.cab (Java Plug-in 10.25.2)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 217.13.7.140 217.13.4.24
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{7739E79B-9145-4BDE-9A24-429DFDB40CFE}: DhcpNameServer = 217.13.7.140 217.13.4.24
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O20:64bit: - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (userinit.exe) - C:\Windows\SysWow64\userinit.exe (Microsoft Corporation)
O20:64bit: - Winlogon\Notify\igfxcui: DllName - (igfxdev.dll) - C:\Windows\SysNative\igfxdev.dll (Intel Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O33 - MountPoints2\{085bfb32-7f4c-11e2-8203-806e6f6e6963}\Shell - "" = AutoRun
O33 - MountPoints2\{085bfb32-7f4c-11e2-8203-806e6f6e6963}\Shell\AutoRun\command - "" = D:\autorun.exe
O33 - MountPoints2\{4b0899e7-85ff-11e2-a2a4-0090f5d5e03d}\Shell - "" = AutoRun
O33 - MountPoints2\{4b0899e7-85ff-11e2-a2a4-0090f5d5e03d}\Shell\AutoRun\command - "" = E:\autorun.exe
O33 - MountPoints2\{4b0899eb-85ff-11e2-a2a4-0090f5d5e03d}\Shell - "" = AutoRun
O33 - MountPoints2\{4b0899eb-85ff-11e2-a2a4-0090f5d5e03d}\Shell\AutoRun\command - "" = F:\autorun.exe
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = comfile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = comfile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013.08.12 23:12:01 | 000,000,000 | ---D | C] -- C:\ProgramData\Mozilla
[2013.08.12 23:12:00 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Maintenance Service
[2013.08.12 23:11:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Mozilla Firefox
[2013.08.12 22:57:28 | 000,000,000 | ---D | C] -- C:\Windows\pss
[2013.08.12 15:03:48 | 000,000,000 | ---D | C] -- C:\Windows\SysNative\MRT
[2013.08.12 14:44:53 | 000,000,000 | ---D | C] -- C:\Windows\CheckSur
[2013.08.12 00:54:02 | 000,000,000 | ---D | C] -- C:\ProgramData\SystemRequirementsLab
[2013.08.12 00:54:02 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\SystemRequirementsLab
[2013.08.06 17:31:17 | 000,000,000 | ---D | C] -- C:\Users\Emil\Documents\Mine Spore-skapninger
[2013.08.06 17:31:15 | 000,000,000 | ---D | C] -- C:\Users\Emil\AppData\Roaming\SPORE
[2013.08.06 17:30:01 | 000,000,000 | RH-D | C] -- C:\Users\Emil\AppData\Roaming\SecuROM
[2013.08.06 17:24:47 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Electronic Arts
[2013.08.06 17:12:21 | 000,000,000 | ---D | C] -- C:\Users\Emil\AppData\Roaming\Synthesia
[2013.08.06 17:12:13 | 000,000,000 | ---D | C] -- C:\Users\Emil\Documents\Synthesia Music
[2013.07.30 13:46:05 | 000,000,000 | ---D | C] -- C:\ProgramData\APN
[2013.07.27 20:31:02 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Earth
[2013.07.26 22:42:52 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\The Mighty Quest For Epic Loot
[2013.07.26 22:42:49 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\The Mighty Quest For Epic Loot
[2013.07.26 02:33:41 | 000,000,000 | ---D | C] -- C:\Users\Emil\Desktop\Diamonds in the rough
[2013.07.25 03:00:10 | 000,000,000 | ---D | C] -- C:\Program Files\CCleaner
[2013.07.24 15:39:38 | 000,000,000 | ---D | C] -- C:\Users\Emil\AppData\Roaming\Trine2
[2013.07.21 05:32:17 | 000,000,000 | ---D | C] -- C:\Users\Emil\Documents\mc
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013.08.12 23:21:00 | 000,000,988 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineUA.job
[2013.08.12 23:12:01 | 000,001,151 | ---- | M] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013.08.12 23:06:40 | 000,014,512 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013.08.12 23:06:40 | 000,014,512 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013.08.12 23:04:25 | 000,779,266 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013.08.12 23:04:25 | 000,652,360 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013.08.12 23:04:25 | 000,121,292 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013.08.12 23:01:47 | 000,000,984 | ---- | M] () -- C:\Windows\tasks\GoogleUpdateTaskMachineCore.job
[2013.08.12 23:01:36 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013.08.12 23:01:22 | 2066,063,359 | -HS- | M] () -- C:\hiberfil.sys
[2013.08.12 17:02:36 | 000,007,602 | ---- | M] () -- C:\Users\Emil\AppData\Local\Resmon.ResmonCfg
[2013.08.12 15:24:49 | 000,000,822 | ---- | M] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.08.12 15:01:00 | 000,000,274 | ---- | M] () -- C:\Windows\tasks\PC Performer_DEFAULT.job
[2013.08.11 18:32:21 | 000,765,178 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.08.07 14:36:41 | 000,000,282 | ---- | M] () -- C:\Windows\tasks\PC Performer_UPDATES.job
[2013.07.31 23:25:10 | 000,002,183 | ---- | M] () -- C:\Users\Public\Desktop\Google Chrome.lnk
[2013.07.26 22:42:52 | 000,001,402 | ---- | M] () -- C:\Users\Public\Desktop\The Mighty Quest For Epic Loot.lnk
[2013.07.26 02:37:16 | 003,358,261 | ---- | M] () -- C:\Users\Emil\Desktop\Diamonds in the rough.zip
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013.08.12 23:12:01 | 000,001,163 | ---- | C] () -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Mozilla Firefox.lnk
[2013.08.12 23:12:01 | 000,001,151 | ---- | C] () -- C:\Users\Public\Desktop\Mozilla Firefox.lnk
[2013.08.12 15:24:49 | 000,000,822 | ---- | C] () -- C:\Users\Public\Desktop\CCleaner.lnk
[2013.08.11 18:28:53 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_Kernel_01011_Inbox_Critical.Wdf
[2013.08.11 18:21:02 | 000,000,003 | ---- | C] () -- C:\Windows\SysNative\drivers\MsftWdf_User_01_11_00_Inbox_Critical.Wdf
[2013.07.26 22:42:52 | 000,001,402 | ---- | C] () -- C:\Users\Public\Desktop\The Mighty Quest For Epic Loot.lnk
[2013.07.26 02:37:16 | 003,358,261 | ---- | C] () -- C:\Users\Emil\Desktop\Diamonds in the rough.zip
[2013.05.23 16:18:39 | 000,004,073 | ---- | C] () -- C:\Users\Emil\AppData\Local\recently-used.xbel
[2013.03.29 04:13:14 | 000,798,734 | ---- | C] () -- C:\Windows\SysWow64\amdocl_ld32.exe
[2013.03.29 04:13:12 | 000,995,342 | ---- | C] () -- C:\Windows\SysWow64\amdocl_as32.exe
[2013.03.06 02:18:19 | 000,765,178 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013.03.05 21:12:02 | 000,007,602 | ---- | C] () -- C:\Users\Emil\AppData\Local\Resmon.ResmonCfg
[2013.02.25 23:26:44 | 000,703,117 | ---- | C] () -- C:\Users\Emil\AppData\Roaming\technic-launcher.jar
[2013.02.25 16:02:00 | 000,001,313 | ---- | C] () -- C:\Windows\THXCfg_SP_APOIM.ini
[2013.02.25 16:02:00 | 000,001,212 | ---- | C] () -- C:\Windows\THXCfg_HP_APOIM.ini
[2013.02.25 16:02:00 | 000,001,212 | ---- | C] () -- C:\Windows\THXCfg_APOIM.ini
[2013.02.25 16:01:56 | 000,185,856 | ---- | C] () -- C:\Windows\SysWow64\APOMngr.DLL
[2013.02.25 16:01:56 | 000,073,728 | ---- | C] () -- C:\Windows\SysWow64\CmdRtr.DLL
[2013.02.25 15:47:00 | 000,000,101 | R--- | C] () -- C:\Windows\OEM.ini
[2013.02.25 15:47:00 | 000,000,020 | R--- | C] () -- C:\Windows\Bison.ini
[2013.02.25 15:35:40 | 000,066,856 | ---- | C] () -- C:\Windows\SysWow64\SynTPEnhPS.dll
[2013.02.25 15:28:07 | 000,000,000 | ---- | C] () -- C:\Windows\ativpsrm.bin
[2013.02.25 15:25:39 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblup.dat
[2013.02.25 15:25:06 | 013,024,768 | ---- | C] () -- C:\Windows\SysWow64\ig7icd32.dll
[2013.02.25 15:25:06 | 000,755,188 | ---- | C] () -- C:\Windows\SysWow64\igkrng700.bin
[2013.02.25 15:25:06 | 000,561,508 | ---- | C] () -- C:\Windows\SysWow64\igfcg700m.bin
[2013.02.25 15:25:06 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2013.02.25 15:25:06 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2013.02.25 15:25:06 | 000,058,880 | ---- | C] () -- C:\Windows\SysWow64\igdde32.dll
[2013.02.25 15:25:06 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2012.11.27 01:18:46 | 000,038,912 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012.02.02 23:08:26 | 000,001,536 | ---- | C] () -- C:\Windows\SysWow64\IusEventLog.dll

