OTL Extras logfile created on: 2014-12-17 10:50:51 - Run 1 OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\admin\Downloads 64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation Internet Explorer (Version = 8.0.7601.17514) Locale: 00000415 | Country: Polska | Language: PLK | Date Format: yyyy-MM-dd 7,97 Gb Total Physical Memory | 5,40 Gb Available Physical Memory | 67,79% Memory free 15,93 Gb Paging File | 12,93 Gb Available in Paging File | 81,15% Paging File free Paging file location(s): ?:\pagefile.sys [binary data] %SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86) Drive C: | 466,88 Gb Total Space | 299,06 Gb Free Space | 64,05% Space Free | Partition Type: NTFS Drive D: | 264,53 Gb Total Space | 69,99 Gb Free Space | 26,46% Space Free | Partition Type: NTFS Drive F: | 200,00 Gb Total Space | 129,84 Gb Free Space | 64,92% Space Free | Partition Type: NTFS Computer Name: ADMIN-KOMPUTER | User Name: admin | Logged in as Administrator. Boot Mode: Normal | Scan Mode: All users | Include 64bit Scans Company Name Whitelist: Off | Skip Microsoft Files: Off | No Company Name Whitelist: On | File Age = 30 Days [color=#E56717]========== Extra Registry (SafeList) ==========[/color] [color=#E56717]========== File Associations ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .html[@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) .url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\] .cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation) .html [@ = ChromeHTML] -- C:\Program Files (x86)\Google\Chrome\Application\chrome.exe (Google Inc.) [HKEY_USERS\S-1-5-21-749034205-2315866158-2849202167-1000\SOFTWARE\Classes\] .html [@ = ChromeHTML] -- Reg Error: Key error. File not found [color=#E56717]========== Shell Spawning ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htafile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. htmlfile [print] -- "C:\Windows\system32\rundll32.exe" "C:\Windows\system32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll",OpenURL %l (Microsoft Corporation) InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll",PrintHTML "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\\shell\[command]\command] batfile [open] -- "%1" %* cmdfile [open] -- "%1" %* comfile [open] -- "%1" %* cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1",%* (Microsoft Corporation) exefile [open] -- "%1" %* helpfile [open] -- Reg Error: Key error. htafile [open] -- "%1" %* htmlfile [edit] -- Reg Error: Key error. http [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) https [open] -- "C:\Program Files (x86)\Google\Chrome\Application\chrome.exe" -- "%1" (Google Inc.) inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation) piffile [open] -- "%1" %* regfile [merge] -- Reg Error: Key error. scrfile [config] -- "%1" scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l scrfile [open] -- "%1" /S txtfile [edit] -- Reg Error: Key error. Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1 Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation) Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) Folder [explore] -- Reg Error: Value error. Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation) [color=#E56717]========== Security Center Settings ==========[/color] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] "cval" = 1 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring] [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] "VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data] "AntiVirusOverride" = 0 "AntiSpywareOverride" = 0 "FirewallOverride" = 0 [b]64bit:[/b] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center] [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc] [color=#E56717]========== Firewall Settings ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile] "EnableFirewall" = 1 "DisableNotifications" = 0 [color=#E56717]========== Authorized Applications List ==========[/color] [color=#E56717]========== Vista Active Open Ports Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{05B3CDFA-49E0-4BC8-9D78-0B0CEA0589AA}" = rport=137 | protocol=17 | dir=out | app=system | "{0A07FEBC-4EDA-4DE4-83CC-E73494E46C3C}" = lport=137 | protocol=17 | dir=in | app=system | "{104DDA99-2262-423A-8DDD-802E80ABDD05}" = lport=443 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{11185ED9-A7C8-4CE2-B902-3A688A9A3EA4}" = lport=5353 | protocol=17 | dir=in | app=c:\program files (x86)\google\chrome\application\chrome.exe | "{416D53BE-C4A6-4639-BF74-0CC5CAD7442F}" = lport=5353 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{51AA37E5-AE90-4A1E-BE76-99C76BD59CD1}" = lport=80 | protocol=6 | dir=in | app=c:\program files (x86)\nvidia corporation\netservice\nvnetworkservice.exe | "{61B23A69-0B6F-404F-93E0-106DEC766547}" = lport=445 | protocol=6 | dir=in | app=system | "{69D09AB0-3E6A-4217-99FD-648F689B8FF4}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe | "{74001D65-80DC-4678-918D-5F7E1558029E}" = lport=138 | protocol=17 | dir=in | app=system | "{84FA43DA-259B-4044-B8F1-D3471E2D7828}" = rport=138 | protocol=17 | dir=out | app=system | "{8EDF2D4B-0302-46FB-8645-2BF7E73D25A6}" = lport=47984 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamsvc.exe | "{93DBBFAE-FFA1-4441-BF04-24C217A5E0F7}" = lport=48000 | protocol=17 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{965FFF0A-D645-4408-A77A-708C440C77F8}" = rport=445 | protocol=6 | dir=out | app=system | "{A5CB5247-126F-439D-8920-4BCE500B3721}" = lport=47991 | protocol=6 | dir=in | app=c:\program files\nvidia corporation\nvstreamsrv\nvstreamer.exe | "{B5E82E4A-3ADC-4D43-A3EF-D115F747778F}" = rport=139 | protocol=6 | dir=out | app=system | "{B9752927-C5F2-4782-AF4D-252B6613ADE6}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 | "{C3817969-4CAC-4A6E-BF32-372ED65145B0}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{E296551A-504E-4308-B9AE-04EA411B0A7C}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe | "{F6A4A6F9-DDFF-41E7-AF48-45809BA32182}" = lport=139 | protocol=6 | dir=in | app=system | [color=#E56717]========== Vista Active Application Exception List ==========[/color] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules] "{0140F04B-50ED-477B-AA21-45CE29442020}" = protocol=17 | dir=in | app=c:\games\empire interactive\flatout ultimate carnage\fouc.exe | "{069B10A4-4068-48A5-A305-C5459624BD89}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{09062DD5-CAD7-4881-8BED-955B02C2FD99}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{0B4C2E01-6CC0-48E5-9671-1932EFC49FCC}" = protocol=17 | dir=in | app=d:\rockstar games\grand theft auto iv\launchgtaiv.exe | "{0DF3C4C2-3AF7-49D2-BF86-29156F82435F}" = protocol=17 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe | "{10CC2A1A-BD07-4794-94C9-8EFAC6E478BD}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{12643432-2948-4B0F-8293-0F9D1429A1A3}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{1278A929-18E5-49C5-BDF5-1210EC024A30}" = protocol=17 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe | "{143C82DD-0444-45D9-BC51-A28BC5181456}" = protocol=6 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe | "{160AAE98-0D8F-4C2D-B978-C53FC253709C}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe | "{1B579E60-4AA0-42E0-A1D1-ABFE0AC6DFEA}" = protocol=17 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe | "{1EFF4802-1ADC-48A3-AC6F-25932C275591}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{20CEAB9C-C3A6-4CB1-AFE4-C49BF6FD0250}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\addon.exe | "{2A86FD40-A59E-4BB4-9A83-2FB78F3C7256}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mklauncher.exe | "{2B18B885-66B2-4914-8A79-4A59202705D5}" = protocol=6 | dir=in | app=c:\games\codemasters\fuel\fuel.exe | "{30CB6EA7-40C8-4871-8BE9-FB14860A42DE}" = protocol=6 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe | "{3106C367-07A5-4091-A727-8C5025C500FC}" = protocol=17 | dir=in | app=c:\program files (x86)\winamp\winamp.exe | "{3683EC11-E3C1-4ECD-BE83-9E8B8309E458}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{377095F0-41DC-4D99-A667-4826F9C2B109}" = protocol=17 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe | "{3816DABD-F768-4044-849A-A6EF12E804D7}" = protocol=6 | dir=in | app=d:\rockstar games\grand theft auto iv\launchgtaiv.exe | "{43134405-DE46-4A58-AB9A-A8615D0FA795}" = protocol=17 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{45476937-CA8A-425E-939D-4B5CDD443299}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe | "{45542179-E77A-457A-97A6-E8B99606540E}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\anno4web.exe | "{48764E22-7252-4E6F-BF48-660BC2D38FDC}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{4987527E-A23B-43D6-A6E1-117627F3F166}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{4998B606-72B8-4408-9423-948BFEFD99FD}" = protocol=17 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe | "{4BF50B27-18CE-4148-859E-0E9B01962714}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe | "{51C70DDB-BDC4-489B-86DB-A31259FA0554}" = protocol=17 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{51D2551F-C8F1-485B-9A33-57F0C73AA276}" = protocol=6 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe | "{54138C90-8496-43F9-B6B6-EF95319573AE}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{645370A2-F5F0-45A7-A3B9-19596450A2BF}" = protocol=6 | dir=in | app=d:\capcom\super street fighter iv\ssfiv.exe | "{67DBDD6D-D54F-4C51-B0B2-3FE704702C5B}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{68B8743B-1113-414B-8F14-D13D8F9A6FC9}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstra.exe | "{78987685-A73B-4389-A14F-70CA69A238A6}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 | "{7A940399-1F77-4BC0-960E-C4D150FE8230}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe | "{85BA9088-3B94-4144-B0A4-57F4C84FCF82}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mklauncher.exe | "{861CD346-1716-43A6-8367-325E95978F32}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe | "{87289008-7DA7-49ED-82D1-C9F8C9FEDB1F}" = protocol=6 | dir=in | app=c:\users\admin\appdata\roaming\utorrent\utorrent.exe | "{8A82C9F8-4C4C-4062-91FF-77998C5F4ABD}" = protocol=17 | dir=in | app=d:\capcom\super street fighter iv\ssfiv.exe | "{8ECEE0F0-9BF7-4077-B43B-D43091DCCE64}" = protocol=6 | dir=in | app=d:\codemasters\grid\grid.exe | "{908BC3F4-5E4E-4E8E-A476-4775C410F442}" = protocol=6 | dir=in | app=c:\windows\syswow64\pnkbstrb.exe | "{93D19F19-E3DD-472E-A64B-1E45386D746A}" = protocol=17 | dir=in | app=d:\thq\gas powered games\supreme commander - forged alliance\bin\forgedalliance.exe | "{98811453-C6AC-4E8C-B1F0-B03F273A4B31}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\anno4.exe | "{9D40025A-17B6-4A11-8CB9-D8F5C1AAE068}" = protocol=17 | dir=in | app=c:\games\codemasters\fuel\fuel.exe | "{9DF5AA32-4E41-4F3B-BAC3-BE6910C0A0F9}" = protocol=6 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{A2791263-21F0-46E6-B834-139A3B01B848}" = protocol=17 | dir=out | svc=rapimgr | app=%systemroot%\system32\svchost.exe | "{A51FCDDB-50A9-4DBD-987E-A933B6EB93F7}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 | "{AA1A0252-01C8-43BF-9939-0F753E323536}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\addon.exe | "{B0CFB316-A0B3-4ADF-9308-1BA6CE1D4E8A}" = protocol=17 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutlauncher.exe | "{B47A9D49-FC4B-48D7-9923-BD57F57CF9CD}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\anno4.exe | "{B47B3DB7-2646-4FC1-A2B0-79D9D0EBC49D}" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe | "{B7F232FA-E1E5-47D6-81FF-179D325AF69A}" = protocol=17 | dir=in | app=d:\codemasters\grid\grid.exe | "{B8B28373-DBE7-403F-8F6A-C05DB9BA0AB9}" = protocol=6 | dir=out | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{B92BC51B-0ABB-4DA9-9570-9E747A20AE67}" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe | "{B957B29A-D2E5-4D58-9A64-EF36A6D5897C}" = protocol=17 | dir=in | app=d:\thq\gas powered games\gpgnet\gpg.multiplayer.client.exe | "{BE23B490-DE2B-49EA-8435-46A5F3417E31}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steamapps\common\mortalkombat_kompleteedition\disccontentpc\mkke.exe | "{C3B6D0AE-038F-48AD-A841-1749FD7DE1B6}" = protocol=6 | dir=in | app=c:\program files (x86)\steam\bin\steamwebhelper.exe | "{CB2F2CF2-C00F-4B46-AF65-AF5E14B9C975}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 | "{CE7488E3-FBBD-4B19-AE10-9277D3C16FE6}" = protocol=6 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutconfigtool.exe | "{CF8FA0D0-5D1F-4F06-96E7-5E9B1D39BE26}" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\ubisoft game launcher\ubisoftgamelauncher.exe | "{CF990A6A-B517-4795-858A-F1B52BE32B33}" = protocol=6 | dir=in | app=d:\thq\gas powered games\supreme commander - forged alliance\bin\forgedalliance.exe | "{D3E22025-2743-4D1E-9D57-7ABD992284F6}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe | "{DB5E5A27-4BFC-40EC-8D58-FF13CCAD09D2}" = protocol=6 | dir=in | app=c:\program files (x86)\winamp\winamp.exe | "{DE2FBA30-1EC7-4B18-8B54-D2756DD5495E}" = protocol=6 | dir=in | app=d:\thq\gas powered games\gpgnet\gpg.multiplayer.client.exe | "{DE8463D0-AD9D-4FA5-97E2-95B4A86116CC}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 | "{DEFA0B2E-A662-48CD-9335-3A1DFEAC3B30}" = protocol=6 | dir=in | app=c:\program files (x86)\origin games\battlefield 3\bf3.exe | "{E2588F01-342D-4360-A61A-7815E164A153}" = protocol=6 | dir=in | app=d:\electronic arts\burnout(tm) paradise the ultimate box\burnoutparadise.exe | "{E8711C12-C5FE-4EAE-BF9A-3716E1717FAE}" = protocol=17 | dir=in | app=c:\program files (x86)\firefly studios\stronghold 2\stronghold2.exe | "{EE7A66A2-5667-4952-B8FA-73A11CDF155F}" = protocol=6 | dir=in | svc=wcescomm | app=%systemroot%\system32\svchost.exe | "{F493A3DD-E5DA-4612-8E07-7D919EF9B28D}" = protocol=6 | dir=in | app=c:\games\empire interactive\flatout ultimate carnage\fouc.exe | "TCP Query User{20F9EC4A-C6AE-4D09-896B-BD22E03B4F3E}D:\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=6 | dir=in | app=d:\ea games\kingdoms of amalur reckoning\reckoning.exe | "TCP Query User{2EB0FDF3-52ED-4B0B-A2A5-EF9C9FEFFB1D}C:\program files (x86)\steam\steam.exe" = protocol=6 | dir=in | app=c:\program files (x86)\steam\steam.exe | "TCP Query User{2F41C488-BB82-4BA5-A8D7-8117D6884F0C}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe" = protocol=6 | dir=in | app=c:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe | "TCP Query User{523F690F-E57A-4DBE-AFD1-F2F01C23E151}C:\program files (x86)\kalypso media\patrician iv gold edition\patrician4_addon.exe" = protocol=6 | dir=in | app=c:\program files (x86)\kalypso media\patrician iv gold edition\patrician4_addon.exe | "TCP Query User{55C7F74D-6573-457C-BF8A-9C64169C66BA}D:\company of heroes 2\reliccoh2.exe" = protocol=6 | dir=in | app=d:\company of heroes 2\reliccoh2.exe | "TCP Query User{720F596B-C2D0-4FEF-B753-496BC221AA58}C:\program files\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | "TCP Query User{73D05020-D9B9-45C9-A862-01D009D7F2F4}D:\r.g. mechanics\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=6 | dir=in | app=d:\r.g. mechanics\stronghold crusader 2\bin\win32_release\crusader2.exe | "TCP Query User{80316FF6-4C13-4E58-8B0F-6DF234516847}C:\games\panzar\bin64\pnzcl.exe" = protocol=6 | dir=in | app=c:\games\panzar\bin64\pnzcl.exe | "TCP Query User{84A9C62B-8DAA-4969-A847-2657AD58DD3D}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" = protocol=6 | dir=in | app=c:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe | "TCP Query User{8B25CE78-AD6C-432C-A500-A244E0D4D307}D:\borderlands 2\binaries\win32\borderlands2.exe" = protocol=6 | dir=in | app=d:\borderlands 2\binaries\win32\borderlands2.exe | "TCP Query User{8D9031FE-2F31-4EB4-B322-5C8A1245176A}C:\games\panzar\start.exe" = protocol=6 | dir=in | app=c:\games\panzar\start.exe | "TCP Query User{B2D7C9CD-636A-418E-8242-C8178BD479C8}C:\program files (x86)\saints row iv\saintsrowiv.exe" = protocol=6 | dir=in | app=c:\program files (x86)\saints row iv\saintsrowiv.exe | "TCP Query User{CF984B90-11E7-4A9F-8E99-C18A003B2009}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe" = protocol=6 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe | "TCP Query User{E05204E5-0FDA-46FA-94B4-C095DCBE4685}C:\users\admin\appdata\local\id software\quakelive\quakelive.exe" = protocol=6 | dir=in | app=c:\users\admin\appdata\local\id software\quakelive\quakelive.exe | "TCP Query User{EC291A56-7E1C-46AE-8391-401734E18569}D:\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=6 | dir=in | app=d:\rockstar games\grand theft auto iv\gtaiv.exe | "TCP Query User{F103CCAE-5A22-4C0E-9234-DA2D4ECE523A}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=6 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | "UDP Query User{02C9E7F3-C620-45BD-A4EE-242DD682C8FB}D:\rockstar games\grand theft auto iv\gtaiv.exe" = protocol=17 | dir=in | app=d:\rockstar games\grand theft auto iv\gtaiv.exe | "UDP Query User{0DAC18BD-818C-4B03-B9AF-0234443A78A4}D:\r.g. mechanics\stronghold crusader 2\bin\win32_release\crusader2.exe" = protocol=17 | dir=in | app=d:\r.g. mechanics\stronghold crusader 2\bin\win32_release\crusader2.exe | "UDP Query User{11184385-6330-45FA-938F-95E0A63E5D46}C:\program files (x86)\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files (x86)\java\jre7\bin\javaw.exe | "UDP Query User{13045ABD-9DC0-4DA7-945F-C3B798572A76}C:\games\panzar\start.exe" = protocol=17 | dir=in | app=c:\games\panzar\start.exe | "UDP Query User{34EC495E-E81E-4B1A-8160-F48E2C6EC370}C:\program files (x86)\steam\steam.exe" = protocol=17 | dir=in | app=c:\program files (x86)\steam\steam.exe | "UDP Query User{3E22339F-2849-40C5-B722-4F2BCC80BBCE}D:\company of heroes 2\reliccoh2.exe" = protocol=17 | dir=in | app=d:\company of heroes 2\reliccoh2.exe | "UDP Query User{532FF3C4-6606-4885-9A4E-DAB0A5B36291}C:\program files (x86)\saints row iv\saintsrowiv.exe" = protocol=17 | dir=in | app=c:\program files (x86)\saints row iv\saintsrowiv.exe | "UDP Query