========== ZeroAccess Check ==========

[2009.07.14 06:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
"" = C:\Windows\SysNative\shell32.dll -- [2013.02.27 07:52:56 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
"" = %SystemRoot%\system32\shell32.dll -- [2013.02.27 06:55:05 | 012,872,704 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\fastprox.dll -- [2009.07.14 03:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
"" = %systemroot%\system32\wbem\fastprox.dll -- [2010.11.20 14:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
"" = C:\Windows\SysNative\wbem\wbemess.dll -- [2009.07.14 03:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2013.08.08 16:42:12 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\.minecraft
[2013.03.11 22:50:52 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\.technic
[2013.04.25 01:24:44 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\.techniclauncher
[2013.04.29 19:41:49 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\3909 LLC
[2013.06.06 19:29:53 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Audacity
[2013.03.08 19:28:57 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Beat Hazard
[2013.06.02 15:13:03 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Bitcoin
[2013.08.12 23:27:56 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\BitTorrent
[2013.04.29 19:31:26 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Crayon Physics Deluxe
[2013.08.12 15:26:17 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\DAEMON Tools Lite
[2013.03.08 21:20:16 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Dynamite Jack
[2013.02.25 20:04:11 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\e-academy Inc
[2013.04.21 22:35:17 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Firefly Studios
[2013.04.29 21:43:47 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\ftblauncher
[2013.04.12 18:25:57 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Image-Line
[2013.05.09 23:20:03 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Kalypso Media
[2013.04.25 01:24:33 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\logs
[2013.04.15 16:47:13 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\LolClient
[2013.03.07 21:58:36 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\NetBeans
[2013.02.26 04:02:42 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\OBS
[2013.02.25 20:43:31 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\OpenOffice.org
[2013.05.17 13:52:24 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\PerformerSoft
[2013.04.12 15:52:31 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\poclbm
[2013.03.12 01:44:44 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\puush
[2013.04.10 00:20:04 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\raidcall
[2013.06.19 16:54:04 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\runic games
[2013.08.06 17:31:35 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\SPORE
[2013.08.12 23:00:11 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Spotify
[2013.08.06 17:13:47 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Synthesia
[2013.04.11 20:12:03 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\SynthMaker
[2013.07.24 15:39:38 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Trine2
[2013.05.10 00:03:47 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Tropico 4
[2013.08.12 15:26:15 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\TS3Client
[2013.03.05 01:47:19 | 000,000,000 | ---D | M] -- C:\Users\Emil\AppData\Roaming\Ubisoft

========== Purity Check ==========

< End of report >

And extras

OTL Extras logfile created on: 12.08.2013 23:35:31 - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Emil\Downloads
64bit- Ultimate Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 9.0.8112.16421)
Locale: 00000414 | Country: Norge | Language: NOR | Date Format: dd.MM.yyyy

7,90 Gb Total Physical Memory | 5,59 Gb Available Physical Memory | 70,74% Memory free
15,80 Gb Paging File | 13,23 Gb Available in Paging File | 83,73% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 465,66 Gb Total Space | 196,99 Gb Free Space | 42,30% Space Free | Partition Type: NTFS
Drive D: | 6,35 Gb Total Space | 0,00 Gb Free Space | 0,00% Space Free | Partition Type: UDF

Computer Name: EMIL-PC | User Name: Emil | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: Current user | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========

========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)

[HKEY_CURRENT_USER\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [print] -- rundll32.exe %windir%\system32\mshtml.dll,PrintHTML "%1"
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1"
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [AddToPlaylistVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --playlist-enqueue "%1" (VideoLAN)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Directory [PlayWithVLC] -- "C:\Program Files (x86)\VideoLAN\VLC\vlc.exe" --started-from-file --no-playlist-enqueue "%1" (VideoLAN)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== Firewall Settings ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{0A2DC3B7-D448-48E5-B7FB-BB1FDC4DADA6}" = lport=137 | protocol=17 | dir=in | app=system |
"{0DCA1ECE-7B29-4E30-AA67-3DBC7CD792E3}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{18F7B2B7-AB2E-402F-ADC2-7A3B91817C7A}" = lport=445 | protocol=6 | dir=in | app=system |
"{1A805766-2009-486E-8535-8E0A808F9194}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1F7CA3D5-9893-4B49-B367-B89CA23BA781}" = lport=139 | protocol=6 | dir=in | app=system |
"{235A92A5-A131-4730-A957-BB5644053153}" = rport=10243 | protocol=6 | dir=out | app=system |
"{2F43A7BB-5B19-46C0-88BC-6C4882903EA8}" = rport=445 | protocol=6 | dir=out | app=system |
"{32971FC0-7CF2-42FA-B574-D00AE64807A5}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{7A006330-C05C-494B-8552-A5D1039C9E98}" = rport=137 | protocol=17 | dir=out | app=system |
"{8775AE75-C7E3-49D0-B892-2C18E4F40527}" = lport=10243 | protocol=6 | dir=in | app=system |
"{A20D250A-9723-4669-968B-D289DB61C155}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{A5CB60EA-7BF6-436E-BD8F-B92BA8A81694}" = lport=2869 | protocol=6 | dir=in | app=system |
"{AA70CADA-707B-463D-836D-AC84F40BF0BE}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B1DA4A75-6497-4D42-952F-BC8F58D9561B}" = lport=808 | protocol=6 | dir=in | svc=nettcpactivator | app=c:\windows\microsoft.net\framework64\v4.0.30319\smsvchost.exe |
"{B8A73ADF-68BC-48AA-B7CA-0A7A5C42223F}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{BCDAA613-E19E-48F3-B90E-F9FCB6FFD016}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | [email protected],-28539 |
"{BD3C269B-67B2-4D17-906B-01FAC2BEEFC7}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{C0ABEFB5-D0C7-4F73-849B-A31BEC2CD42E}" = rport=138 | protocol=17 | dir=out | app=system |
"{C1C204A9-D026-4082-B37D-2BFDEB0D6F38}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{CE2F9952-9C76-4114-A0A8-3ACCF48BB34F}" = rport=139 | protocol=6 | dir=out | app=system |
"{EBF05D77-3061-4ACB-B319-66FF2D981646}" = lport=138 | protocol=17 | dir=in | app=system |
"{FC4605F0-CE8C-4B96-8916-1333271B8EE1}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{00661A0C-C70B-456D-BD23-DCAA29C1EB01}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sanctum\binaries\win32\sanctumgame-win32-shipping.exe |
"{02BC4035-7D67-4314-BE07-BB6F725D6CFE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe |
"{039AF965-355C-462D-A661-22BD4A427C2E}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{042D4C15-6260-4B83-A0BC-89CD367F73E7}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\nightsky\nightsky.exe |
"{065E7ADA-D7A0-4CDB-9601-44F39C8257DB}" = protocol=58 | dir=out | [email protected],-28546 |
"{08576BDC-7C8B-49C8-A978-1625A5F91327}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{0AA23453-76C0-4263-B838-954BF5A36A57}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{0EAB7791-AFE0-4AA8-9376-AEA5A5BA23E4}" = protocol=6 | dir=in | app=c:\users\emil\appdata\roaming\bittorrent\bittorrent.exe |
"{0EAE1214-75B7-4D00-8178-01CE935D2CC2}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\runme.exe |
"{0F79B714-C48D-4EA5-A942-D9824FAC8195}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{0FED3426-3884-4624-8645-41BD4CF5CEE0}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{109C06A1-2DC0-4DB8-B2DE-F1E222EBCB7E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\runme.exe |
"{114BA6A6-B336-4CE9-86E9-F4BB6BCFF9D0}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{127B36BC-93E6-4551-8F6B-A54C23EC8669}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{155F3605-B9CF-40D1-AEB0-168FE97C622B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crayon physics deluxe\launcher.exe |
"{1611F13B-3E78-47BA-A34B-82019C99BADC}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe |
"{16C5EC3A-B09A-4164-BAA0-0304A1729131}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe |
"{190D1A17-BEEA-4E13-A571-77E6B6C77EBB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 4\tropico4.exe |
"{1970D576-E4D1-42DD-B782-4BA16DEAEFAD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{19E5C625-0428-4FE8-BD3F-D41C9865E89C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\anno 2070\anno5.exe |
"{1ACA198B-19F7-49F4-AB3D-408DB2730D7A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\solar 2\solar2.exe |