User{6F15C817-AC36-4BF4-8A46-32107E9B55D8}D:\ea games\kingdoms of amalur reckoning\reckoning.exe" = protocol=17 | dir=in | app=d:\ea games\kingdoms of amalur reckoning\reckoning.exe | "UDP Query User{701F8C05-B130-4B9B-AC67-202C810D314E}C:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe" = protocol=17 | dir=in | app=c:\program files (x86)\ubisoft\related designs\anno 1404\tools\addonweb.exe | "UDP Query User{7045899F-F9F2-4008-A8CD-7710AC7942A3}C:\program files (x86)\kalypso media\patrician iv gold edition\patrician4_addon.exe" = protocol=17 | dir=in | app=c:\program files (x86)\kalypso media\patrician iv gold edition\patrician4_addon.exe | "UDP Query User{8331B218-D48B-4713-8F06-26116DB1F1ED}C:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe" = protocol=17 | dir=in | app=c:\users\public\games\cryptic studios\neverwinter\live\gameclient.exe | "UDP Query User{9285BCE4-BD6E-4244-8469-98B971052594}C:\users\admin\appdata\local\id software\quakelive\quakelive.exe" = protocol=17 | dir=in | app=c:\users\admin\appdata\local\id software\quakelive\quakelive.exe | "UDP Query User{BAB7A22A-4176-43B5-A787-A523E568592E}C:\games\panzar\bin64\pnzcl.exe" = protocol=17 | dir=in | app=c:\games\panzar\bin64\pnzcl.exe | "UDP Query User{BD7736EE-96FA-4746-BD70-F2CBF48C9843}C:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe" = protocol=17 | dir=in | app=c:\program files (x86)\hi-rez studios\hirezgames\smite\binaries\win32\smite.exe | "UDP Query User{F7402EFB-1EA3-42DF-882E-8F13EEC1B7CC}C:\program files\java\jre7\bin\javaw.exe" = protocol=17 | dir=in | app=c:\program files\java\jre7\bin\javaw.exe | "UDP Query User{F7E8AA59-A137-483B-9D32-B71E777DC270}D:\borderlands 2\binaries\win32\borderlands2.exe" = protocol=17 | dir=in | app=d:\borderlands 2\binaries\win32\borderlands2.exe | [color=#E56717]========== HKEY_LOCAL_MACHINE Uninstall List ==========[/color] 64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219 "{26A24AE4-039D-4CA4-87B4-2F06417060FF}" = Java 7 Update 60 (64-bit) "{2EDC2FA3-1F34-34E5-9085-588C9EFD1CC6}" = Microsoft Visual C++ 2012 x64 Minimum Runtime - 11.0.60610 "{4B6C7001-C7D6-3710-913E-5BC23FCE91E6}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.4148 "{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161 "{626672CD-BFCF-49A9-AEFE-AB0FED3BFC5B}" = Centrum obsługi urządzeń z systemem Windows Mobile "{6ce5bae9-d3ca-4b99-891a-1dc6c118a5fc}" = Microsoft Visual C++ 2005 Redistributable (x64) "{764384C5-BCA9-307C-9AAC-FD443662686A}" = Microsoft Visual C++ 2012 x64 Additional Runtime - 11.0.60610 "{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17 "{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight "{8E34682C-8118-31F1-BC4C-98CD9675E1C2}" = Microsoft .NET Framework 4 Extended "{92DBCA36-9B41-4DD1-941A-AED149DD37F0}" = Centrum obsługi urządzeń z systemem Windows Mobile — aktualizacja sterowników "{B2630BA9-0AFD-4BF4-98F3-29BC2143C834}" = Intel(R) Smart Connect Technology 3.0 x64 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.3DVision" = NVIDIA Sterownik 3D Vision 344.75 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.ControlPanel" = Panel sterowania NVIDIA 344.75 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Driver" = NVIDIA Sterownik graficzny 344.75 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.GFExperience" = NVIDIA GeForce Experience 2.1.4.