"{1AF8A9B4-1345-4927-B798-DA31349673CE}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{1BE13586-6CA0-4B54-A07D-20962DBB943F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terraria.exe |
"{1C3456CE-B208-496B-8A0B-16AFE1534759}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\super hexagon\superhexagon.exe |
"{23A0DD95-53F0-4107-86F8-972BC4A70415}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\thomaswasalone\thomaswasalone.exe |
"{250F230B-2AB6-4D91-915F-89960C3BFFA9}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{2B8B09DA-5CE0-4DDB-8B52-CA085B16B6C5}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{2CC740AD-CE87-4A70-BA23-3667426C8EAA}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{35371EC7-FC6D-4BF1-841E-CA6B557E5F36}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dynamite jack\dynamite jack.exe |
"{353F802C-CFF0-479E-BD2E-A39F019E3474}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{3883C711-769F-4BE1-BA8F-100E7A5D6A72}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sanctum\binaries\win32\sanctumgame-win32-shipping.exe |
"{38D746A2-EDBA-4135-AA3F-F02EF1084C95}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{3B267EBF-7634-4599-9053-5F763E96FE1C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\thepyramid\source sdk base 2007\hl2.exe |
"{403B0508-9C83-42EB-9063-22CBB7F0310B}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{41185329-0067-4FB1-AB38-01A8224B2A9B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadow warrior original\bin\dosbox.exe |
"{4158C9FC-02C5-4791-88DB-CE37E9857BDB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadow warrior original\bin\dosbox.exe |
"{48710F35-4382-4DFB-B3CA-469FC5DE0F0B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\nightsky\nightsky.exe |
"{48CFA524-32E8-4A17-9E2D-63295847677A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{4AA484D7-A79E-4F64-B3AA-7F3E8BAE122D}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{4D00F2AF-5541-4A9D-91CD-D206A441777D}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\solar 2\solar2.exe |
"{4DFD8FFA-8400-4D68-B7AE-C9F9F40941E7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\anno 2070\anno5.exe |
"{4EC689B4-5CE9-4E15-BCC7-0668A17CDA02}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadow warrior original\bin\launcher.exe |
"{4F343032-5D9F-459D-AB1B-5EA63E792F88}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{4F407AEC-6FDC-4288-8A07-17C86C62ED67}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tower wars\tw.exe |
"{52160AFF-BDD2-42EA-90AF-79CE8CB0A5DC}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{5389A092-51C7-4CC3-9B03-ABF3FFCAD366}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tropico 4\tropico4.exe |
"{53980F96-1A79-4822-A3B4-51F32917D32B}" = protocol=17 | dir=in | app=c:\users\emil\appdata\roaming\bittorrent\bittorrent.exe |
"{557FCE3C-5A92-4330-A032-189AC5399915}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tower wars\tw.exe |
"{68580AA7-2668-455D-93C4-3483287855AB}" = dir=in | app=c:\program files\intel corporation\intel widi\widiapp.exe |
"{696D5B6E-27D3-49ED-94A9-3597E19D2054}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\ftl faster than light\ftlgame.exe |
"{71688AE9-5589-4A36-ABA8-A7A059B7289A}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1737\agent.exe |
"{732B9CF2-3891-4E52-AFEE-CF711B85CA11}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{7600B8EB-9064-454A-8560-2911950C556B}" = protocol=6 | dir=out | app=system |
"{78200FCB-FEB5-4AEB-987B-D6682C6581DC}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1637\agent.exe |
"{7D638BBD-B57B-4358-95D5-458A37E1E449}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\splice\splice.exe |
"{88F77C26-2FBC-4A5B-B031-7D6D07FC64D6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\zenoclash\zenoclash.exe |
"{8BB3570E-2338-4871-BE0E-C15F0FD32F2A}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\capsized\capsized.exe |
"{8EA30B20-8806-47B6-9E90-3D37F3503085}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{90F613AF-D2CE-4EF5-9738-67F733EB0E2E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\darksiders\darksiderspc.exe |
"{9D2885A8-A5E4-401E-89FA-3C3C1B58ED50}" = protocol=1 | dir=out | [email protected],-28544 |
"{9FFBEBE6-54D7-4ECD-A65E-DD43573A8148}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{A0DF371C-CA54-42E3-A7C4-B7F8BFEF163B}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenautslauncher.exe |
"{A18F539D-78D2-4ADA-AC20-F99B7EA30FB4}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"{A6D8D7AE-7DEB-4EDD-932F-F15E1AA1CB6B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\awesomenauts\awesomenautslauncher.exe |
"{A711E090-BD25-4CDD-9705-74D7B32B5756}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dynamite jack\dynamite jack.exe |
"{A898E919-DC99-4387-925F-B279A37B460E}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\splice\splice.exe |
"{AE0D47F2-577E-4AA3-B3D1-A06ADB7DBCAB}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dungeondefenders.exe |
"{AFF89E72-5C7F-4E1D-9E4E-94384E2C870E}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii public test.exe |
"{AFFE404D-C720-4F84-BC96-826B9527F09E}" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
"{B00DED62-F79B-49DD-80CB-7BD0B51B8C5E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\zenoclash\zenoclash.exe |
"{B1AA578E-9559-4ADC-A591-69B7293B631D}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe |
"{B54EAA67-600D-4564-A017-4DD3EF61B3BD}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{B6DBDAEC-6F06-42A1-BFB9-F4D8F192E5DC}" = dir=in | app=c:\program files\intel\wifi\bin\pandhcpdns.exe |
"{B86EAD9F-23E3-4E70-BA3C-1C45D3F31E30}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tower wars\tw.exe |
"{BA37D30D-5A93-4078-8500-134925BE1271}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\super hexagon\superhexagon.exe |
"{BB4A5892-A45E-4279-A35E-028117276047}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.2006\agent.exe |
"{BECA5E2D-CEAE-4349-B745-6D495682F67E}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\thepyramid\source sdk base 2007\hl2.exe |
"{C08E40DC-9B01-446D-A52C-123DBB32C932}" = protocol=58 | dir=in | [email protected],-28545 |
"{C0A5F6AA-2C04-4B09-86A5-D7D075FD7CF3}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\darksiders\darksiderspc.exe |
"{C27564FC-DEFF-44BD-A50F-C4D4DD5B27A8}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii.exe |
"{C3FE89B4-7759-4952-A6C6-F3427F1FF8B0}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{C4398005-F85D-40E1-A022-18C5A9D1E222}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe |
"{CD5351B6-5E7F-422A-8999-0AE19259D780}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{CDD83706-BAA3-458C-B097-BEE06587911C}" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1544\agent.exe |
"{CEA8919D-9258-49EC-A918-577BE2870CE7}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dota 2 beta\dota.exe |
"{CF04BCC1-87A0-4C3C-B383-11656B506FD0}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\shadow warrior original\bin\launcher.exe |
"{D36AE329-F023-4F7C-A212-D2A78741C4AB}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe |
"{D6797094-94F1-4E44-BBDC-58B9F736D6D8}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{D77235D2-19AF-469A-8AB1-A452B10E1B5F}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\crayon physics deluxe\launcher.exe |
"{DD457B4A-2FDC-4952-8797-E8E363B27217}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{E0ECC651-607D-4E0F-AB58-55EFEE3549B2}" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{E18F4A93-46FD-4A4C-98B8-0C1DCA0561B4}" = protocol=1 | dir=in | [email protected],-28543 |
"{E27410EB-7F08-449C-BCCE-A49D3F569239}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe |
"{E3F87EA8-2391-47C4-8A4F-1A9031C71D4C}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_launcher.exe |
"{E6662777-DE35-4C3C-B7F4-613B43510A53}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\thomaswasalone\thomaswasalone.exe |
"{E675FFAA-2BDE-4EFA-9801-BE58E35C6E4B}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\capsized\capsized.exe |
"{E85FDBAA-2EDB-4009-9E1A-A51D21C1949C}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\tower wars\tw.exe |
"{E9C2520A-D7F8-48E4-9798-C190B2173A9D}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2006\agent.exe |
"{EA98C301-C8A5-4BBA-841A-2312477164DE}" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\starcraft ii public test.exe |
"{EE4DC858-3E67-481F-B277-C3D6B94CC044}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sanctum2\binaries\win32\sanctumgame-win32-shipping.exe |
"{F0860B88-DDD2-40B8-BBA5-7DA659D12132}" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.2045\agent.exe |
"{F2AA0503-01B0-43FC-8C5E-0647AFE97644}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\sanctum2\binaries\win32\sanctumgame-win32-shipping.exe |
"{F862363B-83BF-4590-B871-ABDA91914A12}" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"{F86F2091-D9F8-4F89-A633-0CE707A55E1A}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{00E3DB5B-B971-4265-8A72-89FD631056A9}C:\program files\java\jre7\bin\java.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"TCP Query User{0A50A885-0381-42A7-8857-13316F20CF50}C:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe |
"TCP Query User{17B3157D-44C8-43A8-91DB-D0735EC344D4}C:\users\emil\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\emil\appdata\roaming\spotify\spotify.exe |
"TCP Query User{1A722920-4F35-458B-897E-E4B028EE399F}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe |
"TCP Query User{28F0AC3F-195B-410B-8EA1-3120983B1D7B}C:\users\emil\downloads\downloader_warcraft3_reign_of_chaos_engb.exe" = protocol=6 | dir=in | app=c:\users\emil\downloads\downloader_warcraft3_reign_of_chaos_engb.exe |
"TCP Query User{39830DF6-A4EE-4614-87E0-5CD15315DE11}C:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe |
"TCP Query User{4F05724B-2417-4E35-9F08-16EB9CFD5F07}C:\users\emil\downloads\downloader_warcraft3_the_frozen_throne_engb.exe" = protocol=6 | dir=in | app=c:\users\emil\downloads\downloader_warcraft3_the_frozen_throne_engb.exe |
"TCP Query User{63376DF5-B2E9-4120-8CEC-0E84393C79FA}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe |
"TCP Query User{7CC75BDB-CE2D-479A-8201-AEF2BBE57865}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base26490\sc2.exe |
"TCP Query User{7D779E2C-71CE-47C3-B6D7-2C8CAFFCA555}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base24944\sc2.exe |
"TCP Query User{83BBA3AF-3FD1-4481-B829-3464F726B94A}C:\users\emil\downloads\bittorrent.exe" = protocol=6 | dir=in | app=c:\users\emil\downloads\bittorrent.exe |
"TCP Query User{8D10F8E5-23D1-4975-A848-D132BF86A563}C:\users\emil\appdata\roaming\spotify\spotify.exe" = protocol=6 | dir=in | app=c:\users\emil\appdata\roaming\spotify\spotify.exe |
"TCP Query User{B3267959-7E1C-4779-8B6F-CFEE6D838F1C}C:\programdata\battle.net\agent\agent.1675\agent.exe" = protocol=6 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"TCP Query User{C687D436-F51C-4890-ADB7-23A4E82B3EF1}C:\program files (x86)\bitcoin\bitcoin-qt.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin-qt.exe |