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.NVIRUSB" = NVIDIA Sterownik kontrolera 3D Vision 344.75 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.PhysX" = NVIDIA Oprogramowanie systemu PhysX 9.14.0702 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Display.Update" = Aktualizacje NVIDIA 16.13.69 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.LEDVisualizer" = NVIDIA LED Visualizer 1.0 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GFExperience.NvStreamSrv" = SHIELD Streaming "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_GfExperienceService" = NVIDIA GeForce Experience Service "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_HDAudio.Driver" = NVIDIA Sterownik dźwięku HD 1.3.32.1 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_installer" = NVIDIA Install Application "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Network.Service" = NVIDIA Network Service "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShadowPlay" = NVIDIA ShadowPlay 16.13.69 "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_ShieldWirelessController" = SHIELD Wireless Controller Driver "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_Update.Core" = NVIDIA Update Core "{B2FE1952-0186-46C3-BAEC-A80AA35AC5B8}_VirtualAudio.Driver" = NVIDIA Virtual Audio 1.2.26 "{D0795B21-0CDA-4a92-AB9E-6E92D8111E44}" = SAMSUNG USB Driver for Mobile Phones "{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile "{FA00A3CC-7440-4938-A271-F186F50DD40D}" = Intel® Trusted Connect Service Client "CCleaner" = CCleaner "Defraggler" = Defraggler "Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile "Microsoft .NET Framework 4 Extended" = Microsoft .NET Framework 4 Extended "TeamSpeak 3 Client" = TeamSpeak 3 Client "WinRAR archiver" = WinRAR 5.00 (64-bitowy) [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "{02B244A2-7F6A-42E8-A36F-8C385D7A1625}" = Gothic III "{048298C9-A4D3-490B-9FF9-AB023A9238F3}" = Steam "{09CF6AF5-9206-4FD7-9B08-BA6819FB47E3}" = Anno 1404 "{16D2C649-CBA8-44EE-B730-12584667D487}" = Stronghold 2 Deluxe "{26A24AE4-039D-4CA4-87B4-2F83217040FF}" = Java 7 Update 60 "{2BFC7AA0-544C-4E3A-8796-67F3BE655BE9}" = Microsoft XNA Framework Redistributable 4.0 "{31D95937-B237-405D-920C-A3EF4E482395}" = Supreme Commander - Forged Alliance "{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF017}" = Smite "{3C87E0FF-BC0A-4F5E-951B-68DC3F8DF1FC}" = Hi-Rez Studios Authenticate and Update Service "{3D6AD258-61EA-35F5-812C-B7A02152996E}" = Microsoft Visual C++ 2012 x86 Additional Runtime - 11.0.60610 "{3D9CF3CA-3AB0-4A82-9853-D7C43FD1D775}" = ANNO 1404 "{43430FA0-49F0-4B13-B4C5-611000008100}" = Super Street Fighter IV: Arcade Edition "{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater "{4FF82163-423A-43CE-898D-3B60D19A5E8F}_is1" = Panzar "{5454083B-1308-4485-BF17-1110000D8301}" = Grand Theft Auto IV "{579BA58C-F33D-4970-9953-B94B43768AC3}" = Grand Theft Auto IV "{5A0B7BA5-4682-4273-81C2-69B17E649103}" = GRID "{5DE67937-45D5-45E4-923C-0B7F7EC929A7}" = League of Legends "{5E7F3FD4-503B-4451-B2EB-AC8C82DBA32F}" = XEOX Gamepad SL-6556-BK "{63860309-DA8A-4BAE-9EAE-CE1D6D79340C}" = The Settlers 7 - Droga do królestwa "{65153EA5-8B6E-43B6-857B-C6E4FC25798A}" = Intel(R) Management Engine Components "{68A35043-C55A-4237-88C9-37EE1C63ED71}" = Microsoft Visual J# 2.0 Redistributable Package "{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable - x86 8.0.61001 "{76285C16-411A-488A-BCE3-C83CB933D8CF}" = Battlefield 3™ "{837b34e3-7c30-493c-8f6a-2b0f04e2912c}" = Microsoft Visual C++ 2005 Redistributable "{8833FFB6-5B0C-4764-81AA-06DFEED9A476}" = Realtek Ethernet Controller Driver "{888F1505-C2B3-4FDE-835D-36353EBD4754}" = Ubisoft Game Launcher "{8C3727F2-8E37-49E4-820C-03B1677F53B6}" = Stronghold Crusader "{8FB1B528-E260-451E-9B55-E9152F94B80B}" = Microsoft Games for Windows - LIVE Redistributable "{95716cce-fc71-413f-8ad5-56c2892d4b3a}" = Microsoft Visual C++ 2012 Redistributable (x86) - 11.0.60610 "{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17 "{9A996B6A-846E-4A89-B9C4-17546B7BE49F}" = Burnout(TM) Paradise The Ultimate Box "{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161 "{A07B2C21-863B-47AB-AE7E-20BB00BD7D33}" = ANNO 1404 - Venice "{a1909659-0a08-4554-8af1-2175904903a1}" = Microsoft Visual C++ 2012 Redistributable (x64) - 11.0.60610 "{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper "{AC76BA86-7AD7-1045-7B44-A95000000001}" = Adobe Reader 9.5.0 - Polish "{B455E95A-B804-439F-B533-336B1635AE97}" = NVIDIA PhysX "{C194D333-B84A-4BB7-B35E-060732D98DC4}" = GPGNet "{E7D4E834-93EB-351F-B8FB-82CDAE623003}" = Microsoft Visual C++ 2012 x86 Minimum Runtime - 11.0.60610 "{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219 "{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver "{F3BD166A-8C88-438E-AB9B-3F4B0FFD044C}" = Prototype "{F51FF206-2273-4B3E-A90A-4752AE288C12}" = FUEL "{F97E3841-CA9D-4964-9D64-26066241D26F}" = Microsoft Games for Windows - LIVE "{FF66E9F6-83E7-3A3E-AF14-8DE9A809A6A4}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.21022 "«Age of Empers II HD Edition - The Forgotten»_is1" = «Age of Empers II HD Edition - The Forgotten» v.3.0.1560 "Adobe Flash Player Plugin" = Adobe Flash Player 15 Plugin "Assassin's Creed 4_R.G. Revenants" = Assassin's Creed 4 — Repacked by R.G. Revenants "avast" = avast! Free Antivirus "Borderlands.2.Incl.All.24.DLC.[1.7].W.B.Repack" = Borderlands.2.Incl.All.24.DLC.[1.7].W.B.Repack "DAEMON Tools Lite" = DAEMON Tools Lite "FlatOut Ultimate Carnage" = FlatOut Ultimate Carnage "ForgedByChaos" = Forged By Chaos "GameSpy Arcade" = GameSpy Arcade "GFWL_{43430FA0-49F0-4B13-B4C5-611000008100}" = Super Street Fighter IV: Arcade Edition "Google Chrome" = Google Chrome "Heroes of Might and Magic V - Collectors Edition3.1" = Heroes of Might and Magic V - Collectors Edition "Kingdoms of Amalur Reckoning_is1" = Kingdoms of Amalur Reckoning "League of Legends 3.0.1" = League of Legends "Malwarebytes Anti-Malware_is1" = Malwarebytes Anti-Malware wersja 2.0.2.1012 "Microsoft Visual J# 2.0 Redistributable Package" = Microsoft Visual J# 2.0 Redistributable Package "Mozilla Firefox 31.0 (x86 pl)" = Mozilla Firefox 31.0 (x86 pl) "MozillaMaintenanceService" = Mozilla Maintenance Service "Neverwinter" = Neverwinter "NVIDIAStereo" = NVIDIA Stereoscopic 3D Driver "OpenAL" = OpenAL "Origin" = Origin "Patrician IV Gold Edition_is1" = Patrician IV Gold Edition "PunkBusterSvc" = PunkBuster Services "Q29tcGFueW9mSGVyb2VzMg==_is1" = Company of Heroes 2 "Quake Live" = Quake Live "Rise of Nations: Extended Edition_is1" = Rise of Nations: Extended Edition "RocketDock_is1" = RocketDock 1.3.5 "Steam App 237110" = Mortal Kombat Komplete Edition "Steam App 570" = Dota 2 "Stellarium_is1" = Stellarium 0.13.0 "Stronghold Crusader 2_R.G. Mechanics_is1" = Stronghold Crusader 2 "The Binding of Isaac Rebirth 1.0" = The Binding of Isaac Rebirth 1.0 "U2FpbnRzUm93SVY=_is1" = Saints Row IV "Warcraft III" = Warcraft III "Winamp" = Winamp [color=#E56717]========== HKEY_USERS Uninstall List ==========[/color] [HKEY_USERS\S-1-5-21-749034205-2315866158-2849202167-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall] "uTorrent" = µTorrent "Winamp Detect" = Detektor Winampa "WorldofTanks" = WorldofTanks [color=#E56717]========== Last 20 Event Log Errors ==========[/color] [ Application Events ] OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. OTL encountered an error while reading this event log. It may be corrupt. < End of report >