"TCP Query User{CB89D879-CCE8-4F61-A9DE-826B08813908}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"TCP Query User{CCA77AE8-6AFE-4F88-BC44-C605A9A3E77C}C:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe" = protocol=6 | dir=in | app=c:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe |
"TCP Query User{CFAE0A4E-E864-4000-9F8B-53FACA1B3B61}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"TCP Query User{F8034EAF-557E-4AD3-A965-480F8E150C08}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe |
"TCP Query User{FA92FA2C-7331-417F-9D02-E0924EC42EF2}C:\program files (x86)\bitcoin\bitcoin-qt.exe" = protocol=6 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin-qt.exe |
"TCP Query User{FCF8B1A3-B5D0-497F-82AA-9BFDED87394A}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe" = protocol=6 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base24944\sc2.exe |
"UDP Query User{0937C166-2838-42D8-B6DC-F69E7BA676AE}C:\program files (x86)\starcraft ii\versions\base26490\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base26490\sc2.exe |
"UDP Query User{0EC22664-A061-406A-9ABE-D60587991A3E}C:\users\emil\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\emil\appdata\roaming\spotify\spotify.exe |
"UDP Query User{18877C8F-8C65-4917-AC46-3C9A9B2B215D}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base24944\sc2.exe |
"UDP Query User{1B4CDDE0-37C9-4100-8155-1D8BFA0B473E}C:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\dungeon defenders\binaries\win32\dundefgame.exe |
"UDP Query User{2136FCE1-C8D5-4317-9D64-9954FEF1E946}C:\users\emil\downloads\bittorrent.exe" = protocol=17 | dir=in | app=c:\users\emil\downloads\bittorrent.exe |
"UDP Query User{2474903D-7C0B-420D-A710-5AEFFB79C8AA}C:\users\emil\appdata\roaming\spotify\spotify.exe" = protocol=17 | dir=in | app=c:\users\emil\appdata\roaming\spotify\spotify.exe |
"UDP Query User{39F068E9-3975-4E81-AAA3-82EC787FDEFA}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe |
"UDP Query User{47412394-BEBA-46F8-9B78-E933F4633A8A}C:\users\emil\downloads\downloader_warcraft3_the_frozen_throne_engb.exe" = protocol=17 | dir=in | app=c:\users\emil\downloads\downloader_warcraft3_the_frozen_throne_engb.exe |
"UDP Query User{73E9FE8D-47AB-4B05-8833-2B75D77906AB}C:\program files (x86)\bitcoin\bitcoin-qt.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin-qt.exe |
"UDP Query User{8754547E-E4C2-4F2F-9C12-F99F75633783}C:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe |
"UDP Query User{8970B48A-9B79-4098-BDE8-836350313690}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe |
"UDP Query User{9EB06AB5-04A7-4C0D-8461-95B39EEC74A3}C:\programdata\battle.net\agent\agent.1675\agent.exe" = protocol=17 | dir=in | app=c:\programdata\battle.net\agent\agent.1675\agent.exe |
"UDP Query User{A9FF9251-EAE4-4D2D-8812-62DA2883BAA0}C:\program files\java\jre7\bin\java.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\java.exe |
"UDP Query User{AA945259-F5CC-4F81-9540-C66DA4A48214}C:\program files (x86)\bitcoin\bitcoin-qt.exe" = protocol=17 | dir=in | app=c:\program files (x86)\bitcoin\bitcoin-qt.exe |
"UDP Query User{C128A1DC-B284-4874-88A4-8466653B09D8}C:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\trine 2\trine2_32bit.exe |
"UDP Query User{C97D1CC0-FBD0-43C8-B92E-6A1B784C05AB}C:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\beat hazard\beathazard.exe |
"UDP Query User{D0B92C69-A104-4745-858E-20BA42C81F01}C:\program files (x86)\starcraft ii\versions\base24944\sc2.exe" = protocol=17 | dir=in | app=c:\program files (x86)\starcraft ii\versions\base24944\sc2.exe |
"UDP Query User{D55B8AA8-9D07-475E-9214-86D246649EDE}C:\users\emil\downloads\downloader_warcraft3_reign_of_chaos_engb.exe" = protocol=17 | dir=in | app=c:\users\emil\downloads\downloader_warcraft3_reign_of_chaos_engb.exe |
"UDP Query User{DBF62096-E055-402B-805D-E97388D6E35B}C:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\terraria\terrariaserver.exe |
"UDP Query User{F6B7A84E-75E2-4CB6-815F-010C35DC17E7}C:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe" = protocol=17 | dir=in | app=c:\program files (x86)\cryptic studios\neverwinter\live\gameclient.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0620FA40-8926-F3D1-1753-0AC4627EA2CF}" = AMD Drag and Drop Transcoding
"{09536BA1-E498-4CC3-B834-D884A67D7E34}" = Intel® Trusted Connect Service Client
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{26A24AE4-039D-4CA4-87B4-2F86417017FF}" = Java 7 Update 17 (64-bit)
"{28EF7372-9087-4AC3-9B9F-D9751FCDF830}" = Intel® Wireless Display
"{2AE2789B-454A-0A8D-D848-38F1F7070C73}" = AMD Catalyst Install Manager
"{37EC048A-81A2-452A-8D1F-3BE2018E767D}" = Intel® PROSet/Wireless for Bluetooth® + High Speed
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{728985C5-A04B-457C-9D62-15360F3EAF85}" = Intel® WiDi
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended
"{B9CC9724-F5C2-74FE-9DB8-680D76AFDE90}" = AMD Media Foundation Decoders
"{BE34AF27-9846-A21A-DE63-78B8F9528C98}" = AMD Accelerated Video Transcoding
"{C06A46F2-6DBB-222E-2E5F-28AF5FEBB408}" = ccc-utility64
"{E97F409F-9E1C-42A0-B72D-765A78DF3696}" = Intel® PROSet/Wireless WiFi-programvare
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"Blender" = Blender
"CCleaner" = CCleaner
"GIMP-2_is1" = GIMP 2.8.4
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended
"ProInst" = Intel PROSet Wireless
"SynTPDeinstKey" = Synaptics Pointing Device Driver
"TeamSpeak 3 Client" = TeamSpeak 3 Client
"WinRAR archiver" = WinRAR 4.20 (64-bit)

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam
"{150C24B4-EE45-F2D2-E6F5-45AA2BCB627D}" = CCC Help Thai
"{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 6.0045
"{19BFDA5D-1FE2-4F25-97F9-1A79DD04EE20}" = Microsoft XNA Framework Redistributable 3.1
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{22000360-7B5D-0C62-6B06-8B2F28134ACE}" = CCC Help Czech
"{240C3DDD-C5E9-4029-9DF7-95650D040CF2}" = Intel® USB 3.0 eXtensible Host Controller Driver
"{26A24AE4-039D-4CA4-87B4-2F83216043FF}" = Java™ 6 Update 43
"{26A24AE4-039D-4CA4-87B4-2F83217025FF}" = Java 7 Update 25
"{284312D5-D9CA-4E37-1454-AEAF13CEB11E}" = CCC Help English
"{2952F872-9045-4668-E5AA-97EF74ACB397}" = CCC Help Portuguese
"{2A14D7BC-1876-4B38-830B-18856C27F550}" = WebCam Installer
"{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0
"{31F0FBA4-C636-BFD8-450D-10BD6EEF51B2}" = CCC Help Italian
"{32A3A4F4-B792-11D6-A78A-00B0D0160430}" = Java™ SE Development Kit 6 Update 43
"{3783120C-0538-0DE6-A9FC-5D2F3B427D9B}" = CCC Help Danish
"{38136734-7051-347E-59C7-FF6CB35543ED}" = Catalyst Control Center InstallProxy
"{3B4A813C-3A3F-5C7E-944B-B474600C47E1}" = CCC Help Hungarian
"{3E29EE6C-963A-4aae-86C1-DC237C4A49FC}" = Intel® Rapid Storage Technology
"{427BEE59-2128-B9DA-09C8-85C7101A1A30}" = CCC Help Swedish
"{472E3E07-A88F-50F1-0ACE-061019518221}" = CCC Help Greek
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4C32A907-5888-3600-4A10-4EA1F572A248}" = CCC Help Polish
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skype™ 6.5
"{4EDB7A50-A618-EE03-2BBD-9260F6BD53B3}" = CCC Help Korean
"{5488B43B-DCE3-2F2B-B5D1-D743DF81F5F4}" = Catalyst Control Center
"{5BBC4803-C96E-4D3E-9D1D-2E43774C4062}" = BisonCam
"{5EF3F0D6-9F51-4759-8934-E43C1373D1A2}" = OpenOffice.org 3.4.1
"{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel® Management Engine Components
"{6B9AFA2A-6FE2-3FE9-1EDD-B828A4005512}" = Catalyst Control Center Localization All
"{6E8A5B2D-AF7A-5929-B258-7DD4BA329A99}" = CCC Help Chinese Standard
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{718B4606-2FEF-411B-B96E-4FC53B91EBC0}" = Secure Download Manager
"{731754A6-C8C1-3815-16B1-4AEE315763BC}" = CCC Help Spanish
"{79361740-EAE3-11E2-9911-B8AC6F98CCE3}" = Google Earth Plug-in
"{7CFD4120-ACC8-9E69-6455-D833E3300427}" = CCC Help Finnish
"{82F99DC9-389A-4528-940C-88248731A620}" = THX TruStudio Pro
"{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver
"{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8A809006-C25A-4A3A-9DAB-94659BCDB107}" = NVIDIA PhysX
"{92606477-9366-4D3B-8AE3-6BE4B29727AB}" = League of Legends
"{95A4A257-E4E7-B08E-289F-4E111C86A532}" = CCC Help French
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9D5F1FBA-8A22-7924-6445-66EC0E832EBF}" = PX Profile Update
"{9DF0196F-B6B8-4C3A-8790-DE42AA530101}" = SPORE™
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{AC76BA86-7AD7-1044-7B44-AB0000000001}" = Adobe Reader XI (11.0.02) - Norsk
"{B93EEE50-9C8F-45DF-95E4-3D85A6E242F3}" = DarksidersInstaller
"{BDEC16AE-0797-465E-94FF-100B33A1019B}" = CCC Help Russian
"{C046A0FC-5C89-05B9-9EF0-44FDFA736998}" = CCC Help Turkish
"{C1594429-8296-4652-BF54-9DBE4932A44C}" = Realtek PCIE Card Reader
"{C7059208-9425-0FCA-8E93-27050ED05E85}" = CCC Help Norwegian
"{D51D52CF-B774-B8FD-DBB2-BAB64EC25F2B}" = CCC Help Dutch
"{D7FCE7AE-C041-5DEF-5330-FBC5A61403DB}" = CCC Help Japanese
"{D82CC1D8-E175-C17F-B73D-F38E46DE6FC3}" = CCC Help Chinese Traditional
"{E362724E-9320-4946-AF34-874E7B6B2927}" = System Requirements Lab CYRI
"{E72F1051-B87E-4EF4-AE9F-8FDD229CC438}" = Catalyst Control Center - Branding
"{E880E5E6-E5D5-5159-E957-433047FB62ED}" = Catalyst Control Center Graphics Previews Common
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F0E3AD40-2BBD-4360-9C76-B9AC9A5886EA}" = Intel® Display Audio Driver
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F3623897-58EF-AE82-4C2C-F4E5A3A72FEC}" = CCC Help German
"{FAB9454C-6A8D-4031-9652-8B1B1D561456}" = System Requirements Lab
"ASIO4ALL" = ASIO4ALL
"Audacity_is1" = Audacity 2.0.3
"BioShock Infinite_is1" = BioShock Infinite
"BitTorrent" = BitTorrent
"DAEMON Tools Lite" = DAEMON Tools Lite
"FL Studio 10" = FL Studio 10
"Google Chrome" = Google Chrome
"IL Download Manager" = IL Download Manager
"InstallShield_{164714B6-46BC-4649-9A30-A6ED32F03B5A}" = Hotkey 6.0045
"InstallShield_{2A14D7BC-1876-4B38-830B-18856C27F550}" = WebCam Installer
"Mozilla Firefox 23.0 (x86 en-US)" = Mozilla Firefox 23.0 (x86 en-US)
"MozillaMaintenanceService" = Mozilla Maintenance Service
"nbi-nb-base-7.3.0.0.201302132200" = NetBeans IDE 7.3
"Neverwinter" = Neverwinter
"Open Broadcaster Software" = Open Broadcaster Software
"Perspective" = Perspective 1.0
"R2FtZURldlR5Y29vbnYxMzI=_is1" = Game Dev Tycoon v1.3.2 © Greenheart Games version 1
"RaidCall" = RaidCall
"StarCraft II" = StarCraft II
"Steam App 105600" = Terraria
"Steam App 202730" = Dynamite Jack
"Steam App 204300" = Awesomenauts
"Steam App 209790" = Splice
"Steam App 210770" = Sanctum 2
"Steam App 212680" = FTL: Faster Than Light
"Steam App 214360" = Tower Wars
"Steam App 218" = Source SDK Base 2007
"Steam App 220780" = Thomas Was Alone
"Steam App 221640" = Super Hexagon
"Steam App 22200" = Zeno Clash
"Steam App 238070" = Shadow Warrior Classic (1997)
"Steam App 26900" = Crayon Physics Deluxe
"Steam App 35720" = Trine 2
"Steam App 48240" = Anno 2070
"Steam App 49600" = Beat Hazard
"Steam App 50620" = Darksiders
"Steam App 570" = Dota 2
"Steam App 57690" = Tropico 4
"Steam App 65800" = Dungeon Defenders
"Steam App 91600" = Sanctum
"Steam App 95300" = Capsized
"Steam App 97000" = Solar 2
"Steam App 99700" = NightSky
"The Mighty Quest For Epic Loot_is1" = The Mighty Quest For Epic Loot version 1.211477
"Torchlight_is1" = Torchlight
"VLC media player" = VLC media player 2.0.5
"Void" = Void 1.0
"Warcraft III" = Warcraft III
"World of Warcraft" = World of Warcraft

========== HKEY_CURRENT_USER Uninstall List ==========

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"Bitcoin" = Bitcoin
"Spotify" = Spotify

========== Last 20 Event Log Errors ==========

[ Application Events ]
Error - 12.08.2013 17:12:23 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: firefox.exe, version: 23.0.0.4959, time
stamp: 0x51f84049 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time
stamp: 0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process
id: 0x4e4 Faulting application start time: 0x01ce97a0a0662919 Faulting application
path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: e1239086-0393-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:12:35 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: firefox.exe, version: 23.0.0.4959, time
stamp: 0x51f84049 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time
stamp: 0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process
id: 0x340 Faulting application start time: 0x01ce97a0a7cea846 Faulting application
path: C:\Program Files (x86)\Mozilla Firefox\firefox.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: e8940472-0393-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:16:57 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 9.0.8112.16496,
time stamp: 0x51a55c6d Faulting module name: ntdll.dll, version: 6.1.7601.17725,
time stamp: 0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting
process id: 0x11f8 Faulting application start time: 0x01ce97a0ecb95827 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWOW64\ntdll.dll Report Id: 845acf99-0394-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:17:31 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 9.0.8112.16496,
time stamp: 0x51a55c6d Faulting module name: ntdll.dll, version: 6.1.7601.17725,
time stamp: 0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting
process id: 0x958 Faulting application start time: 0x01ce97a14bf65254 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWOW64\ntdll.dll Report Id: 98eb20bc-0394-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:17:57 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: iexplore.exe, version: 9.0.8112.16496,
time stamp: 0x51a55c6d Faulting module name: ntdll.dll, version: 6.1.7601.17725,
time stamp: 0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting
process id: 0x176c Faulting application start time: 0x01ce97a15da4b8e3 Faulting application
path: C:\Program Files (x86)\Internet Explorer\iexplore.exe Faulting module path:
C:\Windows\SysWOW64\ntdll.dll Report Id: a869c242-0394-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:21:41 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Steam.exe, version: 1.84.85.72, time stamp:
0x51f2e856 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process id:
0x1334 Faulting application start time: 0x01ce97a1ed028584 Faulting application path:
C:\Program Files (x86)\Steam\Steam.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: 2da21497-0395-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:29:31 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Steam.exe, version: 1.84.85.72, time stamp:
0x51f2e856 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process id:
0x5ec Faulting application start time: 0x01ce97a305b460e9 Faulting application path:
C:\Program Files (x86)\Steam\Steam.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: 45c4d480-0396-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:29:40 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Steam.exe, version: 1.84.85.72, time stamp:
0x51f2e856 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process id:
0x80c Faulting application start time: 0x01ce97a30b9034ac Faulting application path:
C:\Program Files (x86)\Steam\Steam.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: 4b6eafc2-0396-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:31:55 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Steam.exe, version: 1.84.85.72, time stamp:
0x51f2e856 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process id:
0x172c Faulting application start time: 0x01ce97a35ae62cce Faulting application path:
C:\Program Files (x86)\Steam\Steam.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: 9b97b97d-0396-11e3-8a56-0090f5d5e03d

Error - 12.08.2013 17:34:10 | Computer Name = Emil-PC | Source = Application Error | ID = 1000
Description = Faulting application name: Steam.exe, version: 1.84.85.72, time stamp:
0x51f2e856 Faulting module name: ntdll.dll, version: 6.1.7601.17725, time stamp:
0x4ec49b8f Exception code: 0xc0000374 Fault offset: 0x000ce6c3 Faulting process id:
0x8f8 Faulting application start time: 0x01ce97a3ac9f28ff Faulting application path:
C:\Program Files (x86)\Steam\Steam.exe Faulting module path: C:\Windows\SysWOW64\ntdll.dll
Report
Id: ec8b82c6-0396-11e3-8a56-0090f5d5e03d

[ System Events ]
Error - 30.07.2013 06:54:50 | Computer Name = Emil-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 12:52:56 on ?30.?07.?2013 was unexpected.

Error - 30.07.2013 06:56:45 | Computer Name = Emil-PC | Source = Service Control Manager | ID = 7009
Description = A timeout was reached (30000 milliseconds) while waiting for the Steam
Client Service service to connect.

Error - 30.07.2013 06:56:45 | Computer Name = Emil-PC | Source = Service Control Manager | ID = 7000
Description = The Steam Client Service service failed to start due to the following
error: %%1053

Error - 30.07.2013 07:40:39 | Computer Name = Emil-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 13:38:59 on ?30.?07.?2013 was unexpected.

Error - 01.08.2013 01:16:53 | Computer Name = Emil-PC | Source = Disk | ID = 262155
Description = The driver detected a controller error on \Device\Harddisk1\DR2.

Error - 03.08.2013 09:35:19 | Computer Name = Emil-PC | Source = DCOM | ID = 10010
Description =

Error - 04.08.2013 16:07:21 | Computer Name = Emil-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 22:05:39 on ?04.?08.?2013 was unexpected.

Error - 05.08.2013 09:44:41 | Computer Name = Emil-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 06:19:14 on ?05.?08.?2013 was unexpected.

Error - 08.08.2013 09:12:29 | Computer Name = Emil-PC | Source = EventLog | ID = 6008
Description = The previous system shutdown at 05:49:06 on ?08.?08.?2013 was unexpected.

Error - 11.08.2013 14:04:20 | Computer Name = Emil-PC | Source = DCOM | ID = 10010
Description =

< End of report >

Thanks in advance.

Edited by nochiro, 12 August 2013 - 03:51 PM.

Programs keep crashing, might be malware/virus related.

#1
nochiro

Posted 12 August 2013 - 03:49 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Programs keep crashing, might be malware/virus related.

#1 nochiro Posted 12 August 2013 - 03:49 PM

Advertisements

Similar Topics

0 user(s) are reading this topic

As Featured On:

Forums

Downloads

Members

Connect With Us

Sign In

#1
nochiro

Posted 12 August 2013 - 03:49 PM